Firewalling principles generally) - virtual and physical, IDS/IDP, CASB and SASE concepts, network segmentation as well as experience in network packet analysis andSIEM log analysis (advantageous). The Perimeter Security Engineer will be an SME and act as a platform owner for perimeter security technologies and will need … virtual and physical Extensive experience in secure network perimeter design including network segmentation Packet capture and analysis experience using vendor and open-source tooling SIEM log analysis and anomaly detection experience (preferable) Coding and automation experience Python and/or Terraform (preferable) CISSP certifications or familiarity with CISSP concepts Hybrid more »
conveying technical aspects to an audience (e.g. product demos to the customer). Working knowledge of using the Scaled Agile Framework (SAFe). ArcSight SIEM toolset, or open to cross-train into ArcSight SIEM toolset (ESM, SmartConnectors, Logger and ArcMC). DV Cleared Application Packager - 5 days onsite near Reading more »
Warrington, England, United Kingdom Hybrid / WFH Options
Tata Consultancy Services
Role : SIEM SOC Engineer - L2 Job Type: Permanent Location: Warrington, Hybrid Ready to leverage your proficiency in Cybersecurity? Are you looking for an exciting opportunity to build a strong performing team, encouraging best practices in Cybersecurity? Join us as a SIEM SOC Engineer - L2 ! Careers at TCS: It means more … bring products to life. Work with customers and identify opportunities to support their strategy and improve their processes across functions. The Role: As a SIEM SOC Engineer - L2 , you will be responsible for collaborating with teams to design and implement Sentinel for specific client needs. Key Responsibilities: Collaborate with teams … in a SOC environment. Understanding of security concepts, threats, and vulnerabilities. Proficiency in KQL for querying and analyzing security data. Knowledge of troubleshooting with SIEM tools. Knowledge of developing queries and reports for log source integration. Experience in lookups and field value mapping. Ability to understand security threats landscape andmore »
Basingstoke, Hampshire, South East, United Kingdom
Spectrum IT Recruitment
be occasional travel to other company offices/data centres. Essential experience: - IDS/IPS, Firewall, VPN, EDR/XDR - SecurityInformationEventManagement (SIEM) tools - TCP/IP - Network Troubleshooting - Penetration testing - ITIL If this sounds of interest please apply or contact/02380 765 286 Spectrum IT Recruitment more »
issues. Key Responsibilities Experience with enterprise networks including next generation firwalls, network segmentation technology (Forescout preferred) and internet connectivity. Experience with EDR, M365 security, SIEM, Vulnerability management, MITRE attack framework and Incident response. Experience of providing knowledge transfer to Service Delivery teams and developing other cybersecurity team members. Having an more »
a security operations centre (SOC) and responding to security alerts. Experience in creating response playbooks and handling escalations. Additional experience in EDR, M365 security, SIEM, Vulnerability management, MITRE attack framework, and Incident response. Strong stakeholder engagement skills and the ability to promote a secure mindset within an organisation. Previous experience more »
a consulting or national security environment. Strong understanding of security principles, risk management, andsecurity frameworks. Proficiency in security tools and technologies such as SIEM, IDS/IPS, firewall, and antivirus solutions. Knowledge of network protocols, security standards, and best practices. Excellent problem-solving and analytical skills. Strong communication andmore »
or similar frameworks experience and certifications VMware VMware Cloud vSphere vSAN vCenter ESXi Dell VxRail Designing highly secure on prem infrastructure Cross Domain Gateways SIEM National Defence experience not essential but highly advantageous HLD and LLD Windows Data Diodes All applicants must either have or be able to obtain SC more »
Manchester, Clifton, City and Borough of Salford, United Kingdom Hybrid / WFH Options
Advania UK
will play a pivotal role in safeguarding our organization's critical infrastructure and data against cyber threats. Your expertise in designing, implementing, and maintaining SIEM solutions will help us proactively identify and mitigate security incidents, ensuring the confidentiality, integrity, and availability of our systems. Responsibilities: - Work with the technical lead …/SME for the CSOC andSIEM service offering by managing and improving the platforms to meet the requirements of the business and/or client - Assist in establishing and maintaining processes, tooling and metrics that help provide a high level of productivity, supportability, and operational readiness - Actively participate in … implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical and problem-solving skills with the ability to handle complex securitymore »
experience/knowledge: 5+ years of work experience in the cybersecurity domain Strong understanding of cyber security concepts, technologies, and best practices, including EDR, SIEMand Microsoft security solutions Familiarity with compliance standards and regulations Bachelor's or higher degree of Computer science, Information Technology or related field Language skills more »
Manchester, Clifton, City and Borough of Salford, United Kingdom Hybrid / WFH Options
Advania UK
the Security & Networks area of Advania. The candidate will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of SIEMandsecurity toolsets to meet the requirements of the business and its customers. This is a hands-on role and requires a broad technical knowledge … a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities Qualifications & Experience: Essential: Demonstrable experience working with SIEM technology, preferably within a CSOC/SOC environment Demonstrable technical knowledge, skills and/or experience in intrusion analysis, and network andsecurity investigation using more »
Good communication skills as you will be working in collaboration with partners and internal technical teams. Techstack: Vmware vCloud, VxRail, Vmware ESXI, vSphere, Vcenter, SIEM, AntiVirus, PKI, HSM, Antivirus, Health Monitoring, IDAM,RBAC, ABAC,MFA, Sharepoint, Exchange, Skype, Switching, Routing, Firewalls. Certification in TOGAF version 9.2 or above would be more »
Glasgow, Lanarkshire, Scotland, United Kingdom Hybrid / WFH Options
Sopra Steria Limited
incidents, advising on containment points and response strategies. Threat understanding - Maintain a deep understanding of evolving cybersecurity threats What you will bring: Experience with SIEM tools including Splunk, QRadar, and Sentinel. Ability to assess and impact business changes on the security posture. Possess current certifications for enterprise level security platforms. more »
South West London, London, United Kingdom Hybrid / WFH Options
Espire Infolabs Limited
GIAC GSEC, GCIH or other comparable degree or other relevant experience. IT skills Network Security System Administration Malware Analysis SecurityInformationandEventManagement (SIEM) Incident Response Tools Professional Competencies Solid grasp of cybersecurity concepts, including threat identification, risk assessment, and incident management, coupled with practical experience in applying securitymore »
and communicate effectively at all levels to both technical and non-technical audiences, assess and evaluate risk and understand the implications of new technologies. SIEM experience with designing, implementing and maintaining Splunk Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective more »
Gosport, Hampshire, South East, United Kingdom Hybrid / WFH Options
Sopra Steria Limited
incidents, advising on containment points and response strategies. Threat understanding - Maintain a deep understanding of evolving cybersecurity threats What you will bring: Experience with SIEM tools including Splunk, QRadar, and Sentinel. Ability to assess and impact business changes on the security posture. Possess current certifications for enterprise level security platforms. more »
on AWS. Deep understanding of AWS services including EC2, S3, RDS, Lambda, VPC, IAM, and CloudTrail. Proficiency in security tools and practices such as SIEM, IDS/IPS, and vulnerability management. Experience with Infrastructure as Code (IaC) tools like Terraform, CloudFormation, or Ansible. Strong scripting skills in languages such as more »
in a similar technical IT Security role involving a broad range of tech including some of the following: Knowledge & understanding of security principles surrounding SIEM, Antivirus, DLP, Firewalls, Open Source Filtering tools, Cloud security (Azure), IdAM (PAM on-prem/cloud), EDR, Scanning/vulnerability tools, etc. Windows Server & Networking more »
s cyber security measures; responds to actual penetration attempts by malicious parties Key Accountabilities Perform forensic analysis and gather evidence Correlation monitoring using multiple SIEM technologies Assist in gathering forensic data and physical equipment Act as incident responder for potential incident identified Ability to work under pressure In-depth understanding more »
EC3V, Walbrook, Greater London, United Kingdom Hybrid / WFH Options
Ignite Digital Search Limited
and data security. Some knowledge of GDPR & PCI-DSS Strong experience of AWS and ideally certified Forensic investigation techniques. Experience with security technologies (e.g., SIEM, DLP, IDS, IPS). Knowledge of Microsoft Security Centre and Sentinel. Understanding of ISO27001:22, NIST, and secure software development. Attributes: Excellent communication and stakeholder more »
Employment Type: Permanent
Salary: £85000 - £95000/annum 10% pension, bonus, medical
Sheffield, South Yorkshire, Yorkshire, United Kingdom Hybrid / WFH Options
Chroma Recruitment Ltd
e.g. Ansible/Puppet/Landscape) Essential skills/experience required for the Senior Infrastructure Engineer: Extensive experience with Windows, Microsoft365, and Linux Implementing SIEM solutions Configuring and monitoring compliance policies within M365 Setting up SSO (specifically SAML) Managing devices via Intune Desirable skills/experience required for theSenior Infrastructure more »
cyber security technologies and services in use at the company Role & Accountabilities KEY Identity access management, experience/involvement with Security services such as SIEMand Vulnerability Management. Provide expert knowledge and act as a subject matter expert on key principles of (IAM) with an in-depth knowledge in the … remediation of vulnerabilities in line with best practise and policy. Assist with the investigation vulnerability results and remediation efforts. Assist with management of the SIEM service, including the ingestion of new log sources, configuration of alerting and providing expert knowledge to aid the investigation of alerts where required. Support the more »
Glasgow, Lanarkshire, Scotland, United Kingdom Hybrid / WFH Options
Sopra Steria Limited
and communicate effectively at all levels to both technical and non-technical audiences, assess and evaluate risk and understand the implications of new technologies. SIEM experience with designing, implementing and maintaining Splunk Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective more »
Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK andSIEM technologies eg Microsoft Sentinel An interest in automation of Security operation function including artificial intelligence An understanding of Microsoft security product portfolio CISSP/CISM more »
Warwick, Warwickshire, West Midlands, United Kingdom
Telent Technology Services Ltd
Key requirements: Vendor certification of the following would be beneficial: VMware, MS Windows System Support, Cisco knowledge - LAN/WAN, Juniper, IP Trade. McAfee SIEMSecurity - SecurityInformation Events Management knowledge IT/ICT further education Vendor certification of the following would be beneficial: VMware, MS Windows System Support, Cisco more »