1 to 25 of 70 Permanent CrowdStrike Jobs in the UK

Incident Response & Detection Hands-on IR: triage investigation containment recovery Experience with SIEM (Sentinel strongly preferred) Experience with EDR/XDR tools: Defender/CrowdStrike/SentinelOne Log analysis, packet captures, forensic investigation fundamentals Microsoft Security Defender suite: Endpoint, O365, Identity Azure AD/Entra ID security Conditional Access, M365 ...

Strong understanding of attack frameworks (e.g. MITRE ATT&CK, Cyber Kill Chain) Hands-on experience with SIEM and EDR tools (e.g. Microsoft Sentinel, Splunk, CrowdStrike, Defender) Experience in incident triage, containment, and response Good knowledge of network protocols, Windows/Linux systems, and cloud environments (e.g. M365, Azure, AWS) Strong ...

working with SIEM platforms such as Sentinel, Splunk, QRadar, Elastic or similar tools. * Experience working with EDR or XDR tools such as Microsoft Defender, CrowdStrike or SentinelOne. * Knowledge of common attacker techniques and frameworks such as MITRE ATT&CK. Security Operations Engineer In accordance with the Employment Agencies and Employment ...

penetration testing. Experience - Essential The successful candidate will have a good working knowledge and experience in managing the majority of the following technology stack * CrowdStrike EDR * Mimecast Mail Security Gateway * Duo * Okta * Rapid7 IVM, Tenable IO or Nessus * Palo Alto Firewalls and Panorama * InTune and Conditional Access * Entra ID, Purview ...

identified during penetration testing.Experience - EssentialThe successful candidate will have a good working knowledge and experience in managing the majority of the following technology stack * CrowdStrike EDR* Mimecast Mail Security Gateway* Duo* Okta* Rapid7 IVM, Tenable IO or Nessus* Palo Alto Firewalls and Panorama* InTune and Conditional Access* Entra ID, Purview ...

security preferred - Familiarity with DLP incident handling, remediation and reporting - Experience with the following products would be highly advantageous; Microsoft Defender for Endpoint, Thales, Crowdstrike Falcon and SIEM, CyberArk, Rapid7 and Palo Alto Products - CISSP or CEH certification desirable Lead Information Security Engineer In accordance with the Employment Agencies ...

environment, with well-developed investigation, triage, and incident handling skills. Demonstrable practical knowledge of SIEM, EDR, firewalls, and major security technologies (Splunk, Sentinel, QRadar, CrowdStrike, etc.). Strong grasp of networking concepts (TCP/IP, DNS, protocols), Windows and Linux security, as well as understanding of malware, phishing, and ransomware ...

alert correlation, triage workflow - you write the rules, not just read the dashboard - Endpoint and desktop security: EDR deployment and tuning (Defender for Endpoint, CrowdStrike), Intune/Jamf device management, privileged access workstations, JIT/JEA models - API and application security: threat modelling (STRIDE/PASTA), OAuth 2.0/OIDC ...

persistent threats, insider threats, or targeted attacks Strong hands-on expertise with: SIEM platforms (e.g. Sentinel, Splunk, Elastic) EDR/XDR solutions (e.g. Defender, CrowdStrike, SentinelOne) Network and cloud security telemetry Strong understanding of: MITRE ATT&CK Windows, Linux, and cloud attack techniques Malware behaviours, credential abuse, lateral movement ...

across the security event life cycle, including detection, investigation, and incident management Hands-on experience with EDR/XDR technologies such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black Strong knowledge of networking fundamentals (TCP/IP, DNS, HTTP/S, Firewalls, VPNs, Proxy technologies) Experience analysing telemetry from Windows ...

alert correlation, triage workflow - you write the rules, not just read the dashboard - Endpoint and desktop security: EDR deployment and tuning (Defender for Endpoint, CrowdStrike), Intune/Jamf device management, privileged access workstations, JIT/JEA models - API and application security: threat modelling (STRIDE/PASTA), OAuth 2.0/OIDC ...

Python, PowerShell, or similar, supporting automation and data manipulation. Experience developing detections in QRadar and/or conducting EDR-focused threat hunting (e.g. CrowdStrike, Microsoft Defender for Endpoint). Broad infrastructure awareness across Cloud (Azure/AWS), on-prem, and SaaS/PaaS/IaaS environments. If you are interested ...

Python, PowerShell, or similar, supporting automation and data manipulation. Experience developing detections in QRadar and/or conducting EDR-focused threat hunting (e.g. CrowdStrike, Microsoft Defender for Endpoint). Broad infrastructure awareness across Cloud (Azure/AWS), on-prem, and SaaS/PaaS/IaaS environments. If you are interested ...

above, or equivalent experience Nice to haves: Experience using Quest migration tooling Knowledge of Microsoft Purview Experience with Microsoft Defender XDR or Crowdstrike Knowledge of Microsoft Sentinel or Azure Monitor SQL Server administration Experience with MDM tools such as PatchMyPC or Ninja Cyber security experience or relevant accreditation Experience working ...

ensure security is embedded into everyday operations. What you will be doing Maintain, configure, and monitor leading security technologies including Cisco SEG & Web Filter, CrowdStrike, Abnormal AI, Microsoft 365 security tooling, FortiGate Firewalls, and Cloudflare. Monitor, triage, and respond to security alerts and incidents affecting web, cloud, and internal environments ...

integrated service - removing complexity, taking responsibility, and keeping our customers connected and protected. As a Fortinet Expert Partner, Microsoft Tier 1 CSP and CrowdStrike ELP, we work with leading technologies to deliver resilient, high-performance services for multi-site and multi-tenant organisations, giving our customers the confidence that performance ...

migration and multi‐cloud support. Cybersecurity - Enterprise‐grade protection, detection, and response across identity, data, and infrastructure, delivered with leading vendors such as Microsoft, CrowdStrike, Check Point, Mimecast, Wiz, and CyberArk. Data & AI - Driving insight and automation with data strategy, governance, analytics, and Azure‐based AI/Copilot services. Modern ...

CyberArk (CDE, Cloud and On-Prem deployments highly desirable) SailPoint or equivalent Identity Governance solutions zScaler Palo Alto Cisco SASE General Security Technologies: CrowdStrike Microsoft security stack Linux security AWS/Azure cloud security Cisco Splunk Darktrace JBRP1_UKTJ ...

CyberArk (CDE, Cloud and On-Prem deployments highly desirable) SailPoint or equivalent Identity Governance solutions zScaler Palo Alto Cisco SASE General Security Technologies: CrowdStrike Microsoft security stack Linux security AWS/Azure cloud security Cisco Splunk Darktrace ...

Apple macOS & hardware JAMF (100 certified minimum; exposure to 200 level desirable) Google Workspace (Gmail, Drive, Groups, Calendar) Okta (or similar identity management tools) CrowdStrike Falcon Juniper switching & SonicWall firewalls Cisco Meraki access points Adobe Creative Cloud Video conferencing platforms (Google Meet, Zoom, Microsoft Teams) Basic Windows support Required Experience ...

Cloud Governance Committee (CGC) 3. Security, Resiliency & Control Integration Embed security-by-design across all cloud platforms, integrating enterprise tooling (eg, Wiz, Qualys, CrowdStrike, logging, IAM) Ensure consistent vulnerability, configuration, and identity life cycle management across all environments Ensure platforms meet criticality and resiliency expectations for Capital Markets workloads 4. ...

Knowledge & Expertise Proven leadership experience in cyber security within a regulated environment Experience working with Artificial Intelligence Strong technical knowledge of security tools (e.g. CrowdStrike, Sentinel, Purview, iBoss) Solid understanding of security frameworks (ISO 27001, PCI DSS, SOC 2) Experience in risk assessment, incident management and vulnerability testing Excellent communication ...

supply chain awareness) Client-side protection (endpoint security and operational response integration) Working knowledge of relevant vendors solutions such as: Tenable, Orca, Snyk Wiz, Crowdstrike and Palo Alto. We also acknowledge that the confidence gap and imposter syndrome are a real thing ...

supply chain awareness) Client-side protection (endpoint security and operational response integration) Working knowledge of relevant vendors solutions such as: Tenable, Orca, Snyk Wiz, Crowdstrike and Palo Alto. We also acknowledgethattheconfidencegap and imposter syndrome are a real thing andcanget in thewayof us meeting fantastic talent, so please don't hesitate ...

Microsoft Server Operating Systems, M365 Ecosystem, Microsoft Azure, MS SQL, Firewalls, Routing & Switching, SD-WAN, Microsoft Intune/Autopilot, MDR systems (e.g., Arctic Wolf, CrowdStrike), IT Security Principles, DNS, and Monitoring Solutions. We'd love it if you have sector experience in retail, manufacturing, warehouse distribution, or Digital Marketing. ...