1 to 25 of 45 Contract SIEM Jobs in England

Proven experience leading incident response and remediation activity Expertise in Microsoft 365/Azure security and hybrid cloud environments Experience operating security tooling (EDR, SIEM, firewalls, identity platforms) at scale Solid understanding of frameworks such as ISO 27001, NCSC guidance, NIST CSF, MITRE ATT&CK Experience managing suppliers, SOC providers ...

standards, reference architectures, and policy controls based on industry frameworks (e.g., NIST, ISO/IEC 27001, CIS) Evaluate and integrate security technologies, including IAM, SIEM, EDR, DLP, WAF, and encryption solutions Collaborate with engineering, DevOps, and IT teams to embed security by design and ensure secure software development lifecycles (SSDLC ...

audits, risk assessments and maturity reviews. Engineer and embed technical controls supporting NIST CSF and ISO/IEC 27001 objectives. Support security tooling integration (SIEM log sources, EDR/XDR dependencies, vulnerability tooling). Enable and validate security telemetry coverage audit policy configuration, log forwarding/collection, event quality (normalisation ...

Operations Centre (SOC/CSOC) or cyber security operations function Strong background in incident response, threat detection, and cyber resilience Hands-on experience with SIEM, IDS/IPS, endpoint security, and monitoring tools Solid understanding of threat intelligence, vulnerability management, and remediation practices Knowledge of cyber frameworks and regulations including ...

Cyber Security Manager/Lead/Security Consultant role. Strong understanding of security operations, threat detection, and incident response practices. Experience working with SIEM, EDR, and monitoring technologies in enterprise environments. Demonstrable knowledge of security frameworks, controls, and governance models. Experience managing third-party vendors or managed security services. Relevant ...

tracking remediation, validating fixes, and assisting with reporting. * Develop and maintain playbooks, runbooks, and procedural documentation. Required Skills: * Microsoft Defender XDR * Microsoft Sentinel (SIEM/SOAR) * Privacy Management Solutions (e.g. Purview, OneTrust) * Understanding of key cybersecurity and privacy concepts, such as Threat detection and analysis, Incident response lifecycle, Vulnerability and ...

following audits or gap assessments Knowledge of NIST and/or ISO27001 Experience with: Conditional Access, Identity & Access Management (IAM), Privileged Access, Management (PAM), SIEM, monitoring, Endpoint security Key Responsibilities of the Cloud Security Engineer: Implement and remediate recommendations identified through recent security audits and assessments Support the organisation ...

and influencing skills at senior levels. Experience in high value works procurement, including facilities management, construction, design, and cost management Essential Skills : Experience with SIEM tools (ArcSight) including engineering/configuration Creation of use cases, analytics, and playbooks Cloud technology knowledge Incident management from detection to resolution Desirable: Technical/ ...

and responding to cloud security threats, managing incidents end to end, and advising stakeholders on how to maintain a strong security posture Experience with SIEM tooling, ideally Microsoft Sentinel, along with a strong understanding of Zero Trust principles, modern authentication and secure baseline configuration, will be highly valuable ...

crisis management structures and frameworks. Technical Understanding (Desirable): Solid grounding in cyber security concepts and threats. Experience with Endpoint Detection & Response (e.g., CrowdStrike), SIEM platforms (e.g., Microsoft Sentinel), and ServiceNow (Security Operations). Ability to engage with technical teams and interpret technical data. To apply for this Senior Cyber Incident ...

contributing to continuous improvement of security operations What they're looking for: Experience in a SOC or Security Operations environment Hands-on exposure to SIEM tools (e.g. Sentinel, Splunk, QRadar) Understanding of incident response, alert triage, and escalation processes Familiarity with EDR tools and general security tooling Ability to work ...

analysts in hunting methodologies and investigative techniques Review and improve alert fidelity, detection coverage, and response effectiveness Provide technical oversight for tooling such as SIEM, EDR/XDR, NDR, SOAR, and cloud-native security platforms Detection Engineering & Improvement Collaborate with detection engineers to convert hunt findings into new or improved … Operations, Threat Hunting, or Incident Response Proven experience leading investigations involving advanced persistent threats, insider threats, or targeted attacks Strong hands-on expertise with: SIEM platforms (e.g. Sentinel, Splunk, Elastic) EDR/XDR solutions (e.g. Defender, CrowdStrike, SentinelOne) Network and cloud security telemetry Strong understanding of: MITRE ATT&CK Windows ...

patching, upgrades and platform improvements Monitor system health and carry out maintenance Investigate incidents and perform root cause analysis Support integrations with Active Directory, SIEM, Syslog and monitoring tools Automate processes to improve efficiency Required Experience Strong Imperva DAM or similar experience Strong Linux administration skills Scripting experience, Bash, Perl ...

Security posture features. Skilled in Fleet/Agent deployment, data stream design, and performance tuning at scale. Strong client management and relationship building experience SIEM experience with Splunk/Elastic Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective solutions Proven ...

and profiles Assist with transitioning and duplicating existing NAC/ISE configurations Connect NAC solutions with core enterprise platforms (such as Active Directory, MDM, SIEM, and firewalls) Diagnose and resolve technical issues to keep delivery on track What You'll Bring Demonstrated expertise in Cisco ISE and NAC implementations Strong ...

profession standards with HR/L&D.Timely access to SL stakeholders, systems, repositories, and tooling (e.g., policy library, LMS, phishing platform, service management/SIEM, PMO data). Availability of policy owners and project managers for reviews and attestations. SL will provide required clearances, facilities, and collaboration tools. Core experience ...

security policy deployment FortiAnalyzer Centralised logging and reporting strategy SOC integration and event correlation Incident and event handling workflows Compliance reporting and audit outputs SIEM interoperability and operational analytics Secure SD-WAN SLA rule creation and traffic steering Link health checks and performance optimisation ADVPN architecture and dynamic overlay networking ...

NIST, ISO/IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Web Application Firewalls (WAF) Encryption and key management solutions Collaborate with engineering, DevOps, and IT teams ...

planned/unplanned failover, failback, RPO/RTO, subset failover Security: RBAC, AD/Entra ID integration, encryption at rest, network security policies, CyberArk, SIEM (Sentinel/Defender) Ops tooling: monitoring and alerting in Prism/x play, Cohesity backups, alert forwarding into tools like OpsRamp Migration: Nutanix Move from ...

recovery governance, and secure operational restoration. IT/OT Integration Assurance: Collaborate with cross-functional architecture and engineering teams to govern system onboarding (e.g., SIEM/SOC infrastructure monitoring) across both corporate enterprise and industrial Operational Technology (OT/SCADA) environments. Requirements Governance: Create procurement-grade business analysis artifacts, including ...

leading banking organisation based in the City of London is seeking an experienced Cyber Project Manager to lead strategic cybersecurity transformation initiatives focused on SIEM modernisation, click apply for full job details ...

Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform ...

Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform ...

NIST Conducting/supporting security audits & remediation Platform security (Entra ID, M365 E5, Azure IaaS/PaaS, Windows/Linux/Unix) Security tools: SIEM, EDR/XDR, vulnerability management Policy development, access control (RBAC/ABAC), logging standards Supporting assurance/government reviews (Secure by Design, GovAssure) Incident management … vulnerability assessment, SIEM/SOC systems ITSM workflows & change control Secure software supply chain & CI/CD security Threat intelligence, CVEs, CVSS interpretation Strong stakeholder communication & reporting skills Desirable: Degree in Cybersecurity, IT, or STEM Security Assurance certifications (CCP, SIRA) Professional security certifications (CISSP, SSCP, CISM, CRISC, CCSP, SABSA, GIAC ...

controls across programme environments. Ensuring systems remain compliant with defined security baselines and policies. Developing and maintaining system security baseline documentation. Supporting integration with SIEM and protective monitoring platforms. Assessing vulnerabilities and implementing risk mitigation strategies. Supporting the implementation of secure designs and technical architectures. Collaborating with engineers and architects … Endpoint protection technologies including malware protection, application control and DLP. Microsoft and Linux operating systems in secure environments. Virtualisation platforms and network infrastructure components. SIEM platforms and protective monitoring solutions. Authentication and identity technologies including SAML, LDAP and PKI. Network security technologies including firewalls, proxies and boundary protection. Experience supporting ...