19 of 19 Permanent SIEM Jobs in the City of London

Essential 3+ years’ experience working in a security operations, IT security, privacy operations, or related technical role. Familiarity with: Microsoft Defender XDR Microsoft Sentinel (SIEM/SOAR) Privacy Management Solutions (e.g. Purview, OneTrust) Basic understanding of key cybersecurity and privacy concepts, such as: Threat detection and analysis Incident response lifecycle ...

security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud and hybrid security environments Ability to communicate complex technical risks to non‐technical stakeholders Experience influencing senior leadership ...

. Scripting skills in Python for automation and threat analysis. Strong AWS security expertise (IAM, GuardDuty, Security Hub, CloudTrail, VPC design). Experience with SIEM, MDR, and vulnerability management tools. Familiarity with financial regulatory frameworks: DORA, FCA (SYSC/PS21/3), NIS2/UK NIS. Working knowledge ...

and infrastructure standpoint. Strong networking background, including understanding of network security principles, firewalls, VPNs, routing, and segmentation. Experience with a range of security tools (SIEM, monitoring, detection, and response platforms). Proven experience delivering and supporting certificate automation. Experience operating in enterprise or regulated environments. Comfortable working across project delivery ...

Strong understanding of security risks, threat vectors, and monitoring techniques across Linux and/or Windows environments Proven experience designing, building, and tuning detections (SIEM/EDR), conducting detection engineering, and supporting security tooling/infrastructure Experience in incident response, threat hunting, and forensic analysis Knowledge of network security architecture ...

with DLP incident handling, remediation and reporting - Experience with the following products would be highly advantageous; Microsoft Defender for Endpoint, Thales, Crowdstrike Falcon and SIEM, CyberArk, Rapid7 and Palo Alto Products - CISSP or CEH certification desirable Lead Information Security Engineer In accordance with the Employment Agencies and Employment Businesses Regulations ...

incident handling, remediation and reporting - Experience with the following products would be highly advantageous; Microsoft Defender for Endpoint, Thales, xkybehq Crowdstrike Falcon and SIEM, CyberArk, Rapid7 and Palo Alto Products - CISSP or CEH certification desirable Lead Information Security Engineer In accordance with the Employment Agencies and Employment Businesses Regulations ...

with Git and documentation practices Detail-oriented, proactive, and keen to learn Nice to have Exposure to incident response or security operations Experience with SIEM, EDR or similar tooling Interest in automation, CI/CD, or infrastructure-as-code Understanding of authentication systems (SSO, OAuth, LDAP) or HTTP fundamentals ...

management at production scale - Network flow log analysis and intrusion detection engineering - building detection logic for lateral movement, beaconing, anomalous egress, and C2 patterns - SIEM engineering: detection rule authoring (KQL, SPL, or equivalent), log pipeline design, alert correlation, triage workflow - you write the rules, not just read the dashboard - Endpoint ...

management at production scale - Network flow log analysis and intrusion detection engineering - building detection logic for lateral movement, beaconing, anomalous egress, and C2 patterns - SIEM engineering: detection rule authoring (KQL, SPL, or equivalent), log pipeline design, alert correlation, triage workflow - you write the rules, not just read the dashboard - Endpoint ...

Planning required levels of cyber investment including governance, tooling and staffing within the CSOC Essential skills & experience Proven experience managing Security Event Monitoring operations — SIEM/SOAR, antivirus, network and host IDS/IPS Strong working knowledge of NCSC incident response processes, GDPR, NIS regulations and MITRE ATT&CK Experience ...

Services for system management Journaling and recovery mechanisms IBM Navigator for i Encryption and key management concepts Exposure to tools such as PowerSC, SIEM integrations, or vulnerability scanning tools is advantageous What We're Looking For Strong experience developing on IBM i using RPG In-depth understanding ...

strong background in Azure infrastructure, as well as AWS experience and Windows Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls (Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment … Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual Microsoft technologies Strong analytical, communication, and problem-solving skills, including the ability ...

require a Security Operations Engineer to join the firm in London on a 9 month fixed term contract basis. Key Responsibilities: Monitor alerts from SIEM, EDR and other security monitoring tools click apply for full job details ...

suite. The Role As our Senior Security Analyst, you will own the evolution of our security posture. Youll be the driving force behind our SIEM/SOAR capabilities and the guardian of our SOC 2 Type II and ISO 27001 standards. Key Responsibilities: Security Operations: Lead monitoring, detection, and incident … response for internal and client-facing systems. SIEM/SOAR Ownership: Enhance and automate our Azure Sentinel capabilities. Incident Response: Investigate real-world threats (malware, phishing, cloud misconfigurations) and ensure rapid remediation. Vulnerability Management: Conduct regular assessments, penetration testing, and risk analysis. Compliance & GRC: Maintain SOC 2 Type II accreditation ...

existing team to elevate their technical skill sets. Key Responsibilities Endpoint Strategy: Lead the deployment, policy configuration, and maintenance of our CrowdStrike Falcon platform. SIEM Mastery: Collaborate with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models. Incident Response: Act as the technical escalation point … high-priority incidents, utilizing EDR and SIEM tools for rapid containment. Automation & Hunting: Develop SOAR workflows to improve response times and proactively hunt for undetected malicious activity. Upskilling: Directly train the existing team in CrowdStrike, Splunk, and advanced security analysis. Your Profile We are seeking a candidate who brings ...

and benefits. Why This Role is Exciting High autonomy : Lead projects from idea to deployment Innovation-driven : Develop cutting-edge detections beyond standard SIEM rules Collaborative : Work closely with internal teams and an outsourced SOC partner Mission-focused : Protect critical healthcare data that supports precision medicine Key Responsibilities Design and … Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer, Detection & Response Engineer, SIEM Engineer, Security Detection Engineer,T hreat Hunting Engineer, Security Automation Engineer, SOC Engineer, Incident Response Engineer, Cloud Security Engineer, Network Security Engineer, Cybersecurity Analyst (Threat ...

require a Security Operations Engineer to join the firm in London on a 9 month fixed term contract basis. Key Responsibilities: * Monitor alerts from SIEM, EDR and other security monitoring tools. * Investigate suspicious activity across endpoints, networks and cloud environments. * Support the investigation and resolution of security incidents. * Support … configuration, tuning and ongoing improvement of security monitoring tools such as SIEM and EDR platforms. * Use threat intelligence sources to identify emerging risks relevant to the organisation. Required Skills: * Strong understanding of network protocols and system behaviour including TCP/IP, DNS and HTTP/S. System internals (Windows, Linux ...

Underground Environment (desirable but not essential) - Experience working with network support tools including network management systems and policy enforcement - Experience working with Microsoft Sentinel SIEM Role Profile: - The role will be to work with the network and security team who focus on - building and maintaining, network and security systems - producing … and security design works for our customer networks - Provide a technical interface to the client as required - Supporting the design and integration of the SIEM platform - Support customer networks and systems to our rail customers - Work with other teams to improve systems security and monitoring Business Operations Skills - Qualifications ...