work within a four-day operational rota, collaborating closely with Digital Forensic and Incident Response teams. Responsibilities include: Security Monitoring and Incident Detection: Utilizing SIEM tools to identify potential security incidents and anomalies. Analyzing alerts and log data to assess the severity and impact of threats. Incident Response and Analysis … andsecurity-related activities. Security Tools Management: Configuring, updating, and maintaining security tools such as firewalls, intrusion detection/prevention systems, endpoint protection, andSIEM solutions. more »
South West London, London, United Kingdom Hybrid / WFH Options
Espire Infolabs Limited
GIAC GSEC, GCIH or other comparable degree or other relevant experience. IT skills Network Security System Administration Malware Analysis SecurityInformationandEventManagement (SIEM) Incident Response Tools Professional Competencies Solid grasp of cybersecurity concepts, including threat identification, risk assessment, and incident management, coupled with practical experience in applying securitymore »
providing the best possible care, insight and service for patients and customers. Main duties of the job As well as knowledge of Antivirus, Malware, SIEM, Firewall, IPS, Patch Management, the successful candidate will require a working knowledge and understanding of the Cyber Security. The postholder will be responsible for full … with Mitre ATT&CK framework Be able to perform vulnerability analysis/testing and advise on remediation or mitigation. Have a good understanding of SIEMand EDR technologies for conducting investigations and threat hunting. Experience of implementing and configuring network IDS/IPS systems Extensive knowledge in group policy, active more »
engineering team. Knowledge: • Knowledge of big data technologies and ecosystems (e.g., NiFi). • Knowledge of current market and emerging leaders in data analytical andSIEM platforms. • Knowledge of network security implementations (e.g., host-based IDS, IPS), including their function and placement in a network. • Knowledge of intrusion detection systems and … ICS/network architectures and technologies. • Working with frameworks and technologies that support data-intensive distributed applications. • Experience maintaining and administrating data analytical andSIEM platforms. • Experience using host and network-based IDS/IPS • Experience using packet capture solutions. • Skill in developing and deploying signatures. • Skill to apply cybersecurity … Cyber Foundation Pathway, SANS SEC 301 Intro to InformationSecurity, SANS 401 Security Essentials Bootcamp. • Certified engineer in a market leading data analysis/SIEM platform. • SANS SEC501 Advanced Security Essentials Enterprise Defender. • SANS SEC 511 Continuous Monitoring & Security Operations. • SANS SEC555: SIEM with Tactical Analytics more »
Lincoln, Lincolnshire, East Midlands, United Kingdom Hybrid / WFH Options
Red Recruitment 24/7 Ltd
from both a practical andmanagement perspective. The role involves setting up, fine-tuning, and gathering intelligence from a SecurityInformationandEventManagement (SIEM) system. The Engineer will be responsible for reviewing infrastructure plans, adding recommendations, and procuring penetration tests from third-party services. They will ensure that all … adheres to the GDPR requirements. They will also develop and deliver annual IT security training and ensure compliancewith our Phishing Simulations Responsibilities: Develop and manage the SIEM, ensuring the effective capture and analysis of security data. Review infrastructure plans to identify potential security weaknesses and recommend enhancements. Coordinate with third … Assist other departments in developing policies and procedures to comply with GDPR, working with the DPO outsourcing company. Skills and Qualifications: Proven experience with SIEM tools and incident response Strong understanding of network infrastructure andsecurity protocols Experience with GDPR, data securityand other compliance regulations Experience with GDPR, data more »
Management (CRM) eg Salesforce o IT Service Management (ITSM) eg ServiceNow o Warehouse Management System (WMS) Manhattan Associates o SecurityInformationandEventManagement (SIEM) eg Splunk/LogRhythm o Project Management tooling eg Microsoft Project Online (MSPOL)/Primavera. Additional Information The benefits we offer include: competitive salary structured more »
a training program for the team to ensure the team is capable to respond to the latest cyber threats and attack methods.Collaborate with the SIEMand Threat Intel teams to effectively contribute to increasing security posture at the organisation.Provide mentorship, guidance and positive recognition to security analysts and team leads.Improve … operations teamIn-depth knowledge of cyber threat landscape and the technics, tactics & procedures of advanced adversariesIn-depth knowledge of security technologies, tools, methodologies including SIEM, IDP/IPS, EDRExcellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholdersAbility to work more »
Newcastle Upon Tyne, Tyne and Wear, North East, United Kingdom Hybrid / WFH Options
Reed Technology
recommendations. Design, implement, and provide support for customer security solutions. Serve as a senior security escalation point for the Service Desk. Configure and maintain SIEM systems. Participate in presales meetings with customers. Required Skills: Certified Cyber Essentials Assessor. Certified Cyber Essentials Lead Assessor. Experience in scoping and conducting penetration tests. … Strong understanding of SIEMand EDR solutions. Experienced in designing and delivering cybersecurity solutions across diverse environments. Proficient in both on-premise and cloud technologies. Excellent organizational skills, effective communication, and a strong customer service focus. Benefits include: Unlimited annual leave (yes seriously) Flexible working options Social events Accreditations andmore »
Lincoln, Lincolnshire, East Midlands, United Kingdom Hybrid / WFH Options
Red Recruitment 24/7 Ltd
from both a practical andmanagement perspective. The role involves setting up, fine-tuning, and gathering intelligence from a SecurityInformationandEventManagement (SIEM) system. The IT Security Specialist will be responsible for reviewing infrastructure plans, adding recommendations, and procuring penetration tests from third-party services. They will ensure … adheres to the GDPR requirements. They will also develop and deliver annual IT security training and ensure compliancewith our Phishing Simulations Responsibilities: Develop and manage the SIEM, ensuring the effective capture and analysis of security data. Review infrastructure plans to identify potential security weaknesses and recommend enhancements. Coordinate with third … Assist other departments in developing policies and procedures to comply with GDPR, working with the DPO outsourcing company. Skills and Qualifications: Proven experience with SIEM tools and incident response Strong understanding of network infrastructure andsecurity protocols Experience with GDPR, data securityand other compliance regulations Experience with GDPR, data more »
cyber security technologies and services in use at the company Role & Accountabilities KEY Identity access management, experience/involvement with Security services such as SIEMand Vulnerability Management. Provide expert knowledge and act as a subject matter expert on key principles of (IAM) with an in-depth knowledge in the … remediation of vulnerabilities in line with best practise and policy. Assist with the investigation vulnerability results and remediation efforts. Assist with management of the SIEM service, including the ingestion of new log sources, configuration of alerting and providing expert knowledge to aid the investigation of alerts where required. Support the more »
Edinburgh, Scotland, United Kingdom Hybrid / WFH Options
Denholm Associates
platform. This role presents an exciting opportunity to get involved in innovative projects designing security controls and delivering emerging security technologies. Good knowledge of SIEM tooling is essential. Reporting to the Cyber Security Engineering Manager, you will help to deliver improvements across a number of our cyber security domains including … Analytics, onboarding data and developing detection logic and analytics Essential Criteria: Demonstrable experience working in cyber security Experience supporting security tools, such as SOAR, SIEM, EDR, NGFW, CSPM, WAF, AV Industry recognised certifications such as Certified Splunk Architect, PCSAE, CISSP/CCSP, CEH or equivalent experience Experience working in a more »
Oxfordshire, England, United Kingdom Hybrid / WFH Options
University of Oxford
on automation in collaboration with the Head of InformationSecurity Operations and the rest of the team. OxCERT runs an on-premises Elasticsearch-based SIEM solution, an Intrusion Detection System (IDS), and a vulnerability scanning service as well as other open source and commercial tools. We are one of the … Software and Open Source technologies and actively supports several related project communities. Current projects include the enhancement of the existing Elastic based securityinformationandeventmanagement system, the deployment of a new incident response tool, and development of an IT forensics capability. The team has achieved standing and recognition more »
Preston, Lancashire, United Kingdom Hybrid / WFH Options
BAE Systems
hardware & cyber security toolsets as required for the role Continuously work towards organisational, departmental, and individual objectives and uphold security standards and principles Supporting SIEMand SOAR technologies Provide ongoing managementand administration of Cyber Security solutions Provide support to projects delivering and implementation of Cyber Security solutions Provide guidance … to create custom KQL scripts that are used to conduct sophisticated security data analysis and uplift incident response and threat detection capabilities within a SIEM Highly motivated with the ability to work autonomously to complete a range of tasks to time and quality with the minimum of supervision Understanding of … log management, log source integration and connector development skills to support ingests without off the shelf support Capable of building and supporting a Sentinel SIEM platform from a Cyber-Engineering perspective Possessing an open and communicative style that engenders trust and promotes good working relationships Desirable: Cyber Security Technical Control more »
Employment Type: Permanent
Salary: £60000/annum Depending on skills and experience
Information Technology, Computer Science or relevant experience CISSP, CEH, OSCP, GCIH or applicable security field Incident, change and problem process management experience Experience in SIEM (Splunk, Sentinel), IPS and SOAR tools a plus Experience with investigating and managing major/complex cyber security incidents end-to-end Knowledge of adversarial … tactics, techniques, procedures (TTPs) & industry standard frameworks (Mitre Att&ck, ISO27000, ISO27001) Strong working knowledge of security technologies including but not limited to SIEM, EDR/EPP, AV, IDS, IPS, AD, DNS, SOAR E: j.bhard@locke-mccloud.com Locke & McCloud are the UK’s leading cyber security & informationsecurity staffing company more »
as necessary for the protection of Firm assets. Provide input, create documentation, and review informationsecurity policies and procedures. Utilize a common security toolset (SIEM, sniffer, IDS, vulnerability scanner, etc., to identify issues and analyze compliance with existing policies and procedures. Provide reports to the InformationSecurity Manager. Maintain the … and utilities. Utilizes remote control and remote access software in the performance of her/his duties. Utilize standard security tools such as a SIEM, endpoint/network protection technologies, DLP, two-factor, vulnerability scanners, custom scripts, and packet analyzer. Capable of moving 40 pounds of material or equipment without more »
About The RoleHippo Digital is recruiting a Principal SIEM Engineer to join our Hippo Herd. SIEM Engineers work in multi-disciplinary teams who build, support & maintain enterprise scale data platforms and solutions helping clients to drive transformation through improved data access and visibility.As a Principal SIEM Engineer, you will have … in a nutshell:Splunk Core Certified accredited SME acting as both consultant and engineer on large scale Splunk Enterprise Security projectsCreating/tuning of SIEM detection rules to satisfy client requirementsProviding technical consultancy for Hippo clients predominantly in the cyber security spaceWorking in hybrid teams across multiple clientsLeading and providing more »
Birmingham, West Midlands (County), United Kingdom
Hippo Digital
About The RoleHippo Digital is recruiting a Principal SIEM Engineer to join our Hippo Herd. SIEM Engineers work in multi-disciplinary teams who build, support & maintain enterprise scale data platforms and solutions helping clients to drive transformation through improved data access and visibility.As a Principal SIEM Engineer, you will have … in a nutshell:Splunk Core Certified accredited SME acting as both consultant and engineer on large scale Splunk Enterprise Security projectsCreating/tuning of SIEM detection rules to satisfy client requirementsProviding technical consultancy for Hippo clients predominantly in the cyber security spaceWorking in hybrid teams across multiple clientsLeading and providing more »
Corsham, England, United Kingdom Hybrid / WFH Options
eTeam Inc
Role Title: SIEM/Incident SME Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or Northallerton Duration: 6 months Contract Inside IR35 CONTRACTOR MUST HOLD DV CLEARANCE Role Description: Main Tech Skills required are ELK (Elastic, Logstash, Kibana) and Tanium The more »
conveying technical aspects to an audience (e.g. product demos to the customer). Working knowledge of using the Scaled Agile Framework (SAFe). ArcSight SIEM toolset, or open to cross-train into ArcSight SIEM toolset (ESM, SmartConnectors, Logger and ArcMC). DV Cleared Application Packager - 5 days onsite near Reading more »
Skelmersdale, Lancashire, North West, United Kingdom Hybrid / WFH Options
Police Digital Services
including their TTPs Experience in utilising open-source intelligence and the development of tools to assist with this Experience in conducting malware, phishing, andSIEM log analysis Knowledge of relevant CTI sources Excellent knowledge of adversarial cyber actors, including their TTPs and the adversary lifecycle Comprehensive experience in conducting malware … phishing, andSIEM log analysis Experience with threat modelling systems and risk assessment models Extensive experience in utilising open-source intelligence Experienced CTI analyst with the ability to progress service provided to police forces, lead development, and train juniors Demonstrated ability to manage customer relationships Strong leadership skills with the more »
Wigan, Greater Manchester, North West, United Kingdom Hybrid / WFH Options
Police Digital Services
including their TTPs Experience in utilising open-source intelligence and the development of tools to assist with this Experience in conducting malware, phishing, andSIEM log analysis Knowledge of relevant CTI sources Senior Excellent knowledge of adversarial cyber actors, including their TTPs and the adversary lifecycle Comprehensive experience in conducting … malware, phishing, andSIEM log analysis Experience with threat modelling systems and risk assessment models Extensive experience in utilising open-source intelligence Experienced CTI analyst with the ability to progress service provided to police forces, lead development, and train juniors Demonstrated ability to manage customer relationships Strong leadership skills with more »
Warrington, England, United Kingdom Hybrid / WFH Options
Tata Consultancy Services
Role : SIEM SOC Engineer - L2 Job Type: Permanent Location: Warrington, Hybrid Ready to leverage your proficiency in Cybersecurity? Are you looking for an exciting opportunity to build a strong performing team, encouraging best practices in Cybersecurity? Join us as a SIEM SOC Engineer - L2 ! Careers at TCS: It means more … bring products to life. Work with customers and identify opportunities to support their strategy and improve their processes across functions. The Role: As a SIEM SOC Engineer - L2 , you will be responsible for collaborating with teams to design and implement Sentinel for specific client needs. Key Responsibilities: Collaborate with teams … in a SOC environment. Understanding of security concepts, threats, and vulnerabilities. Proficiency in KQL for querying and analyzing security data. Knowledge of troubleshooting with SIEM tools. Knowledge of developing queries and reports for log source integration. Experience in lookups and field value mapping. Ability to understand security threats landscape andmore »