16 of 16 Permanent SIEM Jobs in Berkshire

systems Experience with cloud hosting, cloud migration, application testing, and working with developers to improve security Solid knowledge of security products including WAFs, SIEM, AV, email/web gateways, firewalls, load balancers, ACLs, TCP/IP, routing, and switching Familiarity with OWASP, SASE, zero-trust, and risk-based vulnerability management ...

modern network platforms (experience with Arista would be advantageous). Practical understanding of cyber security principles, threat monitoring and operational security controls. Experience using SIEM or monitoring platforms (experience with Splunk would be highly advantageous) Knowledge of secure network segmentation, filtering and access control models. Experience investigating and responding ...

modern network platforms (experience with Arista would be advantageous). Practical understanding of cyber security principles, threat monitoring and operational security controls. Experience using SIEM or monitoring platforms (experience with Splunk would be highly advantageous); Knowledge of secure network segmentation, filtering and access control models. Experience investigating and responding ...

integration, LDAP directory structures, and directory management/maintenance Resource management of server platforms and optimisation of system performance Trellix/McAfee security platforms SIEM integration , including syslog creation, forwarding and reporting pipelines Email security standards and protocols Linux & Platform Engineering Experience working within Red Hat Enterprise Linux environments Ability ...

meet business, compliance, and risk mitigation requirements; ensuring controls are effective, measurable, and operationally sustainable. Implement and maintain detection and response capabilities through SIEM integration with security controls and IT systems, with a focus on reducing time-to-detect and time-to-remediate through improved pre-incident engineering. Participation … 24x7 on-call support rota, responding to SIEM health alerts and restoring log ingestion where required. Manage use cases, perform data enrichment, and define standardized and automated containment workflows. Develop and manage operational procedures and reporting methodology. Manage and oversee security technology platforms (e.g. SIEM, SOAR, EDR, and email security ...

and development background and proven experience with Gateway technologies. Your technical knowledge should include: Infrastructure & Platforms VMware/vSphere RHEL and Windows Server Trellix SIEM platforms Identity & Directory Services Active Directory DNS LDAP LDIF Gateway & Security Technologies Gateway appliances and associated software Email, Chat and File standards Web and Chat ...

A leading cybersecurity firm in Bracknell is seeking a Senior Security Engineer to safeguard digital assets and infrastructure. The ideal candidate will manage security tools, conduct risk assessments, and lead incident response. A Bachelor's ...

Cyber Threat Detection/SIEM Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a Cyber Threat Detection Analyst, you will play a hands … and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats ...

security best practices across all technology initiatives, supporting the organisation's security posture and resilience. Key Responsibilities Security Operations & Monitoring Monitor and manage the SIEM platform and security alerts to identify, investigate, and respond to potential threats. Administer and optimise EDR solutions (CrowdStrike) to ensure comprehensive endpoint protection across … CISSP, CCSP, Security+, or similar), and/or Minimum of 3-5 years' experience in security engineering or adjacent roles. Hands-on experience with SIEM platforms, EDR solutions (ideally CrowdStrike), and vulnerability management tools. Experience with IAM solutions, SaaS security, and data protection tools. Strong understanding of networking concepts, protocols ...

and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats … hunting, cyber threat detection, SOC, blue team, or cyber defence environments, with ideally around five years hands on experience. Strong hands-on experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary ...

actively recruiting a Security Solution Architect in Reading, UK. The role includes understanding packet core security and managing security products like firewalls and SIEM systems. Ideal candidates will have a bachelor’s degree and significant experience in telecom security and 5G core networks. You will map customer requirements, provide security ...

Collaborate with stakeholders to design, implement and maintain security controls that are effective, measurable and sustainable. Implement and maintain detection and response capabilities through SIEM integration, improving time‐to‐detect and time‐to‐remediate. Participate in a 24x7 on‐call support rota, responding to SIEM health alerts and restoring … cases, perform data enrichment and define automated containment workflows. Develop and manage operational procedures, reporting methodology and risk reporting frameworks. Oversee security technology platforms (SIEM, SOAR, EDR, email security). Monitor control performance, coordinate remediation and automate operation procedures. Align control design with industry standards, regulations and best practices (e.g. ...

from incidents, helping tune detections, and strengthening operational procedures and documentation. Key Responsibilities Monitoring and Triage Monitor security events and alerts using industry-standard SIEM and incident/event management platforms (e.g., Elastic, Microsoft Sentinel, Splunk). Perform rapid triage to determine alert validity, severity, scope, and potential business … time-pressured environments, with excellent written communication (clear, structured incident notes and stakeholder updates). Strong foundational knowledge of incident and event management/SIEM platforms (e.g., Elastic, Sentinel, Splunk), including query languages used for investigations and detections such as: Kusto Query Language (KQL) ES|QL Kibana Query Language Strong ...

giving you the chance to influence detection capability and response maturity. What You'll Be Doing Monitoring & Triage Analyse and triage security alerts using SIEM platforms Correlate events and identify patterns across multiple data sources Assess severity, scope, and business impact Investigation & Analysis Conduct detailed investigations across endpoint, network, identity … Contribute to documentation, playbooks, and operational standards What We're Looking For Strong experience within a SOC/CSOC environment Hands-on expertise with SIEM tools (e.g. Microsoft Sentinel, Splunk, Elastic) Experience with query languages such as KQL/ES|QL/Kibana Solid understanding of threat detection, IOCs, and ...

solution deployment.Should have experience in configuring and managing security products such as firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM (Security Information and Event Management) systems, Log Collector and Identity Management solution.Should have customer facing skills and lead security discussion with customers.You will bringA bachelor’s degree ...

supporting a portfolio of customers across multiple sectors. You’ll act as an escalation point for Tier 1, owning investigations end-to-end — triaging SIEM and EDR alerts, leading incident response, hunting threats using MITRE ATT&CK, and tuning detections to cut noise. You’ll also mentor junior analysts and … help mature playbooks and runbooks. We’re looking for 3+ years in a SOC or MSSP, hands-on with SIEM, EDR, and Microsoft 365/Entra ID security. KQL or PowerShell scripting, phishing and malware triage experience, and clear written communication are essential. Security+, SC-200, BTL1 or similar certs ...