51 to 75 of 237 Permanent SIEM Jobs

in previous Incident Response function environments. Experience with tools for open-source investigation (WireShark, TCPDump, Netflow, etc.); network defence monitoring technologies (IDS/IPS, SIEM, Firewalls, etc.); and sandboxing technologies for static and dynamic malware analysis (IDA Pro, REMnux, etc.). Working knowledge of leading a technical team and mentoring more »

and issue management and the budgeting process. What are we looking for? Experience with information security management frameworks Experience with Front end cyber attack, SIEM and SOC compliance. The role will involve supporting project managers in risk and issue management Creation, review, and approval of documentation such as requirements, architecture more »

on bids and/or large and complex changes. Solid understanding of a variety of network and routing protocols. Experience with Network Management or SIEM designs, tooling or support. Demonstrable troubleshooting skills and approach to defect resolution. SDWAN experience is advantageous Working Pattern (Mon-Fri, Shifts, on-call) This is more »

will also be given a great opportunity to develop your technical skills and grow in a dynamic, successful company. You will need: Knowledge of SIEM tools e.g Microsoft Sentinel, Google Chronicle. Excellent knowledge of EDR tools e.g CrowdStrike, SentinelOne, Microsoft Defender. Experience providing BAU support. Experience in a SOC environment. more »

analyse, and respond to cyber threats. Understanding of networking technology Cyber security service trends compliance requirements in enterprise organisations Core cyber security products including SIEM, Zero Trust and NDR/XDR products. Core network routing and switching protocols. Knowledge of network performance and optimisation and services Please apply ASAP to more »

security tools. Familiarity with intrusion detection/prevention systems (IDS/IPS), firewalls, and anti-virus software. Experience with security information and event management (SIEM) systems. Strong analytical and problem-solving skills. Excellent communication and teamwork abilities. Relevant certifications such as CISSP, CEH, or CompTIA Security+ are a plus. Preferred more »

etc Excellent understanding of cybersecurity trends Ability to interpret customer landscape and challenges Strong presentation and client-facing skills Desired Skills: Knowledge across EDR, SIEM, Vulnerability Management Operational experience with security technologies Existing relationships in Manchester area Self-motivation and ability to work autonomously Job Specifics: This is a hybrid more »

with ITIL4 practices. Deliver concise progress reports and compelling presentations to clients. Serve as a subject matter expert in Security Information and Event Management (SIEM), providing recommendations for product enhancements. Conduct thorough analysis of SIEM outputs, promptly identifying and escalating any incidents or breaches. Provide assurance support to team members … Information Systems Security Professional (CISSP). Experience in Government/Ministry of Defence settings is advantageous. Proficiency in implementing ITIL processes. Strong expertise in SIEM operations. Competence in Risk Management and NIST Cyber Security Controls. Client-facing experience with exceptional stakeholder management skills. Ability to thrive in a fast-paced more »

that critical business operations continue unhindered. Key Responsibilities Monitor and analyze security events and alerts from multiple sources, including security information and event management (SIEM) software, network and host-based intrusion detection systems, firewall logs, and system logs (Windows and Unix), and databases Separate true threats from false positives using … Maintain a strong awareness of the current threat landscape Basic Qualifications Excellent teamwork skills Knowledge of and experience with intrusion detection/prevention systems and SIEM software Strong knowledge and understanding of network protocols and devices. Strong experience with Mac OS, Windows, and Unix systems. Ability to analyze event logs … recommendations for security tools to tool administrators. Familiarity with tools such as Wireshark, TCP Dump, Security Onion, and Splunk Strong knowledge of the following: SIEM Packet Analysis SSL Decryption Malware Detection HIDS/NIDS Network Monitoring Tools Case Management System Knowledge Base Web Security Gateway Email Security Data Loss Prevention more »

Monitor security logs and alerts from various sources, including intrusion detection systems, Endpoint Detection and Response (EDR) systems, and security information and event management (SIEM) tools. Investigate and analyse security incidents whether raised by our customer or internally to identify root cause and develop appropriate mitigation strategies. Execute security response more »

cyber defence hardware. • Support Junior Analysts to manage SOC systems. • Previous experience of Enterprise ICS/network architectures and technologies • Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. • Experience as a mentor/coach to junior analysts Your … C2M2) • Excellent communication skills • Experience of writing Defence/Government documentation Desirable Qualifications: • Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) • SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) • Advanced Analyst Course (SANS SEC503 or equivalent more »

to the Security Operations Manager, your key tasks may involve: Managing vulnerability scanning tools - SAST, SCA, IaC, Containers & DAST for all Egress products Investigate SIEM alerts, working with the Engineering and Operations teams to resolve issues Managing vetting applications, supplier onboarding and security awareness programmes Plan and manage 3rd party … Reviewing vulnerabilities found in code analysis tools and liaising with development/engineering to prioritise the resolution SOC investigation of security events in a SIEM (e.g. Azure Sentinel, Splunk etc) A basic knowledge and desire to learn python, to automate day to day tasks. You should have good prioritisation and more »

Monitor security logs and alerts from various sources, including intrusion detection systems, Endpoint Detection and Response (EDR) systems, and security information and event management (SIEM) tools. Investigate and analyse security incidents whether raised by our customer or internally to identify root cause and develop appropriate mitigation strategies. Execute security response more »

robust security controls including IAM, network security, data protection, and security monitoring. - Implement and manage cloud security tools and services like Azure Security Center, SIEM solutions (Splunk, ELK, Azure Sentinel), and conduct regular security assessments and penetration testing. - Develop and enforce cloud security policies, procedures, such as NIST, ISO … understanding of cloud security controls, tools (Azure Security Center), and services. - Familiarity with security testing methodologies like penetration testing and vulnerability assessments. - Experience with SIEM tools (Splunk, ELK, Azure Sentinel) and incident response/forensics. - Knowledge of security frameworks (NIST, ISO 27001, SOC 2) and relevant certifications (CISSP, CCSP). more »

Lead SOC Engineer/Manager (SC Cleared) London/WFH to £70k Are you an experienced SOC Engineer with a strong knowledge of SIEM combined with leadership experience? You could be progressing you career in an impactful role at a tech company that provide cyber security products to a range … role in ensuring the security and resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform and then once it's embedded ensuring BAU and leading security monitoring, carrying out indepth investigations and actively participating in incident response. This is … About you: You're an experienced SOC Analyst with the ability to troubleshoot and resolve complex security issues You have a strong understanding of SIEM systems e.g. IBM QRadar, FortiSIEM, Splunk, Sentinel and are able to recommend the right tool for the job You have a good understanding of IT more »

naturally inquisitive Understands the phases of security incident response and the Cyber Kill Chain *RESPONSIBILITIES* Analysis and investigation of alerts arising from Security Information and Event Management tools General day to day maintenance of the SIEM technology stack, including refinement of rules, alerts and reports arising from both traditional SIEM … Full ownership of the Security Incident management process, including customer notification, severity-based prioritization, investigation, regular customer updates, identification of remedial actions, reporting and closure Using SIEM and UBA tools to track and analyze events and abnormal user behaviors in order to identify and understand potential breaches, malware and other more »

Cyber Security Engineer, M&A, £635(inside) 10 months +Extension – SIEM, SOAR, IdAM, Vulnerability Management, Trellix Are you a Cyber Security Engineer and ready to take on a pivotal role in a global business? Working on a M&A, the largest in its sector. You will be joining the team … maintain cyber action plan. Track and communicate progress, risks, and issues. Review, report, and sign-off Infrastructure designs. Security Tooling (EDR, Vulnerability Management, IdAM, SIEM, SOAR). Input/review into cyber security design artefacts (HLD/LLD) and provide security engineering consultancy. Implementation cyber security support activities (configuration, connectivity more »

security operations and incident management Good knowledge of various security operations tools, technologies and processes including security device management tools, IDs/IPS and SIEM tools You'll also be well versed in security concepts such as threat vectors, event and incident management, cyber threats and attacks etc. Experience with … security device management and SIEM solutions Experience in global delivery operations support model (e.g. 24-7/16-8) You'll also have experience in leading security operational meetings with key internal and external stakeholders and managing relationship with service providers Any Information Security and/or Information Technology industry more »

to your skills to include Google Chronicle. As such this role will require somebody with experience of managed cyber security products/services stacks (SIEM, Endpoint, Cloud Security, Network Security, EDR/XDR, Vulnerability etc). HOWEVER.. if you just have the Microsoft Security stack this unique opportunity will also … in an MSSP already, or have worked in a shared service model as an inhouse cyber security engineer/consultant across a range of SIEM (Sentinel), Endpoint Services, Cloud Security, EDR/XDR, and Network Security. Plus you will ideally hold industry and vendor certifications. Vendors include: Microsoft, Google, CrowdStrike more »

to your skills to include Google Chronicle. As such this role will require somebody with experience of managed cyber security products/services stacks (SIEM, Endpoint, Cloud Security, Network Security, EDR/XDR, Vulnerability etc). HOWEVER.. if you just have the Microsoft Security stack this unique opportunity will also … consultant/architect role already, or have worked in a shared service model as an inhouse cyber security solutions architect across a range of SIEM (Sentinel), Endpoint Services, Cloud Security, EDR/XDR and Network Security. Plus you will ideally hold industry and vendor certifications. Vendors include: Microsoft, Google, CrowdStrike more »

SIEM/Incident SME (Active DV Clearance) ELK (Elastic, Logstash, Kibana) Tanium MITRE ATT&CK Cyber Kill Chain Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or Northallerton Duration: 6 months We are Global IT Recruitment specialist that provides support to more »

Job Title: Cyber Security Contractor Location: Plymouth Remuneration: Competitive Hourly Rate Contract Details: Fixed Term Contract, Full-Time Responsibilities: Monitor SIEM reports and dashboards on a daily basis. Investigate and resolve SOC related queries regarding IT & D systems. Utilise multiple security tools to monitor endpoints. Investigate and assist in resolving … assets. As a Cyber Security Contractor, you will play a vital role in the organisation's security operations centre, ensuring the daily monitoring of SIEM reports and dashboards. You will actively investigate and resolve SOC related queries and provide support to NGED staff for cyber security-related issues. Additionally, you more »

experience with the Microsoft suite of services to secure the Modern Workplace (Defender, Intune & Sentinel) as well as advanced, cloud-based services (SOC/SIEM, MDR/EDR). In addition, customers will need expert guidance in protecting their data, securing their IT infrastructure and working securely from anywhere (LAN … MSP/Pre-Sales role: Microsoft 365, Windows Copilot, SharePoint, Defender, Intune, Entra, Teams, Sentinel, Purview. Advisor in advanced cybersecurity services including SSE, SASE, SIEM, MDR/EDR. Solutions design experience - modern workplace infrastructure - SD-WAN, SASE, LAN, WiFi & Cybersecurity Experience in recommending and designing solutions to meet compliance standards more »

eager to continue their success, supporting a fast-pace, dynamic, trading organisation. The successful candidate will have recent involvement in implementing PAM, IDAM or SIEM tooling and have a range of technical knowledge and be able to add value around scripting, low balancing network infrastructure and an expert around installation … policies and procedures. Skills and requirements: Proficient working experience/knowledge of Linux operating systems including configurations, installation, and troubleshooting. Recent involvement in implementing SIEM tooling, IDAM or PAM. Previous experience managing F5 load balancers. Previous experience of diagnosing, trouble shooting and resolving technical issues TCP/IP, DNS, LDAP more »

work on a highly visable Identity and Access Management programme of work. Ideally the client seeks a Linux Engineer with IAM - IDAM - PAM or SIEM Tooling experience. In the rapidly evolving world of electronic trading, a cutting-edge organization is expanding their European operations right here in London, and they … and engineering. 🛠 Mastery in enterprise Linux, with a preference for Red Hat, CentOS, or Oracle Linux. 🔒 Recent hands-on exposure with IDAM, PAM, or SIEM tooling. 👁️‍🗨️ A track record with monitoring tools like Prometheus or Nagios. 🖥️ Scripting skillset in Python, Shell, Bash, or Ruby. 🌐 In-depth understanding of networking protocols more »