6 of 6 Threat and Vulnerability Management Jobs in Cambridgeshire

Job Description Job Title: Level 3 Security Analyst Role: As a Level 3 Security Analyst, you will be at the forefront of our Security Operations Center (SOC), monitoring and responding to security incidents, performing threat analysis, and contributing to the continuous improvement of our cybersecurity services. You will work within a dynamic team, ensuring the protection of our clients' digital … assets while maintaining service excellence. Level 3 Analysts will take on additional responsibilities, such as mentoring junior team members, leading complex incident investigations, and driving strategic security improvements. What’s in it for you? Work with cutting-edge security technologies and develop expertise in industry-leading tools. Be part of an award-winning cybersecurity team with a clear path for … career progression. Hybrid working environment with opportunities for professional growth and certification support. Responsibilities: Monitor, analyse, and respond to security events and incidents within the SOC, ensuring timely detection and resolution in line with SLAs. Conduct thorough threat analysis and vulnerability assessments to identify potential security risks and implement mitigation strategies. Develop and refine incident response plans and playbooks More ❯

Role Overview: Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. Responsibilities: Build security automations, logging, and SIEM detections to improve the CDO's efficiency, scalability, and incident response capabilities. Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat intelligence and vulnerability management. Collaborate with CDO analysts to identify repetitive tasks and automate them to … improve operational efficiency. Collaborate with Threat Intelligence, Incident Response, and Attack Surface Management to build and tune robust SIEM detections for both proactive and reactive response actions. Continuously evaluate automation solutions for performance, reliability, and scalability, making improvements, as necessary. Collaborate with third-party vendors and service providers to leverage automation opportunities and ensure successful integrations. Lead technical migration More ❯

This role will involve on site work in Cambridge 2-3 days per week. *Inside IR35. Security Automation & Detection Engineer Role Overview: Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting … languages like Python, PowerShell) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. Responsibilities: • Build security automations, logging, and SIEM detections to improve the CDO's efficiency, scalability, and incident response capabilities. • Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting … cyber threat intelligence and vulnerability management. • Collaborate with CDO analysts to identify repetitive tasks and automate them to improve operational efficiency. • Collaborate with Threat Intelligence, Incident Response, and Attack Surface Management to build and tune robust SIEM detections for both proactive and reactive response actions. • Continuously evaluate automation solutions for performance, reliability, and scalability, making improvements, as necessary. More ❯

A multinational semiconductor and software design company seeks a Microsoft Security (Sentinel) Automation & Detection Engineer for a 6-month contract to start ASAP, based in Cambridge (Hybrid), Inside IR35 Role Overview:Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of Microsoft SIEM detections and security automations. The successful candidate will be … proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell, KQL) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. Key Skills and Experience Experience contributing to large-scale, sprint-based, security automation and detection engineering projects in a SOC/Cyber Defense or similar … environmentRecent hands-on experience with managing and implementing Microsoft Sentinel log sources and detection, with knowledge of the related technical best practices in Sentinel and Azure specifically across Sentinel Content Hub, Sentinel Analytics, Sentinel Automation, Azure Event Hub, Azure Logic Apps Azure Function Apps.Experience in Sentinel/Analytics Rules/Logic App automationsKQLDemonstrated ability in cybersecurity, with at least More ❯

A multinational semiconductor and software design company seeks a Microsoft Security (Sentinel) Automation & Detection Engineer for a 6-month contract to start ASAP, based in Cambridge ( Hybrid), Inside IR35 Role Overview: Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of Microsoft SIEM detections and security automations. The successful candidate will be … proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell, KQL) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. Key Skills and Experience Experience contributing to large-scale, sprint-based, security automation and detection engineering projects in a SOC/Cyber Defense or similar … environment Recent hands-on experience with managing and implementing Microsoft Sentinel log sources and detection, with knowledge of the related technical best practices in Sentinel and Azure specifically across Sentinel Content Hub, Sentinel Analytics, Sentinel Automation, Azure Event Hub, Azure Logic Apps Azure Function Apps. Experience in Sentinel/Analytics Rules/Logic App automations KQL Demonstrated ability in cybersecurity More ❯

Automation Engineer, if you are then please read on! You’ll be the key technical lead across 3 main areas – 1) Log Onboarding, 2) Advanced KQL for Detection Engineering, and 3) Automation in Logic Apps. What You’ll Be Doing: Creating slick automations and SIEM detections to boost their incident response game. Leading the charge on integrating log sources into … Microsoft Sentinel. Designing and maintaining workflows and playbooks for everything from threat hunting to vulnerability management. Working closely with analysts to spot repetitive tasks and automate them like a pro. Collaborating with teams across threat intel, incident response, and attack surface management to fine-tune our detections. Key Skills Required: Sentinel expertise, delivering technical solutions within large, complex … businesses Security operations, automation best practices, and SIEM management. Advanced KQL skills Advanced Logic Apps experience A track record of contributing to large-scale security automation projects. Working Policy Hybrid working places are in place for this role, with 2 days onsite (Cambridge) required each week. Whilst no guarantees can be made, there may be some flexibility for an absolutely More ❯