20 of 20 DemandTrendPermanent SIEM Jobs in Scotland

detection and DevSecOps practices, ensuring security is embedded within operational workflows and cloud-native architectures. What you will do: Operate and optimise core cyber security tools and platforms, including SIEM, XDR, EDR, DLP, IAM, PAM, ZTNA and vulnerability management solutions Lead or support the detection and response lifecycle, including triage of alerts, investigation of incidents, root cause analysis, and coordination More ❯

You have excellent problem-solving and analytical skills, along with effective communication and presentation abilities. You have hands-on experience with cyber security platforms from industry leaders, including EDR, SIEM, IPS, WAF, DLP, Identity & Data Management, and Network Security technologies. Experience with related infrastructure technologies is also acceptable. You are hands on experience with cloud platforms such as Azure and More ❯

security architecture or senior security engineering roles Strong knowledge of security frameworks (e.g. NIST, SABSA, TOGAF) Hands-on experience with cloud platforms (Azure, AWS) and enterprise security tools (e.g. SIEM, EDR, IAM) Relevant certifications such as CISSP, CISM, SABSA, or CCSP (preferred) Ability to translate complex security concepts into clear, actionable guidance Excellent stakeholder engagement and communication skills UK Security More ❯

protocols, and cyber security principles Skilled in using vulnerability assessment and penetration testing tools (e.g. Nessus, Burp Suite) Familiarity with security frameworks (ISM, PSPF, ISO 27001) and tools like SIEM, IDS/IPS, and threat intelligence platforms Excellent problem-solving, communication, and collaboration skills, with strong attention to detail and a proactive mindset We welcome applications from candidates with entry More ❯

Proven experience in a cyber security engineering role, ideally within enterprise or financial environments. Strong hands-on expertise with the Azure security stack , including: Microsoft Defender for Cloud Sentinel (SIEM) Azure Security Center Azure Policy & Role-Based Access Control (RBAC) Microsoft Purview and Compliance tools Familiarity with security frameworks such as NIST, ISO 27001, or CIS. Experience with scripting (PowerShell More ❯

Proven experience in a cyber security engineering role, ideally within enterprise or financial environments. Strong hands-on expertise with the Azure security stack , including: Microsoft Defender for Cloud Sentinel (SIEM) Azure Security Center Azure Policy & Role-Based Access Control (RBAC) Microsoft Purview and Compliance tools Familiarity with security frameworks such as NIST, ISO 27001, or CIS. Experience with scripting (PowerShell More ❯

cause analysis and liaise with the customer and the Service Delivery Manager as well and ensuring the actions of the SOC Analysts follow best practice. Security Monitoring: & Investigation: Monitoring SIEM tools to assure high a level of security operations delivery function Oversee and enhance security monitoring systems to detect and analyse potential security incidents. Conduct real-time analysis of security … vulnerabilities, integrating threat intelligence into security monitoring processes. Contribute to the development of threat intelligence feeds to enhance proactive threat detection. Proactively hunt for threats within enterprise environments using SIEM and EDR solutions. Fine-tune SIEM detection rules, correlation alerts, and log sources to reduce false positives. Analyse threat intelligence feeds, map findings to MITRE ATT&CK framework, and provide … mechanisms. Conduct adversary simulation exercises to test and improve detection capabilities. Generate detailed reports on emerging threats, attack trends, and security posture improvements. Monitored and analysed security logs from SIEM platforms to identify suspicious activity. Security Tool Management: Manage and optimise SIEM tools, ensuring they are properly configured and updated to maximize effectiveness. Own the development and implementation of SOC More ❯

DevOps practices, and CI/CD pipelines. Familiarity with infrastructure monitoring, logging, and alerting tools. Knowledge of regulatory compliance frameworks (e.g. ISO 27001, NIST). Knowledge of Information Security, SIEM, Cyber Defence centre tooling. About working for us Our ambition is to be the leading UK business for diversity, equity and inclusion supporting our customers, colleagues and communities, and we More ❯

DevOps practices, and CI/CD pipelines. Familiarity with infrastructure monitoring, logging, and alerting tools. Knowledge of regulatory compliance frameworks (e.g. ISO 27001, NIST). Knowledge of Information Security, SIEM, Cyber Defence centre tooling. About working for us Our ambition is to be the leading UK business for diversity, equity and inclusion supporting our customers, colleagues and communities, and we More ❯

with complicated security-related concepts to technical and non-technical audiences. Proficient in the use of PowerBI or a similar dashboarding application. Knowledge of security systems (including working with SIEM data). SQL or database knowledge would be desirable. Relevant certifications such as CISSP, CISM, or CRISC or equivalent are preferred. Proven experience in managing and delivering technical projects and More ❯

and experience relevant to this role: Proven experience in a pre-sales or solution consulting role within the cyber security domain Strong knowledge of security technologies such as XDR, SIEM, EDR, identity management, email security, cloud security, etc. Familiarity with regulatory and compliance frameworks (e.g., ISO 27001, NIS, NIST, GDPR) Excellent communication and presentation skills, both technical and non-technical More ❯

Strong knowledge of network protocols, firewalls, VPNs, and cloud networking (APIM, NSG, Logic Apps, Function Apps, Azure Portal, App Insight). - Familiarity with security tools such as ASPM (Bionic), SIEM, and certifications like Cyber Essentials to demonstrate competence in security practices and - Experience with user journey monitoring tools such as NewRelic. About SSE SSE has a bold ambition - to be More ❯

Leading and Managing IR Cases/Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient More ❯

Leading and Managing IR Cases/Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient More ❯

Firewall, VPN, IDS/IPS, and segmentation principles in industrial or utility systems Familiarity with power-system applications and the unique security challenges of electric-utility infrastructure Experience with SIEM, network-monitoring platforms, and remote diagnostics solutions Duration: 6 months (View for Extension) Salary: Up to £500 per day (Inside IR35 More ❯

and maintain incident response plans. Improve outsourced monitoring value through better use cases and data. Lead regular incident response exercises across teams. Threat Hunting Use tools like EDR and SIEM to identify threats and indicators of compromise. Analyse attacker tactics and recommend security improvements. Security Reporting Define and report security metrics. Evaluate control effectiveness and identify improvements. Communicate emerging risks … for key technologies. Promote secure practices within IT operations. Skills & Experience Strong incident triage and investigation experience. Skilled in endpoint security tools and vulnerability management. Solid understanding of EDR, SIEM, IDS/IPS, Firewalls, and cloud security. Ability to write KQL queries and develop SIEM use cases. Good grasp of security best practices and patching standards. Experience managing third-party More ❯

plans for information risk events and incidents based on incident type and severity Assists with containment of threats and remediation of environment during or after an incident Work with SIEM Engineering and other security partners developing and refining correlation rules Regularly develop new and interesting use cases for future SIEM logic Administer and configure security tools and sensors to alert More ❯

plans for information risk events and incidents based on incident type and severity Assists with containment of threats and remediation of environment during or after an incident Work with SIEM Engineering and other security partners developing and refining correlation rules Regularly develop new and interesting use cases for future SIEM logic Administer and configure security tools and sensors to alert More ❯

plans for information risk events and incidents based on incident type and severity Assists with containment of threats and remediation of environment during or after an incident Work with SIEM Engineering and other security partners developing and refining correlation rules Regularly develop new and interesting use cases for future SIEM logic Administer and configure security tools and sensors to alert More ❯

plans for information risk events and incidents based on incident type and severity Assists with containment of threats and remediation of environment during or after an incident Work with SIEM Engineering and other security partners developing and refining correlation rules Regularly develop new and interesting use cases for future SIEM logic Administer and configure security tools and sensors to alert More ❯