1 to 25 of 42 Contract SIEM Jobs in the UK

Active eDV REQUIRED Key Responsibilities Lead the design, configuration, and delivery of SIEM, SOAR, and XDR platforms (e.g., Microsoft Sentinel, IBM QRadar, CrowdStrike Falcon). Architect and deploy cloud security solutions across Azure and AWS environments. Manage and optimise vulnerability management tools (e.g., Tenable.SC, Rapid7, Qualys). Support the development and operation of Cyber Security Operations Centres (CSOCs) . Conduct More ❯

Contract SIEM Engineer Exciting contract opportunity to join a high-performing cybersecurity team Hybrid working model, three days onsite and two remote Contribute to cutting-edge SIEM and EDR deployments for a large-scale organisation Up to £410 per day (Inside IR35) Active SC clearance required ABOUT THE CLIENT: Our client is a well-established technology-driven organisation with a … advancing its cybersecurity capabilities. You will join a dedicated security team working to enhance threat detection and response across complex environments. This is a crucial role for an experienced SIEM Engineer to make a measurable impact by improving resilience and operational security. THE BENEFITS: Up to £410 per day (Inside IR35) Hybrid working arrangement Collaborative and innovative security culture Opportunity … to work with leading SIEM and EDR technologies THE SIEM ENGINEER ROLE: As a SIEM Engineer, you will design, deploy, and maintain SIEM and EDR solutions that strengthen the organisation's security posture. You will work closely with IT and security teams to manage log ingestion, implement integrations, and monitor system activity for potential threats. SIEM ENGINEER ESSENTIAL SKILLS: Proven More ❯

Conduct regular security audits and assessments to identify and remediate risks. Apply industry frameworks such as NIST Cybersecurity Framework, ISO 27001, CIS Controls . Oversee and enhance security technologies: SIEM, vulnerability management, cloud security (OCI/Azure/AWS), PKI, cryptography, web/email security, logging and monitoring . Monitor network traffic for anomalies and potential breaches. Collaborate with IT More ❯

requiring strong communication skills and the ability to work across engineering, operations, and cyber security functions. What You'll Need (Essential) Strong working knowledge of core SOC tooling e.g. SIEM/Splunk, IDPS, Email/Web security, Firewalls Hands-on experience with Cisco ASR, Palo Alto or Fortinet firewalls Excellent understanding of network technologies (LAN/WAN, routing, switching) Experience More ❯

engineering lifecycle from design to deployment Desirable Skills Experience with cloud platforms (AWS, Azure) and Infrastructure as Code (CloudFormation, Terraform) Integration of enterprise services such as Active Directory, PKI, SIEM, and monitoring tools Hands-on with DevSecOps tools and CI/CD pipelines Relevant industry certifications (VMware VCP, AWS Solutions Architect, Microsoft, Kubernetes, etc.) Experience presenting at technical boards or More ❯

Microsoft Purview. • Proven expertise in Microsoft Sentinel and Office 365 E5 security products. • Strong understanding of Azure services, including Azure AD, Defender for Cloud, and Logic Apps. • Experience with SIEM/SOAR platforms, KQL, and automation workflows. • Familiarity with compliance frameworks: ISO 27001, NIST, PCI-DSS, GDPR. • Excellent communication and stakeholder engagement skills. • Certifications such as SC-100, AZ More ❯

Years Must Have/Mandatory Skills Palo Alto Networks – Firewalls (MUST) Network Security Architecture IAM, MFA, AAA, RBAC, Privilege Access Cloud Security (OCI/Azure/AWS) SIEM/Vulnerability Management/PKI/Cryptography LAN/WAN/DMZ/Routing/Switching/Subnetting Key Responsibilities Design/Architect network security infra solutions like Firewalls, IDPS, Proxy, Load More ❯

prem infrastructure on virtualized platform , networking, and storage. * Ability to produce HLDs and LLDs with clarity and precision. * Excellent communication and stakeholder engagement skills. * Involved with integrating SentinelOne with SIEM/SOAR platforms (e.g., Splunk) and deployment to Windows and RHEL endpoints. Preferred Qualifications: * SentinelOne certifications (e.g., SentinelOne Certified Architect or equivalent). * Scripting knowledge (e.g., PowerShell, Python) for automation More ❯

would be the main focus of the role. Strong expertise with Microsoft Defender and Sentinel is needed. Key Skills & Experience from the Security Analyst: Strong experience with Microsoft Sentinel (SIEM) and Microsoft Defender suite (Defender for Endpoint, Identity, Cloud, etc.). Proven track record in security monitoring, incident response, and alert troubleshooting . Working knowledge of SOAR platforms (preferably within More ❯

would be the main focus of the role. Strong expertise with Microsoft Defender and Sentinel is needed. Key Skills & Experience from the Security Analyst: Strong experience with Microsoft Sentinel (SIEM) and Microsoft Defender suite (Defender for Endpoint, Identity, Cloud, etc.). Proven track record in security monitoring, incident response, and alert troubleshooting . Working knowledge of SOAR platforms (preferably within More ❯

best practices Engagement with the R&D Cyber Defence Centre for Airbus Cyber Solutions/Products Essential Skills: Good knowledge of multiple SOC tooling including IDPS/Firewalls/SIEM/Splunk/Email & Web Protection etc. Experience of implementing and fault finding Firewall technologies including Cisco ASR/Palo Alto/Fortinet Excellent understanding of network technologies Experience of More ❯

best practices Engagement with the R&D Cyber Defence Centre for Airbus Cyber Solutions/Products Essential Skills: Good knowledge of multiple SOC tooling including IDPS/Firewalls/SIEM/Splunk/Email & Web Protection etc. Experience of implementing and fault finding Firewall technologies including Cisco ASR/Palo Alto/Fortinet Excellent understanding of network technologies Experience of More ❯

security concepts, tools and best practices Engagement with R&D for Cyber Solutions/Products Essential Candidate Experience Good knowledge of multiple SOC tooling including IDPS/Firewalls/SIEM/Splunk/Email & Web Protection etc. Experience of implementing and fault finding Firewall technologies including Cisco ASR/Palo Alto/Fortinet Excellent understanding of network technologies Experience of More ❯

and availability. Support change and release management. Oversee the transition of new security projects into SOC operations. Required Skills & Experience Active DV Strong experience with SOC tools (IDPS, Firewalls, SIEM/Splunk, Email & Web protection). Hands-on experience with Cisco ASR, Palo Alto, and Fortinet firewalls. Windows & RedHat server experience, including CIS hardening. If you're ready to take More ❯

Entra ID and enterprise identity security. * Experience implementing enterprise-level security and compliance solutions. Preferred: * Microsoft certifications: SC-400, SC-200, SC-300, or SC-100. * PowerShell automation and SIEM/security analytics experience. Soft Skills: * Excellent communication and stakeholder management. * Strong problem-solving and ability to deliver under pressure. If you are interested please email your CV to for More ❯

Proven track record in CyberArk upgrades and custom integrations. Excellent communication and stakeholder engagement skills. Desirable Experience in financial services or banking environments. Familiarity with Sentinel, Defender XDR, and SIEM integrations. CyberArk Defender & Sentry certifications. Please apply within for further details - Matt Holmes, Harvey Nash More ❯

and securing platforms such as Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS/PaaS, Windows/Linux/Unix. o Strong knowledge of security tooling such as SIEM, endpoint detection (EDR/XDR), and vulnerability management platforms. o Hands-on experience with policy development, access control models (RBAC, ABAC), and logging standards. o Experience supporting assurance activities or … security vetting to SC level. Desirable o Experience working in a regulated or government environment, particularly within research, energy, or national infrastructure. o Knowledge of Incident Management, Vulnerability Assessments, SIEM & SOC Systems. o Knowledge of OT/ICS/SCADA security principles and industrial control environments. o Experience designing or reviewing secure software supply chain and CI/CD security. More ❯

SIEM Engineer Contract - Inside IR35 Duration: March 2026 Reading (Hybrid) Are you a seasoned SIEM (Security Information and Event Monitoring) professional looking to take your career to new heights? If so, this could be the perfect opportunity for you! The company is seeking a talented SIEM Engineer to join their dynamic team and play a pivotal role in maintaining and … enhancing their security monitoring platform. As the SIEM Engineer, you will be responsible for ensuring the optimal performance, scalability, and integration of the company's SIEM platform. This includes onboarding log sources, developing analytical rules, creating automation for triage and remediation, and integrating with other IT and Operational Technology platforms. You will collaborate with the wider Threat Detection and Response … team to ensure the SIEM platform meets their day-to-day needs and provide support during incidents as necessary. Key Responsibilities of the SIEM Engineer Develop and maintain the security monitoring platform, ensuring it meets the company's evolving security requirements. Participate in infrastructure projects to plan and implement solutions for security monitoring. Design, implement, and maintain detection rulesets to More ❯

deploy Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) solutions to secure internet-bound and internal application traffic. Integrate Zscaler Services : Work with enterprise infrastructure like identity providers, SIEM platforms, firewalls, and endpoint security tools to implement a zero-trust framework. Manage Zscaler Configurations : Maintain configurations, including policy setup, app connectors, authentication profiles, and access control to ensure secure More ❯

to drive through change Excellent team working skills including the ability to work effectively within a geographically disparate team Advantageous: Experience with containerization technology and orchestration platforms e.g. Kubernetes SIEM Experience with Elastic Stack (ELK) Knowledge of ArgoCD, Terraform Knowledge CI/CD tools Ansible, Circle CI, Jenkins, Parker, Terraform Knowledge of Offensive testing frameworks Message processing using Kafka, Rabbit More ❯

Collaborate with the Product Manager to establish governance frameworks. Essential Skills & Experience: Proven experience in product ownership or agile delivery roles. Strong stakeholder management and communication skills. Experience with SIEM tools, ideally Microsoft Sentinel. Understanding of InfoSec principles and digital product delivery. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this More ❯

in Computer Science, Cybersecurity, IT, or a related discipline, or equivalent professional experience. Industry-recognised certifications such as CISSP, GIAC/GCIA/GCIH, AZ-500, CEH, CASP+, or SIEM-specific training. Strong knowledge of SIEM, SOAR, EDR, IDS/IPS, NAC, DLP, and related security technologies. Familiarity with frameworks such as MITRE ATT&CK, NIST, CIS, and ISO/ More ❯

Orchestrator (VRO) workflows for automating provisioning, deployment, and management tasks, along with ESXi host life cycle management. -Strong understanding of infrastructure architecture, including close collaboration with Network, Storage, and SIEM Architects, along with experience in working with NFS and iSCSI storage solutions. -Experience in using CI/CD pipelines to automate infrastructure buildouts and facilitate efficient changes throughout the deployment More ❯

Develop SOC policies, technical standards, and procedure documentation aligned to industry best practice. Log Management: Work with MSSPs and service owners to ensure log sources are onboarded into the SIEM solution. Create use cases to correlate suspicious activities across endpoints, networks, applications, and both on-premises and cloud environments. Incident Response: Improve playbooks and processes, lead escalated security incidents, oversee … platform by producing workflows to automate responses to common attack types and enhance operational playbooks. Digital Forensics: Use forensic tools and techniques to analyse data sources such as logs, SIEM data, applications, and network traffic patterns, and recommend appropriate response actions to ensure threats are contained and eradicated. Cyber Crisis Testing: Participate in cyber-attack simulations and scenario exercises to … a degree in Computer Science, Cybersecurity, IT, or a related subject. Ideally hold recognised security qualifications such as CISSP, AZ-500, GIAC/GCIA/GCIH, CASP+, CEH, or SIEM certifications. Strong knowledge of log correlation, analysis, forensics, and chain of custody requirements. Familiarity with regulatory frameworks (NCSC CAF, ISO/IEC 27001/27002, GDPR, CIS, NIST). Practical More ❯

Job Title: SIEM Engineer (Security Cleared) Location: United Kingdom (Must hold active Security Clearance) Job Type: Contract/Permanent Overview: We are seeking an experienced Security Information & Event Monitoring (SIEM) Engineer with active Security Clearance to join our cybersecurity team. The ideal candidate will be responsible for maintaining, developing, and optimizing the SIEM platform — ensuring effective log management, threat detection … and automation across complex IT and OT environments. Key Responsibilities: Manage, maintain, and enhance the SIEM platform ensuring optimal performance and scalability. Onboard and integrate new log sources, create custom parsers, and develop analytic rules. Design and maintain detection rulesets, scope, plan, and track log integrations. Develop automation for alert triage and incident remediation through SOAR tools. Collaborate with Threat … Detection & Response teams to ensure the SIEM platform aligns with security monitoring requirements. Participate in infrastructure projects and security tool integrations. Lead and mentor junior SIEM engineers, fostering a culture of continuous improvement. Key Skills & Experience: Active UK Security Clearance – Essential . Proven hands-on experience as a SIEM Engineer . Strong understanding of security log management across multiple domains More ❯