17 of 17 Permanent SIEM Jobs in the North West

highly technical engineering role, where you'll be hands-on developing and maintaining our security operations tooling. Key Responsibilities: Security Infrastructure & Engineering Architect, implement, and manage security technologies including: SIEM (Sentinel) Microsoft Defender suite (Cloud, Endpoint and Identity), Microsoft Sentinel, Purview and Azure infrastructure (including RBAC, PIM, NSGs and identity protections). Firewalls, IDS/IPS, WAF, VPN, and network More ❯

posture and make a measurable impact, we'd love to have you on the team. What you will do: Operate and optimise a wide range of security platforms, including SIEM, XDR, EDR, IAM, DLP, PAM, ZTNA, and vulnerability management tools Take ownership of the detection and response lifecycle - triaging alerts, investigating incidents, identifying root causes, and coordinating response actions Implement More ❯

detection and DevSecOps practices, ensuring security is embedded within operational workflows and cloud-native architectures. What you will do: Operate and optimise core cyber security tools and platforms, including SIEM, XDR, EDR, DLP, IAM, PAM, ZTNA and vulnerability management solutions Lead or support the detection and response lifecycle, including triage of alerts, investigation of incidents, root cause analysis, and coordination More ❯

of security investigations best practice including the use of Microsoft Purview and computer forensics an advantage. Experience of utilising and monitoring Information Security solutions e.g. email/web gateways, SIEM, Endpoint protection etc. Strong awareness of Cloud services and supporting security solutions & standards. Good understanding of cloud native and devops practices including pipelines and associated processes Hands on experience of More ❯

and collaboratively with cross-functional teams. Understanding of Microsoft Azure, Entra ID, Conditional Access, and Intune. Experience with Active Directory, DNS/DHCP, Group Policy, and VPNs. Familiarity with SIEM/XDR platforms, endpoint protection, and incident response tools. Ability to work independently and collaboratively across teams. Preferred Experience: Minimum 3 years' experience in a technical support role with exposure More ❯

You have excellent problem-solving and analytical skills, along with effective communication and presentation abilities. You have hands-on experience with cyber security platforms from industry leaders, including EDR, SIEM, IPS, WAF, DLP, Identity & Data Management, and Network Security technologies. Experience with related infrastructure technologies is also acceptable. You are hands on experience with cloud platforms such as Azure and More ❯

Network, Application Logs Security frameworks/Standards (NIST, CIS, ISO27001) Scripting & Automation (PowerShell, Azure CLI, Azure Logic Apps) MITRE ATT&CK, Threat Modelling Knowledge of CVEs and security vulnerabilities SIEM Tools, Cyber Hunting Techniques Operational threat intelligence and common attack vectors Security vulnerabilities, technical reports Cyber Defence Manager will pay a salary range of £70,000 to £85,000 plus More ❯

interest in technology Experience of Information Security standards and frameworks Awareness and understanding of the Information Security threat landscape Understanding of Information Security solutions e.g. email/web gateways, SIEM, Endpoint protection etc. Knowledge/experience working with next gen security solutions Awareness of Cloud security solutions and standards is highly advantageous Experience working within recognised Information Security frameworks and More ❯

/responsibilities: • Proven experience up to 12 months working as a SOC Analyst• Experience in deep diving into security issues and analysis rather than just ticket management.• Experience with SIEM solutions (Azure Sentinel as #1 but Splunk etc also useful to have.• Scripting experience with – KQL/PowerShell Scripting• Threat Hunting/Analysis Investigation• Opportunity to run and be involved More ❯

Cisco, Palo Alto, ATP DR/Backup: Veeam, Zerto, DataDomain, Commvault, Avamar, Rubrik, Cohesity Storage Technology: File, Block, Object, including vSAN Cloud: AWS, Azure, Google Automation: Terraform, Ansible, Aria SIEM: Elastic, Aria Operations for Logs ServiceNow (Desirable) If you are the Infrastructure Engineer that my client is after, then please apply via the link. Please only apply if you have More ❯

CompTIA CySA+, Forescout FSCA) plus real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into cyber security. Course cost - £2795, or, £232.91 per More ❯

CompTIA CySA+, Forescout FSCA) plus real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into cyber security. Course cost - £2795, or, £232.91 per More ❯

CompTIA CySA+, Forescout FSCA) plus real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into cyber security. Course cost - £2795, or, £232.91 per More ❯

technical pre-sales engineer at a SaaS security vendor Knowledge of the Application Security industry, products, vendor landscape, history, and emerging trends. Prior experience in API security, API management, SIEM, Software Development, DevOps, DevSecOps, or web application firewalls is preferred Strong presentation skills and ability to convey technical concepts to both technical and non-technical audiences Experience in presenting and More ❯

of existing security controls. Design and implement security solutions to mitigate identified risks. Implement, and manage security systems, including firewalls, intrusion detection/prevention systems, DLP, endpoint protection, MDM, SIEM, IAM, vulnerability management etc. Respond to security events and incidents. Perform regular security audits and risk assessments. Maintain security controls, identify risks and propose treatment plans. Conduct regular vulnerability scans … networking, infrastructure (on-prem and in the cloud), vulnerability and incident management. Familiarity with application/device security monitoring (e.g. Firewalls, IDS/IPS, XDR etc.). Experience with SIEM/CNAPP/Log collection platforms (e.g. CrowdStrike, Lacework etc.) and capability to design, implement and manage such solutions. Experience with implementation of identity and access management (IAM) solutions. Ability More ❯

protect front-line policing from cyber-attacks. Configuration and maintenance of the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Development, maintenance, and deployment of detection rules and other SIEM content. Creation of custom solutions using both low-code and traditional development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and implementing new Sentinel … implement new tools and technologies. Leveraging Microsoft support for technical assistance and information regarding roadmap features. What you need to succeed in the role Experience of supporting and developing SIEM platforms in the context of a Security Operations Centre. Experience of log source configuration and parsing, as part of a SIEM implementation, including experience of data normalisation using RegEx. Experience More ❯

council offers its employees development opportunities, as well as a fair and flexible workplace. The council is a Living Wage Employer. Responsibilities: Assist in monitoring network traffic and using SIEM tools (e.g. FortiSIEM, Microsoft Sentinel) to detect suspicious activity and triage security risks. Support incident reporting and response, including risk assessments and vulnerability scans. Gain hands-on experience managing firewalls … within 48 hours. Handle walk-up incidents and participate in major incident responses. Support the ICT security incident response process and maintain the ICT Risk Register. Manage security dashboards (SIEM, FortiMail, FortiConsole, SOPHOS, Windows Defender). Oversee job assignments and SLA performance across teams. Support projects aligned with the Cyber Assessment Framework (CAF). Assist in updating and maintaining IT More ❯