1 to 25 of 83 Permanent Azure Sentinel Jobs in the UK excluding London

for a new challenge? Do you have a background in Cyber Security with a strong understanding of security technologies, including SIEM, EDR, firewalls, VPNs, and cloud security (AWS, Azure, GCP) in an MSP or similar environment, along with hands-on experience with Splunk/MS Sentinel/QRadar and KQL? Here at ARM we are recruiting … . 4yrs+ of experience in a cybersecurity role within an MSP or similar environment. Strong understanding of security technologies, including SIEM, EDR, firewalls, VPNs, and cloud security (AWS, Azure, GCP). Strong hands-on experience with Microsoft Sentinel, Cisco Splunk or Palo Alto QRadar, and Detection Rule languages such as KQL. Hands-on experience with threat More ❯

will lead the design and implementation of security frameworks within a Microsoft-centric environment. The ideal candidate will have extensive hands-on experience in Microsoft 365, Entra ID (Azure AD), Microsoft Intune, Defender Suite, and Zero Trust Security Architecture. This role will focus on identity security, endpoint management, compliance, and cloud security, ensuring a secure and scalable IT … Virtual Desktop Infrastructure (VDI) is a plus. Your key responsibilities will include: 1. Microsoft Security & Identity Management Design and implement Zero Trust Security Architecture within Microsoft 365 and Azure environments. Manage Entra ID (Azure AD), Conditional Access, Multi-Factor Authentication (MFA), and Privileged Access Management (PAM). Optimize Microsoft Intune for endpoint security, compliance, and mobile … Microsoft Defender Suite (Defender for Office 365, Defender for Endpoint, Defender for Cloud Apps) for advanced threat protection. Strengthen cloud security posture by managing security configurations across Microsoft Azure environments. 3. Security Automation & Incident Response Automate security workflows with Power Automate, Power Apps, and Microsoft Defender XDR. Deploy Microsoft Sentinel (SIEM) for threat detection, log analysis More ❯

experience. 4+ years in a cybersecurity role, preferably within an MSP or fast-paced environment. Strong hands-on experience with SIEM, EDR, VPNs, firewalls, and cloud platforms (AWS, Azure, GCP). Expertise in Microsoft Sentinel, Cisco Splunk or Palo Alto QRadar, and KQL. Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR More ❯

an initial 6-month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure … approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. … Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code. DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and More ❯

able to obtain SC Clearance or already hold SC clearance. Must have a good understanding on Incident Response approaches Must have knowledge and hands-on knowledge of Microsoft Sentinel (or any SIEM tool). Strong verbal and written English communication. Strong interpersonal and presentation skills. Strong analytical skills Must have good understanding on network traffic flows and able … and Change Management. Ability to work with minimal levels of supervision. Threat Hunting & Detection (IOC & IOA Analysis, TTP Profiling, Cyber Kill Chain) SIEM Fine-Tuning & Optimisation (QRadar, Splunk, Sentinel, ArcSight) Incident Response & Forensics (MITRE ATT&CK, DFIR, Log Analysis) Threat Intelligence Analysis Security Analytics & Automation (SOAR, YARA Rules, Sigma Rules) Malware Analysis & Reverse Engineering Network & Endpoint Security Monitoring … a SOC/NOC environment. Preferably holds Cyber Security Certification e.g. ISC2 CISSP, GIAC, SC-200, Certified SOC Analyst Experience with Cloud platforms (AWS and/or Microsoft Azure) Excellent knowledge of Microsoft Office products, especially Excel and Word Reports to Security Director - NTT DATA UK Security Practice Client Delivery Director - NTT DATA UK Managed Services Who we More ❯

able to obtain SC Clearance or already hold SC clearance. Must have a good understanding on Incident Response approaches Must have knowledge and hands-on knowledge of Microsoft Sentinel (or any SIEM tool). Strong verbal and written English communication. Strong interpersonal and presentation skills. Strong analytical skills Must have good understanding on network traffic flows and able … a job that involves 24/7 operations or on call. Threat Hunting & Detection (IOC & IOA Analysis, TTP Profiling, Cyber Kill Chain) SIEM Fine-Tuning & Optimisation (QRadar, Splunk, Sentinel, ArcSight) Incident Response & Forensics (MITRE ATT&CK, DFIR, Log Analysis) Threat Intelligence Analysis Security Analytics & Automation (SOAR, YARA Rules, Sigma Rules) Malware Analysis & Reverse Engineering Network & Endpoint Security Monitoring … a SOC/NOC environment. Preferably holds Cyber Security Certification e.g. ISC2 CISSP, GIAC, SC-200, Certified SOC Analyst Experience with Cloud platforms (AWS and/or Microsoft Azure) Excellent knowledge of Microsoft Office products, especially Excel and Word Reports to Security Director - NTT DATA UK Security Practice Client Delivery Director - NTT DATA UK Managed Service Who we More ❯

filtering, etc.) Perform vulnerability scans and recommend remediation Deliver client security assessments and reports Support compliance initiatives (ISO 27001, Cyber Essentials, etc.) Tech Environment: Microsoft 365 Defender, Intune, Azure Security Center Firewalls: Palo Alto, Fortinet, SonicWall SIEM: Sentinel, Splunk, or equivalent EDR/XDR solutions (Sophos, CrowdStrike, Defender) Scripting knowledge (PowerShell preferred) What We’re Looking More ❯

years of experience in an IT support role Proven experience in a 2nd/3rd line support role within a Windows-based environment. Strong knowledge of Microsoft 365, Azure AD, and Windows Server environments. Solid networking knowledge (TCP/IP, DNS, DHCP, VPNs, VLANs, firewalls). Experience with IT security principles, practices, and tooling (e.g., EDR, MFA, vulnerability … to confidentiality Attention to detail Desirable but Not Essential: Experience working in a Law firm and/or with legal software Experience working with Microsoft Defender for Endpoint, Sentinel, or other SIEM tools. Exposure to compliance standards such as ISO 27001, Cyber Essentials+, or NIST. Understanding of identity and access management, conditional access, and zero-trust concepts. Certifications More ❯

A multinational semiconductor and software design company seeks a Microsoft Security (Sentinel) Automation & Detection Engineer for a 6-month contract to start ASAP, based in Cambridge ( Hybrid), Inside IR35 Role Overview: Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of Microsoft SIEM detections and security automations. The successful candidate … large-scale, sprint-based, security automation and detection engineering projects in a SOC/Cyber Defense or similar environment Recent hands-on experience with managing and implementing Microsoft Sentinel log sources and detection, with knowledge of the related technical best practices in Sentinel and Azure specifically across Sentinel Content Hub, Sentinel Analytics, Sentinel Automation, Azure Event Hub, Azure Logic Apps Azure Function Apps. Experience in Sentinel/Analytics Rules/Logic App automations KQL Demonstrated ability in cybersecurity, with at least 5 years in a technical role in security operations and/or security software development. Solid understanding of More ❯

A multinational semiconductor and software design company seeks a Microsoft Security (Sentinel) Automation & Detection Engineer for a 6-month contract to start ASAP, based in Cambridge ( Hybrid), Inside IR35 Role Overview: Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of Microsoft SIEM detections and security automations. The successful candidate … large-scale, sprint-based, security automation and detection engineering projects in a SOC/Cyber Defense or similar environment Recent hands-on experience with managing and implementing Microsoft Sentinel log sources and detection, with knowledge of the related technical best practices in Sentinel and Azure specifically across Sentinel Content Hub, Sentinel Analytics, Sentinel Automation, Azure Event Hub, Azure Logic Apps Azure Function Apps. Experience in Sentinel/Analytics Rules/Logic App automations KQL Demonstrated ability in cybersecurity, with at least 5 years in a technical role in security operations and/or security software development. Solid understanding of More ❯

five years working in an Infrastructure Services role, preferably in structured, managed ICT service environments in a senior engineering capacity - SC Clearance/Ability to gain SC Clearance - Azure networking (private endpoints, Azure firewalls, VPNs, IP Groups etc) - Monitoring/Alerting/log Analytics - Azure AD (Entra)/Local AD - Windows Server, Active Directory … scripting and automation - SD-WAN - SAN Storage: (e.g., HPE Nimble) - Microsoft Windows Server OS - IaaS (Windows/Linux) Desirable experience - IT/Related Degree - Microsoft O365 Administrator - Microsoft Azure Administrator - CCNA - MCSA/MCSE - ITIL Foundation V3+ - AWS - Sentinel - Logic Apps - API Mgmt. gateways - Intune and Autopilot - Application Proxies - Data management Gateways - Microsoft Data Protection Manager More ❯

for the unsung heroes who will positively shape our future. What are the day-to-day tasks? Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead the design and deployment of conditional access, Defender for Cloud, Purview DLP, Azure Firewall, and related services. … Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container work flows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust. Harden AKS clusters and cloud-native apps through role-based access … engineering road map in alignment with the Cyber Security Strategy. What skills and knowledge are we looking for? Deep hands-on knowledge of Microsoft security stack (M365 Defender, Sentinel, Intune, Azure Policy, PIM). Proven experience deploying Cisco Meraki and Umbrella in enterprise environments. Experience in securing Kubernetes, cloud-native infrastructure, and containerised apps. 5+ years More ❯

the relevant standards and regulations. You will also provide technical support to other security team professionals and partners. Dimensions: UK Power Networks is expanding its presence in Microsoft Azure and is enhancing its on-prem OT Mission Critical Systems. It is important that a secure environment is developed for the hosting and management of our critical information assets. … and vulnerabilities, as well as respond to them quickly. Certifications : Relevant certifications in cyber security, such as CISSP, CISM, CEH, SSCP, or CCSP. Further technical certifications in Microsoft Azure, Networking, Firewall, SIEM, PAM or VM Products are beneficial. Technical Capabilities : Technical competence in one or more of the following areas IPSec VPN's, Networking, Network Security, MFA, AIX …/Microsoft/Linux Operating Systems, Virtualization Platforms such as (VMware, Hyper-V, OpenShift), Cloud Security in Azure, End Point Security, Email Gateways, Enterprise Web Gateways, PKI and Certificates. Technology Experience : Good working know of the following products, Proofpoint Email/TAP/TRAP/EFD/PSAT, Exchange Online, Global Secure Access, Microsoft Defender for Cloud/ More ❯

endpoint protection, cloud security) 🔹 Lead technical workshops & architecture design sessions 🔹 Drive security strategy & compliance initiatives (ISO 27001, NIST, GDPR) 🔹 Perform threat detection, incident response & forensic analysis 🔹 Utilize Microsoft Sentinel, Cisco Splunk, Palo Alto QRadar, KQL & more What We’re Looking For: 🔸 4+ years in Cyber Security within an MSP or similar environment 🔸 Hands-on expertise in SIEM, EDR … firewalls, VPNs, cloud security (AWS, Azure, GCP) 🔸 Experience with Palo Alto XSOAR or similar platforms 🔸 Familiarity with security compliance & best practices 🔸 Certifications (CISSP, CEH, OSCP, CISM, Security+) are a big plus! 🔥 Ready to take your Cyber Security career to the next level? Apply today! Computappoint Limited operates as an Employment Business and/or Employment Agency in relation More ❯

and presentation skills. Strong analytical skills Must have expertise on TCP/IP network traffic and event log analysis. Must have knowledge and hands-on experience of Microsoft Sentinel (or any SIEM tool). Must have administrative skills in several operating systems, such as Windows, OS X, and Linux Must be proficient in basic shell scripting, creating Snort … security industry, preferably working in a SOC/NOC environment. Preferably holds Cyber Security Certification e.g. ISC2 CC, EPQ Experience with Cloud platforms (AWS and/or Microsoft Azure) Excellent knowledge of Microsoft Office products, especially Excel and Word Reports to Security Director - NTT DATA UK Security Practice Client Delivery Director - NTT DATA UK Managed Services Who we More ❯

Security Operations Centre (SOC) staffed by dedicated professionals. We're seeking a skilled Cyber Security Engineer to join our clients eam. The ideal candidate will have expertise in Azure Sentinel SIEM, Microsoft Defender, and KQL scripting. This role demands a proactive individual who can monitor and protect our organization's digital assets while staying updated on … the latest security threats and trends. If you are interested in this opportunity, apply today! Responsibilities: Implement and manage Azure Sentinel SIEM for threat detection, incident response, and security monitoring. Configure and maintain Microsoft Defender for endpoint protection and threat detection. Develop and maintain KQL scripts for querying and analysing data within Azure Sentinel. … Security Engineer or similar role. In-depth knowledge of Azure Sentinel SIEM, Microsoft Defender, and KQL scripting. One of the following certifications: AZ-500 (Microsoft Azure Security Technologies) or SC-200 (Microsoft Security Operations Analyst). Strong analytical and problem-solving skills. Excellent communication and interpersonal abilities. Ability to work well independently and as More ❯

Wolverhampton. Our client is also open to consider candidates who require visa sponsorship on an individual basis only. Core responsibilities: Assist with scoping, design and build of secure Azure cloud services to support the Modernisation programme and deliver a scalable and flexible cloud security capability to support and facilitate innovation for our clients new ecosystem. Work with the … constraints. Essential technical skills and experience Proven experience in Cloud Infrastructure Engineering/Platform Engineer/Security Engineer role, migrating and integrating cloud foundation services (preferably on MS Azure public cloud) is essential. Proven experience with implementing secure core foundational services in a cloud infrastructure for AD, SecDevOps, Networking Services, at an enterprise level is essential. Proven experience … tools such as Terraform, CloudFormation and adopting secure code practices and guidelines is essential. Advanced understanding and use of scripting languages such as Python, Groovy, Go is essential. Microsoft Azure Security Engineer Associate certification or AWS equivalent. Benefits Package: Visa sponsorship/£90 to100k/Up to 25% Bonus/Work from home options/Flexible working/ More ❯

Wolverhampton. Our client is also open to consider candidates who require visa sponsorship on an individual basis only. Core responsibilities: Assist with scoping, design and build of secure Azure cloud services to support the Modernisation programme and deliver a scalable and flexible cloud security capability to support and facilitate innovation for our clients new ecosystem. Work with the … constraints. Essential technical skills and experience Proven experience in Cloud Infrastructure Engineering/Platform Engineer/Security Engineer role, migrating and integrating cloud foundation services (preferably on MS Azure public cloud) is essential. Proven experience with implementing secure core foundational services in a cloud infrastructure for AD, SecDevOps, Networking Services, at an enterprise level is essential. Proven experience … tools such as Terraform, CloudFormation and adopting secure code practices and guidelines is essential. Advanced understanding and use of scripting languages such as Python, Groovy, Go is essential. Microsoft Azure Security Engineer Associate certification or AWS equivalent. Benefits Package: Visa sponsorship/£90 to100k/Up to 25% Bonus/Work from home options/Flexible working/ More ❯

making improvements, as necessary. Collaborate with third-party vendors and service providers to leverage automation opportunities and ensure successful integrations. Lead technical migration of log sources into Microsoft Sentinel SIEM. Required Skills and Experience: Demonstrated ability in cybersecurity, with at least 3 years in a technical role in security operations and/or security software development. Solid understanding … of security operations, automations standard processes, detection engineering and SIEM management. Experience with cloud security tools and platforms (e.g. Azure, AWS Google Cloud) and their integration into SOC operations. Experience using Microsoft Sentinel SIEM. Other vendor-specific certifications for SOAR platforms (e.g. Splunk SOAR, Palo Alto Cortex XSOAR). Experience contributing to large-scale, sprint-based More ❯

written English communication skills. Excellent interpersonal and presentation skills. Strong analytical skills. Expertise in TCP/IP network traffic and event log analysis. Hands-on experience with Microsoft Sentinel or similar SIEM tools. Administrative skills across multiple operating systems (Windows, OS X, Linux). Proficiency in shell scripting, creating Snort rules, or other log-searching query languages. Confidence … security, preferably in a SOC/NOC environment. Cyber Security Certifications such as ISC2 CC or EPQ are preferred. Experience with Cloud platforms (AWS and/or Microsoft Azure). Proficiency in Microsoft Office, especially Excel and Word. Reports to: Security Director - NTT DATA UK Security Practice Client Delivery Director - NTT DATA UK Managed Services Who we are More ❯

Cloud Security Engineer – M365, Azure, E5, CIS , Investigations, Zscaler, DLP, EntraID, Purview, Best Practices, Email, Darktrace, Network, Server Hardening, SecOps, Best Practice, Risk, Financial Services, Infrastructure, InfoSec, MFA, MDM, Encryption, Firewalls, Governance, Microsoft, Windows, O365, Defender, Hybrid (2d/week Liverpool) Outside IR35 This is a fantastic Cloud Security Engineer contract opportunity to join a leading tech organisation. … office , remote the other 3. The Cloud Security Engineer is Outside IR35. As Cloud Security Engineer you will act as security authority for the existing M365 and Cloud (Azure) environments, championing best practice (eg CIS) whilst being hands on from an engineering perspective. As Cloud Security Engineer solid Azure, M365 and E5 suite knowledge is essential. … Strong Infrastructure with all things InfoSec related regarding Windows, Microsoft 365, Office 365, Azure, SharePoint environments, firewalls etc is essential as Cloud Security Engineer including Networking and Server Hardening etc. Experience with DLP (Data Loss Prevention) is essential as Cloud Security Engineer with knowledge of Zscaler being essential, Darktrace is a bonus. Knowledge of best practices and procedures More ❯

Azure Solutions Architect (Contract) IaC/Terraform | DevOps | Azure Certifications | Mission-Critical Location: United Kingdom (Hybrid/Remote options depending on project requirements) Contract Type: Day Rate Contract Duration: Initial 6-12 months (extension likely) Role Overview We are seeking an experienced Azure Solutions Architect to join a complex, mission-critical programme within the … defence, aerospace, and security sector. The successful candidate will be responsible for designing, implementing, and overseeing cloud-based solutions leveraging Microsoft Azure services, working closely with multidisciplinary teams including software engineers, DevOps, security specialists, and programme managers. You will act as the primary technical authority for Azure cloud architecture, ensuring that proposed solutions are scalable, secure … performant, and aligned with customer and regulatory requirements. The role demands a combination of deep technical expertise, strong stakeholder engagement skills, and a comprehensive understanding of enterprise-grade Azure deployments, particularly in highly regulated or classified environments. Key Responsibilities Lead the architecture and design of cloud-native and hybrid Azure solutions across multiple programmes. Develop high More ❯

hour shifts (7am/7pm) on a 4-on-4-off pattern. What will you bring? Experience in a SOC analyst role Experience using SIEM (ideally Microsoft Sentinel) Experience using EDR (ideally Microsoft Defender) Excellent written and verbal communication skills Experience configuring and deploying Microsoft technologies such as Microsoft Defender and Azure Experience using and developing … of Windows and Linux server and endpoint operating systems Ability to research new concepts and present internally them to the team A cybersecurity related qualification, particularly Microsoft/Azure eg SC-200, Blue Team Level 1, Security+ Experience working in an IT department/organization in a role that includes supporting users, troubleshooting issues, following ITSM processes What More ❯

with third-party IT providers when needed. Support documentation, IT policies, training and internal performance tracking. Tech you'll work with: Windows Server 2019/2022, Windows 11, Azure Hybrid AD Microsoft 365 Admin, Teams, Intune/Autopilot Cisco Firewalls, VLANs, VPNs, Umbrella VMware, Datto (VM management & restoration), RDS Active Directory, Group Policy, Powershell Sentinel, Defender More ❯

in shift patterns of 4 days on, 4 days off. Ability to obtain or hold SC Clearance. Good understanding of Incident Response approaches. Hands-on knowledge of Microsoft Sentinel or similar SIEM tools. Strong verbal and written English communication skills. Interpersonal and presentation skills. Strong analytical skills. Understanding network traffic flows, normal vs. suspicious activities. Knowledge of Vulnerability … Experience 3-5 years in IT security, preferably in a SOC/NOC environment. Cyber Security Certifications (e.g., GIAC, ISC2, SC-200) preferred. Experience with Cloud platforms (AWS, Azure). Proficiency in Microsoft Office, especially Excel and Word. Reports to Security Director - NTT DATA UK Security Practice Client Delivery Director - NTT DATA UK Managed Services Who we are More ❯