12 of 12 Permanent SIEM Jobs in Hertfordshire

detect threats, identify trends, and deliver actionable security insights. Strong track record in threat detection, incident management, and escalation handling. Hands-on experience managing SIEM and SOAR platforms such as Splunk, Microsoft Sentinel, or Elastic. Skilled in coaching analysts, building high-performing teams, and managing effective shift models. Confident communicator ...

scripting such as Python, Perl, Bash, PowerShell, C++. CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar. If you are interested in this role but not sure if your skills and experience ...

ISO27001 Familiar with NIST and GDPR is preferred Solid experience in threat, risk and vulnerabilities management process Experience with security tools such as SIEM, intrusion detection systems, and endpoint protection. Strong analytical and problem-solving skills. Hold at least one security related professional certification is desirable Job Offer 24 days ...

phishing attacks. Familiarity with network and endpoint investigation techniques, and security alert validation. Knowledge of threat scenarios and advanced testing of detection platforms like SIEM, EDR, and XDR. Experience in managing incident cases and developing mitigation strategies. Effective communication skills, with ability to advise leadership and produce technical and executive ...

remediation delivered (patching cycles, change, infrastructure support) Clear communicator who can explain risk to both technical and non-technical stakeholders Bonus points for: SIEM exposure, threat hunting, cloud security, automation/scripting, infrastructure/networking Package £45–50k salary range Private medical insurance, life assurance, permanent health insurance Staff discount ...

root cause analysis Understanding of OSI model principles and common protocols (DNS, HTTP/S, SMTP, FTP/S, LDAP/S) Experience with SIEM tools and/or network packet capture solutions The ideal candidate must have: Solid understanding of networking principles (TCP/IP, DNS, routing, switching, VLANs ...

tooling is operating effectively to protect client environments. Work with teams to assess risks, design controls and define testing requirements. Support senior engineers with SIEM, threat intelligence and malware analysis platforms. Apply patches/updates, raise changes and follow agreed processes. Keep up to date with threats and recommend improvements. … busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experience—especially Sentinel or Splunk. If you are interested in this role but not sure if your skills and experience are exactly what we’re looking ...

rules, dashboards, and reports for our Security Information and Event Management (SIEM) systems. This role requires a strong understanding of security procedures and experience working with SIEM platforms and within an MSSP environments where you may be working across multiple operational customers and projects. Hybrid Variable: Working in Hemel Hempstead … Clearance. What you'll be doing: Develop, deploy, and uphold security content (including rules, dashboards, and reports) for our SIEM system. Continuously monitor and analyse SIEM data to identify and respond to potential security threats. Collaborate with SOC Analysts, Architects, Project Managers & Engineers to improve the precision and efficiency ...

rules, dashboards, and reports for our Security Information and Event Management (SIEM) systems. This role requires a strong understanding of security procedures and experience working with SIEM platforms and within an MSSP environments where you may be working across multiple operational customers and projects. Hybrid Variable: Working in Hemel Hempstead … Clearance. What you'll be doing: Develop, deploy, and uphold security content (including rules, dashboards, and reports) for our SIEM system. Continuously monitor and analyse SIEM data to identify and respond to potential security threats. Collaborate with SOC Analysts, Architects, Project Managers & Engineers to improve the precision and efficiency ...

Senior SOC SIEM Content Engineer Hybrid: Hemel Hempstead (1–2 days a week on site) Clearance: Willing and able to get DV clearanceSenior SOC SIEM Content Engineer to join and large expanding SOC team supporting some of the most high-profile defence clients out there. The Senior SIEM Engineer will … play a key role in the business building and tuning SIEM content, covering rules, dashboards and reports.If you’re strong technically, know your way around SIEMs and want to use your skills to the full across multiple customers and projects, this SIEM Engineer role could be the move ...

assessments and penetration tests to identify security weaknesses. Implement, manage, and maintain security tools, including firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM tools, antivirus software, and encryption solutions. Investigate and respond to security incidents, including forensic analysis and incident reporting. Develop, update, and enforce cybersecurity policies, standards … Familiarity with compliance frameworks (ISO 27001, NIST, GDPR, PCI-DSS) Experience Essential Proven Cyber Security Role experience Desirable Hands-on experience with security tools (SIEM, IDS/IPS, firewalls, EDR, vulnerability scanners) Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order ...

looking for a Managing Security Engineer (SIEM), you will lead the design, implementation and documentation of security monitoring platforms. You will ensure the right tooling is in place to protect and monitor our clients, working closely with cross-functional teams to assess risk, design security controls and define testing requirements. … . Advanced knowledge of SPL, KQL and EQL, focused on detection quality and noise reduction. Experience with automation and Infrastructure-as-Code in SIEM environments. Deep understanding of SIEM platform operations, including clustering, high availability, disaster recovery, scaling and performance optimisation. Strong problem-solving skills with a proactive approach ...