8 of 8 Permanent SIEM Jobs in Cardiff

Threats : Assist in identifying suspicious activity and responding to security incidents in real time Security Tools and Technologies : Gain hands-on experience with firewalls, SIEM tools (e.g., Splunk, Microsoft Sentinel), endpoint protection, and vulnerability scanners Vulnerability Assessments : Help run scans to identify weaknesses in systems and recommend remediation actions Policy ...

security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments or penetration testing. Manage relationships with external pentest providers, auditors, and assessors. Secure Development Lifecycle (SDLC) Partner ...

migrating firewall rules, designing segmentation at multiple layers (macro/meso/micro), and integrating identity‐based controls. Strong background in logging/monitoring, SIEM/SOAR integration, and building operational metrics. Proficiency with capacity planning, performance tuning, and platform visibility tooling. Excellent documentation skills; able to produce architecture artefacts ...

with customers and other internal stakeholders. Confidence in effectively communicating technical incidents or security threats to non-technical stakeholders. Previous experience of working with SIEM and log monitoring tools. SC-200, SC-900 or equivalent certification would be beneficial but not essential. To be considered for this role, you must ...

experience within an MSP environment. Strong Microsoft Azure expertise (IaaS/PaaS, governance, identity, networking, landing zones). Security experience across MDR, threat detection, SIEM/SOAR or security monitoring. Solid understanding of hybrid cloud, integrations, networking and resilient design. Ability to articulate complex technical concepts to technical and … architectural documentation and NFRs (security, performance, compliance). Desirable MSP service design/service offering experience. Hands-on knowledge of Microsoft Sentinel or other SIEM/SOAR platforms. Familiarity with security frameworks (NIST, ISO 27001). Relevant Azure certifications (AZ-305, AZ-500, etc.). Please apply now if this ...

Will Need to Succeed: Minimum 3+ years of experience working in 24x7 enterprise operations, preferably security operations Minimum 1+ years of experience working with SIEM, including running investigations (correlating events on different aspects such as source/destination addresses, usernames, and process names) Demonstrable comprehension of Information Security including malware … investigate trends and identify errors Network, Security, or Platform certification(s) (S+, N+, MCSP, CNA) is a plus. Ideal candidates have strong experience with SIEM tools and security event processes. Compensation Estimated Pay Range: Exact compensation and offers of employment are dependent on circumstances of each case and will ...

work with security platforms, scripting tasks, and collaborating with experienced security professionals. Key Areas of Work Enhancing alert logic and monitoring use cases within SIEM platforms Building and maintaining automation workflows using Python Reviewing security events and log data to spot unusual activity Supporting the design of detections aligned … adversarial behaviours Assisting investigations and contributing to continuous improvements within the SOC What You'll Bring Experience using one or more SIEM technologies (e.g., Sentinel, Splunk, ELK, Rapid7, LogRhythm) Python skills for scripting or automation Understanding of SOAR concepts or exposure to automated playbooks Familiarity with threat frameworks such ...

hiring Elasticsearch Consultant or Architect (Observability OR Security (SIEM) or Search (Data)) to join our team. This pivotal role requires a deep subject matter expert in the Elastic Stack, responsible for designing, implementing, and optimizing complex Elasticsearch environments tailored to critical business functions in either Observability, Security (SIEM), or Search … Logstash for comprehensive data collection. Designing APM services, setting up synthetic monitoring, and creating advanced Kibana dashboards for holistic operational visibility. OR Elastic Security (SIEM) Proven ability to deploy and manage Elastic SIEM, including endpoint security integration. Expertise in using security data (logs, events) to create custom detection rules, conduct ...