1 to 25 of 40 Permanent Azure Sentinel Jobs in the UK excluding London

will evaluate application-generated logs, develop threat detection strategies, and report findings to the Information Security team. This role requires deep expertise in Microsoft Azure security tools, log analytics, and automation to enhance the customer’s application anomaly detection capabilities. Key Responsibilities: • Develop detailed threat models tailored … large portfolio of applications with varying threat categories. • Analyze logs generated by applications using Azure Log Analytics and Azure Sentinel to identify anomalies and potential threats. • Design, build, and maintain KQL queries to extract and correlate security-relevant data from logs. • Implement automated alerting ...

against external threats and adversaries. Position Overview: My client is seeking a proactive and motivated Cloud Security Engineer with a strong focus on Microsoft Azure security to join a growing team. This role would suit a security engineer or SecOps professional who understands the importance of maintaining highly … secure environments and is keen to work across cloud, endpoint, and infrastructure domains. While the primary focus is Azure security engineering, experience with hardware and traditional infrastructure security would be advantageous. Team Principles: The team operates best when they: Remain curious and passionate about their work Communicate clearly ...

Azure Cloud Engineer Hybrid (Hertfordshire-based office) Up to £60,000 + benefits We're working with a organisation investing in its cloud and data capabilities, and they're looking for an Azure Cloud Engineer to play a key role in shaping and securing their Azure … across cloud infrastructure, security, and data platforms. The Role You'll be responsible for designing, building, and maintaining a secure and scalable Microsoft Azure environment, while supporting the organisation's ongoing cloud transformation. This role combines hands-on engineering with strategic input, giving you the opportunity to recommend ...

design" solutions are woven into the fabric of the entire ecosystem. Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra … overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows ...

influence decisions and deliver real value. You will bring: Strong understanding of SIEM tools and attacker behaviours. Handson experience with O365, M365 and Azure security administration. PowerShell scripting capability. Experience working with firewalls, IDS, WAF, network segmentation and wider security controls. Broad technical knowledge spanning Windows, networking … into meaningful technical solutions. Experience writing technical design documents. And it would be great (but not essential) if you also have experience with: Azure Sentinel, AlienVault, AWS or GCP security controls. Linux, data storage, or scripting in Python or Bash. What can we offer you? Through ...

Strong understanding of cloud and hybrid security environments, including Microsoft 365 and Azure. Strong operational expertise across EDR/XDR, SIEM (e.g., Microsoft Sentinel, Splunk), identity protection, and vulnerability management. Experience with security audits, compliance programmes, and regulated industry requirements. Excellent communication and influencing skills, with confidence engaging ...

seeking an experienced Azure Cloud Security Architect to lead the design, implementation, and governance of security controls across our Azure cloud platform. This role requires a hands-on technical expert with deep experience in Microsoft Defender for Cloud, Azure-native security services, and enterprise … platform security architecture. What you'll bring: Design and implement secure Azure cloud architectures aligned with security best practices and compliance requirements Lead implementation, configuration and optimisation of Microsoft Defender for Cloud Develop and enforce Azure security policies, standards, and guardrails Implement Zero Trust principles across ...

expected to work with a high degree of autonomy. What You Will Be Doing Monitoring and analysing threat data from Microsoft Defender and Sentinel and translating findings into clear, actionable outcomes Reviewing and implementing Microsoft and third party security recommendations across a broad and complex technology estate Managing … delivering security improvements through formal change management processes, ensuring changes are properly scoped, approved and tracked Maintaining security standards across Azure, M365, Active Directory, Dynamics, Power Apps and SQL environments Aligning security posture against ISO 27001, NIST, NCSC, CISA and Cyber Essentials+ frameworks Producing reports and dashboards ...

hiring a Senior Azure Platform Engineer with a strong security focus to join a major UK enterprise organisation undergoing large-scale cloud transformation. This is a hands-on senior individual contributor role within the Platform Engineering function, working at the intersection of platform, architecture, and cyber security … strengthen the organisation’s Azure security posture. You’ll collaborate closely with Cyber Security (including SOC teams), Architecture, and Engineering to ensure the platform is secure by design and compliant by default. This is an engineering-led role focused on hands-on implementation — not just governance or policy ...

escalation point for 1st Line Engineers, taking ownership of more complex issues. Troubleshoot and resolve advanced incidents across Microsoft 365, Azure AD, NinjaOne, SentinelOne, Barracuda, networking technologies, virtualisation and Windows Server environments. Deliver remote and on-site support where required. Ensure all tickets are handled within agreed SLAs ...

Cloud Security Engineer (Azure/M365) | SC Clearance needed | Remote + Client Visits We're working with a growing, security-focused organisation that is investing heavily into its cloud security capability and looking to bring in a Cloud Security Engineer to support both internal platforms and client environments. … work in Cheltenham office if preferred. The Role: You'll play a key role in designing, improving and maintaining cloud security across Azure and Microsoft 365, working closely with technical teams and stakeholders to ensure environments are secure, compliant and continuously improving. This is a hands-on position ...

work closely with the Information Security team to analyse application logs, build detection logic, and implement automated alerting and response workflows using Microsoft Azure security technologies. This is an excellent opportunity for a hands-on security professional who enjoys combining threat modelling, detection engineering, and Azure … highly impactful role. Key Responsibilities Design and implement threat models across a large and diverse application estate Analyse application logs using Azure Log Analytics and Microsoft Sentinel to identify anomalies and potential threats Develop and maintain KQL queries to extract and correlate security-relevant data Build ...

SIEM and XDR tooling Developing parsers, rules and detection logic Running vulnerability and exposure assessments using leading platforms Supporting cloud environment reviews across Azure, AWS or GCP Delivering clear technical documentation to customers Collaborating with internal SOC Engineers on innovation and roadmap work What we're looking … Experience across SOAR platforms (XSOAR, Logic Apps, Siemplify) Strong scripting ability (Python, PowerShell) Hands‐on SIEM engineering (Sentinel, Chronicle or similar) Knowledge of XDR/EDR tooling (Defender, CrowdStrike, SentinelOne) Experience with Tenable, Qualys or Rapid7 Understanding of exposure management or CTEM tooling Strong communication skills and customer ...

Previously worked as a Threat Detection Engineer or in a similar role. Must have strong expertise in KQL. Hands-on experience with Microsoft Sentinel and Defender (Endpoint, Office 365). Familiarity with Microsoft Entra ID, including Identity Governance. Experience with Microsoft Purview, particularly DLP and data protection tools. … Exposure to cloud-native logging in Azure and Kubernetes environments. Understanding of “detection as code” or “everything as code” approaches, including CI/CD pipelines. Experience working with or alongside MSP SOC teams. Awareness of Agile methodologies and ways of working. Knowledge of attacker TTPs, threat modelling ...

London are looking for a seasoned Information Security Lead to be the authority across all Information Security and Cloud Infrastructure; ensuring Azure, Microsoft 365, and SaaS platforms are secure, resilient, and compliant. The role combines hands-on technical security expertise with risk management, governance, and assurance, supporting business … enablement, rather than day-to-day service desk operations. The ideal candidate will have strong technicals skills across the following: Microsoft Entra ID (Azure AD): Conditional Access, MFA, Passwordless authentication, Identity Protection, PIM, Phishing resistant MFA configurations Zero Trust architecture and least-privilege access models Identity governance, access ...

Previously worked as a Threat Detection Engineer or in a similar role. Must have strong expertise in KQL. Hands-on experience with Microsoft Sentinel and Defender (Endpoint, Office 365). Familiarity with Microsoft Entra ID, including Identity Governance. Experience with Microsoft Purview, particularly DLP and data protection tools. … Exposure to cloud-native logging in Azure and Kubernetes environments. Understanding of “detection as code” or “everything as code” approaches, including CI/CD pipelines. Experience working with or alongside MSP SOC teams. Awareness of Agile methodologies and ways of working. Knowledge of attacker TTPs, threat modelling ...

prem LDAP applications, and outdated protocols like Kerberos and NTLM. Automation: Streamline operations by automating identity tasks using PowerShell, Microsoft Graph API, and Azure CLI. Governance & Compliance: Ensure all platforms meet hardening standards and assist with audit readiness for frameworks such as ISO 27001, GDPR, or PCI DSS. … What We’re Looking For Essential Experience: Expertise in Microsoft Identity: Proven track record with Azure Entra ID, Active Directory, and managing hybrid-to-cloud transitions. Device Management: Strong proficiency in Microsoft Intune/Endpoint Manager and modern Windows device transformation. Security Tooling: Hands-on experience deploying ...

security, and champion modern, automated defences across the digital estate. Key Responsibilities Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead deployment of Conditional Access, Microsoft Defender for Cloud, Purview DLP, Azure Firewall … related Microsoft security technologies. Embed security into DevOps pipelines, CI/CD workflows, IaC, and containerised environments. Automate detection and response using Microsoft Sentinel SOAR, custom playbooks, automation rules, and telemetry pipelines. Platform Security Oversight Own endpoint security through Intune, ensuring robust device compliance aligned with Zero Trust ...

security, and champion modern, automated defences across the digital estate. Key Responsibilities Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead deployment of Conditional Access, Microsoft Defender for Cloud, Purview DLP, Azure Firewall … related Microsoft security technologies. Embed security into DevOps pipelines, CI/CD workflows, IaC, and containerised environments. Automate detection and response using Microsoft Sentinel SOAR, custom playbooks, automation rules, and telemetry pipelines. Platform Security Oversight Own endpoint security through Intune, ensuring robust device compliance aligned with Zero Trust ...

security, and champion modern, automated defences across the digital estate. Key Responsibilities Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead deployment of Conditional Access, Microsoft Defender for Cloud, Purview DLP, Azure Firewall … related Microsoft security technologies. Embed security into DevOps pipelines, CI/CD workflows, IaC, and containerised environments. Automate detection and response using Microsoft Sentinel SOAR, custom playbooks, automation rules, and telemetry pipelines. Platform Security Oversight Own endpoint security through Intune, ensuring robust device compliance aligned with Zero Trust ...

Strong leadership and team management capability * Expertise in Incident Response and Vulnerability Management processes * Hands-on experience with Microsoft security technologies (Defender suite, Sentinel) * Experience developing and maintaining operational security procedures and documentation * Alert tuning and optimisation to reduce false positives * Ability to define, measure, and report … automation techniques (SOAR tools, scripting) * Understanding of threat intelligence and proactive threat hunting * Strong communication and stakeholder engagement skills DESIRABLE * Familiarity with Azure and AWS security operations * Understanding of regulatory and compliance requirements in operational security * Certifications such as CISSP, CISM or equivalent TO BE CONSIDERED: Please either ...

Design, Coding, Application Security, IAM, Network Security, Security Operations, Privilege Access Management, Encryption, Operation System Security, Cloud & Container Security Cloud/AWS/Azure Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI The permanent position for Cloud Security Solution Architect (Home Based ...

Design, Coding, Application Security, IAM, Network Security, Security Operations, Privilege Access Management, Encryption, Operation System Security, Cloud & Container Security Cloud/AWS/Azure Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI The permanent position for Cloud Security Solution Architect (Home Based ...

follow agreed processes. Keep up to date with threats and recommend improvements. What you will bring: Clear understanding of Information Security fundamentals Sentinel OR Splunk experience. Familiarity with security monitoring/protective technologies. Good project-management skills; able to juggle multiple priorities. Analytical and systematic problem-solving approach … deadlines and collaborate in a busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experienceespecially Sentinel or Splunk. If you are interested in this role but not sure if your skills ...

endpoint management. This includes Windows Active Directory and integration with Microsoft Entra ID, unified security operations with Microsoft Defender XDR and Microsoft Sentinel, and modern endpoint and device management with Microsoft Intune and Microsoft Configuration Manager (SCCM/ConfigMgr), providing practical guidance, design assurance and implementation support where … Travel: Ability to travel to different sites and locations on a weekly basis Critical Competencies – Technical Competencies (Essential) Strong architectural capability across Microsoft Azure and core Microsoft cloud services Proficiency in security technologies, frameworks, and secure architecture patterns (including Microsoft Defender XDR and Microsoft Sentinel) Strong ...