1 to 25 of 60 Permanent SIEM Jobs in the South East

standards for Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments ...

depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols ...

Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer,Detection & Response Engineer,SIEM Engineer,Security Detection Engineer,Threat Hunting Engineer,Security Automation Engineer,SOC Engineer,Incident Response Engineer,Cloud Security Engineer,Network Security Engineer,Cybersecurity Analyst (Threat Focus ...

Experience working in a SOC, NOC, or equivalent security operations environment, with well-developed investigation, triage, and incident handling skills. Demonstrable practical knowledge of SIEM, EDR, firewalls, and major security technologies (Splunk, Sentinel, QRadar, CrowdStrike, etc.). Strong grasp of networking concepts (TCP/IP, DNS, protocols), Windows and Linux ...

infrastructure security * Security frameworks (e.g. ISO27001, Cyber Essentials) * Reporting and documentation Desirable Experience: * Exposure to security certifications (e.g. CompTIA Security+, Cyber Essentials) * Experience with SIEM tools (e.g. Microsoft Sentinel) * Knowledge of compliance standards such as ISO27001, PCI-DSS * Experience working with third-party IT providers Key Responsibilities: * Support the maintenance ...

availability, resilience and security posture Your Technical Background You'll bring strong hands-on experience across: Infrastructure VMware/vSphere RHEL & Windows Server Trellix SIEM platforms Linux & Scripting Shell scripting REGEX Firewall configuration Microsoft Stack Active Directory DNS RDS Applications & Protocols LDAP Email, Chat & File standards Web & Chat protocols ...

Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer,Detection & Response Engineer,SIEM Engineer,Security Detection Engineer,Threat Hunting Engineer,Security Automation Engineer,SOC Engineer,Incident Response Engineer,Cloud Security Engineer,Network Security Engineer,Cybersecurity Analyst (Threat Focus ...

systems Experience with cloud hosting, cloud migration, application testing, and working with developers to improve security Solid knowledge of security products including WAFs, SIEM, AV, email/web gateways, firewalls, load balancers, ACLs, TCP/IP, routing, and switching Familiarity with OWASP, SASE, zero-trust, and risk-based vulnerability management ...

role are summarised below: · Security monitoring and incident response · Detection engineering - Develop, maintain, and enhance security detection content primarily for the Splunk SIEM, to enable the detection of threats across diverse platforms (e.g. cloud, endpoints, and networks) · Use frameworks like MITRE ATT&CK to map detection rules and maximise threat ...

audiences. Technical & Industry Knowledge: Understanding of cybersecurity frameworks and compliance (ISO 27001, NIST, GDPR). Familiarity with threat detection, MDR/EDR/XDR, SIEM, email security, and identity management solutions. Awareness of current threat landscape and MSSP service models (SOC, vulnerability management, incident response). ...

integration, LDAP directory structures, and directory management/maintenance Resource management of server platforms and optimisation of system performance Trellix/McAfee security platforms SIEM integration , including syslog creation, forwarding and reporting pipelines Email security standards and protocols Linux & Platform Engineering Experience working within Red Hat Enterprise Linux environments Ability ...

process and submit (subject to required skills) your application to our client in conjunction with this vacancy only. Key skills: SOC Analyst, Cyber Security, SIEM, Incident Response, Vulnerability Management, Cloud Security, Information Security ...

Your Technical Background You'll bring solid hands-on experience across infrastructure and gateway environments, including: Infrastructure VMware/vSphere RHEL & Windows Server Trellix SIEM platforms Microsoft Stack Active Directory DNS RDS Networking Citrix NetScaler Wireshark Storage NetApp SAN NAS Backup technologies Security & Gateway Gateway appliances and software PKI management ...

date and protected. Experience: Previous experience of working in a cyber security role . Experience with cyber incidents and monitoring tools such as SIEM are desirable. CompTIA Security+ desirable. Technical Skills Required: Knowledge of Office 365 Accurately, impartially and concisely records and reports the appropriate information , including the ability ...

comfortable working with security frameworks . Awareness of threat frameworks like ATT&CK is useful. It would help if you've worked with other SIEM tools, Microsoft Defender or DevSecOps pipelines, and any exposure to threat modelling or security design. If you want a role where you're actually building ...

implement, and enforce appropriate protective and detective security controls, policies, and procedures. The role includes the administration and operational management of security tooling and SIEM platforms, with responsibility for monitoring, detecting, and responding to cyber threats, intrusions, and unauthorised or suspicious activity. This includes Microsoft Sentinel (data and source tuning … standards and frameworks such as NIST, ISO 27001, and NCSC CAF. Person SpecificationEssential: Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual ...

requirements. Key Tools and Experience: McAfee EPO ForcePoint Zscaler Pulse VPN IPSEC/SSL Nagios Key Responsibilities: Administer and maintain security tools such as SIEM, endpoint protection, vulnerability scanners, and identity & access management platforms. Assist in the deployment and configuration of new security technologies and integrations. Monitor tool performance and ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...