1 to 25 of 92 Remote SIEM Jobs

and operations teams to support strategic security objectives, improve detection coverage, and respond to evolving cyber threats. Key Responsibilities SIEM Solution Development Design and implement SIEM solutions in collaboration with security analysts and architects. Develop, optimise, and maintain detection rules, alerts, and dashboards to improve threat visibility. Support the full … incident response tooling. Stay current with emerging threats, attack techniques, and security best practices. Essential Skills & Experience SIEM & Detection Engineering Strong experience configuring and operating SIEM platforms (Elasticsearch-based solutions preferred). Ability to create, test, and optimise detection rules aligned to the MITRE ATT&CK framework. Experience improving detection ...

Security controls. Programming/scripting experience (PowerShell, ASP, .NET, Python, Perl). Log analysis and configuration reviews across infrastructure components including servers, firewalls, WAFs, SIEM, VMware, etc. Security Engineering or Architecture (SABSA an advantage). Knowledge of CI/CD is advantageous. Specifying and performing vulnerability analysis and review ...

initiatives. Skills & Experience Essential: Strong grounding in security engineering principles, practices and risk management. Experience working with a broad range of security controls (e.g., SIEM, IDS/IPS, firewalls, secure SDLC, cloud security configuration, CIS hardening, API security). Knowledge of security frameworks such as NIST, ISO 27001, CIS and ...

continuous compliance. Develop automated remediation workflows for security findings. Monitoring & Incident Response: Implement monitoring and alerting for security events using AWS native tools and SIEM integrations. Support incident response and root cause analysis for security breaches or vulnerabilities. Maintain documentation and runbooks for security operations. Collaboration & Enablement: - Work closely with ...

analysis, and risk-based prioritisation. Experience working in large, complex enterprise environments. Familiarity with regulatory and compliance requirements relevant to vulnerability management. Knowledge of SIEM, SOAR, EDR, and associated security tooling. Strong analytical skills with the ability to translate technical risk into clear, executive-level reporting. Experience supporting incident response ...

with day-to-day responsibilities. Essential Skills and Experience: SC clearance required to start; DV sponsorship available. Proven expertise with Splunk and Microsoft Sentinel SIEM platforms. Strong programming skills in Python , with experience developing automation and Detection as Code pipelines. Proficiency in KQL and SPL for creating efficient, high-fidelity ...

Strong understanding of cloud security (IaaS, PaaS, SaaS, CASB, Zero Trust, micro-segmentation) Broad knowledge of security technologies (firewalls, IDS/IPS, endpoint protection, SIEM, SOAR, DLP, PKI, cryptography) Solid understanding of IAM concepts (RBAC, ABAC, PAM, SSO) Strong analytical skills with the ability to interpret complex technical information Good ...

service follows and complies with IT and Information Security policies and regulatory standards. Help configure and keep current the integration of IAM technologies with SIEM, SOAR, Service Desk and other tools. Work closely with relevant vendors to ensure optimised use of the supplied technologies and professional services. Serve ...

need from you? Deep expertise in securing cloud platforms (AWS, Azure, GCP) with a focus on financial services Proven experience with tools like SIEM, SOAR, IDS/IPS, and cloud-native security solutions Strong understanding of encryption protocols, key management systems, and IAM best practices Hands-on experience with container ...

skills are essential for this position. Knowledge of information security standards (e.g., ISO 17799/27002/27001/PCI DSS/SIEM, etc.), rules and regulations related to information security and data confidentiality (e.g., FERPA, HIPAA, etc.) and key network security principles for risk identification and analysis. Knowledge ...

must have a strong understanding of—or direct experience working within—a Security Operations Centre (SOC).• Security Controls: A deep understanding of firewalls, SIEM, and Data Loss Prevention (DLP). • Hybrid Cloud Tools: Proven proficiency with M365, Identity & Access Management (IAM), and threat protection. • Analytical Mindset: Strong skills ...

Ansible. Knowledge of REST APIs and system integrations. Familiarity with cloud platforms (AWS, Azure or GCP). Awareness of security tools, SOC operations or SIEM platforms. Containerisation knowledge (Docker). Cyber security certifications (e.g. CompTIA Security+, equivalent). Benefits Competitive salary and benefits package. Structured training and career development. Hands ...

Implement least privilege access models and enforce secure credential management - Monitor and audit privileged access activities across systems and applications - Integrate PAM tools with SIEM, IAM, and other security platforms - Develop and maintain policies, procedures, and documentation for PAM operations - Conduct regular access reviews, privilege audits, and risk assessments - Collaborate ...

Cloud Platforms Experience with private & public cloud such as AWS & Azure Security Experience with MDM, MFA, Email filtering, Next generation firewalls & Anti-Virus solutions, SIEM Solutions such as Sentinel Skills An ability to work independently and perform their own research Ability to work under pressure Creative problem solving Ability ...

Experience supporting vulnerability remediation and security improvement activities. Exposure to security tooling such as endpoint protection, email security, and next-generation firewalls. Exposure to SIEM tooling such as Microsoft Sentinel (desirable). Skills Ability to work independently, take ownership, and perform your own research when required. Ability to work under ...

Experience supporting vulnerability remediation and security improvement activities. Exposure to security tooling such as endpoint protection, email security, and next-generation firewalls. Exposure to SIEM tooling such as Microsoft Sentinel (desirable). Skills Ability to work independently, take ownership, and perform your own research when required. Ability to work under ...

with live incidents, real attackers, and industry-leading tools — not just alert watching. What you’ll be doing Monitoring, triaging & investigating alerts across SIEM/EDR/XDR Analysing attacker behaviour & building incident timelines Escalating incidents with clear technical context Using tools such as Microsoft Sentinel, Google SecOps, Defender ...

security frameworks (ISO 27001, NIST, Cyber Essentials, OWASP) Good understanding of GDPR and regulatory compliance requirements Hands-on experience with core security technologies (SIEM, IAM, firewalls, endpoint security, vulnerability management) Incident response and security operations experience Knowledge of cloud security and Zero Trust principles Confident communicator with strong stakeholder management ...

regulatory requirements (e.g. GDPR, FCA SYSC, PCI DSS). Extensive experience and understanding of security analysis tools, defensive technologies and other security technologies (e.g. SIEM, VAS, IDS/IPS, Firewalls, IAM, NAC, patch management, anti-malware). Solid understanding of security incident management and incident response processes and activities. Strong ...

skills are essential for this position. Knowledge of information security standards (e.g., ISO 17799/27002/27001/PCI DSS/SIEM, etc.), rules and regulations related to information security and data confidentiality (e.g., FERPA, HIPAA, etc.) and key network security principles for risk identification and analysis. Associated Benefits ...

across areas including: Cloud, hybrid and network security Identity & Access Management (IAM) Encryption and key management Secure application and API design Logging, monitoring and SIEM Infrastructure, platform and endpoint security Experience working with security and compliance frameworks such as ISO27001, GDPR, NIST or CIS Excellent stakeholder engagement skills, able ...

have demonstrable experience with some of the following technologies: Microsoft Active Directory Microsoft Group Policy Microsoft Defender suite MDM (e.g. Microsoft Intune or similar) SIEM tools (e.g. Microsoft Sentinel or similar) Remote access solutions (e.g. Microsoft Bastion or similar) Microsoft Windows Update for Business Third-party patch management tools Vulnerability ...

security controls. Experience with information security control testing methodologies, information security risk assessments, auditing tools and an interest in emerging technologies.. Security tooling (e.g. SIEM, Identity and Access Management platforms, DLP), cloud platforms (AWS, GCP, Azure), Infrastructure as Code (Terraform) and scripting languages (e.g. Python). Experience with workflow platform ...

Nice to Have) Experience with UK Government security governance (e.g., architecture boards, service assessments, secure-by-design reviews). Knowledge of protective monitoring/SIEM concepts and how logging/telemetry should be architected. Exposure to Zero Trust principles and modern security patterns. Relevant certifications: SABSA, CISSP, CCSP, CISM, CCSK ...

Team Lead Deep understanding of end-to-end SOC operations including alert triage, incident response, threat hunting, and case management Extensive experience with SIEM platforms, security orchestration tools, and the broader SOC technology stack Strong knowledge of threat detection methodologies, alert correlation, and incident prioritization frameworks Expert-level understanding ...