51 to 75 of 78 Remote SIEM Jobs

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

understanding of Information Security solutions e.g. email/web gateways, Privileged Account Management (PAM), Identity Governance and Administration (IGA), Security Information and Event Management (SIEM), Endpoint protection etc. Knowledge/experience working with firewalls is highly advantageous Experience of Cloud security solutions and standards is highly advantageous Competence, knowledge and ...

servers, databases, applications, cloud, and DevOps environments. Configure password vaulting, rotation, reconciliation, session monitoring, recording, and auditing. Integrate CyberArk with Active Directory, identity providers, SIEM platforms, ticketing systems, and other enterprise tools. Develop automation using CyberArk REST APIs and PowerShell or Python scripting. Act as the escalation point for complex ...

profession standards with HR/L&D.Timely access to SL stakeholders, systems, repositories, and tooling (e.g., policy library, LMS, phishing platform, service management/SIEM, PMO data). Availability of policy owners and project managers for reviews and attestations. SL will provide required clearances, facilities, and collaboration tools. Core experience ...

translate technical complexity into clear business outcomes Confidence presenting to both technical and non-technical stakeholders A solid understanding of modern security architectures, including SIEM, SOAR, and managed security services Exposure to advanced security domains such as DDoS protection, WAF, IAM, EDR, MDM, and vulnerability management Continuous learning ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

. Set up and support production instances of the tools listed in 1., to include establishing event log feeds from these tools to a SIEM system and integration with an Identity Provider (IdP). Be responsible for managing a fleet of devices, including inventory management, provisioning devices, handing over provisioned ...

Asset & Application Visibility Programme — bringing continuous, automated discovery to the full estate • Zero Trust enforcement — identity-aware access across remote and internal services • SIEM engineering, detection tuning, and vulnerability management — focused on outcomes and automation • Data Loss Prevention and Identity Lifecycle controls (JML) in Entra ID and key SaaS platforms … security engineering or architecture, with clear technical depth and autonomy • Proven hands-on delivery across cloud security (GCP/AWS), identity (Entra ID), SIEM/detection engineering, DLP, or zero trust — ideally three or more • Strong foundations in networking, operating systems, identity protocols, and cloud architecture • A track record ...

Ensure tooling is optimised and actively protecting client environments. Collaborate with teams to assess risks and design effective security controls. Support senior engineers across SIEM, threat intelligence and malware platforms. Apply updates, manage changes and follow robust operational processes. Stay ahead of emerging threats and drive continuous improvement. What … focus on delivery. CompTIA Network+ (or equivalent knowledge). It would be great if you had: Experience with Azure or AWS security features. Broader SIEM experience (especially Splunk). Sopra Sterias Aerospace, Defence & Security business delivers digital solutions that support the UKs national security ambitions. Youll be working ...

services Design and implement enterprise grade logging and monitoring solutions using OCI Logging, OCI Monitoring, Events and Alarms. Integrate OCI monitoring with third party SIEM, ITSM and APM tools (e.g. Splunk, BMC etc.) Demonstrable experience with Oracle Cloud Infrastructure (OCI), including proficiency in the design and build of services such ...

Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform ...

and targeted assessments. Report regularly on status, SLA performance, and trends. Security operations and incident response: Manage our MSSP partner for 24/7 SIEM and SOC monitoring; ensure telemetry, detections, and playbooks match our threat model. Serve as incident commander for real events, and run regular tabletops and post … experience strongly preferred. Proven, hands‐on ownership of vulnerability management programs at scale. Experience managing an MSSP/MDR relationship for SIEM and 24/7 SOC. Strong application and cloud security fundamentals, with hands‐on experience in AWS, GCP, or Azure, and the ability to partner credibly with engineering. ...

role in a growing SecOps function protecting a modern Microsoft and cloud environment. This is a highly technical role focused on incident response, SIEM optimisation, vulnerability management, and security engineering, helping drive a Zero Trust journey and supporting ISO 27001 & CIS controls. What you'll be doing Lead and support … incident response, threat monitoring and root-cause analysis Tune and optimise SIEM & CrowdStrike EDR for maximum effectiveness Drive vulnerability management, remediation and risk reduction Secure cloud and infrastructure across Intune, Entra ID, Palo Alto, Cisco ISE, Mimecast and more Implement key security controls including MFA, SSO, PAM, WAF, DDoS ...

support when required. This is a hands-on technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development … automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting activities Act as an escalation point for Tier 1 analysts, providing ...

responsibilities: This is an interesting opportunity where you will work with the cyber resilience team and assist with the Security Operations function, including EDR, SIEM, gathering security control framework evidence and general day-to-day assistance with security tasks. You will help deliver a strategy which will enhance the organisations … campaigns. Stay informed about emerging cyber threats and vulnerabilities. You will need: Good knowledge and understanding of SOC processes and procedures. Basic experience using SIEM systems such as MS Sentinel, LogRhythm, AlienVault, Splunk Good understanding of incident response stages and handling. Basic knowledge and experience using leading endpoint detection and ...

with cloud security across AWS, Azure or Google Cloud Understanding of network security, encryption, authentication and access control Experience with security tooling such as SIEM, IDS, firewalls and vulnerability assessment tools Knowledge of threat modelling and risk assessment TO BE CONSIDERED: Please either apply through this advert or emailing … client in conjunction with this vacancy only. KEY SKILLS Security Architect, Cyber Security, ISO 27001, NIST, Cloud Security, AWS, Azure, Risk Assessment, Threat Modelling, SIEM, Defence ...

enjoys working across a broad technology estate and keeping up to date with emerging threats and security technologies. Key Responsibilities: * Monitor and develop SIEM and threat detection platforms * Investigate and respond to security incidents and alerts * Support vulnerability scanning, remediation, and reporting activities * Assist with development of security policies, procedures … cyber threats and recommend improvements where appropriate Key Skills & Experience: * 2-4 years' experience within a cybersecurity or infrastructure security role * Experience working with SIEM tools and vulnerability management platforms * Strong understanding of EDR, XDR, MDR, IDS/IPS technologies * Good knowledge of Microsoft security technologies and infrastructure environments * Understanding ...

using automation, scripting and best practice. Ensure detections are clearly documented and operationally usable. What youll bring: Experience in SOC engineering, detection engineering or SIEM engineering. Strong hands-on experience with Microsoft Sentinel and Splunk. Solid knowledge of KQL and SPL. Experience building, testing and maintaining detection rules. Good understanding … SIEM lifecycle management and security telemetry. Knowledge of cloud environments and IT infrastructure. Familiarity with frameworks such as MITRE ATT&CK. Ability to analyse threats and translate them into detection capability. Nice to have: Experience with SOAR (Logic Apps/Splunk SOAR). Detection-as-code or CI/ ...

real time, and driving continuous improvement across a modern IT environment. Key Responsibilities Own and manage the organisation's cyber security tooling including firewalls, SIEM, IPS, endpoint protection, vulnerability management, and threat monitoring. Support and maintain core network infrastructure across LAN/WAN, Layer 2/3 networking … operational stability, compliance, documentation, and high service standards. Experience Required Strong experience across cyber security operations and network infrastructure. Hands-on knowledge of firewalls, SIEM tools, endpoint security, and networking technologies. Experience responding to security incidents and managing vulnerabilities. Strong troubleshooting and problem-solving capabilities. Relevant certifications such as Security+ ...

inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. ArcSight SIEM Engineer (DV Security Clearance) Position Description At CGI, we're redefining how technology protects the nation. As an ArcSight SIEM Engineer, you'll play … collection and analysis systems are secure, efficient, and future-ready. Working within a collaborative client-site environment, you will develop, configure, and optimise ArcSight SIEM toolsets, ensuring the seamless integration of new capabilities to support national security operations. You will also automate release and deployment processes to improve quality and ...

clear and effective stakeholder communication, and mentoring other members of the SOC team. What you will do Support SOC Manager to deliver the following SIEM, IR tools platform management including all design, implementation and administration activities Use cases preparation and implementation, connector deployment, maintenance & health checks Responsible for operational activities … Unix shell) Experience working in all phases of the SDLC Deep understanding and experience using cyber security operations, security monitoring, endpoint (EDR), Network, and SIEM Tools Prior SOC experience a plus Extensive knowledge of network and server security protocols, technologies, and products Industry recognized certifications (CISSP, GCIH, GCFA, OSCP ...

home. You must be SC Cleared OR eligible. What you will be doing: Lead security solution delivery across major client engagements. Design and implement SIEM solutions (Splunk) that make a real impact. Build trusted relationships with stakeholders and influence at all levels. Identify cyber risks and develop smart, effective mitigation … Proven experience leading Security Engineering teams and large engagements. Strong client-facing skills and the ability to build lasting relationships. Hands-on experience with SIEM tools (Splunk). A sharp analytical mindset with excellent problem-solving skills. Experience responding to or simulating cyber incidents It would be great ...