1 to 25 of 31 Contract SIEM Jobs in the UK excluding London

skills Basic understanding of security solutions, good relationship and communication skills, knowledge of security frameworks, and the ability to discuss technology and security controls. Key technical skills: Proficiency with SIEM tools (e.g., Splunk, ArcSight, QRadar), understanding of network security components, log management, multitier application architecture, and scripting knowledge. Should have 3-5 years of cybersecurity experience in areas focused on More ❯

architecture or design responsibilities Working knowledge of key infrastructure domains (networks, operating systems, databases, cloud platforms) Familiarity with common security controls and technologies (e.g., firewalls, WAFs, endpoint protection, IAM, SIEM) Experience with public cloud security (AWS, Azure, GCP) and an understanding of security best practices in those environments Understanding of enterprise security standards and frameworks such as ISO 27001, NIST More ❯

Infrastructure/Information Systems). It will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best standard technologies. The SOC Analyst More ❯

Infrastructure/Information Systems). It will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best standard technologies. Effective Tier More ❯

Infrastructure/Information Systems). It will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best standard technologies. Effective Tier More ❯

compliance requirements and frameworks (e.g., NIST CSF, ISO 27001, CSA CCM, PCI DSS). Expert-level knowledge of IAM, network security, encryption, API and application security, container security, and SIEM strategies. Proven leadership in DevSecOps practices and securing modern development pipelines. Certifications such as CISSP, CCSP, AWS Security Specialty, TOGAF, or equivalents are highly desirable. Esther Urtecho Senior Delivery Consultant More ❯

access to cloud environments. Non-Human Identity (NHI) Management: Managing access for automated systems and applications. Integration with other security tools: Integrating PAM with other security solutions, such as SIEM and SOAR platforms. Compliance: Understanding and adherence to relevant security and compliance regulations. Teamwork and Collaboration: PAM engineers often work as part of a larger security team. More ❯

SIEM Engineer Location: Hybrid 60/40 - Bearwood Rd, Sindlesham, Wokingham RG41 5BN Duration: 26/12/2025 MUST BE PAYE THROUGH UMBRELLA We are heading up a recruitment drive for a global consultancy that require a SC Cleared Siem Engineer to join them on a major government project that's based in in Wokingham. Role Description: - SIEM Deployment … Management - Set up, configure, and maintain SIEM tools like ArcSight, Splunk, or QRadar. - Threat Detection & Analysis - Monitor security logs, detect anomalies, and investigate potential threats. - Incident Response - Work with security teams to analyze and mitigate security incidents. - Custom Rule Creation - Develop and fine-tune detection rules and alerts to identify malicious activities. - Security Reporting - Generate reports on security events, trends … and system performance. - Collaboration - Work with IT and security teams to improve overall cybersecurity posture. Required Skills & Qualifications - Technical Expertise - Strong knowledge of SIEM platforms, network security, and cybersecurity frameworks. - Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications. - Programming & Scripting - Familiarity with Python, PowerShell, or other Scripting languages. - Analytical Thinking - Ability to analyze large datasets and identify security threats. More ❯

processes Deliver a gap analysis and propose a strategic roadmap Define operating models for SOC, red teaming, and internal security ownership Advise on cloud security (AWS/GCP), tooling (SIEM, SOAR, EDR), and DevSecOps practices Engage senior stakeholders to align security recommendations with business goals Required Skills & Experience Proven experience in senior security consultancy or architecture roles Strong understanding of More ❯

vectors, propagation, and impact. Root cause analysis and leading T2 incident investigations Process/Playbook/Runbook development Working knowledge of detection engineering, false positive improvements Capability to tune SIEM rules or create custom detections Scripted automation experience e.g. Python, SOAR, PowerShell If this all sounds like something you will be interested in then simply apply and we can discuss More ❯

Security Services Strong background in IT network security concepts. Strong knowledge of data and information flows, information governance, network protocols. Knowledge of system hardening techniques. Knowledge and experience in SIEM technologies. Knowledge and experience in vulnerability and risk management processes. Knowledge and experience of applying cybersecurity controls within SAAS environments. Project Engagement Strong stakeholder management skills Knowledge and experience in More ❯

Security Engineer - SIEM - sought by investment bank based in London - Contract - Hybrid *Inside IR35 - umbrella* Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot log ingestion and parsing issues Log Source Integration: Onboard and More ❯

for a system: Microsoft OS Linux OS Virtualisation technologies Networking Endpoint Security Products Working knowledge of the accreditation process for secure systems Experience in producing design artefacts Experience implementing SIEM products Experience with network technologies (firewalls, mail gateways, load balancers, anti-virus) We're currently looking at a September/October start date (dependant on your availability/notice period More ❯

Desirable Skills Experience with Azure DevOps and pipelines. Comfortable presenting technical solutions to stakeholders. Exposure to Scaled Agile Framework (SAFe) . Familiarity with or open to learning the ArcSight SIEM toolset (ESM, SmartConnectors, Logger, ArcMC). Tech Stack : Operating Systems : Windows, Linux Tools : VMware, PowerShell, VBScript, Python, Azure DevOps, ArcSight More ❯

Desirable Skills Experience with Azure DevOps and pipelines. Comfortable presenting technical solutions to stakeholders. Exposure to Scaled Agile Framework (SAFe) . Familiarity with or open to learning the ArcSight SIEM toolset (ESM, SmartConnectors, Logger, ArcMC). Tech Stack : Operating Systems : Windows, Linux Tools : VMware, PowerShell, VBScript, Python, Azure DevOps, ArcSight More ❯

Security Engineer - SIEM, KQL- sought by investment bank based in London. *Inside IR35 - 3 days a week on-site** Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot log ingestion and parsing issues Log More ❯

for SC Clearance Rate: £650 per day - PAYE via Umbrella Only Role: Lead the development and delivery of a high-level design for a SOC, including associated tooling (e.g. SIEM solution) to support a multi-vendor cloud based back office implementation. Experience with: Industry best practice for SOC service and solution design. Working with organisations with heightened threat response requirements More ❯

playbooks for security operations Skills and Experience Strong understanding of vulnerability management (Tenable.io) and EDR platforms (CrowdStrike) Experience with ISO 27001 audits, system audits, and compliance validation Knowledge of SIEM platforms (Elastic SIEM) and log analysis Hands-on experience with Windows Server, VMware, Citrix VDI, and Active Directory Practical knowledge of penetration testing tools and methodologies Ability to investigate security More ❯

Support and Infrastructure/Information Systems). Responsibilities cover analysis, monitoring, reporting, alerting, and investigation activities using a variety of security platforms, including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture, Anti-Malicious Code, and Threat Detection technologies across the UK Network Perimeter. The SOC Analyst reports to the SOC Manager and conducts a … operating procedures (SOPs), and runbooks to support operational readiness. Strong working knowledge of detection engineering, including tuning detection logic and reducing false positives to enhance alert fidelity. Proficiency in SIEM rule tuning and the creation of custom detection use cases aligned with threat models and operational requirements. Hands-on experience with security automation and orchestration, including scripting in Python, PowerShell More ❯

Splunk environments Creating dashboards, alerts, and reports for IT/security stakeholders Ingesting and normalising data from multiple sources Collaborating with technical teams to resolve platform performance issues Supporting SIEM use case development using Splunk ES What we’re looking for: Strong experience with Splunk Enterprise & ES Deep knowledge of log management, data correlation, and visualisation Able to engage with More ❯

Engineer (SC Cleared) - Contract Location: United Kingdom 100% Remote? Duration: 6 Months Clearance: Active SC Clearance is required Are you a hands-on Security Engineer with deep expertise in SIEM , Azure Sentinel , and incident response Join a dynamic cyber security team to support a critical national infrastructure (CNI) project involving the deployment of Windows Hello for a major UK utility … company. What You'll Be Doing: Supporting and tuning Microsoft Sentinel and other SIEM platforms (KQL scripting) Managing escalated incidents from L1 analysts and leading full incident response lifecycle (MIM) Conducting in-depth data analysis , threat hunting, and forensic investigations Maintaining and enhancing SOC documentation, SOPs, and playbooks Collaborating with cross-functional teams and contributing to security strategy Ensuring security … policies align with standards like NIST, ISO 27001, MITRE ATT&CK We're Looking for Someone With: Expert-level SIEM experience (Azure Sentinel highly preferred) Strong knowledge of Kusto Query Language (KQL) Demonstrated experience in cybersecurity incident response & breach handling Familiarity with threat intelligence, vulnerability management , and cloud security tools Proactive mindset with ability to work independently in high-pressure More ❯

Infrastructure/Information Systems). It will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best standard technologies. The SOC Analyst …/experience (Senior grade): Root cause analysis and leading T2 incident investigations Process/Playbook/Runbook development Working knowledge of detection engineering, false positive improvements Capability to tune SIEM rules or create custom detections Scripted automation experience eg Python, SOAR, PowerShell Threat modelling and Hunting methodologies More ❯

Role Title: SIEM Engineer Duration: contract to run until 26/12/2025 Location: Wokingham, Hybrid 2 days onsite Rate: £460 p/d Via Umbrella inside IR35 Clearance required: Active SC is essential Role purpose/summary SIEM Deployment & Management - Set up, configure, and maintain SIEM tools like ArcSight, Splunk, or QRadar. Threat Detection & Analysis - Monitor security logs … Generate reports on security events, trends, and system performance. Collaboration - Work with IT and security teams to improve overall cybersecurity posture. Required Skills & Qualifications Technical Expertise - Strong knowledge of SIEM platforms, network security, and cybersecurity frameworks. Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications. Programming & Scripting - Familiarity with Python, PowerShell, or other scripting languages. Analytical Thinking - Ability to analyze More ❯

Role Title: SIEM Engineer Security Clearance: Must Have Active SC Location: Hybrid 60/40 - Bearwood Rd, Sindlesham, Wokingham RG41 5BN Duration: 6 months Day Rate: £445 Key Responsibilities: - SIEM Deployment & Management - Set up, configure, and maintain SIEM tools like ArcSight, Splunk, or QRadar. - Threat Detection & Analysis - Monitor security logs, detect anomalies, and investigate potential threats. - Incident Response - Work with … Generate reports on security events, trends, and system performance. - Collaboration - Work with IT and security teams to improve overall cybersecurity posture. Required Skills & Qualifications - Technical Expertise - Strong knowledge of SIEM platforms, network security, and cybersecurity frameworks. - Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications. - Programming & Scripting - Familiarity with Python, PowerShell, or other Scripting languages. - Analytical Thinking - Ability to analyze More ❯

analysis within the 24x7 SOC. It will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best standard technologies. Effective Tier … for Senior grade: Root cause analysis and leadership in T2 incident investigations Process/Playbook/Runbook development Working knowledge of detection engineering, false positive improvements Capability to tune SIEM rules or create custom detections Scripted automation experience e.g. Python, SOAR, PowerShell Threat modelling and hunting methodologies Additional information: These roles are fully site based in Stevenage Shift Pattern: Blocks More ❯