common attacker techniques. Strong communication and leadership skills, with the ability to influence and guide both technical and non-technical stakeholders. Desirable: Experience with KQL and customising Sentinel detections. Exposure to cloud security operations (Azure preferred). Microsoft certifications such as SC-200 or AZ-500 are a bonus but More ❯
common attacker techniques. Strong communication and leadership skills, with the ability to influence and guide both technical and non-technical stakeholders. Desirable: Experience with KQL and customising Sentinel detections. Exposure to cloud security operations (Azure preferred). Microsoft certifications such as SC-200 or AZ-500 are a bonus but More ❯
Crawley, England, United Kingdom Hybrid / WFH Options
JR United Kingdom
in SRE, IT operations, software development, or DevOps. Familiarity with CI/CD, IaC, Agile, and ITIL frameworks. Proficiency in Azure Monitor, Application Insights, KQL, and incident management. Hands-on experience with YAML pipelines. Experience with Bicep, SolarWinds, Terraform, and PowerShell. Interested in joining a growing SRE team focused on More ❯
London, England, United Kingdom Hybrid / WFH Options
ZipRecruiter
Keep costs under control Skills Microsoft Fabric - Lakehouse and warehouse models Azure Tools (Data Factory, Synapse, SQL) Python programming Databases, SQL and NoSQL (CosmosDB, KQL) Data Modelling: Kimball frameworks and 3NF Nice To Have Databricks Power BI AI/ML Azure Infrastructure DevOps Certifications Microsoft Certified: Fabric Analytics Engineer Associate More ❯
and common attacker techniques. Strong communication and leadership skills, with the ability to influence and guide both technical and non-technical stakeholders. Experience with KQL and customizing Sentinel detections. Exposure to cloud security operations (Azure preferred). Microsoft certifications such as SC-200 or AZ-500 are a bonus but More ❯
and common attacker techniques. Strong communication and leadership skills, with the ability to influence and guide both technical and non-technical stakeholders. Experience with KQL and customizing Sentinel detections. Exposure to cloud security operations (Azure preferred). Microsoft certifications such as SC-200 or AZ-500 are a bonus but More ❯
InfraView - Specialist Cloud & IT Infrastructure Technology Recruitment
years’ experience working in a SOC environment – ideally MSSP. Experience in a technical security role is also considered. Experience with SIEM tools e.g. Sentinel, KQL, ELK, QRadar, AlienVault, or similar. A cyber security qualification, certification, or degree e.g. CySA+, CompTIA SEC+, or similar experience. Microsoft SC-200 Certs are desirable. More ❯
London, England, United Kingdom Hybrid / WFH Options
ECS Resource Group
version control for detection rules, or done some detection-as-code Certs like GCIA, GCIH, CEH, GNFA, GCFA Familiarity with frameworks like Sigma or KQL A side interest in threat hunting or malware behavior What You’ll Impact How quickly we detect and respond to real threats The signal-to More ❯
Additional Knowledge Management Tools - Microsoft SCCM, Windows Admin Center, SCOM Monitoring - SCOM, WAC, Windows Network, Azure Log analytical Workspace, Sentinel Workspace, Event Logs and Kusto Queries Skills Ability to work under own initiative Ability to follow written and verbal instructions Ability to work to strict deadlines Ability to provide More ❯
Additional Knowledge Management Tools - Microsoft SCCM, Windows Admin Center, SCOM Monitoring - SCOM, WAC, Windows Network, Azure Log analytical Workspace, Sentinel Workspace, Event Logs and Kusto Queries Skills Ability to work under own initiative Ability to follow written and verbal instructions Ability to work to strict deadlines Ability to provide More ❯
Leatherhead, Surrey, United Kingdom Hybrid / WFH Options
Bytes Group
Additional Knowledge Management Tools - Microsoft SCCM, Windows Admin Center, SCOM Monitoring - SCOM, WAC, Windows Network, Azure Log analytical Workspace, Sentinel Workspace, Event Logs and Kusto Queries Skills Ability to work under own initiative Ability to follow written and verbal instructions Ability to work to strict deadlines Ability to provide More ❯
Manchester, Lancashire, United Kingdom Hybrid / WFH Options
Bytes Group
Additional Knowledge Management Tools - Microsoft SCCM, Windows Admin Center, SCOM Monitoring - SCOM, WAC, Windows Network, Azure Log analytical Workspace, Sentinel Workspace, Event Logs and Kusto Queries Skills Ability to work under own initiative Ability to follow written and verbal instructions Ability to work to strict deadlines Ability to provide More ❯
Reading, Berkshire, United Kingdom Hybrid / WFH Options
Bytes Group
Additional Knowledge Management Tools - Microsoft SCCM, Windows Admin Center, SCOM Monitoring - SCOM, WAC, Windows Network, Azure Log analytical Workspace, Sentinel Workspace, Event Logs and Kusto Queries Skills Ability to work under own initiative Ability to follow written and verbal instructions Ability to work to strict deadlines Ability to provide More ❯
Manchester, England, United Kingdom Hybrid / WFH Options
Bytes Group
Additional Knowledge Management Tools – Microsoft SCCM, Windows Admin Center, SCOM Monitoring – SCOM, WAC, Windows Network, Azure Log analytical Workspace, Sentinel Workspace, Event Logs and Kusto Queries Skills Ability to work under own initiative Ability to follow written and verbal instructions Ability to work to strict deadlines Ability to provide More ❯
network, including XDR/EDR technology, SIEM, AWS CloudTrail, Azure Sentinel, IDS/IPS. Proficiency in multiple query languages such as Splunk or KQL, with an ability to manipulate and analyse large data sets. Expertise in formulating threat hunting hypotheses and working with available data sets to determine conclusions. More ❯
Chester, England, United Kingdom Hybrid / WFH Options
JR United Kingdom
alerts, and system logs for signs of suspicious activity or security breaches. Requirements Proven experience with Microsoft Sentinel, Defender for Endpoint, Defender for Identity KQL experience In depth understanding of PCAP analysis using Wireshark or equivalent. OT operations/security (optional, but a bonus) #J-18808-Ljbffr More ❯
Basildon, England, United Kingdom Hybrid / WFH Options
JR United Kingdom
alerts, and system logs for signs of suspicious activity or security breaches. Requirements Proven experience with Microsoft Sentinel, Defender for Endpoint, Defender for Identity KQL experience In depth understanding of PCAP analysis using Wireshark or equivalent. OT operations/security (optional, but a bonus) #J-18808-Ljbffr More ❯
alerts, and system logs for signs of suspicious activity or security breaches. Requirements Proven experience with Microsoft Sentinel, Defender for Endpoint, Defender for Identity KQL experience In depth understanding of PCAP analysis using Wireshark or equivalent. Network engineering/network admin OT operations/security (optional, but a bonus) What More ❯
London, England, United Kingdom Hybrid / WFH Options
Net Talent
teams. Monitor network traffic, security alerts, and logs for suspicious activity or breaches. Requirements Experience with Microsoft Sentinel, Defender for Endpoint, Defender for Identity KQL proficiency Understanding of PCAP analysis using Wireshark or similar tools OT security experience is a plus Benefits Unlimited holiday entitlement Employee assistance program Additional Details More ❯
communication skills Desirable Experience working in heavily regulated industries Previous experience working within a Security function Qualifications such as CCNA, CompTIA, ISC, ISACA Scripting (KQL) Experience of working with some/all industry certifications/frameworks such as NIST, NIS, PCI/DSS, Cyber Essentials Plus and ISO2700 About You More ❯
Expertise experience in problem solving and analysingdistributed systems and critical production service environments. - ITIL certification V3 or above. - Experience in DevOps lifecycle. - Experience in Kusto/data visualisation. - PMP/Agile PM certification, or experience working in an agile project team is considered a plus. Microsoft Cloud Background Check More ❯
London, England, United Kingdom Hybrid / WFH Options
Bytes Software Services
DESIRABLE Databases – SQL Server, MySQL, PostgreSQL, MariaDB, ADLS, CosmoDB - DESIRABLE Monitoring – SCOM, WAC, Windows Network, Azure Log analytical Workspace, Sentinel Workspace, Event Logs and Kusto Queries - DESIRABLE CORE COMPETENCIES & SKILLS Ability to work under own initiative Ability to follow written and verbal instructions Ability to work to strict deadlines More ❯
Leeds, England, United Kingdom Hybrid / WFH Options
BAE Systems Applied Intelligence
capable of independently creating Threat Hunt Hypotheses, running Threat Hunts at a regular cadence Responsible for and capable of translating Threat Hunt Hypotheses into KQL Queries, running those KQL queries and then independently triaging the results. Experienced with and have sufficient knowledge of attacker TTP’s Have a deep understanding More ❯
Leeds, England, United Kingdom Hybrid / WFH Options
Babcock
capable of independently creating Threat Hunt Hypotheses, running Threat Hunts at a regular cadence Responsible for and capable of translating Threat Hunt Hypotheses into KQL Queries, running those KQL queries and then independently triaging the results. Experienced with and have sufficient knowledge of attacker TTP's Have a deep understanding More ❯
in Microsoft Security technologies: Sentinel, Defender, Purview, Azure, Intune. Experience with incident response, threat hunting, and security operations processes. Familiarity with Tenable Nessus and KQL for query building. Strong foundation in operating systems (Windows Server/Desktop) and networking. Eligibility for Security Clearance & Vetting Nice to Have: Exposure to More ❯
