1 to 25 of 35 Permanent SIEM Jobs in London

standards for Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments ...

standards for Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments ...

Gather and analyse threat intelligence to inform detection strategies. Maintain detailed incident records and conduct post-incident reviews. Technical Skills Hands-on experience with SIEM, EDR, IDS/IPS, and SOAR platforms. Strong knowledge of operating systems (Windows, Linux), network protocols, and packet analysis tools. Familiarity with scripting languages (Python ...

initiatives. Skills & Experience Essential: Strong grounding in security engineering principles, practices and risk management. Experience working with a broad range of security controls (e.g., SIEM, IDS/IPS, firewalls, secure SDLC, cloud security configuration, CIS hardening, API security). Knowledge of security frameworks such as NIST, ISO 27001, CIS and ...

service follows and complies with IT and Information Security policies and regulatory standards. Help configure and keep current the integration of IAM technologies with SIEM, SOAR, Service Desk and other tools. Work closely with relevant vendors to ensure optimised use of the supplied technologies and professional services. Serve ...

Provide insight into IT architecture, hybrid/cloud models, and security methodologies. Advice on security tooling includes Firewalls, IDS/IPS, CDN, Endpoint Protection, SIEM, SOAR, DLP, PKI and cryptography. Provide security guidance for cloud models such as IaaS, PaaS, SaaS, CASB, Zero Trust and micro-segmentation. Demonstrate a strong ...

Information Security related degree and/or relevant cyber security qualification(s). Working experience with cloud-based applications Desirable Knowledge Firewalls, Web Proxy, SIEM, Vulnerability Scanners, Data Security Analysis Intel plus Linux/UNIX knowledge/experience Azure & Active Directory Basic SQL knowledge Project management and risk management techniques ...

experience who wants real technical ownership and variety across the full defensive lifecycle. What You’ll Be Doing Lead investigations, triage and containment using SIEM/EDR (Microsoft Sentinel preferred) Harden IAM, PIM/PAM , Windows/Linux, endpoint baselines and identity services Strengthen M365 security : Defender for Endpoint/… security hardening (Windows + Linux) Network security concepts (firewalls, IDS/IPS) Incident Response & Detection Hands-on IR: triage investigation containment recovery Experience with SIEM (Sentinel strongly preferred) Experience with EDR/XDR tools: Defender/CrowdStrike/SentinelOne Log analysis, packet captures, forensic investigation fundamentals Microsoft Security Defender suite ...

role are summarised below: · Security monitoring and incident response · Detection engineering - Develop, maintain, and enhance security detection content primarily for the Splunk SIEM, to enable the detection of threats across diverse platforms (e.g. cloud, endpoints, and networks) · Use frameworks like MITRE ATT&CK to map detection rules and maximise threat ...

evaluation, vendor selection and domain modernisation - Partner with Product/Platform leads on security-by-design priorities - Mentor architects and drive innovation (cloud security, SIEM, DLP) **YOU'LL BRING** - 10+ years enterprise security architecture (IAM, cloud security, GDPR) - Deep frameworks knowledge (TOGAF, SABSA, CISSP/CISM, ISO 27001, NIST) - Proven ...

ISO27001, GRC) and technical cloud implementation. Key Responsibilities: Design & Strategy: Define security architectures, infrastructure cost models, and roadmaps. Technical Leadership: Oversee requirements for Firewalls, SIEM, DLP, PKI, and Cloud Controls (Azure/AWS). Stakeholder Management: Work directly with clients to negotiate SLAs and present technical proposals to executives. Requirements ...

environment Proficient in preparation of reports, dashboards and documentations. Knowledge/Experience of security technologies such as Cisco/Juniper Firewalls, Application Firewalls, IPS, SIEM, Proxy, NAC, etc. Skills Network Protocols Cyber Security Tools/Products Cyber Security Policy Management Cyber Security Planning Cyber Security Risk Management Looking to make ...

Premises and Privilege Cloud Upgrade of CyberArk PAM including all components between both major and minor versions Integration of CyberArk with Active Directory, SMTP, SIEM systems Knowledge of integration with 2FA using SAML, Radius CyberArk scripting experience using PACLI, REST API Configuration of CyberArk PSM Connection Components including ...

activity • Lead real-time monitoring of cybersecurity alerts and events, including investigation and incident response • Manage and maintain security infrastructure including firewalls, IPS, WAF, SIEM, EDR and endpoint controls • Oversee vulnerability management, patching and security hardening across Windows, Linux and virtual environments • Maintain Active Directory security policies, identity controls and … frameworks including NIST 800, ISO 27001 and Cyber Essentials • Strong understanding of UK regulatory expectations, including PRA, FCA, ICO and GDPR • Proven experience with SIEM-led monitoring, threat detection and incident response • Hands-on experience managing firewalls, IPS, WAF, EDR and endpoint security tools • Strong network security knowledge including routing ...

protect infrastructure, applications, and data. · Partnering with other engineering and security teams to embed security best practices · Automation to support security tooling like SIEM tooling log ingestion · Firewall and network management within hybrid cloud and on-premises environments · Develop and maintain security policies, standards and procedures · Conduct security assessments ...

firewalling, network security, and traffic filtering Desirable/Nice to Have Experience using Wiz (cloud security posture management & reporting) Exposure to other security tooling (SIEM, CSPM, CWPP) Background in regulated or enterprise-scale environments Contract Details £900 per day Inside IR35 Fully remote Immediate or short-notice starters preferred ...

Doing Architect and deploy Microsoft Purview (DLP, classification, compliance) Implement the Defender suite (Endpoint, Identity, Cloud Apps, Office 365) Build and tune Sentinel SIEM: analytics rules, playbooks, KQL, automation Design Zero Trust controls via Entra ID: Conditional Access, PIM, RBAC Lead client-facing workshops and contribute to presales and security ...

advance thread detection and incident response Onboard new customers Manage the transition of services into BAU support Your background: Hands-on experience with customers SIEM and EDR and automation tooling Deep understanding of delivering cyber security services in an MSP setting SC100 Cyber Security Architect certification is highly desirable Additional ...

and resilient technology estate. You will also contribute to enhancing identity security, infrastructure protection, awareness initiatives, and the onboarding of systems to SOC/SIEM tooling. This role is ideal for someone with strong technical knowledge, excellent communication skills and a passion for defending large-scale environments from emerging threats. … gaps and recommending mitigating actions. Support cyber incident response processes and manage related tickets (ServiceNow). Onboard systems and log sources to SOC/SIEM; validate SIEM-generated alerts. Implement vulnerability scanning and coordinate corrective actions. Produce clear reports on emerging risks and security posture. Support governance, compliance, training and ...

Premises and Privilege Cloud Upgrade of CyberArk PAM including all components between both major and minor versions Integration of CyberArk with Active Directory, SMTP, SIEM systems Knowledge of integration with 2FA using SAML, Radius CyberArk scripting experience using PACLI, REST API Configuration of CyberArk PSM Connection Components including ...

Patching and Maintenance of test and live environments to include installing Anti-Virus, WSUS, RHEL & other product updates o Working with PKI Certificates and SIEM tooling o Providing support to Engineering & Test teams o AD Administration activities - accounts, groups, memberships, permissions etc. o Participating in rota for On-Call ...

across all client environments. What will you need? * Strong hands-on experience in cyber security or security-focused engineering roles* Experience with firewalls, EDR, SIEM, and security monitoring tools* Strong knowledge of network security (VLANs, VPNs, DNS, TCP/IP)* Experience securing cloud environments (Azure and/or AWS)* Hands … being processed and submitted to the client for this vacancy only. KEY SKILLS - Solutions Engineer, Cyber Security Engineer, Security Engineer, Managed Services, Firewalls, EDR, SIEM, Incident Response, Cloud Security, Azure, AWS, Endpoint Security, Cyber Essentials, Vulnerability Management, Network Security, Client-Facing Security ...

specific client requirement Role Description The SOC Tooling Engineer is responsible for technical enablement and configuration management of SOC tools including EDR, SIEM, and SOAR. They ensure data ingestion integrity, tool integration, automation, and continuous platform optimisation. Accenture is a leading global professional services company, providing a broad range ...

salary c. £65-75000 base + bonus + bens + 38 days hols (including bank hols) Desired Skills and Experience SOC ownership/leadership, SIEM, German speaker ...

Premises and Privilege Cloud Upgrade of CyberArk PAM including all components between both major and minor versions Integration of CyberArk with Active Directory, SMTP, SIEM systems Knowledge of integration with 2FA using SAML, Radius CyberArk scripting experience using PACLI, REST ...