1 to 25 of 107 Permanent SIEM Jobs in the South East

SIEM Detection Engineer | Cyber Security Farnborough (Hybrid – 2 days onsite) Up to £65,000 + Excellent Benefits SC Clearance (or eligibility required) Ready to engineer the frontline of cyber defence? We’re working with a highly respected cyber security operation supporting critical defence environments, seeking a SIEM Detection Engineer … threat detection capability across secure enterprise environments. This is a hands-on technical role where you’ll design, build and optimise detection logic across SIEM platforms, working directly against real-world attacker techniques in a mature, high-performing SOC. You’ll have the autonomy to shape detection strategy, influence capability ...

remote access/VPN configurations where required and ensure changes follow change control. Enable and review network security logging/alerting (e.g., syslog/SIEM integrations where applicable). Monitoring, Detection & Incident Response (Sophos MDR) Act as the internal technical point of contact for Sophos MDR and ensure smooth collaboration ...

cyber threats and AI-enabled attack techniques.Core Skills Strong foundation in modern cyber security engineering and detection engineering principles. Experience with security monitoring platforms, SIEM systems, and alerting/detection pipelines. Strong understanding of identity and access management, endpoint security, logging, network security, and vulnerability management. Knowledge of security architecture ...

client environments Perform threat detection, triage, analysis, and remediation activities Lead incident response activities and provide technical guidance to junior analysts Analyse alerts from SIEM, EDR, IDS/IPS, and other security tooling Conduct threat hunting and proactive security monitoring Support continuous improvement of SOC processes, playbooks, and operational procedures … development of junior team members Required Experience Proven experience working within an MSSP environment Strong background in Security Operations/SOC environments Experience with SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, or similar Knowledge of EDR technologies and incident response methodologies Strong understanding of network security, firewalls, endpoint security ...

Risk in financial services. Experience with frameworks such as NIST, ISO27001, COBIT, SOX, and FFIEC. Good understanding of cloud security, GDPR, IAM/PAM, SIEM, vulnerability management, and network security. CISSP, CISM, CRISC, or similar certifications preferred. Skills & Experience: Strong strategic and analytical thinking Excellent communication and stakeholder management Strong ...

systems Experience with cloud hosting, cloud migration, application testing, and working with developers to improve security Solid knowledge of security products including WAFs, SIEM, AV, email/web gateways, firewalls, load balancers, ACLs, TCP/IP, routing, and switching Familiarity with OWASP, SASE, zero-trust, and risk-based vulnerability management ...

security operations as a discipline Required Experience & Skills 3+ years' experience in a SOC or closely related cyber security role Strong working knowledge of: SIEM platforms Security Incident Management Cloud environments Networking fundamentals Threat intelligence and threat hunting Information security principles Phishing, ransomware, and modern attack vectors Identity & Access Management ...

modern network platforms (experience with Arista would be advantageous). Practical understanding of cyber security principles, threat monitoring and operational security controls. Experience using SIEM or monitoring platforms (experience with Splunk would be highly advantageous) Knowledge of secure network segmentation, filtering and access control models. Experience investigating and responding ...

process and submit (subject to required skills) your application to our client in conjunction with this vacancy only. Key skills: SOC Analyst, Cyber Security, SIEM, Incident Response, Vulnerability Management, Cloud Security, Information Security ...

level only): Microsoft Windows and AD log structure network system log, e.g. Cisco and Checkpoint Office 365 and Defender security knowledge of Splunk the SIEM platform understanding of systems and integrity: Netwrix security solutions administration, including AD Auditor and Change Tracker Trellix and SkyHigh reporting and management, including Trellix antivirus ...

Agile methods such as SCRUM; Enterprise security packages, security enforcing software and devices, such as identity management and federation, cryptography, public key infrastructure, firewalls, SIEM, vulnerability scanning, etc. Additional Requirements: Must be eligible and willing to obtain UK Government Security Clearance. Key Attributes for Success: Ability to engage effectively with ...

modern network platforms (experience with Arista would be advantageous). Practical understanding of cyber security principles, threat monitoring and operational security controls. Experience using SIEM or monitoring platforms (experience with Splunk would be highly advantageous); Knowledge of secure network segmentation, filtering and access control models. Experience investigating and responding ...

and site-to-site connectivity Experience configuring and managing Sophos firewalls, including SD-WAN, intrusion prevention, and web filtering policies Familiarity with Microsoft Sentinel (SIEM) and Microsoft Defender for Endpoint for security monitoring, threat detection, and incident response Familiarity with infrastructure and application monitoring tools, such as Auvik or WhatsUp ...

incidents Lead and support incident response activities Conduct threat hunting and threat modelling exercises Manage vulnerability remediation and penetration testing activities Support and improve SIEM, EDR/XDR and security tooling Provide security guidance across infrastructure and change projects Drive security best practice and security-by-design principles Maintain and … internal IT teams and third-party security providers Technology and experience required: 5+ years’ experience in Cyber Security or Information Security Strong experience with SIEM, EDR/XDR, IDS/IPS and firewalls Good understanding of Microsoft Azure security technologies Knowledge of NIST, ISO27001 and CIS Controls Experience in incident ...

Security principles is also vital. Skills required: Windows/Linux Servers AWS/Azure Fortinet firewalls Juniper kit Virtualisation Knowledge of Defender/Sentinel - SIEM Tooling would be useful. Coburg Banks Limited is acting as an Employment Agency in relation to this vacancy. ...

Knowledge of GDPR and data protection legislation Strong communicator; able to translate security requirements for developers Desirable: Development background with security focus Familiarity with SIEM platforms (Snowbit, Splunk, Sentinel) Experience with CSPM tooling (Wiz, Prisma Cloud, or similar) Penetration testing or bug bounty experience Experience in regulated environments (healthcare, financial ...

cyber security and network infrastructure, ensuring systems remain secure, resilient, and aligned to business needs Manage day-to-day security operations, including monitoring SIEM platforms, Firewalls, endpoint protection, and threat detection tools Investigate security incidents and vulnerabilities, recommending and implementing corrective actions where required Maintain and support network technologies including ...

integration, LDAP directory structures, and directory management/maintenance Resource management of server platforms and optimisation of system performance Trellix/McAfee security platforms SIEM integration , including syslog creation, forwarding and reporting pipelines Email security standards and protocols Linux & Platform Engineering Experience working within Red Hat Enterprise Linux environments Ability ...

cyber security operations environment Good understanding of threats such as phishing, malware, ransomware, and account compromise Experience using security tools such as SIEM, EDR, firewalls, or detection platforms A calm, methodical approach to investigation and problem solving under pressure This is a hybrid role (3 days per week at their ...

decisions bring to the overall deployment process. Infrastructure Defense & Monitoring: Oversee next-generation Palo Alto firewalls, intrusion prevention systems, and data encryption protocols. Monitor SIEM platforms and threat feeds to isolate, investigate, and remediate digital vulnerabilities. Collaboration & Mentorship: Partner closely with internal technical squads and coordinate with external vendor partners. ...

process and submit (subject to required skills) your application to our client in conjunction with this vacancy only. Key skills: SOC Analyst, Cyber Security, SIEM, Incident Response, Vulnerability Management, Cloud Security, Information Security ...

improving, developing and maintaining IT/OT vulnerability management programs and processes. This role performs and leads important tasks specialized at threat hunting, SIEM/SOAR, Network Security and other operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security event reporting, and … and/or Security Operation centers required. Experience in a Data Center environment an added plus. Advanced expertise in architecting, implementing, and optimizing SIEM and security platforms across hybrid environments. Demonstrated leadership in ICS and SCADA security integration and monitoring within critical infrastructure. Deep knowledge on security architecture, with hands ...

detection engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities including alerting, tuning, and integrations Build intelligent detection and response workflows Develop automation solutions using scripting and AI-assisted … best practices Monitor emerging threats and recommend improvements to security posture Technical EnvironmentThe team works across a modern cloud-first stack with exposure to: SIEM/SOAR platforms EDR/XDR tooling AWS cloud environments Identity & Access Management Vulnerability Management Security Automation & Scripting CSPM tooling AI-assisted security operations What ...

detection engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities including alerting, tuning, and integrations Build intelligent detection and response workflows Develop automation solutions using scripting and AI-assisted … best practices Monitor emerging threats and recommend improvements to security posture Technical EnvironmentThe team works across a modern cloud-first stack with exposure to: SIEM/SOAR platforms EDR/XDR tooling AWS cloud environments Identity & Access Management Vulnerability Management Security Automation & Scripting CSPM tooling AI-assisted security operations What ...

Minimum 1 years proven experience in a Tier 1 Cyber Security SOC Support Analyst role Working knowledge of Microsoft Defender XDR and Microsoft Sentinel SIEM technologies Working knowledge of Microsoft Defender suite including Endpoint Detection and Response Understanding of key Microsoft 365 Cloud Technologies from a threat landscape perspective Essential ...