1 to 25 of 156 Remote SIEM Jobs

risk assessments, and security validation/UAT; support incident response. Maintain SBOMs to support vulnerability management and supply-chain assurance. Integrate and enhance security monitoring, logging and alerting (including SIEM/threat detection). Create security documentation (designs, risk assessments, mitigation plans, ops procedures). Collaborate with project/programme managers and stakeholders to ensure effective control implementation. Skills/ More ❯

governance, assurance frameworks, and audit processes (ISO 27001, NIST, GDPR, Cyber Essentials Plus). Experience with modern security tooling such as:o Cortex XDR/Palo Alto Networkso Splunk (SIEM and dashboarding)o Abnormal Security (email security)o Prisma Cloud (cloud security posture management)o Airlock (application and API security)o Nucleus (vulnerability management and reporting) Deep knowledge of incident More ❯

data protection, and governance, risk & compliance (GRC). Requirements In-depth understanding of the incident response lifecycle — preparation, detection, containment, eradication, recovery, and lessons learned. Hands-on experience with SIEM tools such as Splunk, Sentinel, or QRadar — including log analysis and data correlation. Strong familiarity with EDR platforms like CrowdStrike, SentinelOne, or Carbon Black. Working knowledge of network security , including More ❯

data protection, and governance, risk & compliance (GRC). Requirements In-depth understanding of the incident response lifecycle — preparation, detection, containment, eradication, recovery, and lessons learned. Hands-on experience with SIEM tools such as Splunk, Sentinel, or QRadar — including log analysis and data correlation. Strong familiarity with EDR platforms like CrowdStrike, SentinelOne, or Carbon Black. Working knowledge of network security , including More ❯

experience. Proven experience within a SOC (Security Operations Centre) or NOC (Network Operations Centre). Strong understanding of incident response methodologies and the MITRE ATT&CK framework. Experience using SIEM, IDS/IPS, vulnerability scanners, and Azure security tools. Technical expertise in Microsoft Defender, EDR (Endpoint Detection and Response), and network architecture. Practical experience managing cyber incidents and implementing secure More ❯

experience. Proven experience within a SOC (Security Operations Centre) or NOC (Network Operations Centre). Strong understanding of incident response methodologies and the MITRE ATT&CK framework. Experience using SIEM, IDS/IPS, vulnerability scanners, and Azure security tools. Technical expertise in Microsoft Defender, EDR (Endpoint Detection and Response), and network architecture. Practical experience managing cyber incidents and implementing secure More ❯

apps with a focus on AWS and Azure Cloud. Design and develop automation to build cloud security accelerators and IP. Experience with Security Operations teams to build and maintain SIEM, SOAR and XDR technology. Analyze and resolve configuration issues in development, test, and production environments. Familiar with major security compliance frameworks and building effective monitoring, logging, and auditing of production More ❯

apps with a focus on AWS and Azure Cloud. Design and develop automation to build cloud security accelerators and IP. Experience with Security Operations teams to build and maintain SIEM, SOAR and XDR technology. Analyze and resolve configuration issues in development, test, and production environments. Familiar with major security compliance frameworks and building effective monitoring, logging, and auditing of production More ❯

apps with a focus on AWS and Azure Cloud. Design and develop automation to build cloud security accelerators and IP. Experience with Security Operations teams to build and maintain SIEM, SOAR and XDR technology. Analyze and resolve configuration issues in development, test, and production environments. Familiar with major security compliance frameworks and building effective monitoring, logging, and auditing of production More ❯

emerging tech. The following would also be of interest: Certifications in automation/cloud (Azure Solutions Architect, Terraform, GIAC), vulnerability management (Qualys, ISO 27001, NIST). Experience with SOAR, SIEM, XDR, and cloud-native security (especially Azure). Pre-sales or solution architecture exposure. What can we offer you? Through our one of a kind training programme, the Littlefish Academy More ❯

the following: Minimum 2 years' experience of 1st-3rd level technical support of IT infrastructure or security, both in person and remote. Demonstrate detailed knowledge of: oIT system monitoring (SIEM). oSecurity Incident Management. Demonstrate detailed knowledge of Information Security in several of the following areas: oIntrusion detection and prevention systems. oVulnerability Management. oNetwork technology and operations. oWindows 10 and More ❯

to mitigate risks and enhance our data security posture. Technical Expertise in Cybersecurity & Incident Response Experience with email security, cloud platforms, and endpoint protection. Strong understanding of DLP, CASB, SIEM, XDR and other security monitoring tools. Proven ability to manage and/or support response to complex security incidents and data breaches. Strong troubleshooting and problem-solving skills, with the More ❯

Security/SharePoint/Exchange Online) Active Directory - Management, Group Policy, Sites and Services, ADconnect Public Cloud - Azure Administration & Management Endpoint Security - Antivirus/Firewalls Desirable Knowledge Experience with SIEM platforms and integration of network devices into SOC environments is desirable. Microsoft Azure - Familiarity with Azure services beyond the basics, such as Azure AD (Entra), or Azure workload configuration such More ❯

compliance frameworks (NIS2, CAF, ISO 27001). Skills & Experience Required Extensive background in SOC operations, incident response, and threat hunting. Expertise with the Microsoft security stack, including: Microsoft Sentinel (SIEM/SOAR) Microsoft Defender for Endpoint, Identity, Cloud Apps, and Office 365 Microsoft Entra ID (Azure AD) Microsoft Purview (compliance and data protection) Strong knowledge of attacker tactics and techniques More ❯

Contract SIEM Engineer Exciting contract opportunity to join a high-performing cybersecurity team Hybrid working model, three days onsite and two remote Contribute to cutting-edge SIEM and EDR deployments for a large-scale organisation Up to £410 per day (Inside IR35) Active SC clearance required ABOUT THE CLIENT: Our client is a well-established technology-driven organisation with a … advancing its cybersecurity capabilities. You will join a dedicated security team working to enhance threat detection and response across complex environments. This is a crucial role for an experienced SIEM Engineer to make a measurable impact by improving resilience and operational security. THE BENEFITS: Up to £410 per day (Inside IR35) Hybrid working arrangement Collaborative and innovative security culture Opportunity … to work with leading SIEM and EDR technologies THE SIEM ENGINEER ROLE: As a SIEM Engineer, you will design, deploy, and maintain SIEM and EDR solutions that strengthen the organisation's security posture. You will work closely with IT and security teams to manage log ingestion, implement integrations, and monitor system activity for potential threats. SIEM ENGINEER ESSENTIAL SKILLS: Proven More ❯

Conduct regular security audits and assessments to identify and remediate risks. Apply industry frameworks such as NIST Cybersecurity Framework, ISO 27001, CIS Controls . Oversee and enhance security technologies: SIEM, vulnerability management, cloud security (OCI/Azure/AWS), PKI, cryptography, web/email security, logging and monitoring . Monitor network traffic for anomalies and potential breaches. Collaborate with IT More ❯

/AppArmor, OPA Gatekeeper, NVIDIA DCGM, cross-domain solutions. Automation & IaC: Ansible, Terraform, Python/Bash/Go for repeatable secure builds. Threat modelling & audits: Red-team HPC workloads, SIEM integration (Splunk/Elastic), vulnerability management. Documentation: Security design records, hardening guides, risk assessments for NCSC/MOD sign-off. Customer-facing consultancy: Advise end-clients (Defence Primes, CNI) on More ❯

are met. Ensure the IAM service follows and complies with IT and Information Security policies and regulatory standards. Help configure and keep current the integration of IAM technologies with SIEM, SOAR, Service Desk and other tools. Work closely with relevant vendors to ensure optimised use of the supplied technologies and professional services. Serve as an escalation point for issues of More ❯

Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent experience) 2+ years of experience in a cybersecurity or IT-related role. Proficiency in security tools such as SIEM platforms, IDS/IPS, and vulnerability scanners. Strong knowledge of network security principles, firewalls, and access control mechanisms. Familiarity with regulatory frameworks such as GDPR, HIPAA, PCI-DSS, or NIST. More ❯

Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent experience) 2+ years of experience in a cybersecurity or IT-related role. Proficiency in security tools such as SIEM platforms, IDS/IPS, and vulnerability scanners. Strong knowledge of network security principles, firewalls, and access control mechanisms. Familiarity with regulatory frameworks such as GDPR, HIPAA, PCI-DSS, or NIST. More ❯

of security goals. What do we need from you? Deep expertise in securing cloud platforms (AWS, Azure, GCP) with a focus on financial services Proven experience with tools like SIEM, SOAR, IDS/IPS, and cloud-native security solutions Strong understanding of encryption protocols, key management systems, and IAM best practices Hands-on experience with container security tools for Kubernetes More ❯

GCP Hands-on experience with CNAPP tools (Wiz, Lacework, Upwind, Defender for Cloud, CloudGuard) Solid understanding of Kubernetes security Experience in cloud threat detection and incident response Familiarity with SIEM/SOAR tools like Splunk, Sentinel, or Chronicle Strong grasp of compliance frameworks and audit reporting Sound like you? Please apply directly for more detail. More ❯

and solution-level security architectures in hybrid and cloud (AWS/Azure) environments. Strong hands-on expertise with enterprise security platforms – including Endpoint Protection, Cloud Security, Network Security, DevSecOps, SIEM/SOAR, and vulnerability management. Deep understanding of secure design principles, IAM, encryption, API security, and application security. Experience performing threat modelling, security risk assessments, and control design validation. In More ❯

and solution-level security architectures in hybrid and cloud (AWS/Azure) environments. Strong hands-on expertise with enterprise security platforms – including Endpoint Protection, Cloud Security, Network Security, DevSecOps, SIEM/SOAR, and vulnerability management. Deep understanding of secure design principles, IAM, encryption, API security, and application security. Experience performing threat modelling, security risk assessments, and control design validation. In More ❯

and solution-level security architectures in hybrid and cloud (AWS/Azure) environments. Strong hands-on expertise with enterprise security platforms – including Endpoint Protection, Cloud Security, Network Security, DevSecOps, SIEM/SOAR, and vulnerability management. Deep understanding of secure design principles, IAM, encryption, API security, and application security. Experience performing threat modelling, security risk assessments, and control design validation. In More ❯