20 of 20 Permanent SIEM Jobs in South Wales

support Basic scripting or automation skills (e.g. PowerShell or similar) Desirable experience Exposure to security tools such as Microsoft Defender or Sentinel Awareness of SIEM tools and alert monitoring Understanding of ISO 27001 or other security frameworks (e.g. Cyber Essentials, NIST) Experience supporting or working alongside a SOC team Knowledge ...

security concepts into clear recommendations for senior stakeholders Skills & Experience Strong experience in enterprise security architecture within large-scale environments Expertise across: SOC/SIEM/SIAM Network Security Architecture Cloud Security (Azure, AWS, Hybrid environments) Strong understanding of modern security operations and tooling Familiarity with frameworks such as TOGAF ...

security concepts into clear recommendations for senior stakeholders Skills & Experience Strong experience in enterprise security architecture within large-scale environments Expertise across: SOC/SIEM/SIAM Network Security Architecture Cloud Security (Azure, AWS, Hybrid environments) Strong understanding of modern security operations and tooling Familiarity with frameworks such as TOGAF ...

escalation point for all SOC operational activity. The successful candidate will be responsible for the day to day monitoring of multiple security devices, including SIEM, EDR, SOAR etc, ensuring that all customer SLAs are met. You will be required to work as part of the SOC team ensuring ...

A leading cybersecurity firm in the UK is seeking a Senior Security Engineer to join their Managed Security Service Provider team. The role involves driving Sentinel adoption, leading client onboarding, and developing custom data connectors. ...

A leading cybersecurity firm in the UK is looking for a Senior Security Engineer to join their Managed Security Service Provider team. The successful candidate will manage Microsoft Sentinel implementations, focusing on client onboarding and ...

partysupplierstoprogressinvestigationandremediation. Participateinout-of-hoursresponseasrequired. Knowledge,Skills&ExperienceEssential ProvenexperienceinaLevel3orSeniorSecurityAnalystorIncidentResponserole. Hands-onexperienceinvestigatingandresolvingincidentsacrossendpoints,identityplatforms,networks,andcloudservices. Strongunderstandingofmalwareandransomwareresponse,identitycompromise,andvulnerabilityremediation. ExperienceworkingwithinformalSecurityIncidentandMajorIncidentprocesses. Strongwrittendocumentationandstakeholdercommunicationskills. Knowledge,Skills&ExperienceDesirable Experiencesupportingmulti-siteoroperationallysensitiveenvironments. FamiliaritywithDefender,SIEM,EDR,andvulnerabilitymanagementtools. UnderstandingofregulatedorPCI-adjacentenvironments. Relevantsecuritycertificationsorequivalentexperience. BehaviouralCompetencies Takesownershipfromdetectionthroughtoresolution. Investigatesthoroughlyandchallengesincompletefixes. Calm,methodical,anddecisiveduringliveincidents. Understandsoperationalandbusinessimpact. Professionalandconfidentwhenengagingcustomersandsuppliers. DecisionMaking&Authority Makestechnicaldecisionsrelatingtoinvestigation,containment,andremediationofsecurityincidents. EscalatesriskanddecisionpointsappropriatelytoIncidentManagementandServiceDeliveryleadership. KeyInterfaces IncidentManagement SecurityOperations InfrastructureandNetworkServices Third-partysuppliers ...

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into cyber security. Course ...

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into networking. Course cost ...

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into networking. Course cost ...

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into networking. Course cost ...

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into networking. Course cost ...

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into networking. Course cost ...

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into networking. Course cost ...

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into networking. Course cost ...

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into networking. Course cost ...

technicallyaccuratedocumentationcoveringincidents,rootcauseanalysis,andcorrectiveactions.Supportgovernance,customerassurance,andauditrequirements.Contributetopost-incidentreviewsandlessonslearned.Identifyrecurringissuesandrecommendlong-termimprovements.EnsureincidentsandvulnerabilitiesarecorrectlyloggedandtrackedwithinITSMsystems.Collaboration&EscalationWorkcloselywithIncidentManagers,Securityspecialists,andLevel3InfrastructureandNetworkteams.ActasaseniorescalationpointforLevel1andLevel2teams.Engagethird-partysupplierstoprogressinvestigationandremediation.Participateinout-of-hoursresponseasrequired.Knowledge,Skills&ExperienceEssentialProvenexperienceinaLevel3orSeniorSecurityAnalystorIncidentResponserole.Hands-onexperienceinvestigatingandresolvingincidentsacrossendpoints,identityplatforms,networks,andcloudservices.Strongunderstandingofmalwareandransomwareresponse,identitycompromise,andvulnerabilityremediation.ExperienceworkingwithinformalSecurityIncidentandMajorIncidentprocesses.Strongwrittendocumentationandstakeholdercommunicationskills.Knowledge,Skills&ExperienceDesirableExperiencesupportingmulti-siteoroperationallysensitiveenvironments.FamiliaritywithDefender,SIEM,EDR,andvulnerabilitymanagementtools.UnderstandingofregulatedorPCI-adjacentenvironments.Relevantsecuritycertificationsorequivalentexperience.BehaviouralCompetenciesTakesownershipfromdetectionthroughtoresolution.Investigatesthoroughlyandchallengesincompletefixes.Calm,methodical,anddecisiveduringliveincidents.Understandsoperationalandbusinessimpact.Professionalandconfidentwhenengagingcustomersandsuppliers.DecisionMaking&AuthorityMakestechnicaldecisionsrelatingtoinvestigation,containment,andremediationofsecurityincidents.EscalatesriskanddecisionpointsappropriatelytoIncidentManagementandServiceDeliveryleadership.KeyInterfacesIncidentManagementSecurityOperationsInfrastructureandNetworkServicesThird-partysuppliersCustomerstakeholdersviastructuredincidentcommunicationsTPBN1_UKTJ ...

Review supplier security documentation and identify risks or gaps Maintain security documentation, control records, and evidence repositories Analyse outputs from security tools (vulnerability scanners, SIEM, patching, access reviews) Work with technical teams to validate and improve security controls Contribute to security improvements and control design Experience Required Strong technical background … management, baselines, audits) Understanding of Windows/Linux, networking, IAM, virtualisation, cloud (Azure/AWS), backups, and monitoring Knowledge of security controls (firewalls, EDR, SIEM/logging, encryption, least privilege, vulnerability management) Ability to explain technical security concepts clearly to technical and non-technical audiences Strong documentation and organisational skills ...

responsibilities: This is an interesting opportunity where you will work with the cyber resilience team and assist with the Security Operations function, including EDR, SIEM, gathering security control framework evidence and general day-to-day assistance with security tasks. You will help deliver a strategy which will enhance the organisations … campaigns. Stay informed about emerging cyber threats and vulnerabilities. You will need: Good knowledge and understanding of SOC processes and procedures. Basic experience using SIEM systems such as MS Sentinel, LogRhythm, AlienVault, Splunk Good understanding of incident response stages and handling. Basic knowledge and experience using leading endpoint detection and ...

join our Managed Security Service Provider (MSSP) team. You will be responsible for driving our adoption of Sentinel, client onboarding projects, managing multi-vendor SIEM proof of concepts with a specific focus on a Microsoft Sentinel, developing custom connectors to ingest log data into SIEM tooling. The ideal candidate will … Splunk deployments is beneficial. This role sits within our MSSP team, as a senior member of the security engineering team focused on growing our SIEM management capabilities and integrating those into our Managed SOC offering in a consistent and professional way. You will work on a variety of projects ...