1 to 25 of 241 Permanent SIEM Jobs in the UK

Security Operations Center (MSSP) to ensure high‐fidelity alerting and low Mean Time to Resolve (MTTR). Tooling Optimization : Own the security stack (SIEM, EDR, XDR, SOAR). Ensure tools are integrated, automated, and providing maximum ROI rather than just generating “noise.” Automation : Drive a “Detection as Code” philosophy ...

service follows and complies with IT and Information Security policies and regulatory standards. Help configure and keep current the integration of IAM technologies with SIEM, SOAR, Service Desk and other tools. Work closely with relevant vendors to ensure optimised use of the supplied technologies and professional services. Serve ...

and wants to contribute to a mission-driven cyber defence team. Key Responsibilities You will: Develop, maintain and enhance detection content (primarily for Splunk SIEM ) across cloud, endpoint and network platforms Identify detection gaps, log ingestion issues and alert improvements Review and uplift existing SecOps standards, logging maturity, BAU monitoring ...

Security+, CISM, AWS Security Specialty or ISO 27001 Lead Implementer. Experience with WAF and bot management in a production e-commerce context. Familiarity with SIEM, SOAR or security automation tooling. Exposure to ISO 27001 implementation or SOC 2 readiness programmes. Experience with multi-cloud security across Azure and GCP. Background ...

Experience in IT operations with exposure to cybersecurity or governance * Knowledge of ISO 27001, GDPR and risk management frameworks * Familiarity with vulnerability management, SIEM or EDR tools * Strong understanding of Windows Server, Active Directory and Microsoft 365 security * Strong analytical and communication skills What is on offer: * Salary ...

security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud and hybrid security environments Ability to communicate complex technical risks to non‐technical stakeholders Experience influencing senior leadership ...

depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols ...

enhance security operations, improve threat detection, and upskill the internal team. Key Responsibilities Lead CrowdStrike Falcon deployment, configuration, and optimisation Design and enhance Splunk SIEM dashboards, alerts, and data models Act as an escalation point for major cyber incidents Develop SOAR automation workflows to improve response times Conduct proactive threat ...

implementing security controls, mitigating risk and contributing to the continuous improvement of the company's overall security posture. Responsibilities: Monitor security tools including SIEM (QRadar) and respond to threat detection alerts Triage, analyse and prioritise security (via ServiceNow) Investigate root causes of security issues and design effective remediation solutions Oversee ...

partners Preferred Certifications CISM or similar ISO 27001 Lead Implementer/Lead Auditor ISO 42001 (desirable) Technical Skills Security architecture and cloud security (AWS) SIEM, EDR and SOC tools ISO 27001/ISO 42001 implementation Vulnerability management and penetration testing oversight Data protection, encryption and privacy controls Third-party risk ...

configuring and working directly with security tooling in live environments Cloud security (Microsoft 365, Azure, AWS) Strong technical exposure to security tooling, such as: SIEM/SOAR, EDR/XDR, vulnerability scanners, patch management, CASB, DLP Desirable experience: Microsoft Defender, Purview and M365 E5 security capabilities Privileged Access Management ...

infrastructure security * Security frameworks (e.g. ISO27001, Cyber Essentials) * Reporting and documentation Desirable Experience: * Exposure to security certifications (e.g. CompTIA Security+, Cyber Essentials) * Experience with SIEM tools (e.g. Microsoft Sentinel) * Knowledge of compliance standards such as ISO27001, PCI-DSS * Experience working with third-party IT providers Key Responsibilities: * Support the maintenance ...

systems remain at the required security posture against baseline requirements Work with the Security Monitoring engineering team to ensure logs are forward to the SIEM capability Work with the customer and appropriate agencies to develop new policies, design processes, and procedures, and develop technical designs Assess system vulnerabilities, implement risk ...

Experience working in a SOC, NOC, or equivalent security operations environment, with well-developed investigation, triage, and incident handling skills. Demonstrable practical knowledge of SIEM, EDR, firewalls, and major security technologies (Splunk, Sentinel, QRadar, CrowdStrike, etc.). Strong grasp of networking concepts (TCP/IP, DNS, protocols), Windows and Linux ...

incident documentation Required Experience Previous experience in a SOC or security operations role Strong knowledge of cyber attack techniques and defence strategies Experience with SIEM, EDR, XDR, and SOAR platforms Networking fundamentals including firewalls and protocols Strong analytical and problem-solving ability Certifications (Desirable) Microsoft SC-200 CompTIA Security+ Blue ...

incident documentation Required Experience Previous experience in a SOC or security operations role Strong knowledge of cyber attack techniques and defence strategies Experience with SIEM, EDR, XDR, and SOAR platforms Networking fundamentals including firewalls and protocols Strong analytical and problem-solving ability Certifications (Desirable) Microsoft SC-200 CompTIA Security+ Blue ...

information security role within a UK-based organisation, ideally supporting public sector or critical services. Practical experience with security monitoring and incident response tooling (SIEM/XDR) Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS. Practical experience with Cyber Essentials/Cyber Essentials Plus certification. ...

function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24×7 detection, response, threat hunting), DFIR, purple ...

Operations, Privilege Access Management, Encryption, Operation System Security, Cloud & Container Security Cloud/AWS/Azure Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI The permanent position for Cloud Security Solution Engineer (Home Based), will pay a competitive salary and benefits with a home working model. ...

Operations, Privilege Access Management, Encryption, Operation System Security, Cloud & Container Security Cloud/AWS/Azure Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI The permanent position for Cloud Security Solution Egineer (Home Based), will pay a competitive salary and benefits with a home working model. ...

information security role within a UK-based organisation, ideally supporting public sector or critical services. Practical experience with security monitoring and incident response tooling (SIEM/XDR) Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS. Practical experience with Cyber Essentials/Cyber Essentials Plus certification. ...

environments Technology Skills & Experience Principles of network and boundary protection (firewalls, mail gateways, load balancers, antivirus, IPS/IDS, Diodes) Protective Monitoring systems (SIEM/SOC) and deployment principles Authentication & authorisation technologies (SAML, LDAP, PKI, etc.) Encryption protocols and structures supporting secure deployment Communication & Soft Skills Excellent verbal and written ...

and infrastructure standpoint. Strong networking background, including understanding of network security principles, firewalls, VPNs, routing, and segmentation. Experience with a range of security tools (SIEM, monitoring, detection, and response platforms). Proven experience delivering and supporting certificate automation. Experience operating in enterprise or regulated environments. Comfortable working across project delivery ...

availability, resilience and security posture Your Technical Background You'll bring strong hands-on experience across: Infrastructure VMware/vSphere RHEL & Windows Server Trellix SIEM platforms Linux & Scripting Shell scripting REGEX Firewall configuration Microsoft Stack Active Directory DNS RDS Applications & Protocols LDAP Email, Chat & File standards Web & Chat protocols ...

organisational, analytical, and communication skills Experience with ITSM tools Eligibility for (or current) SC clearance Desirable: Experience in cybersecurity or SOC environments Exposure to SIEM/XDR or security monitoring/incident response Experience using Power BI Confidence handling client-facing escalations and complex conversations Please note - candidates must have ...