5 of 5 Permanent Threat Detection Jobs in East Sussex

role offers unparalleled access to Microsoft’s security product roadmap, previews, and frontline support. You will work at the forefront of cyber defense, contributing to investigations involving nation-state threat actors (including IR, CH, and NK campaigns), and refining your skills in enterprise-scale log ingestion and Sentinel integration engineering, with opportunities to learn and handle complex logs from … and data sources. The Role Own and optimize enterprise-wide log onboarding into Microsoft Sentinel Deploy standard and custom connectors, Function Apps, and parsers Build tailored SIEM solutions for threat detection and response Manage log ingestion across hybrid and multi-cloud environments Enhance custom Function Apps and ingestion pipelines Parse, normalize, and optimize log telemetry for precision and … cost control Partner with IR teams on real attacks, tuning rules against live threats Collaborate with Microsoft teams to develop advanced detection capabilities Contribute to internal knowledge base and engineering standards Requirements Experience with building and integrating complex Microsoft Sentinel at SMC and enterprise levels Understanding of security telemetry across identity, endpoint, cloud, and network layers Experience in SIEM More ❯

technologies, ideally coming from an XSOAR background, and possessing strong experience across XDR and SIEM environments. This is a key role within our security operations function, focused on enhancing detection, automation, and response capabilities. *For this role you must be eligible for SC Clearance* Key Responsibilities Implement and configure Palo Alto Networks XSIAM to improve SOC efficiency and visibility … Design and manage security automation workflows, drawing from previous XSOAR experience Integrate and optimize XDR capabilities to support proactive threat detection Set up and maintain SIEM-style log ingestion, correlation rules, and enrichment pipelines Build custom dashboards and reporting tools for real-time security insights Troubleshoot complex issues related to XSIAM, XSOAR, and related integrations Ensure seamless integration … Clearance Desirable Qualifications Palo Alto certifications (PCNSE, XSIAM/XSOAR certifications highly preferred) Experience with cloud security platforms (AWS, Azure, GCP) Previous work in a SOC environment Exposure to threat hunting methodologies and tools This is a fantastic opportunity to work on the biggest XSIAM project in the UK working with cutting edge technology. My client are happy to More ❯

technologies , ideally coming from an XSOAR background , and possessing strong experience across XDR and SIEM environments. This is a key role within our security operations function, focused on enhancing detection, automation, and response capabilities. *For this role you must be eligible for SC Clearance* Key Responsibilities Implement and configure Palo Alto Networks XSIAM to improve SOC efficiency and visibility … Design and manage security automation workflows , drawing from previous XSOAR experience Integrate and optimize XDR capabilities to support proactive threat detection Set up and maintain SIEM-style log ingestion , correlation rules, and enrichment pipelines Build custom dashboards and reporting tools for real-time security insights Troubleshoot complex issues related to XSIAM , XSOAR, and related integrations Ensure seamless integration … Clearance Desirable Qualifications Palo Alto certifications (PCNSE, XSIAM/XSOAR certifications highly preferred) Experience with cloud security platforms (AWS, Azure, GCP) Previous work in a SOC environment Exposure to threat hunting methodologies and tools This is a fantastic opportunity to work on the biggest XSIAM project in the UK working with cutting edge technology. My client are happy to More ❯

team to develop and evolve policies, procedures, and working practices to improve the firms security posture. Manage cybersecurity tooling including SIEM, EDR, and mail filtering systems to ensure effective threat detection and response. Monitor, investigate, and respond to alerts and incidents, coordinating with internal teams and third-party providers. Maintain the internal compliance programme for information security and More ❯

to develop and evolve policies, procedures, and working practices to improve the firm's security posture. Manage cybersecurity tooling including SIEM, EDR, and mail filtering systems to ensure effective threat detection and response. Monitor, investigate, and respond to alerts and incidents, coordinating with internal teams and third-party providers. Maintain the internal compliance programme for information security and More ❯