a Managed Service Provider (MSP) environment. Strong understanding of networking protocols, security technologies, and best practices. Hands-on experience with security tools such as SIEM, IDS/IPS, antivirus, firewalls, and endpoint protection. Familiarity with industry regulations and standards (e.g., GDPR, HIPAA, PCI DSS). Excellent analytical and problem-solving more »
London, England, United Kingdom Hybrid / WFH Options
iO Associates - UK/EU
week, although if you're based further afield, they mentioned there is some flexibility. They're looking for the following experience: Strong understanding of SIEM systems Experience working with IT SecurityManagement, Policies, Procedures, Standards and Guidelines Experience with the following tech (they don't expect you to have experience more »
experience Confident advising on secure operating system and network device configuration standards Organised and proactive Excellent communication skills Knowledge of tools such as IDS, SIEM, Secure Gateways etc is ideal Experience evaluating threats and vulnerabilities Ability to create reports on cyber security vulnerabilities, organisational posture, and other indicators of cyber more »
Manchester, England, United Kingdom Hybrid / WFH Options
Viqu
management – AlgoSec would be advantageous Network support and troubleshooting Cisco router/Cisco Switches Any F5 experience would be beneficial SDWan experience desirable Any SIEM experience would be useful Experience or knowledge of network structures, their management & implementation Certifications could include: CCNA/CCNP, CCIE, CISSP, CCSA qualified (highly desirable more »
project milestones as part of Service Transition activitiesWhat we need from you:Experience in the use of managementinformation from the following Security tools : SIEM, EDR, Vulnerability Intelligence or Behavioural Analysis.Project Management Experience (PRINCE2, AGILE etc)CompTIA Security.Understanding of incident response and Cyber Kill Chain.ITIL Foundation Level (v3 or v4 more »
Leeds, England, United Kingdom Hybrid / WFH Options
Fruition IT
Proven experience in deploying new projects, services and features to cloud. Ability to support SaaS platforms such as Mimecast, Varonis, Identity Management, Cisco Umbrella, SIEMand SASE services, as well as traditional on-premises servers and Windows operating systems, VMware and Storage Knowledge of device and mobility managementand applied more »
Manchester Area, United Kingdom Hybrid / WFH Options
InfoSec People Ltd
etc Excellent understanding of cybersecurity trends Ability to interpret customer landscape and challenges Strong presentation and client-facing skills Desired Skills: Knowledge across EDR, SIEM, Vulnerability Management Operational experience with security technologies Existing relationships in Manchester area Self-motivation and ability to work autonomously Job Specifics: This is a hybrid more »
Helensburgh, Scotland, United Kingdom Hybrid / WFH Options
Lockheed Martin
with ITIL4 practices. Deliver concise progress reports and compelling presentations to clients. Serve as a subject matter expert in SecurityInformationandEventManagement (SIEM), providing recommendations for product enhancements. Conduct thorough analysis of SIEM outputs, promptly identifying and escalating any incidents or breaches. Provide assurance support to team members … Information Systems Security Professional (CISSP). Experience in Government/Ministry of Defence settings is advantageous. Proficiency in implementing ITIL processes. Strong expertise in SIEM operations. Competence in Risk Managementand NIST Cyber Security Controls. Client-facing experience with exceptional stakeholder management skills. Ability to thrive in a fast-paced more »
to the Security Operations Manager, your key tasks may involve: Managing vulnerability scanning tools - SAST, SCA, IaC, Containers & DAST for all Egress products Investigate SIEM alerts, working with the Engineering and Operations teams to resolve issues Managing vetting applications, supplier onboarding andsecurity awareness programmes Plan and manage 3rd party … Reviewing vulnerabilities found in code analysis tools and liaising with development/engineering to prioritise the resolution SOC investigation of security events in a SIEM (e.g. Azure Sentinel, Splunk etc) A basic knowledge and desire to learn python, to automate day to day tasks. You should have good prioritisation andmore »
London, England, United Kingdom Hybrid / WFH Options
Client Server
Lead SOC Engineer/Manager (SC Cleared) London/WFH to £70k Are you an experienced SOC Engineer with a strong knowledge of SIEM combined with leadership experience? You could be progressing you career in an impactful role at a tech company that provide cyber security products to a range … role in ensuring the securityand resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform and then once it's embedded ensuring BAU and leading security monitoring, carrying out indepth investigations and actively participating in incident response. This is … About you: You're an experienced SOC Analyst with the ability to troubleshoot and resolve complex security issues You have a strong understanding of SIEM systems e.g. IBM QRadar, FortiSIEM, Splunk, Sentinel and are able to recommend the right tool for the job You have a good understanding of IT more »
Fratton, England, United Kingdom Hybrid / WFH Options
J & C Associates Ltd
SIEM/Incident SME (Active DV Clearance) ELK (Elastic, Logstash, Kibana) Tanium MITRE ATT&CK Cyber Kill Chain Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or Northallerton Duration: 6 months We are Global IT Recruitment specialist that provides support to more »
intelligence sharing, exposure management, and dark web protection. Transforming CISOs into superheroes and analysts into SOC terminators. Anomali's Platform offers: “Match” Next-Gen SIEM, “Lens” AI Threat Hunter, “ThreatStream” TIP, Anomali Integrator, Anomali ISAC, Anomali Attack Surface Management, and Anomali Digital Risk Protection, infused with Anomali AI. Anomali bridges … lightspeed detection & response. Anomali addresses the global shortage in cyber talent by empowering analysts to contain, eradicate, and block threats in seconds without complex SIEM queries, manual blocks, or long investigations. Anomali delivers as a proprietary platform and disruptor to the security analytics world. Anomali can search billions of logs more »
experience with the Microsoft suite of services to secure the Modern Workplace (Defender, Intune & Sentinel) as well as advanced, cloud-based services (SOC/SIEM, MDR/EDR). In addition, customers will need expert guidance in protecting their data, securing their IT infrastructure and working securely from anywhere (LAN … MSP/Pre-Sales role: Microsoft 365, Windows Copilot, SharePoint, Defender, Intune, Entra, Teams, Sentinel, Purview. Advisor in advanced cybersecurity services including SSE, SASE, SIEM, MDR/EDR. Solutions design experience - modern workplace infrastructure - SD-WAN, SASE, LAN, WiFi & Cybersecurity Experience in recommending and designing solutions to meet compliance standards more »
South East London, London, United Kingdom Hybrid / WFH Options
The Fortune Group (Recruitment) Limited
office. Projects that need to be completed Security Awareness OpenSource Software scanning Automated Vulnerability Scanning Kubernetes Vulnerability Scanning Supply Chain monitoring (container images etc.) SIEMand Monitoring/Alerting service AntiVirus/AntiMalware for End User devices Antivirus/Malware/Ransomware etc for Product/Platform DDos Protection Access more »
Manchester, Clifton, City and Borough of Salford, United Kingdom Hybrid / WFH Options
Advania UK
the Security & Networks area of Advania. The candidate will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of SIEMandsecurity toolsets to meet the requirements of the business and its customers. This is a hands-on role and requires a broad technical knowledge … a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities Qualifications & Experience: Essential: Demonstrable experience working with SIEM technology, preferably within a CSOC/SOC environment Demonstrable technical knowledge, skills and/or experience in intrusion analysis, and network andsecurity investigation using more »
Glasgow, Lanarkshire, Scotland, United Kingdom Hybrid / WFH Options
Sopra Steria Limited
incidents, advising on containment points and response strategies. Threat understanding - Maintain a deep understanding of evolving cybersecurity threats What you will bring: Experience with SIEM tools including Splunk, QRadar, and Sentinel. Ability to assess and impact business changes on the security posture. Possess current certifications for enterprise level security platforms. more »
South West London, London, United Kingdom Hybrid / WFH Options
Espire Infolabs Limited
GIAC GSEC, GCIH or other comparable degree or other relevant experience. IT skills Network Security System Administration Malware Analysis SecurityInformationandEventManagement (SIEM) Incident Response Tools Professional Competencies Solid grasp of cybersecurity concepts, including threat identification, risk assessment, and incident management, coupled with practical experience in applying securitymore »
Gosport, Hampshire, South East, United Kingdom Hybrid / WFH Options
Sopra Steria Limited
incidents, advising on containment points and response strategies. Threat understanding - Maintain a deep understanding of evolving cybersecurity threats What you will bring: Experience with SIEM tools including Splunk, QRadar, and Sentinel. Ability to assess and impact business changes on the security posture. Possess current certifications for enterprise level security platforms. more »
related concepts to technical and non-technical audiences.Proficient in the use of PowerBI or a similar dashboarding application.Knowledge of security systems (including working with SIEM data).SQL or database knowledge would be desirable.Relevant certifications such as CISSP, CISM, or CRISC are preferred.Proven experience in managing and delivering technical projects andmore »
Manchester, Greater Manchester, United Kingdom Hybrid / WFH Options
N Brown Group
will you have?Experience responding to incidents across corporate and customer-facing web applications, identifying potential threats and mitigating/escalating as required.Experience with SIEM Platforms (ideally Splunk), including working with logs and creating correlation searches and dashboards is a plus.Knowledge of monitoring cloud environments using cloud native tooling.An understanding more »
Responsibilities: Responding to threats and incidents. Developing security controls. Assessing vendor security. Analyzing trends and activities. Requirements: Practical knowledge of technical security controls (e.g. SIEM, EDR, AV, Web + Email Gateways) Strong knowledge of endpoint and server operating systems and networking ISO27001 experience preferred. Desirable Certifications: ISC2 CISSP, CCSP, or more »
Doncaster, England, United Kingdom Hybrid / WFH Options
Cloud Decisions
Engineer you'll work handling both reactive and proactive security engagements. Your responsibilities will include: ✨Protective Monitoring: Utilize industry-leading SecurityInformation & EventManagement (SIEM) and Intrusion Detection Systems (IDS) to monitor and detect threats. Provide advice and guidance to clients targeted by cyber attacks and malicious activity. ✨Incident Reporting … Communication: Communicate directly with customers regarding threats and alerts. Prepare and present findings to clients. ✨Technical Assistance: Assist with the onboarding process, including deploying SIEM, Endpoint Detection and Response (EDR), and Vulnerability Management tools. Provide support for active directory administration and firewall management. Key Skills and Traits Needed: Must be more »
Oxfordshire, England, United Kingdom Hybrid / WFH Options
University of Oxford
on automation in collaboration with the Head of InformationSecurity Operations and the rest of the team. OxCERT runs an on-premises Elasticsearch-based SIEM solution, an Intrusion Detection System (IDS), and a vulnerability scanning service as well as other open source and commercial tools. We are one of the … Software and Open Source technologies and actively supports several related project communities. Current projects include the enhancement of the existing Elastic based securityinformationandeventmanagement system, the deployment of a new incident response tool, and development of an IT forensics capability. The team has achieved standing and recognition more »
EC3V, Walbrook, Greater London, United Kingdom Hybrid / WFH Options
Ignite Digital Search Limited
and data security. Some knowledge of GDPR & PCI-DSS Strong experience of AWS and ideally certified Forensic investigation techniques. Experience with security technologies (e.g., SIEM, DLP, IDS, IPS). Knowledge of Microsoft Security Centre and Sentinel. Understanding of ISO27001:22, NIST, and secure software development. Attributes: Excellent communication and stakeholder more »
Employment Type: Permanent
Salary: £85000 - £95000/annum 10% pension, bonus, medical