1 to 25 of 48 Permanent SIEM Jobs in the UK excluding London with Remote Work Options

security metrics and reports, maintain comprehensive documentation, and develop new procedures as necessary. Security Platforms Management : Support, maintain, and govern all security platforms, including SIEM, NAC, Firewalls, endpoint security, and more. Threat Analysis and Response : Conduct advanced analysis of network, endpoint, and log data to determine root causes and impacts … policies and procedures. Key Requirements: Proven experience in leading and mentoring a technical team within an IT function. Strong expertise in using and supporting SIEM tools , Network Access Control , and Next-Gen Firewalls . Demonstrated ability to conduct thorough threat analysis , forensic investigations , and manage cyber security incidents . Experience more »

Minimum of 5 A-C grades (or equivalent) at GCSE including Maths and English. * Strong knowledge of security technologies (across multiple domains such as SIEM, Firewall, Network IPS, DLP, Cloud Security etc), information security concepts, and familiarity with security products. * A good understanding of CSOC operations and managed security solutions more »

implementing security by design. Other essentials: Background that covers cyber technology, security operations, incident response, architecture, and training. Experience in implementing technology such as SIEM, XDR, SOAR, etc. Background in Financial Services or other regulated industries (desired) Experience in leading through leaders and developing an internal capability Good soft skills more »

Role : SIEM SOC Engineer - L2 Job Type: Permanent Location: Warrington, Hybrid Ready to leverage your proficiency in Cybersecurity? Are you looking for an exciting opportunity to build a strong performing team, encouraging best practices in Cybersecurity? Join us as a SIEM SOC Engineer - L2 ! Careers at TCS: It means more … bring products to life. Work with customers and identify opportunities to support their strategy and improve their processes across functions. The Role: As a SIEM SOC Engineer - L2 , you will be responsible for collaborating with teams to design and implement Sentinel for specific client needs. Key Responsibilities: Collaborate with teams … in a SOC environment. Understanding of security concepts, threats, and vulnerabilities. Proficiency in KQL for querying and analyzing security data. Knowledge of troubleshooting with SIEM tools. Knowledge of developing queries and reports for log source integration. Experience in lookups and field value mapping. Ability to understand security threats landscape and more »

operation with four shift teams working in a standard rotation. They are responsible for utilising the SOC's Security Incident and Event Management (SIEM) toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks. These roles require a minimum of SC clearance and be prepared more »

tools to enable the detection and defence from threats to the society. Essential skills: • Experience of configuring security tools including one of the following: SIEM, EDR, AV, WAF or Secure Web Gateways. • Experience of integrating tools in an enterprise environment. • Proven problem-solving, analytical skills • Great experience of Microsoft Defender more »

Do you have extensive experience with Splunk? Eligible for DV clearance? And can be based in either Gosport or Glasgow with some remote working? If yes to all of this then read on! As a Managing Security Engineer, you will more »

Do you have extensive experience with Splunk? Eligible for DV clearance? And can be based in either Gosport or Glasgow with some remote working? If yes to all of this then read on! As a Managing Security Engineer, you will more »

of our technical security infrastructure and policies.Develop technical solutions and new security toolsets to mitigate security vulnerabilities and automate repeatable tasks.Build, implement and tune SIEM event correlation rules, logic, and content to filter out security events associated with known network behaviour, known false positives and/or known errors.Build, implement more »

Proven experience in deploying new projects, services and features to cloud. Ability to support SaaS platforms such as Mimecast, Varonis, Identity Management, Cisco Umbrella, SIEM and SASE services, as well as traditional on-premises servers and Windows operating systems, VMware and Storage Knowledge of device and mobility management and applied more »

etc Excellent understanding of cybersecurity trends Ability to interpret customer landscape and challenges Strong presentation and client-facing skills Desired Skills: Knowledge across EDR, SIEM, Vulnerability Management Operational experience with security technologies Existing relationships in Manchester area Self-motivation and ability to work autonomously Job Specifics: This is a hybrid more »

with ITIL4 practices. Deliver concise progress reports and compelling presentations to clients. Serve as a subject matter expert in Security Information and Event Management (SIEM), providing recommendations for product enhancements. Conduct thorough analysis of SIEM outputs, promptly identifying and escalating any incidents or breaches. Provide assurance support to team members … Information Systems Security Professional (CISSP). Experience in Government/Ministry of Defence settings is advantageous. Proficiency in implementing ITIL processes. Strong expertise in SIEM operations. Competence in Risk Management and NIST Cyber Security Controls. Client-facing experience with exceptional stakeholder management skills. Ability to thrive in a fast-paced more »

other administrative tasks as needed. Key Technologies and Skills: Microsoft Windows Server Active Directory Linux IBM operating systems Microsoft Excel QUALYS PALO ALTO CORTEX SIEM tools (e.g., Splunk, ArcSight, LogRhythm) Patching and Update Management Security Monitoring Automation tools (e.g., Ansible, Puppet, Chef) Scripting languages (e.g., Python, PowerShell, Bash) Compliance frameworks more »

Engineer you'll work handling both reactive and proactive security engagements. Your responsibilities will include: ✨Protective Monitoring: Utilize industry-leading Security Information & Event Management (SIEM) and Intrusion Detection Systems (IDS) to monitor and detect threats. Provide advice and guidance to clients targeted by cyber attacks and malicious activity. ✨Incident Reporting … Communication: Communicate directly with customers regarding threats and alerts. Prepare and present findings to clients. ✨Technical Assistance: Assist with the onboarding process, including deploying SIEM, Endpoint Detection and Response (EDR), and Vulnerability Management tools. Provide support for active directory administration and firewall management. Key Skills and Traits Needed: Must be more »

on automation in collaboration with the Head of Information Security Operations and the rest of the team. OxCERT runs an on-premises Elasticsearch-based SIEM solution, an Intrusion Detection System (IDS), and a vulnerability scanning service as well as other open source and commercial tools. We are one of the … Software and Open Source technologies and actively supports several related project communities. Current projects include the enhancement of the existing Elastic based security information and event management system, the deployment of a new incident response tool, and development of an IT forensics capability. The team has achieved standing and recognition more »

Python, Bash, or PowerShell. Familiarity with security frameworks and standards such as NIST, CIS, and ISO 27001. Experience with security information and event management (SIEM) tools. Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Relevant certifications such as AWS Certified Security Specialty, CISSP, or CEH are a more »

other administrative tasks as needed. Key Technologies and Skills: Microsoft Windows Server Active Directory Linux IBM operating systems Microsoft Excel QUALYS PALO ALTO CORTEX SIEM tools (e.g., Splunk, ArcSight, LogRhythm) Patching and Update Management Security Monitoring Automation tools (e.g., Ansible, Puppet, Chef) Scripting languages (e.g., Python, PowerShell, Bash) Compliance frameworks more »

other administrative tasks as needed. Key Technologies and Skills: Microsoft Windows Server Active Directory Linux IBM operating systems Microsoft Excel QUALYS PALO ALTO CORTEX SIEM tools (e.g., Splunk, ArcSight, LogRhythm) Patching and Update Management Security Monitoring Automation tools (e.g., Ansible, Puppet, Chef) Scripting languages (e.g., Python, PowerShell, Bash) Compliance frameworks more »

other administrative tasks as needed. Key Technologies and Skills: Microsoft Windows Server Active Directory Linux IBM operating systems Microsoft Excel QUALYS PALO ALTO CORTEX SIEM tools (e.g., Splunk, ArcSight, LogRhythm) Patching and Update Management Security Monitoring Automation tools (e.g., Ansible, Puppet, Chef) Scripting languages (e.g., Python, PowerShell, Bash) Compliance frameworks more »

methodologies. Proficient with Microsoft, Windows, and related technologies. Familiarity with networking and network infrastructure. Experienced in designing, implementing, and managing Security services such as SIEM, Endpoint protection, EDR, and Vulnerability management platforms. To be considered for this position, please apply today or contact Sophie on snorton@weareninetwenty.com more »

reduction across all IT Systems Essential Skills & Experience: Experience with analysing event logs and recognizing cyber intrusions or attacks. Experience using tools such as SIEM, IDS/IPS, antivirus and endpoint protection (e.g. Microsoft Sentinel and Microsoft Defender for Endpoint) Understanding of relevant Cyber Security standards, legislation and regulations including more »

ideally VMWare) Backup solutions (ideally VEEAM) Desirable: Knowledge and experience of: MS 365 applications e.g. SharePoint, Teams, OneDrive, etc. SSL certificate management Vulnerability management SIEM experience (Ideally MS Sentinel) Infrastructure As Code (Ideally Terraform and Ansible) Powershell SQL Networking experience (Cisco switch, firewalls) Cisco Umbrella Nutanix Hyperconverged Infrastructure support Netapp more »

of MS Windows Servers Active Directory domain knowledge Hypervisor virtualisation management (ideally VMWare) Backup solutions (ideally VEEAM) Infrastructure performance monitoring Additional Technologies: Vulnerability Management SIEM Technologies Powershell Infrastructure As Code (ideally Terraform and Ansible) Essential Desirable Knowledge and Experience: SQL Networking experience (Cisco switch, firewalls) Cisco Umbrella Nutanix Hyperconverged Infrastructure more »

to state affiliated groups. Preventing and detecting common attacker techniques and the MITRE ATT&CK framework. Tuning and configuring cyber security tools, for example SIEM and EDR tooling. How enterprise IT networks, Active Directory and Azure AD operate. Service Management of key partners This role comes with excellent benefits such more »

IT Recruitment specialist that provides support to the clients across UK, Europe and Australia. We have an excellent job opportunity for you. Role Title: SIEM/Incident SME(Need Active DV Clearance) Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or … cyber defence hardware. • Support Junior Analysts to manage SOC systems. • Previous experience of Enterprise ICS/network architectures and technologies • Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. • Experience as a mentor/coach to junior analysts Your … C2M2) • Excellent communication skills • Experience of writing Defence/Government documentation Desirable Qualifications: • Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) • SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) • Advanced Analyst Course (SANS SEC503 or equivalent more »