security projects and assisting with regulatory compliance. Daily tasks will involve the following: * Endpoint monitoring and analysis. * Incident readiness and handling as part of the ComputerSecurityIncidentResponse (CSIRT) team. * Monitor and administer Security Information and Event Management (SIEM). * Malware analysis and forensics research. * Understanding/differentiation of intrusion attempts and false positives. * Investigation tracking and threat resolution. More ❯
are effective, enforceable, and reflective of regulatory and operational needs. Provide strategic input into the securityincidentresponse capability, ensuring robust governance, timely escalation, and cross-functional collaboration with CSIRT and key stakeholders. Collaborate on the development and continual improvement of enterprise-wide remediation strategies and readiness planning. Provide strategic insight for information security risk management, ensuring effective collaboration to More ❯
Security Operations Centre (SOC) and manage threat detection, monitoring, and response Technical Skills & Experience Considerable experience of operating Information Technology Information Library (ITIL) and Cyber SecurityIncidentResponseTeam (CSIRT) processes and standards. Extensive working knowledge of available technologies and defining appropriate strategies to create efficient and effective solutions and services Able to develop and manage high-level problem resolution More ❯
Security Operations Centre (SOC) and manage threat detection, monitoring, and response Technical Skills & Experience Considerable experience of operating Information Technology Information Library (ITIL) and Cyber SecurityIncidentResponseTeam (CSIRT) processes and standards. Extensive working knowledge of available technologies and defining appropriate strategies to create efficient and effective solutions and services Able to develop and manage high-level problem resolution More ❯
Birmingham, Staffordshire, United Kingdom Hybrid / WFH Options
Square One Resources
Extensive experience in WAF management, tuning, and engineering, with a strong understanding of web application security principles. Proven ability to proactively identify and mitigate false positives. Background in SOC, CSIRT, AppSec, or Ethical Hacking with hands-on log analysis experience. Proficiency in analysing traffic patterns using tools such as Splunk, Wireshark, or custom scripts. Experience working with at least three More ❯
early key risk identification, status reporting and escalation where required. Skills Required Extensive experience with Web Application Security log analysis and that is derived from a Cyber SOC/CSIRT work background who is willing to up-skill into a WAF Engineering SME across CN WAF (AWS, Azure, GCP, Modsec) and Multi-Vendor WAF products (F5, Akamai etc.) Strong experience More ❯
role will cover WAF tuning via detailed log analysis, false positive detection and mitigation, and making tuning and configuration recommendations. The ideal candidate will have experience in SOC or CSIRT and AppSec or Ethical Hacking for in-depth log analysis and have previously worked with at least three major WAF vendors such as Akamai, F5, AWS, GCP, etc. Key Responsibilities … and engineering, with a strong understanding of web application security principles. Proven track record of proactively identifying and mitigating false positives to optimize WAF performance. Background in SOC or CSIRT and AppSec or Ethical Hacking, demonstrating hands-on experience for the key responsibilities Proficiency in log analysis tools and techniques, with the ability to identify patterns and anomalies in web More ❯
