1 to 25 of 119 Permanent SIEM Jobs in the UK excluding London

a training program for the team to ensure the team is capable to respond to the latest cyber threats and attack methods.Collaborate with the SIEM and Threat Intel teams to effectively contribute to increasing security posture at the organisation.Provide mentorship, guidance and positive recognition to security analysts and team leads.Improve … operations teamIn-depth knowledge of cyber threat landscape and the technics, tactics & procedures of advanced adversariesIn-depth knowledge of security technologies, tools, methodologies including SIEM, IDP/IPS, EDRExcellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholdersAbility to work more »

operation with four shift teams working in a standard rotation. They are responsible for utilising the SOC's Security Incident and Event Management (SIEM) toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks. These roles require a minimum of SC clearance and be prepared more »

you will have good security qualifications such as SANS/CREST qualifications, however, equivalent experience is just as well regarded. Strong working knowledge of SIEM, SOAR, EDR tooling is essential, as is an understanding of the MITRE ATT&CK framework. Experience in CNI/Defence sectors is also desirable.This is more »

Job description: Title: SSPM - Secure 3rd Party SaaS integration/CSPM Consultant Skills: SSPM, Cyber Threats, SIEM, AWS, Azure Duration: 6 months Location: Kuntsford/Remote We are IT Recruitment Specialists partnered with a prestigious Global Consultancy who required a SSPM - Secure 3rd Party SaaS integration/CSPM Consultant for more »

Do you have extensive experience with Splunk? Eligible for DV clearance? And can be based in either Gosport or Glasgow with some remote working? If yes to all of this then read on! As a Managing Security Engineer, you will more »

About The RoleHippo Digital is recruiting a Principal SIEM Engineer to join our Hippo Herd. SIEM Engineers work in multi-disciplinary teams who build, support & maintain enterprise scale data platforms and solutions helping clients to drive transformation through improved data access and visibility.As a Principal SIEM Engineer, you will have … in a nutshell:Splunk Core Certified accredited SME acting as both consultant and engineer on large scale Splunk Enterprise Security projectsCreating/tuning of SIEM detection rules to satisfy client requirementsProviding technical consultancy for Hippo clients predominantly in the cyber security spaceWorking in hybrid teams across multiple clientsLeading and providing more »

as necessary for the protection of Firm assets. Provide input, create documentation, and review information security policies and procedures. Utilize a common security toolset (SIEM, sniffer, IDS, vulnerability scanner, etc., to identify issues and analyze compliance with existing policies and procedures. Provide reports to the Information Security Manager. Maintain the … and utilities. Utilizes remote control and remote access software in the performance of her/his duties. Utilize standard security tools such as a SIEM, endpoint/network protection technologies, DLP, two-factor, vulnerability scanners, custom scripts, and packet analyzer. Capable of moving 40 pounds of material or equipment without more »

range of services and multi vendor solutions, including Microsoft security, compliance and identity services. Managed SOC Managed XDR Cloud Security (M365, Azure, AWS) Managed SIEM (Sentinel + multi vendor) Security Professional Services Pen Testing Red Teaming ISO27001/Cyber Essential Plus Apps/Infra testing You role will be to more »

The successful candidates will work in the Security Operations Centre on both reactive and proactive security engagements with regards to Security Information & Event Management (SIEM), Intrusion Detection Systems (IDS), Cyber Threat Intelligence (CTI) and Threat Mining (TM). Role Responsibilities Provide around the clock protective monitoring through the use of … industry leading SIEM, IDS and threat Intelligence Technologies. Provide advice and guidance to client targets of cyber-attacks and malicious activity to a high standard. Provide incident reporting capabilities ensuring that all information is provided in a timely, accurate and effective manner. Provide analytical support to other SOC team members … during security incidents and Threat Mining engagements. Assistance with onboarding process - deployment of SIEM , EDR and Vulnerability Management tools Assistance with active directory administration. Assistance with firewall management. Key Skills Experience in a SOC environment Excellent communication skills and comfortable in a client facing role. A keen interest in cyber more »

range of services and multi vendor solutions, including Microsoft security, compliance and identity services. Managed SOC Managed XDR Cloud Security (M365, Azure, AWS) Managed SIEM (Sentinel + multi vendor) Security Professional Services Pen Testing Red Teaming ISO27001/Cyber Essential Plus Apps/Infra testing You role will be to more »

tools to enable the detection and defence from threats to the society. Essential skills: • Experience of configuring security tools including one of the following: SIEM, EDR, AV, WAF or Secure Web Gateways. • Experience of integrating tools in an enterprise environment. • Proven problem-solving, analytical skills • Great experience of Microsoft Defender more »

using vSphere, SolarWinds, Trend Intelligence Driven Defence, Cyber Kill Chain, Unified Enterprise Defence NIST Cyber Security Framework and C2M2 Awareness of the current market - SIEM platforms, data analytics, Network Security implementations To Be Considered Please either apply by clicking online or emailing me directly at (see below) For further information more »

be occasional travel to other company offices/data centres. Essential experience: - IDS/IPS, Firewall, VPN, EDR/XDR - Security Information Event Management (SIEM) tools - TCP/IP - Network Troubleshooting - Penetration testing - ITIL If this sounds of interest please apply or contact (url removed)/(phone number removed) Spectrum more »

a consulting or national security environment. Strong understanding of security principles, risk management, and security frameworks. Proficiency in security tools and technologies such as SIEM, IDS/IPS, firewall, and antivirus solutions. Knowledge of network protocols, security standards, and best practices. Excellent problem-solving and analytical skills. Strong communication and more »

will play a pivotal role in safeguarding our organization's critical infrastructure and data against cyber threats. Your expertise in designing, implementing, and maintaining SIEM solutions will help us proactively identify and mitigate security incidents, ensuring the confidentiality, integrity, and availability of our systems. Responsibilities: - Work with the technical lead …/SME for the CSOC and SIEM service offering by managing and improving the platforms to meet the requirements of the business and/or client - Assist in establishing and maintaining processes, tooling and metrics that help provide a high level of productivity, supportability, and operational readiness - Actively participate in … implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical and problem-solving skills with the ability to handle complex security more »

for building the security architecture and systems within the SOC, as well as maintaining and improving the security monitoring and analysis tools. As a SIEM subject matter expert, you will also be responsible for the maintaining and recommending new tools, as well as updating the systems. You will be a … responsible for the daily maintenance and support of applications and related hardware associated with our solutions for intrusion detection (IDS), Security Incident Event Monitoring (SIEM), and packet capture (PCAP). You will be expected to deliver upgrades and manage configuration of technology that underpins cyber operations, this is will include … be a subject matter expert for these tools, providing guidance to our Security Operations Centre. Main Duties Responding to requests from SOC to tune SIEM, IDS and associated tooling in an effective and timely manner. Working with threat management teams and liaising directly with Network and Data Centre teams to more »

Maintain incident response procedures and documentation Desirable Skills: - Experience with Microsoft technologies (Windows Server, Active Directory, Azure) - Knowledge of Elasticsearch and Linux - Familiarity with SIEM tools - Strong analytical and problem-solving skills more »

Directory, Defender 365, Sentinel and Azure Virtual Desktop and Intune. Proven work experience as a Cybersecurity Analyst or similar role. Understanding of firewalls, proxies, SIEM, antivirus and IDPS concepts. Ability to identify and mitigate network vulnerabilities and explain how to avoid them. Knowledge of security frameworks and standards, such as more »

s cyber security measures; responds to actual penetration attempts by malicious parties Key Accountabilities Perform forensic analysis and gather evidence Correlation monitoring using multiple SIEM technologies Assist in gathering forensic data and physical equipment Act as incident responder for potential incident identified Ability to work under pressure In-depth understanding more »

management – AlgoSec would be advantageous Network support and troubleshooting Cisco router/Cisco Switches Any F5 experience would be beneficial SDWan experience desirable Any SIEM experience would be useful Experience or knowledge of network structures, their management & implementation Certifications could include: CCNA/CCNP, CCIE, CISSP, CCSA qualified (highly desirable more »

provided and completing control frameworks Qualifications Who we're looking for: A good understanding of general security practices such as encryption, IAM, security information and event management etc. and supporting technologies Prior experience in delivering highly technical and innovative security engineering/design products You'll also enjoy collaborating with more »

Proven experience in deploying new projects, services and features to cloud. Ability to support SaaS platforms such as Mimecast, Varonis, Identity Management, Cisco Umbrella, SIEM and SASE services, as well as traditional on-premises servers and Windows operating systems, VMware and Storage Knowledge of device and mobility management and applied more »

and issue management and the budgeting process. What are we looking for? Experience with information security management frameworks Experience with Front end cyber attack, SIEM and SOC compliance. The role will involve supporting project managers in risk and issue management Creation, review, and approval of documentation such as requirements, architecture more »

on bids and/or large and complex changes. Solid understanding of a variety of network and routing protocols. Experience with Network Management or SIEM designs, tooling or support. Demonstrable troubleshooting skills and approach to defect resolution. SDWAN experience is advantageous Working Pattern (Mon-Fri, Shifts, on-call) This is more »

will also be given a great opportunity to develop your technical skills and grow in a dynamic, successful company. You will need: Knowledge of SIEM tools e.g Microsoft Sentinel, Google Chronicle. Excellent knowledge of EDR tools e.g CrowdStrike, SentinelOne, Microsoft Defender. Experience providing BAU support. Experience in a SOC environment. more »