1 to 25 of 77 Remote SIEM Jobs

years’ experience in cybersecurity or information security roles Strong understanding of network protocols, operating systems and enterprise security technologies Experience implementing and managing SIEM and SOAR platforms Knowledge of cybersecurity frameworks such as NIST, ISO27001, CIS benchmarks and Cyber Essentials Experience with threat intelligence frameworks such as MITRE ...

Analyst Information Security Analyst Essential Skills Experience monitoring and investigating security events Understanding of cyber security threats, attack techniques and security controls Exposure to SIEM technologies Strong analytical and problem-solving skills Experience working within a security operations environment Excellent communication and documentation skills Desirable Skills Microsoft Sentinel experience ...

Analyst Information Security Analyst Essential Skills Experience monitoring and investigating security events Understanding of cyber security threats, attack techniques and security controls Exposure to SIEM technologies Strong analytical and problem-solving skills Experience working within a security operations environment Excellent communication and documentation skills Desirable Skills Microsoft Sentinel experience ...

relevant certifications preferred. Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management. Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS. Strong knowledge of Microsoft Azure cloud security technologies and concepts. Familiar with cybersecurity frameworks such ...

and enhance the incident response plan and playbooks. Security Operations Center (SOC): Monitor and analyse security alerts and logs from various tools such as SIEM, IDS/IPS, and endpoint detection systems. Identify and escalate potential security threats or vulnerabilities in real-time. Continuously optimize SOC workflows, tools, and processes ...

remote access/VPN configurations where required and ensure changes follow change control. Enable and review network security logging/alerting (e.g., syslog/SIEM integrations where applicable). Monitoring, Detection & Incident Response (Sophos MDR) Act as the internal technical point of contact for Sophos MDR and ensure smooth collaboration ...

relocate to Belfast please About you - Solid understanding of networking concepts, operating systems and common attack techniques - Practical experience using security tooling such as SIEM, EDR, IDS/IPS and Firewall technologies - Hands-on knowledge of forensic methods across Windows, Linux and cloud platforms - Good understanding of common attack types ...

security policies, logging and monitoring, and integrating advanced solutions such as IDS/IPS, NAC, and network segmentation. Management & Monitoring: Proficient with SNMP, syslog, SIEM, and network automation, capacity planning and monitoring tools including introducing such tooling. Threat Landscape: Deep understanding of common networking attack vectors and defense‐in‐depth ...

within WTW’s Global Cyber Security Defence team. Responsibilities of this role will include: Design, write, test, and maintain high-fidelity detection rules across SIEM, EDR/XDR, cloud, identity, and network data sources. Apply a threat-led approach, developing detections mapped to adversary tradecraft using the MITRE ...

cloud platforms - AWS, Azure, Google Cloud Ensure cloud platforms config meets best practise/compliance Manage security vendors Conduct risk assessments Monitor security events - SIEM, IDS/IPS, Sentinel1 Lead incident response, coordinate with vendors during breach Ensure compliance with regulations - GDPR, HIPAA, PCI-DSS, ISO27001, NIST Work with ...

Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Strong analytical and problem-solving skills Excellent communication and stakeholder engagement ...

Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Strong analytical and problem-solving skills Excellent communication and stakeholder engagement ...

implementing security controls, mitigating risk and contributing to the continuous improvement of the company's overall security posture. Responsibilities: Monitor security tools including SIEM (QRadar) and respond to threat detection alerts Triage, analyse and prioritise security (via ServiceNow) Investigate root causes of security issues and design effective remediation solutions Oversee ...

Zero Trust environments • Configure and optimise security policies including DLP, CASB, FWaaS, segmentation, and secure web access • Integrate Zero Trust solutions with identity providers, SIEM/SOAR platforms, and endpoint security tooling • Conduct threat modelling, risk assessments, and security architecture reviews • Troubleshoot complex deployment and access issues across enterprise environments ...

configuring and working directly with security tooling in live environments Cloud security (Microsoft 365, Azure, AWS) Strong technical exposure to security tooling, such as: SIEM/SOAR, EDR/XDR, vulnerability scanners, patch management, CASB, DLP Good firewall experience Solid understanding of networking fundamentals (TCP/IP, firewall policies, VPNs ...

identification, and continuous improvement Lead security engagement within client Design Authority and Enterprise Architecture forums Manage integration with the client SOC, including security reporting, SIEM alignment, and incident response coordination Oversee security incident management in line with the client Cyber Security Incident Response Plan Own joiner/mover/leaver ...

Proven experience in Cybersecurity, Computer Science, or a related field Strong background in data protection, encryption, and security frameworks Hands-on experience with firewalls, SIEM tools, and intrusion detection systems Excellent analytical, problem-solving, and communication skills Desirable Certifications CISSP, CISM, or CEH (preferred but not essential) If you receive ...

Zero Trust technologies, while managing project teams and vendor relationships to ensure successful delivery. Leading integration of Zero Trust solutions with identity providers, SIEM/SOAR systems, and endpoint platforms, presenting technical solutions to clients and supporting pre-sales activities. Conducting proof-of-concept evaluations, vendor bake-offs and technical ...

best practices. Qualifications & Requirements * Proven experience in Cybersecurity, Computer Science, or related field. * Experience in data protection, encryption, and security frameworks. * Proficiency in firewalls, SIEM tools, and intrusion detection systems. * Certifications such as CISSP, CISM, or CEH preferred. * Strong analytical, problem-solving, and communication skills. ...

audits, risk assessments and maturity reviews. Engineer and embed technical controls supporting NIST CSF and ISO/IEC 27001 objectives. Support security tooling integration (SIEM log sources, EDR/XDR dependencies, vulnerability tooling). Enable and validate security telemetry coverage audit policy configuration, log forwarding/collection, event quality (normalisation ...

incidents alongside the Head of Cyber Work with the existing MSSP across incident response and proactive monitoring and detection Maintain and optimise Microsoft Sentinel SIEM, XDR/MDR/EDR solutions, and supporting tools. Track deployment and health of all security products across the business. Stay ahead of emerging threats ...

platform experience (e.g. Microsoft Fabric, Databricks) - Broad enterprise technology exposure (ServiceNow, CRM, ERP, EUC, infrastructure, cloud) - Solid understanding of Azure and cyber security frameworks (SIEM, XDR, NIST, ISO27001 - Resource must be able to qualify for a UK clearance. ...

this technical role is on threat prevention, detection and response for Marshall, including the configuration and monitoring of a security information and event management (SIEM) system, operating next generation antivirus, intrusion detection/prevention systems (IDS/IPS), vulnerability management tools and Firewall, DLP, Web and Email Security Gateways.This … and help coordinate, routine security event monitoring and investigations using available toolsUse, configure and develop the use of a security information and event management (SIEM) and EDR toolMonitor and configure network intrusion detection and prevention systemsAnalyse and create reports for security incidents, to determine root cause and lessons learntCreate and ...

Environment You will work across a modern technology estate including: Microsoft Azure Microsoft Intune Okta Identity & Access Management Zscaler SentinelOne Mimecast SD-WAN Technologies SIEM and Security Monitoring Platforms About You We are looking for an experienced security professional with a strong blend of technical expertise, governance experience, and stakeholder ...

from colleagues and service delivery teams Support and coordinate patch management activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor external threat intelligence sources and assess relevance to the organisation Produce and report on security metrics … operational performance Technical expertise Good understanding of information security principles, risk management and the threat landscape Experience of operating and monitoring security tooling, including SIEM, endpoint protection, and email/web security solutions Ability to proactively conduct threat hunting activities and develop or enhance detection analytics to improve identification ...