26 to 50 of 78 Remote SIEM Jobs

Lead deployment and optimisation of technologies such as Zscaler, Netskope, Prisma Access, or similar platforms • Oversee integration of Zero Trust solutions with identity providers, SIEM/SOAR tooling, endpoint security, and cloud environments • Conduct architecture reviews, threat modelling exercises, gap assessments, and security strategy workshops • Lead proof-of-concept exercises ...

platform experience (e.g. Microsoft Fabric, Databricks) Broad enterprise technology exposure (ServiceNow, CRM, ERP, EUC, infrastructure, cloud) Solid understanding of Azure and cyber security frameworks (SIEM, XDR, NIST, ISO27001) TPBN1_UKTJ ...

platform experience (e.g. Microsoft Fabric, Databricks) Broad enterprise technology exposure (ServiceNow, CRM, ERP, EUC, infrastructure, cloud) Solid understanding of Azure and cyber security frameworks (SIEM, XDR, NIST, ISO27001 ...

automation using PowerShell, Python, or Java. Strong troubleshooting and problem-solving skills. Experience integrating IAM solutions with cloud and on-premises applications. Familiarity with SIEM logging, monitoring, and audit requirements. Desirable Qualifications Vendor certifications in IAM technologies. Experience working within financial services or other regulated industries. Knowledge of DevSecOps, Infrastructure ...

Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials ...

capabilities that aligns with existing technology stack. Experience with KMS systems and methodologies. Identity based threat detection and prevention. Privileged Access and Session Management SIEM Management: Design, implement, and maintain of workspaces, including data connectors, Logic App, Function App, analytics rules, workbooks, and playbooks. Develop and refine custom queries … advanced threat hunting, incident investigation, and reporting. Optimize SIEM performance, cost, and data retention policies Identify new log sources work closely with infrastructure teams Identify, onboard, and configure critical security log sources with a focus on critical infrastructure services such as Active Directory (Domain Controllers, ADFS), network devices, firewalls, servers ...

security improvements. Provide practical security advice across the organisation. Essential Skills Cyber Security Operations, SOC or Incident Response experience. Hands-on Microsoft Sentinel or SIEM experience. Threat hunting, log analysis and security monitoring. Experience with Microsoft Defender and Microsoft security technologies. Vulnerability management and remediation tracking. Strong communication and stakeholder ...

/LLD documents for security solutions. Strong understanding of Security Operations/SOCs. Hyperscaler experience (AWS, Azure, GCP); Professional Cloud Architect cert preferred. SIEM/SOAR tooling (e.g., Google SecOps/Chronicle). EDR/XDR/NDR experience (e.g., Crowdstrike, Corelight, Microsoft Defender XDR). What's on Offer ...

security concepts into clear recommendations for senior stakeholders Skills & Experience Strong experience in enterprise security architecture within large-scale environments Expertise across: SOC/SIEM/SIAM Network Security Architecture Cloud Security (Azure, AWS, Hybrid environments) Strong understanding of modern security operations and tooling Familiarity with frameworks such as TOGAF ...

/LLD documents for security solutions. Strong understanding of Security Operations/SOCs. Hyperscaler experience (AWS, Azure, GCP) Professional Cloud Architect cert preferred. SIEM/SOAR tooling (e.g., Google SecOps/Chronicle). EDR/XDR/NDR experience (e.g., Crowdstrike, Corelight, Microsoft Defender XDR). What's on Offer ...

services and driving continuous improvement Relevant experience of leading a threat defence function/department A relevant qualification Experience in security device management and SIEM Proven experience of Incident Management and Response In depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management ...

. A strong, hands-on technical background in operational cyber security spanning endpoint & EDR, identity & Active Directory, Microsoft 365 & Azure, network/ZTNA, and SIEM/log management able to act as a senior technical authority within the team. Demonstrable experience leading cyber security incident response (incident command), from detection ...

Security Support Technician, your duties will include: · Assist in the monitoring and analysis of security alerts and logs, using security tools such as SIEM systems. · Help to identify and respond to security incidents, in line with our incident response process. · Conduct routine vulnerability scans and support in remediation activities. · Support ...

Security Support Technician, your duties will include: Assist in the monitoring and analysis of security alerts and logs, using security tools such as SIEM systems. Help to identify and respond to security incidents, in line with our incident response process. Conduct routine vulnerability scans and support in remediation activities. Support ...

security services (GuardDuty, Security Hub, WAF, Shield)Design hybrid connectivity using VPN and Direct Connect with high availabilityIntegrate AWS logs and telemetry into SIEM platforms (e.g. Splunk, Sentinel)Deliver automation using Terraform, CloudFormation, and LambdaEnsure secure, compliant, and observable cloud environments Required Skillset: Strong AWS networking experience: VPC, routing, segmentation ...

security with modern cloud first architectures Technical Delivery and Validation: Leading technical validation, proof of concept and solution demonstrations Supporting integration across identity providers, SIEM, endpoint and network tooling Advising on migration from legacy VPN and network controls to Zero Trust models Working closely with delivery teams to ensure solutions ...

security with modern cloud first architectures Technical Delivery and Validation: Leading technical validation, proof of concept and solution demonstrations Supporting integration across identity providers, SIEM, endpoint and network tooling Advising on migration from legacy VPN and network controls to Zero Trust models Working closely with delivery teams to ensure solutions ...

keen eye for detail to investigate alerts, piece together information to build a bigger picture and provide suitable remediation steps for customers. Monitoring our SIEM (Security Incident and Event Management) and SOAR (Security Orchestration, Automation and Response) tools to detect suspicious events and abnormal activities. . Triaging events through validating ...

keen eye for detail to investigate alerts, piece together information to build a bigger picture and provide suitable remediation steps for customers. Monitoring our SIEM (Security Incident and Event Management) and SOAR (Security Orchestration, Automation and Response) tools to detect suspicious events and abnormal activities. . Triaging events through validating ...

and ticketing systems Understanding of cloud infrastructure basics (GCP strongly preferred, AWS/Azure an asset) Familiarity with security tools: endpoint protection, vulnerability management, SIEM Comfort with scripting and automation (Python, Bash, or similar) Nice to Have Experience with AI tooling administration (API key management, spending controls, sub‐processor documentation ...

relocate to Belfast pleaseAbout you- Solid understanding of networking concepts, operating systems and common attack techniques- Practical experience using security tooling such as SIEM, EDR, IDS/IPS and firewall technologies- Hands-on knowledge of forensic methods across Windows, Linux and cloud platforms- Good understanding of common attack types, including … client's supplier list for this role.KeywordsCyber Security Incident Response, Ransomware Response, Phishing Analysis, Digital Forensics, Threat Hunting, Threat Intelligence, SIEM (Splunk, Sentinel, QRadar), EDR (CrowdStrike, Defender for Endpoint), IDS/IPS, Network Traffic Analysis, Log Analysis, Malware Analysis, Memory Forensics, Disk Forensics, Windows Security, Linux Security, Active Directory, Cloud ...

subject to required skills) your application to our client in conjunction with this vacancy only. KEY SKILLSSecurity Engineer, Cyber Security, IAM, PAM, RBAC, DevSecOps, SIEM, Vulnerability Management, Active Directory ...

across enterprise environments. This role will work closely with Cyber Security, SOC, Infrastructure, Cloud, Data Engineering, and Application teams to improve data visibility, reduce SIEM costs, and enhance security monitoring capabilities. Key Responsibilities Design, deploy, and manage Cribl data pipelines across enterprise environments. Configure and support Cribl Stream , including data … collection, transformation, filtering, enrichment, masking, and routing. Optimise telemetry ingestion into SIEM and observability platforms. Implement data reduction strategies to improve platform efficiency and reduce licensing costs. Develop and maintain data parsing, normalisation, and enrichment processes. Support integration with security and monitoring platforms such as Splunk, Microsoft Sentinel, Elastic, and ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...