5 of 5 Permanent Threat Detection Jobs in West Sussex

Partner. This role offers unparalleled access to Microsoft’s security product roadmap, previews, and frontline support. Work at the forefront of cyber defense, contributing to investigations involving nation-state threat actors (including IR, CH, and NK campaigns). You will refine your skills in enterprise-scale log ingestion and Sentinel integration engineering, handling complex logs from numerous cloud and … data sources. The Role Own and optimize enterprise-wide log onboarding into Microsoft Sentinel Deploy standard and custom connectors, Function Apps, and parsers Build tailored SIEM solutions for threat detection and response Manage log ingestion across hybrid and multi-cloud environments Enhance and develop custom Function Apps and ingestion pipelines Parse, normalize, and optimize log telemetry for precision … and cost efficiency Collaborate with IR teams on active threats Work closely with Microsoft teams to develop detection capabilities Contribute to knowledge bases and engineering standards Requirements Experience with complex Microsoft Sentinel deployment at SMC and enterprise levels Understanding of security telemetry across identity, endpoint, cloud, and network layers Skills in SIEM content development, including KQL, analytics rules, and More ❯

technologies , ideally coming from an XSOAR background , and possessing strong experience across XDR and SIEM environments. This is a key role within our security operations function, focused on enhancing detection, automation, and response capabilities. *For this role you must be eligible for SC Clearance* Key Responsibilities Implement and configure Palo Alto Networks XSIAM to improve SOC efficiency and visibility … Design and manage security automation workflows , drawing from previous XSOAR experience Integrate and optimize XDR capabilities to support proactive threat detection Set up and maintain SIEM-style log ingestion , correlation rules, and enrichment pipelines Build custom dashboards and reporting tools for real-time security insights Troubleshoot complex issues related to XSIAM , XSOAR, and related integrations Ensure seamless integration … Clearance Desirable Qualifications Palo Alto certifications (PCNSE, XSIAM/XSOAR certifications highly preferred) Experience with cloud security platforms (AWS, Azure, GCP) Previous work in a SOC environment Exposure to threat hunting methodologies and tools This is a fantastic opportunity to work on the biggest XSIAM project in the UK working with cutting edge technology. My client are happy to More ❯

practices. - Support business units with risk-based security input for projects, client bids, and technology initiatives. - Manage cybersecurity tooling including SIEM, EDR, and mail filtering systems to ensure effective threat detection and response. - Monitor, investigate, and respond to alerts and incidents, coordinating with internal teams and third-party providers. - Oversee regular vulnerability scans and third-party penetration tests More ❯

practices. - Support business units with risk-based security input for projects, client bids, and technology initiatives. - Manage cybersecurity tooling including SIEM, EDR, and mail filtering systems to ensure effective threat detection and response. - Monitor, investigate, and respond to alerts and incidents, coordinating with internal teams and third-party providers. - Oversee regular vulnerability scans and third-party penetration tests More ❯

Response and Recovery Planning: Oversee incident response strategies, including the establishment of playbooks, workflows, and escalation procedures to improve response times and overall effectiveness. Collaborate with clients to enhance threat detection, response, and reporting mechanisms, ensuring they are equipped to mitigate evolving cybersecurity risks. Provide guidance on managing and recovering from cybersecurity incidents to minimize downtime and operational … on knowledge of SIEM platforms and technologies, such as Splunk, QRadar, Google, LogRhythm and SolarWinds. Solid understanding of EDR, MDR and XDR technologies and processes. Extensive experience of integrating Threat Intelligence, Automation tools and AI capability into SOC environments. Strong analytical skills with the ability to evaluate complex technical issues and devise effective solutions. Excellent communication and presentation skills More ❯