8 of 8 Permanent SIEM Jobs in Scotland

owning or implementing a strategy * Strong communication skills * A technical IT background with a good understanding of networking, communication protocols and cloud technologies. * A technical security foundation of utilising SIEM, EDR and vulnerability management tools to facilitate your engagements with the organisation's MSSP What's on Offer * Up to £76,000 per annum * Flexible and hybrid working - 40% of More ❯

owning or implementing a strategy * Strong communication skills* A technical IT background with a good understanding of networking, communication protocols and cloud technologies.* A technical security foundation of utilising SIEM, EDR and vulnerability management tools to facilitate your engagements with the organisation's MSSP What's on Offer * Up to £76,000 per annum* Flexible and hybrid working - 40% of More ❯

defence capability. Please note the on-call rota is every 1 in 6 weeks. Responsibilities Cyber Defence authority for real-time monitoring of Element's security platforms such as SIEM and Extended Detection and Response (XDR) Prompt analysis and triage of alerts and security events. Support the Incident Response (IR) team to report potential or actual incidents Conduct proactive Threat More ❯

Azure and Microsoft 365 security tooling and cloud security principles. ** Strong understanding of frameworks such as ISO 27001, NIST, and the Well Architected Framework. ** Experience with technologies such as SIEM, DLP, IAM, EDR, WAF, and SASE. ** Ability to communicate complex technical concepts to both technical and non technical audiences. ** Relevant certifications (CISA, CISM, SABSA, TOGAF or similar) are advantageous. Why More ❯

knowledge of networking technologies, ideally working with Cisco and Aruba hardware. Professional certifications such as Microsoft, CompTIA, or Cisco credentials are advantageous. Knowledge of cyber security concepts, including Sentiel SIEM, is considered beneficial Experience with SAP ByDesign and Datto AutoTask platforms is advantageous. North rewards employees with a competitive market salary and an excellent benefits package and offers fantastic opportunities More ❯

combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to analyse and … and ISO 27001 alignment. Act as an escalation point within the SOC and mentor junior engineers. What We Are Looking For 3+ years experience as a Microsoft Sentinel or SIEM Engineer. Strong technical background across Microsoft 365, Azure, networking, and cybersecurity. Hands-on experience with KQL, PowerShell, and ideally Python. Proven experience automating processes using Logic Apps, Playbooks, or Terraform. More ❯

the Cyber Security Engineering Manager, you will be responsible for designing, implementing and maintaining our next-generation detection and log management platforms. This role sits at the intersection of SIEM engineering, cloud security, and advanced log pipeline management, ensuring that our enterprise maintains world-class detection fidelity, threat visibility and compliance across diverse environments.You will help us deliver improvements across … Detection. Additionally, you will work closely with our Cyber Security Operation Centre, wider security functions, specialist 3rd party security suppliers and our global IT and business teams. Key Responsibilities: SIEM engineering & Operations: Development of advanced detection rules, correlation searches, and playbooks to improve threat detection and response Perform log source onboarding, parsing, and data normalisation on various data types Experience … with design, development, configuration and maintenance of SIEM alerts to support our SOC Operations Log Management & Data Engineering: Engineer and maintain log pipelines using Cribl to optimise ingestion, filtering, routing and replay Ability to work confidently on intelligent log transformation, data enrichment and routing strategies Architect scalable solutions for log archival, data rehydration and compliance-driven retention Cloud Security: Leverage More ❯

day-to-day SOC operations, ensuring adherence to SLAs, KPIs, and compliance requirements Drive continuous improvement in security monitoring, detection, and response processes Ensure effective use and optimisation of SIEM, SOAR, EDR, and other security technologies Produce and deliver regular reporting on SOC performance, incident trends, and risk exposure to senior management Collaborate with threat intelligence teams to enhance detection … are integrated into processes and training Support compliance with industry standards, frameworks, and regulations Requirements Here are the key skills and experience relevant to this role: Strong knowledge of SIEM, SOAR, EDR, IDS/IPS, firewalls, and endpoint protection solutions Strong Knowledge in Incident response Familiarity with cloud security and hybrid environments Understanding of network protocols, operating systems (Windows/ More ❯