24 of 24 Contract SIEM Jobs in the UK excluding London

workflows Configure session recording, monitoring, and auditing Onboard servers, network devices, and platforms into PAM Manage service account discovery and lifecycle Integrate PAM with SIEM tools for logging and alerting Support Active Directory privileged account controls Troubleshoot PAM connectors, sessions, and access issues Produce clear technical documentation and runbooks Essential ...

least 6 years of experience an information/cyber security role focused on security monitoring and analysis Knowledge of IT security solutions (Security Information and Event Management, Cloud Access Security Broker, Data Leakage Prevention, Web Application Firewall, Multi Factor Authentication, Data Rights Management, Identity Access/Privileged Access Management, etc. ...

Ability to oversee third-party vendors and managed security services Strong documentation and stakeholder communication skills Desirable Experience Experience in solution architecture Familiarity with SIEM/SOC integration in OT environments Experience with OT asset discovery and monitoring tools Knowledge of regulatory frameworks within critical infrastructure (e.g. NIS) Experience contributing ...

and digital threats Experience handling cyber incidents end-to-end in line with the NIST framework Hands-on experience with Splunk, CrowdStrike, or equivalent SIEM/endpoint security tools Confidence coordinating and engaging multiple stakeholders during live incident scenarios Strong documentation, reporting, and communication skills Able to work independently, manage ...

CloudFormation, AWS Step Functions, AWS SSM, AWS IAM, AWS Security, AWS Backup, AWS ACM, KMS Experience with monitoring tools (Datadog, PagerDuty, CloudWatch, CloudTrail, SIEM integration) Scripting experience (Terraform, Ansible, Python, AWS CLI) Strong knowledge of Service Management, Release and Change management processes and tools Tooling experience (Jenkins CI/ ...

and infrastructure standpoint. Strong networking background, including understanding of network security principles, firewalls, VPNs, routing, and segmentation. Experience with a range of security tools (SIEM, monitoring, detection, and response platforms). Proven experience delivering and supporting certificate automation. Experience operating in enterprise or regulated environments. Comfortable working across project delivery ...

concepts. Experience with Terraform and scripting (Python, Bash, or PowerShell). Nice to have: Knowledge of cloud security (Azure or GCP) Experience integrating SIEM platforms Understanding of Zero Trust architecture and SD-WAN optimization If you're interested in this role, click 'apply now' to forward an up-to-date ...

service providers. o Strong communication and documentation skills, particularly in policy/standards creation. * Desirable Experience: o Experience in Solution Architecture o Familiarity with SIEM/SOC integration for OT environments. o Experience with OT asset discovery, monitoring, and security tool deployment. o Exposure to regulatory compliance in critical infrastructure ...

Security posture features. Skilled in Fleet/Agent deployment, data stream design, and performance tuning at scale. Strong client management and relationship building experience SIEM experience with Splunk/Elastic Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective solutions Proven ...

Collaborate with the SOC partner to design and enhance Splunk dashboards Act as a senior escalation point for high-priority incidents, leveraging EDR and SIEM tools for rapid investigation and containment Develop and implement automation workflows to reduce manual intervention and improve response times About you: You will have ...

work collaboratively with security, infrastructure, and application teams. Desirable * IAM or security-related certifications. * Experience supporting hybrid or multi-cloud IAM environments. * Exposure to SIEM, security monitoring, or audit frameworks Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary ...

processes Onboard systems including Windows, Linux/Unix, and network devices into PAM platforms Support Active Directory privileged account management Integrate PAM solutions with SIEM tools for logging and alerting Troubleshoot technical issues related to connectors, sessions, and integrations Produce clear technical documentation and runbooks Required Skills & Experience Proven hands … and auditing Knowledge of Active Directory and enterprise infrastructure environments Experience onboarding systems (Windows/Linux/network devices) into PAM platforms Familiarity with SIEM integration and security event monitoring Understanding of security frameworks such as ISO 27001 or NIST Strong troubleshooting and problem-solving skills Ability to obtain ...

service accounts. Onboard Windows, Linux/Unix, and network devices into PAM platforms. Manage privileged account controls within Active Directory. Integrate PAM solutions with SIEM tools for event ingestion, correlation, and alerting. Troubleshoot connector, policy, and session issues. Produce high-quality technical documentation and runbooks. Essential Experience Proven hands … discovery and automated governance. Experience onboarding multi-platform systems (Windows/Linux/network devices). Understanding of AD privileged identity management. Experience with SIEM integrations for PAM audit logging. Working knowledge of ISO 27001 and NIST CSF. Strong troubleshooting and analytical skills. Excellent documentation capability. Eligible for SC clearance. ...

and assess alerts escalated by the outsourced SOC; validate their accuracy and determine potential impact. Initial Investigation: Perform first-line investigation using available tools (SIEM, Device Logs, firewall logs and SIEM alerts). User Interaction: Engage with affected end users or asset owners to collect additional information, verify events … including malware, phishing, lateral movement and privilege escalation. Working knowledge of network fundamentals, windows/Linux system logs and authentication systems. Working knowledge of SIEM platforms (e.g. Microsoft sentinel, Splunk, Elastic, QRadar). Desirable: Awareness of security frameworks and methodologies (NIST CSF, MITRE ATT&CK, ISO27001). Qualifications: Desirable: CompTIA ...

and lifecycle management Onboarding Windows Server, Linux/Unix and network devices onto PAM platforms Managing privileged accounts in Active Directory Integrating PAM with SIEM for logging, alerting and monitoring Producing clear documentation, runbooks and technical configuration records Troubleshooting connector and session-related issues What the client is looking … management) Solid knowledge of credential vaulting , password rotation and session monitoring/recording Experience integrating PAM into complex infrastructures (servers, network devices, AD, SIEM) Familiarity with security frameworks such as ISO 27001 and NIST CSF Strong troubleshooting skills and a methodical, security-focused mindset Ability to obtain SC-level national ...

doing: Overseeing Security Operators during shifts, ensuring continuous security monitoring Performing initial investigations of potential threats using Security Incident and Event Management (SIEM) tools Monitoring SIEM systems for faults and anomalies Contributing to routine security incident management by identifying, prioritising, and escalating threats Supporting the confidentiality, integrity, and availability ...

design, implementation, and optimisation of security monitoring platforms feeding into a central SOC. This is a hands-on leadership role focused on building scalable SIEM solutions and strengthening client security posture. Key Responsibilities Lead design and deployment of security monitoring tools (Elastic & Splunk) Build and optimise large-scale log ingestion … using KQL, EQL, and SPL Drive detection engineering lifecycle aligned to MITRE ATT&CK Implement automation, CI/CD, and Infrastructure as Code for SIEM platforms Ensure platform performance, scalability, and resilience (HA/DR, clustering) Collaborate with stakeholders to assess risk and deliver security improvements Essential Skills & Experience Proven ...

Security Manager to evolve SOC capability Senior SOC Analyst essential skills Proven experience in a SOC or similar security operations environment Strong knowledge of SIEM, incident management and threat intelligence Understanding of cloud technologies and modern networking Experience with IDAM, JML processes and ITSM frameworks Ability to lead, support and … process and submit (subject to required skills) your application to our client in conjunction with this vacancy only. Key skills: Senior SOC Analyst, SOC, SIEM, Security Incident Management, Threat Intelligence, Cloud Security, IDAM, ISO 27001, Team Leadership ...

Engineer +6 months + +DV cleared role + 600 - 700 a day Inside IR35 +On site in Hemel Hempstead Skills: + SIEM/SPLUNK/SOC + DV clearance - must hold current active clearance Join our team as a SOC Engineer and become a critical player in safeguarding organizations through … tangible impact in the field of digital protection. Required Skills: Proven experience leading security engineering teams and managing large client engagements Expertise in SIEM platforms, specifically Splunk Enterprise & Enterprise Security and Elastic Stack/Elastic Security Deep knowledge of detection engineering, threat intelligence frameworks (MITRE ATT&CK), and noise reduction ...

rollout of hardened security baselines. You'll work closely with SOC, security architecture and incident response teams to integrate solutions into a centralised SIEM/SOC capability and fine-tune detection and response.This is a highly technical, electrofocusing role offering real ownership, autonomy and impact.Key Responsibilities Lead the implementation, configuration … and optimisation of OT security technologies (EDR, ITDR, NDR, ICS monitoring) Integrate OT security tooling with a central SOC/SIEM environment (including alerting, detection and response tuning) Take a threat led approach to security configuration, aligned to MITRE ATT&CK, Cyber Kill Chain and relevant threat intelligence Roll ...

Analyst - CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender Our leading global law firm client are currently looking to take on a new SOC Analyst (CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender) to join their team on a permanent … days per week in London and offer a great deal of autonomy and technical exposure. This SOC Analyst (CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender) role, will be responsible for the day to day operations of existing security solutions and uses tools to identify ...

part of a collaborative SOC team alongside SOC Engineers and Service Managers. Your day-to-day work will focus on continuous security monitoring using SIEM platforms such as QRadar, Microsoft Sentinel and LogRhythm, identifying and responding to threats, investigating and triaging incidents, and escalating where appropriate. You'll contribute … hybrid role A GRC, policy or assurance-focused position A purely advisory or strategic security role Suitable for candidates without prior SOC or SIEM experience Required skills and experience To be considered, your CV must clearly demonstrate strong evidence of the following: Microsoft Certified: Security Operations Analyst Associate ...

title: Senior SIEM engineer/Technical SME Will the role be 100% remote, hybrid or 100% office? Remote with rare visit to office If the role is hybrid/office based specify location: Guildford WON/SWON: New T&M position Duration of assignment: 6 months Start date ...

contribute to problem management and service improvement. Actively monitor IAM services, integrations, and connectors to ensure service availability and performance. Responding to alerts from SIEM/logging solutions and preventing SLA breaches. Produce operational and ad hoc reports covering IAM SLAs, KPIs, incidents, and access metrics. Support internal/external … related certifications (eg, Microsoft Identity tools, Okta, ITIL, CyberArk/BeyondTrust etc). Experience supporting hybrid or multi cloud environments. Exposure to security monitoring, SIEM, or audit frameworks. If you are interested in this position and would like to learn more, please send through your CV and we will ...