51 to 75 of 90 Remote SIEM Jobs

while remaining at the forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment, and remediation. … Security or Cybersecurity role. Strong understanding of cyber defence practices and modern attack techniques. Hands-on experience with security technologies such as EDR, XDR, SIEM, SOAR, IDS, and IPS. Experience in vulnerability analysis, security alert analysis, incident response, and email threat analysis. Ability to read and understand scripting and query ...

Security Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection … assessments, and customer assurance activities About you: Requirements: Experience managing a SOC or security operations function within a complex enterprise environment. Strong understanding of SIEM, SOAR, EDR, IDS/IPS, firewalls, and cloud-native security tooling. Knowledge of cyber security frameworks such as NIST CSF, MITRE ...

line with NCSC NIS Regulations. Key Responsibilities Support implementation, administration, and maintenance of OT security infrastructure Monitor and manage security tools including firewalls, SIEM, PAM, IDS, endpoint security, and network access controls Handle cyber security incidents and support incident response and recovery activities Perform root cause analysis and work with … secure network design (WAN/LAN, SCADA) Stay updated on emerging cyber threats and trends in OT environments Technical Environment Fortinet Firewalls & Security Solutions SIEM, PAM, IDS/IPS, Endpoint Security Cisco ISE (AAA) SCADA Systems Virtualisation (VMware) Windows & Linux Security Networking (Routing, VPN, IPSec) Required Experience 5+ years ...

while remaining at the forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment, and remediation. … Security or Cybersecurity role. Strong understanding of cyber defence practices and modern attack techniques. Hands-on experience with security technologies such as EDR, XDR, SIEM, SOAR, IDS, and IPS. Experience in vulnerability analysis, security alert analysis, incident response, and email threat analysis. Ability to read and understand scripting and query ...

role for you. As our Cyber Security Engineer, youll play a key part in supporting and evolving our security tooling, especially our SIEM platform. Youll work directly with both internal teams and customers to ensure strong security outcomes across the board. You will: Take ownership of SOC tooling, with … primary focus on our SIEM platform. Implement SIEM solutions into customer environments and tune data feeds effectively. Work closely with the SOC to maintain and continuously improve SIEM rulesets and use cases. Provide expert cyber guidance and technical leadership to customers. Support major security incidents and play a hands ...

will play a central role in our cyber defence operations, working daily with platforms including Microsoft Defender for O365, Entra ID, Intune, Rapid7 SIEM, and Sophos Antivirus. The role involves monitoring security events, investigating suspicious activity, responding to incidents, and continuously strengthening our security posture. You’ll join a supportive … your career within cyber security. Key Responsibilities Security Monitoring & Incident Response Monitor alerts and telemetry across endpoints, identities, email, and cloud services using Rapid7 SIEM, Microsoft Defender, and Sophos Antivirus. Investigate cyber security incidents including malware infections, phishing attacks, identity compromise, and unauthorised access attempts. Conduct incident triage, root cause ...

understanding of Information Security solutions e.g. email/web gateways, Privileged Account Management (PAM), Identity Governance and Administration (IGA), Security Information and Event Management (SIEM), Endpoint protection etc. Knowledge/experience working with firewalls is highly advantageous Experience of Cloud security solutions and standards is highly advantageous Competence, knowledge and ...

NIST, ISO/IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Web Application Firewalls (WAF) Encryption and key management solutions Collaborate with engineering, DevOps, and IT teams ...

teams. Support NAC policy design aligned to Zero Trust principles. Analyse impacts to wired, wireless, and VPN access. Document NAC integrations (AD, MDM, PKI, SIEM). Support NAC rollouts, upgrades, and compliance initiatives. Assist with operational readiness and change management. Translate security requirements into clear business outcomes. Desirable Experience with ...

suite. The Role As our Senior Security Analyst, you will own the evolution of our security posture. Youll be the driving force behind our SIEM/SOAR capabilities and the guardian of our SOC 2 Type II and ISO 27001 standards. Key Responsibilities: Security Operations: Lead monitoring, detection, and incident … response for internal and client-facing systems. SIEM/SOAR Ownership: Enhance and automate our Azure Sentinel capabilities. Incident Response: Investigate real-world threats (malware, phishing, cloud misconfigurations) and ensure rapid remediation. Vulnerability Management: Conduct regular assessments, penetration testing, and risk analysis. Compliance & GRC: Maintain SOC 2 Type II accreditation ...

clear commercial reporting to stakeholders Main Skills Needed: Proven experience in strategic account management and Cybersecurity technologies, services and solutions (Inclusive of SOC/SIEM, EDR, MDR, Security Assessments, GRC etc.) Consultative in approach, able to identify growth opportunities within existing accounts to develop relationships and position new solutions that ...

system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and … Leveraging Microsoft support for technical assistance and information regarding roadmap features. What you need to succeed in the role Experience of supporting and developing SIEM platforms in the context of a Security Operations Centre. Experience of log source configuration and parsing, as part of a SIEM implementation, including experience ...

scope red team operations (external, internal, assumed breach) Emulate real-world threat actors across technical and human vectors Bypass modern detection controls (EDR/SIEM) and operate with stealth Contribute to tooling, tradecraft, and overall capability build-out Produce clear, meaningful reporting for a range of stakeholders What they ...

scope to evolve the position based on their strengths and expertise. The successful candidate will play a key role in strengthening security posture through SIEM ownership, incident response, and system hardening, directly contributing to Europe's technological sovereignty. The Role The IT Security Specialist will: Design, build, and operate … centralised SIEM platform to aggregate and analyse security logs across infrastructure, networks, and applications Own security log analysis, vulnerability management, and incident investigation, including defining baselines and developing alerting rules for critical events Lead incident response efforts, using log correlation and analysis to investigate and resolve security issues quickly and ...

session monitoring and recording Support service account discovery and lifecycle management Onboard servers, network devices, and systems into PAM platforms Integrate PAM solutions with SIEM tools for monitoring and alerting Troubleshoot technical issues related to connectors, sessions, and access controls Produce clear technical documentation and operational runbooks Ensure alignment with … controls and security best practices Experience across Windows, Linux/Unix, and network environments Knowledge of Active Directory and privileged account management Familiarity with SIEM integration and security event monitoring Understanding of security frameworks such as ISO 27001 and NIST Strong troubleshooting and problem-solving skills Ability to obtain security ...

support when required. This is a hands-on technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development … automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting activities Act as an escalation point for Tier 1 analysts, providing ...

cloud environments Support vulnerability validation and remediation tracking Assist in strengthening cloud security posture through continuous monitoring Security Operations Perform daily alert reviews across SIEM and security tooling Contribute to runbooks, playbooks, and operational documentation Support threat intelligence analysis and apply findings to detection and response activities Work closely with … CrowdStrike Falcon Zscaler Wiz Experience working in a Security Operations or SOC environment Proven experience in alert triage, incident investigation, and response Familiarity with SIEM platforms and security telemetry analysis Understanding of cloud security concepts (Azure, AWS, or GCP) Ability to assess alert context, prioritise effectively, and follow structured processes ...

and benefits. Why This Role is Exciting High autonomy : Lead projects from idea to deployment Innovation-driven : Develop cutting-edge detections beyond standard SIEM rules Collaborative : Work closely with internal teams and an outsourced SOC partner Mission-focused : Protect critical healthcare data that supports precision medicine Key Responsibilities Design and … Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer, Detection & Response Engineer, SIEM Engineer, Security Detection Engineer,T hreat Hunting Engineer, Security Automation Engineer, SOC Engineer, Incident Response Engineer, Cloud Security Engineer, Network Security Engineer, Cybersecurity Analyst (Threat ...

and benefits. Why This Role is Exciting High autonomy : Lead projects from idea to deployment Innovation-driven : Develop cutting-edge detections beyond standard SIEM rules Collaborative : Work closely with internal teams and an outsourced SOC partner Mission-focused : Protect critical healthcare data that supports precision medicine Key Responsibilities Design and … Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer, Detection & Response Engineer, SIEM Engineer, Security Detection Engineer,T hreat Hunting Engineer, Security Automation Engineer, SOC Engineer, Incident Response Engineer, Cloud Security Engineer, Network Security Engineer, Cybersecurity Analyst (Threat ...

closure. Configure security incident types, response playbooks, task automation, SLAs, notifications, and escalation rules. Integration & Automation Integrate ServiceNow SIR with security tools such as SIEM, SOAR, EDR, vulnerability scanners, and threat intelligence platforms. Enable automated ingestion of security alerts and events from multiple sources into ServiceNow. Develop workflow automations, Flow … within ServiceNow SecOps. Strong understanding of security incident response frameworks (eg NIST, ISO 27035). Experience integrating ServiceNow with security tools such as SIEM, SOAR, or EDR platforms. Solid ServiceNow development skills, including Flow Designer, business rules, UI policies, client scripts, and integrations. Experience with REST APIs and data ingestion ...

closure. Configure security incident types, response playbooks, task automation, SLAs, notifications, and escalation rules. Integration & Automation Integrate ServiceNow SIR with security tools such as SIEM, SOAR, EDR, vulnerability scanners, and threat intelligence platforms. Enable automated ingestion of security alerts and events from multiple sources into ServiceNow. Develop workflow automations, Flow … within ServiceNow SecOps. Strong understanding of security incident response frameworks (eg NIST, ISO 27035). Experience integrating ServiceNow with security tools such as SIEM, SOAR, or EDR platforms. Solid ServiceNow development skills, including Flow Designer, business rules, UI policies, client scripts, and integrations. Experience with REST APIs and data ingestion ...

enhancing detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation … evolve a repository of use cases, KPIs, and SOC performance metrics Requirements 6+ years of commercial experience in SOC content engineering, detection engineering, or SIEM administration Strong hands-on experience with SIEM platforms and query languages (e.g. SPL, KQL) Solid understanding of detection engineering principles, data modelling, and regex Proven ...

implement improvements aligned to security best practice and compliance requirements Secure and support cloud platforms including: Microsoft Azure Amazon Web Services Configure and manage SIEM and security monitoring solutions Provide technical guidance and cyber security advice directly to clients Work closely with internal engineering teams and mentor junior technical staff … experience in a Solutions Engineer, Infrastructure Engineer, Service Desk Engineer, or Cyber Security role Strong understanding of: Network security Firewalls Endpoint Detection & Response (EDR) SIEM technologies Hands-on experience with endpoint security solutions such as: Microsoft Defender Sophos Bitdefender Experience securing cloud-based environments within Azure and/ ...

ownership, and a drive to continuously improve the security posture of complex systems. Familiarity with some of the following: Cloudflare (DDoS protection, WAF), OSS SIEM tools (Splunk, Elastic, etc), Incident management platforms (e.g. Incident.io, PagerDuty) Familiarity with at least one of the following CI/CD systems (Github Actions, Concourse … governance frameworks (e.g., CIS Benchmarks, NIST, SOC2, ISO 27001, PCI DSS) and how to operationalize them. Hands-on experience with building and maintaining a SIEM comprised of open-source and hosted components Experience securing consumer-facing web and iOS/Android applications Experience designing policies and administering Vault & other Hashicorp ...

provide out-of-hours escalation support when required. This is a highly technical, hands-on role where youll lead threat hunting, develop and tune SIEM detections, and help mature SOC processes and response playbooks. Youll also play a key role in mentoring analysts and raising the overall technical capability … and this role will continue to evolve as AI-driven detection, automation, and response capabilities are introduced. You will: Develop, tune, and maintain SIEM detection rules across customer environments Conduct proactive threat hunting and threat intelligence research Act as a senior escalation point for Cyber Security Analysts Coach and mentor ...