26 to 50 of 90 Remote SIEM Jobs

Microsoft 365 administration and identity servicesExposure to AWS or Google CloudExperience with RMM and PSA toolsKnowledge of backup platforms (e.g. Veeam, Datto)Exposure to SIEM/SOC toolsUnderstanding of AI tools such as Microsoft 365 CopilotLinux administration experience The client is looking to fill this opportunity immediately, so please apply ...

Minimum 1 years proven experience in a Tier 1 Cyber Security SOC Support Analyst role Working knowledge of Microsoft Defender XDR and Microsoft Sentinel SIEM technologies Working knowledge of Microsoft Defender suite including Endpoint Detection and Response Understanding of key Microsoft 365 Cloud Technologies from a threat landscape perspective Cyber ...

enterprise clients Create high-level and low-level architecture designs and technical specifications Work with cloud platforms, directories, HR systems, and security tools (SIEM, MFA) Define operating models, roadmaps, and maturity assessments (Senior and above) Develop client proposals, commercial offers, and executive presentations (Senior Manager and above) Build and maintain ...

and ticketing systems Understanding of cloud infrastructure basics (GCP strongly preferred, AWS/Azure an asset) Familiarity with security tools: endpoint protection, vulnerability management, SIEM Comfort with scripting and automation (Python, Bash, or similar) Nice to Have Experience with AI tooling administration (API key management, spending controls, sub‐processor documentation ...

passion for cyber security. You will ideally bring: Strong analytical skills with the ability to manipulate, interrogate and interpret large datasets. Experience working with SIEM and IPS tools (preferred). Good understanding of Cyber Security Operations and cyber threat landscapes. Advanced IT skills and experience working within an IT support ...

and recommending remediation actions Provide technical and procedural guidance to junior SOC analysts Develop and enhance detection use cases, correlation rules, and playbooks within SIEM and EDR platforms Conduct proactive threat hunting activities across client environments Collaborate with engineering teams to improve visibility, telemetry, and automation Support major incident response … CSIRT, or cyber defence environment Strong understanding of attack frameworks (e.g. MITRE ATT&CK, Cyber Kill Chain) Hands-on experience with SIEM and EDR tools (e.g. Microsoft Sentinel, Splunk, CrowdStrike, Defender) Experience in incident triage, containment, and response Good knowledge of network protocols, Windows/Linux systems, and cloud environments ...

Zero Trust adoption across the organisation What You’ll Bring Experience in security architecture within a large enterprise Knowledge across multiple security domains (IAM, SIEM, DLP, EDR/EPP, PAM, CASB, etc.) Strong understanding of security frameworks (ISO 27001, NIST, GDPR, NISD) Excellent stakeholder communication and ability to influence ...

partysupplierstoprogressinvestigationandremediation. Participateinout-of-hoursresponseasrequired. Knowledge,Skills&ExperienceEssential ProvenexperienceinaLevel3orSeniorSecurityAnalystorIncidentResponserole. Hands-onexperienceinvestigatingandresolvingincidentsacrossendpoints,identityplatforms,networks,andcloudservices. Strongunderstandingofmalwareandransomwareresponse,identitycompromise,andvulnerabilityremediation. ExperienceworkingwithinformalSecurityIncidentandMajorIncidentprocesses. Strongwrittendocumentationandstakeholdercommunicationskills. Knowledge,Skills&ExperienceDesirable Experiencesupportingmulti-siteoroperationallysensitiveenvironments. FamiliaritywithDefender,SIEM,EDR,andvulnerabilitymanagementtools. UnderstandingofregulatedorPCI-adjacentenvironments. Relevantsecuritycertificationsorequivalentexperience. BehaviouralCompetencies Takesownershipfromdetectionthroughtoresolution. Investigatesthoroughlyandchallengesincompletefixes. Calm,methodical,anddecisiveduringliveincidents. Understandsoperationalandbusinessimpact. Professionalandconfidentwhenengagingcustomersandsuppliers. DecisionMaking&Authority Makestechnicaldecisionsrelatingtoinvestigation,containment,andremediationofsecurityincidents. EscalatesriskanddecisionpointsappropriatelytoIncidentManagementandServiceDeliveryleadership. KeyInterfaces IncidentManagement SecurityOperations InfrastructureandNetworkServices Third-partysuppliers ...

Check Point (CCSE/CCSM), Palo Alto Load balancing technologies AWS and/or Azure VMware (ESXi, vSAN) Windows & Linux Servers Network monitoring tools SIEM tooling (Defender/Sentinel) ITIL exposure (incident/change management) Server rack management in live environments Due to the volume of applications received for positions ...

core MSP services, including: Managed IT support & service desk Microsoft 365 Azure and cloud services Cyber security solutions (e.g. endpoint security, backup & disaster recovery, SIEM) Desirable Business‐related degree Sales, CRM or IT‐related certifications Why Join Air IT? Be part of a market‐leading, award‐winning MSP Work with ...

and profiles Assist with transitioning and duplicating existing NAC/ISE configurations Connect NAC solutions with core enterprise platforms (such as Active Directory, MDM, SIEM, and firewalls) Diagnose and resolve technical issues to keep delivery on track What You'll Bring Demonstrated expertise in Cisco ISE and NAC implementations Strong ...

Experience selling a mix of services, including: Managed IT support & service desk Microsoft 365 Azure and cloud solutions Cyber Security (endpoint, backup & disaster recovery, SIEM) Ability to demonstrate tangible sales success (e.g. revenue growth, account expansion, client maturity improvements) Why This Role? Competitive salary + strong earning potential Hybrid working ...

Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS/PaaS, Windows/Linux/Unix. Strong knowledge of security tooling such as SIEM, endpoint detection (EDR/XDR), and vulnerability management platforms. Hands-on experience with policy development, access control models and logging standards. Experience supporting assurance activities … government-mandated reviews (e.g. GovAssure, Secure by Design). Knowledge of Incident Management, Vulnerability Assessments, SIEM & SOC Systems. Familiarity with ITSM workflows and change control procedures Experience designing or reviewing secure software supply chain and CI/CD security . Ability to interpret CVEs, CVSS scores, and threat intelligence feeds. ...

documentation, risk assessments, and standards; Enforce responsible AI (fairness, transparency, oversight); Build AI security tools (prompt injection scanners, vulnerability scanning); Implement monitoring and alerting (SIEM/SOAR); Develop reusable security guardrails and middleware; Apply security‐as‐code (policy‐as‐code, infra scanning, secrets); Enable real‐time detection and forensic analysis … TypeScript, Rust, or Java); Experience with cloud security (AWS, Azure, or GCP — IAM, network, encryption, secrets); Proficiency with security tools (SAST, DAST, SCA, SIEM, vulnerability management); Expertise in authentication/authorization (OAuth2, OIDC, SAML, RBAC/ABAC, zero trust); Strong knowledge of Secure SDLC and DevSecOps practices; Ability to communicate ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for UK SC Clearance. Key Responsibilities … Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. Conduct ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

demonstrate you are well versed in dealing with Cyber Security incident management/responses and mitigating the risks. You will have proven experience in SIEM, Anti-Virus, Vulnerability management, Data Loss Prevention and security tools as well as a good understanding of compliance around ISO 27001 and PCI-DSS This ...

demonstrate you are well versed in dealing with Cyber Security incident management/responses and mitigating the risks. You will have proven experience in SIEM, Anti-Virus, Vulnerability management, Data Loss Prevention and security tools as well as a good understanding of compliance around ISO 27001 and PCI-DSS This ...

demonstrate you are well versed in dealing with Cyber Security incident management/responses and mitigating the risks. You will have proven experience in SIEM, Anti-Virus, Vulnerability management, Data Loss Prevention and security tools as well as a good understanding of compliance around ISO 27001 and PCI-DSS This ...

demonstrate you are well versed in dealing with Cyber Security incident management/responses and mitigating the risks. You will have proven experience in SIEM, Anti-Virus, Vulnerability management, Data Loss Prevention and security tools as well as a good understanding of compliance around ISO 27001 and PCI-DSS This ...

have: Knowledge of firewalling, VPN, Zero Trust frameworks, and SD-WAN technologies. Experience with Terraform and scripting (Python, Bash, or PowerShell). Experience integrating SIEM platforms Understanding of Zero Trust architecture and SD-WAN optimization If you're interested in this role, click 'apply now' to forward ...

Security (IAM, MFA, encryption, policy enforcement) Storage & data services (object/block/file, backup, replication) Automation (IaC, pipelines, scripting) Observability (logging, metrics, tracing, SIEM integration) Why Join Quorum? Quorum is an employee-owned IT consultancy, delivering managed services, projects, and professional services to organisations across the public and private ...

strong background in Azure infrastructure, as well as AWS experience and Windows Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls (Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment … Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual Microsoft technologies Strong analytical, communication, and problem-solving skills, including the ability ...

incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. Oversee operational security processes with tools like SIEM, EDR, and Vulnerability Management, continuously enhancing capabilities. Network and System Security Manage advanced security tools such as firewalls and IDS/IPS to protect network … qualifications. Good underpinning knowledge of the Microsoft technology stack, cloud, on-premises and End user Compute. Understanding and experience of web filtering, email security, SIEM, EDR/XDR. Experience of managing investigations in SOC (L2 or above ...

strong background in Azure infrastructure, as well as AWS experience and Windows Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls (Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment … Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual Microsoft technologies Strong analytical, communication, and problem-solving skills, including the ability ...