1 to 25 of 35 Contract SIEM Jobs in the UK excluding London

identification, and continuous improvement Lead security engagement within client Design Authority and Enterprise Architecture forums Manage integration with the client SOC, including security reporting, SIEM alignment, and incident response coordination Oversee security incident management in line with the client Cyber Security Incident Response Plan Own joiner/mover/leaver ...

audits, risk assessments and maturity reviews. Engineer and embed technical controls supporting NIST CSF and ISO/IEC 27001 objectives. Support security tooling integration (SIEM log sources, EDR/XDR dependencies, vulnerability tooling). Enable and validate security telemetry coverage audit policy configuration, log forwarding/collection, event quality (normalisation ...

Cyber Security Manager/Lead/Security Consultant role. Strong understanding of security operations, threat detection, and incident response practices. Experience working with SIEM, EDR, and monitoring technologies in enterprise environments. Demonstrable knowledge of security frameworks, controls, and governance models. Experience managing third-party vendors or managed security services. Relevant ...

tracking remediation, validating fixes, and assisting with reporting. * Develop and maintain playbooks, runbooks, and procedural documentation. Required Skills: * Microsoft Defender XDR * Microsoft Sentinel (SIEM/SOAR) * Privacy Management Solutions (e.g. Purview, OneTrust) * Understanding of key cybersecurity and privacy concepts, such as Threat detection and analysis, Incident response lifecycle, Vulnerability and ...

cycle management Experience onboarding Windows Server, Linux/Unix, and network devices to PAM platforms Understanding of Active Directory privileged account management Experience with SIEM integration for PAM event logging and alerting Working knowledge of security frameworks: ISO 27001, NIST CSF Strong troubleshooting skills for connector and session issues Good ...

environments. Preferred Skills Endpoint compliance and posture assessment within Cisco ISE. Device profiling and policy enforcement. Integration with third-party security solutions such as: SIEM platforms Mobile Device Management (MDM) solutions Other security tooling Soft Skills Strong analytical and troubleshooting capabilities. Excellent communication and stakeholder engagement skills. Strong documentation and ...

and influencing skills at senior levels. Experience in high value works procurement, including facilities management, construction, design, and cost management Essential Skills : Experience with SIEM tools (ArcSight) including engineering/configuration Creation of use cases, analytics, and playbooks Cloud technology knowledge Incident management from detection to resolution Desirable: Technical/ ...

security standards. Desirable Active SC Clearance CISSP, CCSP, CISM, CISA, or equivalent security qualifications. Experience working with NCSC CAF. Knowledge of identity management, PKI, SIEM platforms, vulnerability management, cryptography, and wider enterprise security technologies. This is an opportunity to play a key role in shaping and assuring security delivery across ...

crisis management structures and frameworks. Technical Understanding (Desirable): Solid grounding in cyber security concepts and threats. Experience with Endpoint Detection & Response (e.g., CrowdStrike), SIEM platforms (e.g., Microsoft Sentinel), and ServiceNow (Security Operations). Ability to engage with technical teams and interpret technical data. To apply for this Senior Cyber Incident ...

+DV cleared role - current active DV clearance is essential +Inside IR35 +£575 - £630 a day +Corsham/Portsmouth Key Skills: ISO27001 DV Cleareance SIEM/SOAR - Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber … scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs ...

scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs … . Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement ...

detail to safeguard sensitive data and systems effectively Key responsibilities of the role include: Deploy, configure, and maintain, troubleshoot security tools such as SIEM, EDR, DLP, VM, Threat Intel,PAM etc extending to Cloud toolsets Perform assessments to understand the current and potential security gaps Use monitoring tools to detect ...

analysts in hunting methodologies and investigative techniques Review and improve alert fidelity, detection coverage, and response effectiveness Provide technical oversight for tooling such as SIEM, EDR/XDR, NDR, SOAR, and cloud-native security platforms Detection Engineering & Improvement Collaborate with detection engineers to convert hunt findings into new or improved … Operations, Threat Hunting, or Incident Response Proven experience leading investigations involving advanced persistent threats, insider threats, or targeted attacks Strong hands-on expertise with: SIEM platforms (e.g. Sentinel, Splunk, Elastic) EDR/XDR solutions (e.g. Defender, CrowdStrike, SentinelOne) Network and cloud security telemetry Strong understanding of: MITRE ATT&CK Windows ...

infrastructure-as-code and automation tools (Terraform, ARM, CloudFormation) for WAF deployment and policy management Ability to analyse logs and security telemetry (WAF logs, SIEM integration) to identify threats and drive remediation Exposure to firewalls, DDoS protection, and broader network security controls in cloud environments Strong collaboration skills, working with ...

security controls aligned with the NIST Cyber Security Framework. What you'll be doing: * Maintain and optimise SOC PROTECT, DETECT, and RESPOND toolsets, including SIEM, SOAR, and vulnerability scanning tools. * Support the development, configuration, and automation of security tooling to enhance threat detection and incident response. * Conduct forensic analysis, malware … operational effectiveness and continuous process improvement. * Maintain knowledge of current cyber threats and emerging trends. What you'll bring: * Proven hands-on experience with SIEM and SOAR platforms such as Trend, Elastic, or SolarWinds. * Strong understanding of Windows and Linux OS, log collection, and threat detection techniques. * Ability to create ...

events, alerts and incidents across cloud, platform, and application layers. Execute vulnerability scanning, patch assurance and configuration compliance checks. Maintain security tooling such as SIEM, EDR, vulnerability scanners, and cloud-native controls. Support ISO 27001 control operation and evidence collection. Ensure compliance with MoD security standards including JSP 440 and … Support improvement of SecOps processes, SOPs and monitoring automation. Essential Skills Experience operating within a Security Operations or SecOps function Hands-on experience with SIEM (e.g. ELK), EDR and vulnerability tooling Experience securing Linux and Windows environments Understanding of ISO 27001 and secure configuration principles Experience supporting cloud or virtualised ...

profession standards with HR/L&D.Timely access to SL stakeholders, systems, repositories, and tooling (e.g., policy library, LMS, phishing platform, service management/SIEM, PMO data). Availability of policy owners and project managers for reviews and attestations. SL will provide required clearances, facilities, and collaboration tools. Core experience ...

security policy deployment FortiAnalyzer Centralised logging and reporting strategy SOC integration and event correlation Incident and event handling workflows Compliance reporting and audit outputs SIEM interoperability and operational analytics Secure SD-WAN SLA rule creation and traffic steering Link health checks and performance optimisation ADVPN architecture and dynamic overlay networking ...

NIST, ISO/IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Web Application Firewalls (WAF) Encryption and key management solutions Collaborate with engineering, DevOps, and IT teams ...

Senior Cyber Security Engineer, you will: Lead Endpoint Strategy: Oversee the deployment and configuration of the CrowdStrike Falcon platform, ensuring robust endpoint protection. Master SIEM: Collaborate with our SOC partner to design and optimise Splunk dashboards and alerts, turning raw data into actionable intelligence to combat sophisticated threats. Incident Response … technical escalation point for high-priority security incidents, employing EDR and SIEM tools for swift containment. Automate Security Processes: Develop Security Orchestration, Automation, and Response (SOAR) workflows to minimise manual intervention and enhance response efficiency. Conduct Threat Hunting: Utilise specialised queries to proactively identify undetected malicious activities within the environment. ...

service accounts. Onboard Windows, Linux/Unix, and network devices into PAM platforms. Manage privileged account controls within Active Directory. Integrate PAM solutions with SIEM tools for event ingestion, correlation, and alerting. Troubleshoot connector, policy, and session issues. Produce high-quality technical documentation and runbooks. Essential experience: Proven hands … discovery and automated governance. Experience onboarding multi-platform systems (Windows/Linux/network devices). Understanding of AD privileged identity management. Experience with SIEM integrations for PAM audit logging. Working knowledge of ISO 27001 and NIST CSF. Strong troubleshooting and analytical skills. Excellent documentation capability. Eligible for SC clearance. ...

experience (2 years+) Perform triage of security events ; determine scope, priority and impact, and make recommendations that enable expeditious remediation. Demonstratable experience working with SIEM technology and SIEM engineering (including tool configuration) i.e. ArcSight within an enterprise SOC. Experience in creation of use-cases, analytics and playbooks . An understanding ...

role with a strong governance element, involving everything from security implementation and risk assessments through to documentation, standards development, and supplier engagement. Exposure to SIEM/SOC integration within OT environments would be beneficial. Key Responsibilities Implement and support OT cyber security controls across industrial environments Assist in the development … experience performing risk assessments, gap analysis, and remediation planning Ability to work effectively with technical operations and engineering stakeholders Experience supporting or interfacing with SIEM/SOC capabilities in OT environments Strong written and verbal communication skills, including technical documentation and policy creation Ability to start within a short notice ...

priority, ensuring appropriate escalation and response. Manage end-to-end incident response activities from detection through to resolution. Support the development and enhancement of SIEM use cases, detection rules, analytics, and playbooks. Conduct real-time analysis of logs and security data to identify malicious activity or policy violations. Work closely … documentation, and operational procedures. Requirements: Proven experience working as a SOC Analyst (Tier 2/3) within enterprise or critical environments. Strong experience with SIEM technologies (e.g. ArcSight or similar), including configuration and engineering support. Ability to triage security alerts and accurately assess risk, impact, and priority. Experience managing security ...

implement and maintain effective OT security controls. Key Responsibilities Implement OT security controls (segmentation, secure remote access, monitoring tools) Integrate OT environments into SIEM/SOC platforms and tune detections Support OT asset discovery, inventory, and security assessments Identify vulnerabilities and support remediation planning Assist with OT incident response … critical infrastructure environments Strong OT/ICS security background Experience implementing OT security controls and strategies Knowledge of OT networks, segmentation, and industrial protocols SIEM/SOC integration experience in OT environments Strong understanding of: IEC 62443 NIST Cybersecurity Framework ISO 27001 UK CAF framework Experience with OT risk assessments ...