Cyber Assessment Framework (CAF) and ISA/IEC 62443, ISO/IEC 27001/27002, and GDPR. Working knowledge of security technologies including SIEM, SOAR, EDR, AV, IDS/IPS, NAC, AD, DLP, Web Filtering, Email Filtering, Behavioural Analytics. Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks more »
and managing Fortinet FortiAnalyzer. • Provide guidance to Infrastructure and Product teams on securing Microsoft 365 and Azure cloud services. • Establish and manage SIEM andSOAR capabilities using Azure Logic Apps or equivalents. • Enhance the usage and support of Entra ID (previously Azure AD) for IAM, Identity Governance, and PIM. • Document … with enhancing security in Azure Landing Zones (e.g., Key Vault, NSGs, WAF). • Experience with Microsoft Entra ID, including identity governance. • Proficiency in using SOAR tooling, automating security operations, and policy as code. • Ideally, experience in securing GitHub or similar platforms. • Ideally, experience in securing data platforms (e.g., Databricks, Snowflake more »
as Code practices. Assist in securing data platforms and implementing internal SIEM. Collaborate on securing Microsoft 365 and Azure cloud services. Operate SIEM andSOAR capabilities and enhance identity governance. Requirements: Hands-on experience with Microsoft Sentinel and Defender suite. Proficiency in Azure Landing Zones security enhancement. Familiarity with Microsoft … Entra ID andSOAR tooling. Ideally, experience in securing GitHub and data platforms. Knowledge of ISO 27001, Cyber Essentials Plus, and CIS. Scripting skills with Python and KQL. Strong English communication skills. more »
telemetry requirements. Experience with SIEM platforms such as Splunk, Azure Sentinel, Qradar, Exabeam, etc. Python scripting MITRE Caldera and ATT&CK Atomic Red Team SOARautomationand enrichment Strong work ethic and postive can do attitude Bias for action and execution of tasks Willingness to grow skillset Career Level - IC4 … includes being a United States Affirmative Action Employer Responsible for authoring, tuning and deploying SIEM detections, Threat Hunting andautomation via pyton scripting andSOAR tools. May participate in an incident management team, responding to security events in line with Oracle incident response playbooks. Investigates purported intrusions and breaches, and … junior level security operations engineers in the department. Responsible for authoring, tuning and deploying SIEM detections, Threat Hunting andautomation via pyton scripting andSOAR tools. May participate in an incident management team, responding to security events in line with Oracle incident response playbooks. Investigates purported intrusions and breaches, andmore »
Crawley, West Sussex, United Kingdom Hybrid / WFH Options
Matchtech
anomalous activity. Incident Response: Lead the response to high-severity security incidents, providing senior-level response activities and ensuring effective remediation and recovery actions. SecurityOrchestration, Automation, andResponse (SOAR): Support and develop the SOAR platform, creating new workflows for automated responses to common attack types. Digital Forensics: Conduct forensic … of advanced threat hunting and incident response. Experience in log correlation, forensics investigations, and compliance with regulatory frameworks. Proficiency in security technologies including SIEM, SOAR … EDR, IDS/IPS, and behavioural analytics. Knowledge of adversarial tactics, techniques, and industry-standard frameworks like Mitre ATT&CK. Deep understanding of SIEM andSOAR solutions, Identity and Access Management, and Data Loss Prevention technologies. Experience in developing incident response playbooks, SOAR, and conducting red-team exercises. If you more »