a team of cyber analysts, preferably in a large and complex organisation. Expert knowledge of security operations processes, tools and technologies, such as SIEM, SOAR, EDR, XDR NDR, threat intelligence, vulnerability management, forensics and malware analysis. Strong understanding of security frameworks, standards and regulations, such as ISO 27001, NIST, CIS more »
combination of existing knowledge resources and independent research. Understand Threat Intelligence and its use in an operational environment Produce new workflows for automation into SOAR tools for common attack types. Continually improve the service and review use cases and propose changes and enhancements in line with the changing threat. SOC more »
cyber security systems and tooling * Reasonable knowledge of Security Information and Event Management systems * Reasonable knowledge of Firewall systems (Fortigate essential) * Foundational knowledge of SecurityOrchestration, AutomationandResponse (SOAR) systems * Good knowledge of common operating systems (Windows, Mac, Linux) * Good knowledge of networking and network equipment * Relevant certifications such more »
PaaS, SaaS) in particular AWS, MS Sentinel and Defender Good understanding of Security Operations and related security tools such as Firewalls, VPN Gateway, SIEM, SOAR, EDR, MDR, UEBA, DLP Good understanding and practical experience of Cyber Security Frameworks and standards such as NCSC security principles, NIST Framework, ISO 27001, ISO27005 more »
need: · Extensive experience of working within a SOC or adjacent role. · Experienced in responding to cyber incidents. · Conversant with common security tooling (E.g., SIEM, SOAR, EDR, NDR). · Understanding of threat actors, their tactics, techniques, and procedures. · Understanding of security event data, the value of different data sources and tools more »
and managing Fortinet FortiAnalyzer. • Provide guidance to Infrastructure and Product teams on securing Microsoft 365 and Azure cloud services. • Establish and manage SIEM andSOAR capabilities using Azure Logic Apps or equivalents. • Enhance the usage and support of Entra ID (previously Azure AD) for IAM, Identity Governance, and PIM. • Document … with enhancing security in Azure Landing Zones (e.g., Key Vault, NSGs, WAF). • Experience with Microsoft Entra ID, including identity governance. • Proficiency in using SOAR tooling, automating security operations, and policy as code. • Ideally, experience in securing GitHub or similar platforms. • Ideally, experience in securing data platforms (e.g., Databricks, Snowflake more »
as Code practices. Assist in securing data platforms and implementing internal SIEM. Collaborate on securing Microsoft 365 and Azure cloud services. Operate SIEM andSOAR capabilities and enhance identity governance. Requirements: Hands-on experience with Microsoft Sentinel and Defender suite. Proficiency in Azure Landing Zones security enhancement. Familiarity with Microsoft … Entra ID andSOAR tooling. Ideally, experience in securing GitHub and data platforms. Knowledge of ISO 27001, Cyber Essentials Plus, and CIS. Scripting skills with Python and KQL. Strong English communication skills. more »
involved in setting up and configurating the systems, log parser creation, python scripting & debugging, Linux admin, Azure/GCP admin, supporting investigations/analysis, SOARand API-based integrations/connections. This is an opportunity to work alongside cyber SME’s and run with a strong level of security, innovation … troubleshooting Liasing with senior stakeholders, support teams and technical partners Provide technical documentation Skills required for the Cyber Security/SOC Engineer: SIEM andSOAR deployment and support Technical expertise in Cloud and Network technologies Python Scripting Experience in Windows, Linux, MacOS and Identity technologies such as Entra ID Strong more »