1 to 25 of 29 Contract SIEM Jobs in the UK

also contribute to strategic security projects and ensure secure, scalable and resilient solutions across the business. Key Responsibilities: Deploy and manage enterprise security tools (SIEM, XDR, DLP, Email Security, Endpoint Protection). Build automation using Python, PowerShell, Bash. Implement IaC using Terraform and Ansible. Maintain secure baselines for Windows, Linux ...

workflows Configure session recording, monitoring, and auditing Onboard servers, network devices, and platforms into PAM Manage service account discovery and lifecycle Integrate PAM with SIEM tools for logging and alerting Support Active Directory privileged account controls Troubleshoot PAM connectors, sessions, and access issues Produce clear technical documentation and runbooks Essential ...

architecture for ServiceNow SecOps modules including Security Incident Response, Vulnerability Response, Threat Intelligence, and Configuration Compliance. Lead integration of ServiceNow with key cybersecurity tools: SIEM, SOAR, EDR, CMDB, threat intelligence platforms, and OT/ICS systems. Collaborate across cybersecurity, IT, engineering, and energy operations to define secure workflows and automation ...

cyber security incidents in a mid to large enterprise or MSSP environment. Strong understanding of attack methodologies, malware behaviour, and adversary TTPs. Experience with SIEM, EDR, SOAR, threat intel platforms, and forensic tools. Deep knowledge of IR frameworks: Ability to make clear decisions under pressure and command multi disciplinary response ...

assessments, threat modelling, and define remediation strategies * Deliver secure-by-design Azure solutions (identity, network, data protection) * Oversee implementation of core security controls (IAM, SIEM, encryption, etc.) * Support governance, assurance, and compliance (ISO 27001, NIST, GDPR) Key Skills & Experience: * Proven experience as a Security Architect in complex transformation environments * Strong ...

and responding to cloud security threats, managing incidents end to end, and advising stakeholders on how to maintain a strong security posture Experience with SIEM tooling, ideally Microsoft Sentinel, along with a strong understanding of Zero Trust principles, modern authentication and secure baseline configuration, will be highly valuable ...

and digital threats Experience handling cyber incidents end-to-end in line with the NIST framework Hands-on experience with Splunk, CrowdStrike, or equivalent SIEM/endpoint security tools Confidence coordinating and engaging multiple stakeholders during live incident scenarios Strong documentation, reporting, and communication skills Able to work independently, manage ...

CloudFormation, AWS Step Functions, AWS SSM, AWS IAM, AWS Security, AWS Backup, AWS ACM, KMS Experience with monitoring tools (Datadog, PagerDuty, CloudWatch, CloudTrail, SIEM integration) Scripting experience (Terraform, Ansible, Python, AWS CLI) Strong knowledge of Service Management, Release and Change management processes and tools Tooling experience (Jenkins CI/ ...

and infrastructure standpoint. Strong networking background, including understanding of network security principles, firewalls, VPNs, routing, and segmentation. Experience with a range of security tools (SIEM, monitoring, detection, and response platforms). Proven experience delivering and supporting certificate automation. Experience operating in enterprise or regulated environments. Comfortable working across project delivery ...

and infrastructure standpoint. Strong networking background, including understanding of network security principles, firewalls, VPNs, routing, and segmentation. Experience with a range of security tools (SIEM, monitoring, detection, and response platforms). Proven experience delivering and supporting certificate automation. Experience operating in enterprise or regulated environments. Comfortable working across project delivery ...

services, healthcare, government, critical infrastructure). * Prior participation in or leadership of real-world cyber incident response activities. * Familiarity with identity governance, EDR platforms, SIEM tooling, and cloud security architecture. Why This Engagement Matters The Cyber Incident Response Preparation Consultant plays a crucial role in elevating the organisation's cyber ...

concepts. Experience with Terraform and scripting (Python, Bash, or PowerShell). Nice to have: Knowledge of cloud security (Azure or GCP) Experience integrating SIEM platforms Understanding of Zero Trust architecture and SD-WAN optimization If you're interested in this role, click 'apply now' to forward an up-to-date ...

Security posture features. Skilled in Fleet/Agent deployment, data stream design, and performance tuning at scale. Strong client management and relationship building experience SIEM experience with Splunk/Elastic Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective solutions Proven ...

influencing SOC processes and automation Confident communicating risk and recommendations clearly to stakeholders Tech stack experience CrowdStrike (EDR) Microsoft Defender Splunk or similar SIEM tools Qualys (vulnerability management) Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built ...

processes Onboard systems including Windows, Linux/Unix, and network devices into PAM platforms Support Active Directory privileged account management Integrate PAM solutions with SIEM tools for logging and alerting Troubleshoot technical issues related to connectors, sessions, and integrations Produce clear technical documentation and runbooks Required Skills & Experience Proven hands … and auditing Knowledge of Active Directory and enterprise infrastructure environments Experience onboarding systems (Windows/Linux/network devices) into PAM platforms Familiarity with SIEM integration and security event monitoring Understanding of security frameworks such as ISO 27001 or NIST Strong troubleshooting and problem-solving skills Ability to obtain ...

service accounts. Onboard Windows, Linux/Unix, and network devices into PAM platforms. Manage privileged account controls within Active Directory. Integrate PAM solutions with SIEM tools for event ingestion, correlation, and alerting. Troubleshoot connector, policy, and session issues. Produce high-quality technical documentation and runbooks. Essential Experience Proven hands … discovery and automated governance. Experience onboarding multi-platform systems (Windows/Linux/network devices). Understanding of AD privileged identity management. Experience with SIEM integrations for PAM audit logging. Working knowledge of ISO 27001 and NIST CSF. Strong troubleshooting and analytical skills. Excellent documentation capability. Eligible for SC clearance. ...

Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform ...

session monitoring and recording Support service account discovery and lifecycle management Onboard servers, network devices, and systems into PAM platforms Integrate PAM solutions with SIEM tools for monitoring and alerting Troubleshoot technical issues related to connectors, sessions, and access controls Produce clear technical documentation and operational runbooks Ensure alignment with … controls and security best practices Experience across Windows, Linux/Unix, and network environments Knowledge of Active Directory and privileged account management Familiarity with SIEM integration and security event monitoring Understanding of security frameworks such as ISO 27001 and NIST Strong troubleshooting and problem-solving skills Ability to obtain security ...

controls across programme environments. Ensuring systems remain compliant with defined security baselines and policies. Developing and maintaining system security baseline documentation. Supporting integration with SIEM and protective monitoring platforms. Assessing vulnerabilities and implementing risk mitigation strategies. Supporting the implementation of secure designs and technical architectures. Collaborating with engineers and architects … Endpoint protection technologies including malware protection, application control and DLP. Microsoft and Linux operating systems in secure environments. Virtualisation platforms and network infrastructure components. SIEM platforms and protective monitoring solutions. Authentication and identity technologies including SAML, LDAP and PKI. Network security technologies including firewalls, proxies and boundary protection. Experience supporting ...

and assess alerts escalated by the outsourced SOC; validate their accuracy and determine potential impact. Initial Investigation: Perform first-line investigation using available tools (SIEM, Device Logs, firewall logs and SIEM alerts). User Interaction: Engage with affected end users or asset owners to collect additional information, verify events … including malware, phishing, lateral movement and privilege escalation. Working knowledge of network fundamentals, windows/Linux system logs and authentication systems. Working knowledge of SIEM platforms (e.g. Microsoft sentinel, Splunk, Elastic, QRadar). Desirable: Awareness of security frameworks and methodologies (NIST CSF, MITRE ATT&CK, ISO27001). Qualifications: Desirable: CompTIA ...

and lifecycle management Onboarding Windows Server, Linux/Unix and network devices onto PAM platforms Managing privileged accounts in Active Directory Integrating PAM with SIEM for logging, alerting and monitoring Producing clear documentation, runbooks and technical configuration records Troubleshooting connector and session-related issues What the client is looking … management) Solid knowledge of credential vaulting , password rotation and session monitoring/recording Experience integrating PAM into complex infrastructures (servers, network devices, AD, SIEM) Familiarity with security frameworks such as ISO 27001 and NIST CSF Strong troubleshooting skills and a methodical, security-focused mindset Ability to obtain SC-level national ...

standards. You will play a key role in clearing an immediate backlog of assurance deliverables while providing technical oversight to junior engineers and supporting SIEM integration activities. This is a hybrid East London role with no trackside/site access required. Key Responsibilities Cybersecurity Governance & Assurance Produce and maintain: Cyber … Provide design assurance for: Secure communications Firewalls (e.g., Cisco, Juniper) Switching and routed network environments Assess effectiveness of implemented security controls in networked systems SIEM Integration Support Produce documentation for SIEM onboarding: Data source identification Logging requirements Use-case and control alignment Support assurance activities for SIEM integration (e.g., Microsoft ...

cleared SOC Engineer to support and enhance a Security Operations Centre for a leading technology provider. This role focuses on detection engineering, SIEM optimisation, and automation, alongside supporting incident response across complex environments. Key Responsibilities Develop and tune SIEM detection rules and use cases (e.g., Splunk, QRadar) Automate SOC workflows … and support continuous improvement of tooling and processes Skills & Experience Experience in SOC Engineering or advanced SOC Analyst roles Strong hands-on experience with SIEM platforms and detection tuning Scripting/automation skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications ...

Engineer, you will play a key role in monitoring, detecting, and responding to security incidents across the organisation. You will work across SIEM operations, endpoint protection, vulnerability management, and log ingestion, ensuring threats are identified and handled effectively. You will also contribute to improving detection capability, supporting security tooling, and … maintaining strong documentation and governance processes. SOC ENGINEER ESSENTIAL SKILLS: Strong experience with SIEM platforms, ideally Elastic Experience with vulnerability management tools, ideally Tanium Endpoint security experience, such as Trend Micro or Trellix Knowledge of email security gateways, ideally Clearswift Strong understanding of Active Directory administration Experience across Windows and ...

note : This role is a bid; it would start in April if won Key Responsibilities • Monitor, analyse, and respond to security events using Elastic SIEM (Elastic, Kibana, Logstash)• Investigate security incidents and tune SIEM detection rules and dashboards• Support vulnerability management activities using Tanium• Manage endpoint security platforms including Trend … security• Manage incidents, service requests, and changes using Remedy and Jira Key Skills & Experience • Experience working within a Security Operations Centre environment• Hands-on SIEM experience (Elastic preferred)• Vulnerability management experience (Tanium desirable)• Endpoint security platform management• Strong Active Directory administration• Knowledge of Windows and Linux security environments Desirable ...