1 to 25 of 35 Contract SIEM Jobs in the UK excluding London

solutions (e.g., CyberArk, BeyondTrust, Delinea) Implement least privilege access models and enforce secure credential management Monitor and audit privileged access activities across systems and applications Integrate PAM tools with SIEM, IAM, and other security platforms Develop and maintain policies, procedures, and documentation for PAM operations Conduct regular access reviews, privilege audits, and risk assessments Collaborate with IT, DevOps, and Security More ❯

Contract SIEM Engineer Exciting contract opportunity to join a high-performing cybersecurity team Hybrid working model, three days onsite and two remote Contribute to cutting-edge SIEM and EDR deployments for a large-scale organisation Up to £410 per day (Inside IR35) Active SC clearance required ABOUT THE CLIENT: Our client is a well-established technology-driven organisation with a … advancing its cybersecurity capabilities. You will join a dedicated security team working to enhance threat detection and response across complex environments. This is a crucial role for an experienced SIEM Engineer to make a measurable impact by improving resilience and operational security. THE BENEFITS: Up to £410 per day (Inside IR35) Hybrid working arrangement Collaborative and innovative security culture Opportunity … to work with leading SIEM and EDR technologies THE SIEM ENGINEER ROLE: As a SIEM Engineer, you will design, deploy, and maintain SIEM and EDR solutions that strengthen the organisation's security posture. You will work closely with IT and security teams to manage log ingestion, implement integrations, and monitor system activity for potential threats. SIEM ENGINEER ESSENTIAL SKILLS: Proven More ❯

Conduct regular security audits and assessments to identify and remediate risks. Apply industry frameworks such as NIST Cybersecurity Framework, ISO 27001, CIS Controls . Oversee and enhance security technologies: SIEM, vulnerability management, cloud security (OCI/Azure/AWS), PKI, cryptography, web/email security, logging and monitoring . Monitor network traffic for anomalies and potential breaches. Collaborate with IT More ❯

eg, CyberArk, BeyondTrust, Delinea). Implement least privilege access models and enforce secure credential management. Monitor and audit privileged access activities across systems and applications. Integrate PAM tools with SIEM, IAM, and other security platforms. Develop and maintain policies, procedures, and documentation for PAM operations. Conduct regular access reviews, privilege audits, and risk assessments. Collaborate with IT, DevOps, and Security More ❯

engineering lifecycle from design to deployment Desirable Skills Experience with cloud platforms (AWS, Azure) and Infrastructure as Code (CloudFormation, Terraform) Integration of enterprise services such as Active Directory, PKI, SIEM, and monitoring tools Hands-on with DevSecOps tools and CI/CD pipelines Relevant industry certifications (VMware VCP, AWS Solutions Architect, Microsoft, Kubernetes, etc.) Experience presenting at technical boards or More ❯

for apprentice security analysts, providing coaching, mentoring, and line management. What We’re Looking For 2-3 years’ experience investigating and responding to cyber incidents. Hands-on use of SIEM tools (Splunk preferred, Microsoft Sentinel or equivalent acceptable). Experience with EDR solutions to support incident investigation. Understanding of threat actor tools, techniques, and procedures (TTPs). Strong analytical and More ❯

maintain infrastructure as code (IaC) using Terraform or CloudFormation. Automate deployment and configuration processes using Python, PowerShell, or other scripting tools. Integrate AWS security logs and data flows with SIEM platforms (e.g., Splunk). Support live cloud environments through monitoring, troubleshooting, and performance optimisation. Collaborate effectively across engineering and security teams to deliver high-quality, compliant solutions. Technical Skills & Experience More ❯

accreditation requirements • Experience across the systems engineering lifecycle Desirable: • Expertise with cloud platforms (AWS, Azure) and Infrastructure as Code (CloudFormation, Terraform) • Experience integrating enterprise services (Active Directory, PKI, monitoring, SIEM) • Hands-on use of DevSecOps tools and CI/CD pipelines • Industry certifications (VMware VCP, AWS Solutions Architect, Microsoft, Kubernetes, or equivalent) • Experience presenting at technical forums or contributing to More ❯

Years Must Have/Mandatory Skills Palo Alto Networks – Firewalls (MUST) Network Security Architecture IAM, MFA, AAA, RBAC, Privilege Access Cloud Security (OCI/Azure/AWS) SIEM/Vulnerability Management/PKI/Cryptography LAN/WAN/DMZ/Routing/Switching/Subnetting Key Responsibilities Design/Architect network security infra solutions like Firewalls, IDPS, Proxy, Load More ❯

prem infrastructure on virtualized platform , networking, and storage. * Ability to produce HLDs and LLDs with clarity and precision. * Excellent communication and stakeholder engagement skills. * Involved with integrating SentinelOne with SIEM/SOAR platforms (e.g., Splunk) and deployment to Windows and RHEL endpoints. Preferred Qualifications: * SentinelOne certifications (e.g., SentinelOne Certified Architect or equivalent). * Scripting knowledge (e.g., PowerShell, Python) for automation More ❯

Ansible, Terraform) Knowledge of cybersecurity controls and accreditation requirements Expertise with cloud platforms (AWS, Azure) and Infrastructure as Code (CloudFormation, Terraform) Experience integrating enterprise services (Active Directory, PKI, monitoring, SIEM) Hands-on use of DevSecOps tools and CI/CD pipelines Industry certifications (VMware VCP, AWS Solutions Architect, Microsoft, Kubernetes, or equivalent) If this all sounds like something you will More ❯

Ansible, Terraform) Knowledge of cybersecurity controls and accreditation requirements Expertise with cloud platforms (AWS, Azure) and Infrastructure as Code (CloudFormation, Terraform) Experience integrating enterprise services (Active Directory, PKI, monitoring, SIEM) Hands-on use of DevSecOps tools and CI/CD pipelines Industry certifications (VMware VCP, AWS Solutions Architect, Microsoft, Kubernetes, or equivalent) If this all sounds like something you will More ❯

Proven track record in CyberArk upgrades and custom integrations. Excellent communication and stakeholder engagement skills. Desirable Experience in financial services or banking environments. Familiarity with Sentinel, Defender XDR, and SIEM integrations. CyberArk Defender & Sentry certifications. Please apply within for further details - Matt Holmes, Harvey Nash More ❯

would be the main focus of the role. Strong expertise with Microsoft Defender and Sentinel is needed. Key Skills & Experience from the Security Engineer: Strong experience with Microsoft Sentinel (SIEM) and Microsoft Defender suite (Defender for Endpoint, Identity, Cloud, etc.). Proven track record in security monitoring, incident response, and alert troubleshooting . Working knowledge of SOAR platforms (preferably within More ❯

and securing platforms such as Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS/PaaS, Windows/Linux/Unix. o Strong knowledge of security tooling such as SIEM, endpoint detection (EDR/XDR), and vulnerability management platforms. o Hands-on experience with policy development, access control models (RBAC, ABAC), and logging standards. o Experience supporting assurance activities or … security vetting to SC level. Desirable o Experience working in a regulated or government environment, particularly within research, energy, or national infrastructure. o Knowledge of Incident Management, Vulnerability Assessments, SIEM & SOC Systems. o Knowledge of OT/ICS/SCADA security principles and industrial control environments. o Experience designing or reviewing secure software supply chain and CI/CD security. More ❯

SIEM Engineer Contract - Inside IR35 Duration: March 2026 Reading (Hybrid) Are you a seasoned SIEM (Security Information and Event Monitoring) professional looking to take your career to new heights? If so, this could be the perfect opportunity for you! The company is seeking a talented SIEM Engineer to join their dynamic team and play a pivotal role in maintaining and … enhancing their security monitoring platform. As the SIEM Engineer, you will be responsible for ensuring the optimal performance, scalability, and integration of the company's SIEM platform. This includes onboarding log sources, developing analytical rules, creating automation for triage and remediation, and integrating with other IT and Operational Technology platforms. You will collaborate with the wider Threat Detection and Response … team to ensure the SIEM platform meets their day-to-day needs and provide support during incidents as necessary. Key Responsibilities of the SIEM Engineer Develop and maintain the security monitoring platform, ensuring it meets the company's evolving security requirements. Participate in infrastructure projects to plan and implement solutions for security monitoring. Design, implement, and maintain detection rulesets to More ❯

to drive through change Excellent team working skills including the ability to work effectively within a geographically disparate team Advantageous: Experience with containerization technology and orchestration platforms e.g. Kubernetes SIEM Experience with Elastic Stack (ELK) Knowledge of ArgoCD, Terraform Knowledge CI/CD tools Ansible, Circle CI, Jenkins, Parker, Terraform Knowledge of Offensive testing frameworks Message processing using Kafka, Rabbit More ❯

Entra, Exchange (on-prem & cloud) Active Directory , AD Sync, Windows 7–11 Windows Server: 2008 R2, 2012 R2, 2016, 2019, 2022, 2025 ManageEngine Central and SentinelOne Secureworks/Taegis (SIEM) Endpoint and server patching Ability to see technical issues through to resolution Confidence to research and troubleshoot independently Act as a technical escalation point for Cyber Analysts The Role: You More ❯

Entra, Exchange (on-prem & cloud) Active Directory , AD Sync, Windows 7–11 Windows Server: 2008 R2, 2012 R2, 2016, 2019, 2022, 2025 ManageEngine Central and SentinelOne Secureworks/Taegis (SIEM) Endpoint and server patching Ability to see technical issues through to resolution Confidence to research and troubleshoot independently Act as a technical escalation point for Cyber Analysts  The Role: You More ❯

Required Skills: End-to-End Solution Delivery: Expertise in taking ownership of a requirement from start to finish, including gathering detailed requirements, designing, and implementing robust, innovative solutions. Experience with containerisation technology and orchestration platforms, e.g. Docker, Kubernetes Hands-on More ❯

Collaborate with the Product Manager to establish governance frameworks. Essential Skills & Experience: Proven experience in product ownership or agile delivery roles. Strong stakeholder management and communication skills. Experience with SIEM tools, ideally Microsoft Sentinel. Understanding of InfoSec principles and digital product delivery. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this More ❯

in Computer Science, Cybersecurity, IT, or a related discipline, or equivalent professional experience. Industry-recognised certifications such as CISSP, GIAC/GCIA/GCIH, AZ-500, CEH, CASP+, or SIEM-specific training. Strong knowledge of SIEM, SOAR, EDR, IDS/IPS, NAC, DLP, and related security technologies. Familiarity with frameworks such as MITRE ATT&CK, NIST, CIS, and ISO/ More ❯

Job Title: SIEM Engineer (Security Cleared) Location: United Kingdom (Must hold active Security Clearance) Job Type: Contract/Permanent Overview: We are seeking an experienced Security Information & Event Monitoring (SIEM) Engineer with active Security Clearance to join our cybersecurity team. The ideal candidate will be responsible for maintaining, developing, and optimizing the SIEM platform — ensuring effective log management, threat detection … and automation across complex IT and OT environments. Key Responsibilities: Manage, maintain, and enhance the SIEM platform ensuring optimal performance and scalability. Onboard and integrate new log sources, create custom parsers, and develop analytic rules. Design and maintain detection rulesets, scope, plan, and track log integrations. Develop automation for alert triage and incident remediation through SOAR tools. Collaborate with Threat … Detection & Response teams to ensure the SIEM platform aligns with security monitoring requirements. Participate in infrastructure projects and security tool integrations. Lead and mentor junior SIEM engineers, fostering a culture of continuous improvement. Key Skills & Experience: Active UK Security Clearance – Essential . Proven hands-on experience as a SIEM Engineer . Strong understanding of security log management across multiple domains More ❯

Role: Security Information & Event Monitoring (SIEM) Engineer – **Security Cleared** Location: Reading/Havant – UK Mode: Hybrid (2 days office) Language: English Mandatory - **Clearance: Must be Security Cleared (Active SC)** Job Summary: Looking for an experienced SIEM Engineer to maintain and enhance the Security Monitoring platform. Responsible for log onboarding, custom parsers, rule creation, automation for triage and remediation, and integration … with other security tools. Key Responsibilities: Develop and manage the SIEM platform ensuring scalability and performance. Plan and implement solutions for security monitoring. Design and maintain detection rules. Lead and mentor SIEM team. Work closely with Threat Detection & Response team to support incident handling. Required Skills: Proven hands-on experience in SIEM engineering. Strong understanding of security logs across domains More ❯

of greenfield Identity and Access Management and Privileged Access Management solutions. You'll provide hands-on technical leadership, ensure secure-by-design implementation, and contribute to the development of SIEM/SOC capabilities. Key Responsibilities Lead end-to-end IAM/PAM design and delivery. Integrate IAM/PAM telemetry into SIEM tooling. Provide technical oversight for MSPs and vendors. … OpenID Connect . Familiarity with ISO 27001, NIST CSF, CAF & GDPR . Experience leading or overseeing MSPs. Current SC clearance . Desirable: Knowledge of Microsoft Sentinel, Splunk, or Elastic SIEM . Experience in SOC build or cyber transformation projects. Degree/HND in a relevant STEM field. More ❯