1 to 25 of 74 Permanent SIEM Jobs in London

hunts. Key Skills: * Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management. * Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS. * Strong knowledge of Microsoft Azure cloud security technologies and concepts. * Familiar with cybersecurity frameworks such ...

/international regulatory frameworks (GDPR/SRA etc.). Proven experience leading/managing technical teams in multi-jurisdictional contexts. Technical expertise across SIEM platforms, cloud security solutions (e.g., Azure/AWS), endpoint protection suites etc. Track record managing incident response/disaster recovery processes in complex environments. Desirable Skills ...

Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Strong analytical and problem-solving skills Excellent communication and stakeholder engagement ...

Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Strong analytical and problem-solving skills Excellent communication and stakeholder engagement ...

Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Strong analytical and problem-solving skills Excellent communication and stakeholder engagement ...

remediation actions Security project experience Excellent problem-solving and communication skills Ability to work independently and proactively improve security operations Desirable Skills Experience with SIEM technologies Familiarity with vulnerability management and patching processes Knowledge of Microsoft 365 security technologies Security certifications such as Security+ ...

implementing security controls, mitigating risk and contributing to the continuous improvement of the company's overall security posture. Responsibilities: Monitor security tools including SIEM (QRadar) and respond to threat detection alerts Triage, analyse and prioritise security (via ServiceNow) Investigate root causes of security issues and design effective remediation solutions Oversee ...

Zero Trust environments • Configure and optimise security policies including DLP, CASB, FWaaS, segmentation, and secure web access • Integrate Zero Trust solutions with identity providers, SIEM/SOAR platforms, and endpoint security tooling • Conduct threat modelling, risk assessments, and security architecture reviews • Troubleshoot complex deployment and access issues across enterprise environments ...

Speciality or equivalent practical AWS security experience. Terraform or CloudFormation expertise. Incident-management or incident-response experience. Experience with Splunk or similar logging/SIEM platforms. Experience with security metrics, dashboards or reporting that helped drive measurable risk reduction. Experience mentoring or line-managing security engineers. What ...

Assisting with Zero Trust Client configuration and rollout, including secure network and data access. Integrate Zero Trust solutions with identity providers (Entra AD, Okta), SIEM/SOAR systems, endpoint platforms, and data repositories. Assisting infrastructure teams in migrating legacy VPN, proxy, and firewall solutions to cloud native Zero Trust models ...

Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK ...

Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK ...

Lead deployment and optimisation of technologies such as Zscaler, Netskope, Prisma Access, or similar platforms • Oversee integration of Zero Trust solutions with identity providers, SIEM/SOAR tooling, endpoint security, and cloud environments • Conduct architecture reviews, threat modelling exercises, gap assessments, and security strategy workshops • Lead proof-of-concept exercises ...

CloudFormation. Experience with container or Kubernetes security. Experience with bug bounty, penetration testing or security testing programmes. Experience with Splunk or similar logging/SIEM platforms. Exposure to AI security, such as LLM-enabled applications, AI-assisted development workflows or prompt/data leakage risks. Experience building dashboards, metrics ...

security policies, standards, and operational controls; support audits, incident response, vulnerability remediation, and ensure effective use of security tooling (eg., Sentinel, Defender for Cloud, SIEM). Work closely with Operational Risk, DevOps, and Information Security teams to embed best practices into Agile delivery pipelines, balance stakeholder priorities, and drive ...

obtain SC Clearance. Desirable Experience Experience delivering Security Operations Centre (SOC) projects. Familiarity with cyber security technologies and services, including: Microsoft Sentinel, SentinelOne, SIEM platforms, EDR solutions Professional certifications such as: PRINCE2 Practitioner, PMP, Certified Scrum Master ...

Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials ...

Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials ...

capabilities that aligns with existing technology stack. Experience with KMS systems and methodologies. Identity based threat detection and prevention. Privileged Access and Session Management SIEM Management: Design, implement, and maintain of workspaces, including data connectors, Logic App, Function App, analytics rules, workbooks, and playbooks. Develop and refine custom queries … advanced threat hunting, incident investigation, and reporting. Optimize SIEM performance, cost, and data retention policies Identify new log sources work closely with infrastructure teams Identify, onboard, and configure critical security log sources with a focus on critical infrastructure services such as Active Directory (Domain Controllers, ADFS), network devices, firewalls, servers ...

and response methods. Then translate these into specific telemetry and response requirements for engineering teams. Build and improve detections by developing, tuning, and maintaining SIEM correlation rules and alerting logic-balancing coverage and noise to reduce false positives and improve time-to-detect. Threat hunt proactively to identify attacker behavior ...

services and driving continuous improvement Relevant experience of leading a threat defence function/department A relevant qualification Experience in security device management and SIEM Proven experience of Incident Management and Response In depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management ...

. A strong, hands-on technical background in operational cyber security spanning endpoint & EDR, identity & Active Directory, Microsoft 365 & Azure, network/ZTNA, and SIEM/log management able to act as a senior technical authority within the team. Demonstrable experience leading cyber security incident response (incident command), from detection ...

. A strong, hands-on technical background in operational cyber security spanning endpoint & EDR, identity & Active Directory, Microsoft 365 & Azure, network/ZTNA, and SIEM/log management — able to act as a senior technical authority within the team. Demonstrable experience leading cyber security incident response (incident command), from detection ...

Genuine First Line of Defence (FLOD) experience - this is the defining requirement Cloud security awareness (AWS and/or Azure); comfortable with firewalls, IAM, SIEM, and vulnerability scanning Familiarity with ISO 27000, COBIT, NIST 800 and relevant regulations (FCA/PRA, DORA, GDPR) Strong reporting skills you'll be presenting ...

expensive indexing or hot storage. We specialize in comprehensive monitoring of logs, metrics, trace and security events with features such as APM, RUM, SIEM, Kubernetes monitoring and more, all enhancing operational efficiency and reducing observability spend by up to 70%. The Role As a Technical Account Manager ...