a training program for the team to ensure the team is capable to respond to the latest cyber threats and attack methods.Collaborate with the SIEMand Threat Intel teams to effectively contribute to increasing security posture at the organisation.Provide mentorship, guidance and positive recognition to security analysts and team leads.Improve … operations teamIn-depth knowledge of cyber threat landscape and the technics, tactics & procedures of advanced adversariesIn-depth knowledge of security technologies, tools, methodologies including SIEM, IDP/IPS, EDRExcellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholdersAbility to work more »
a training program for the team to ensure the team is capable to respond to the latest cyber threats and attack methods.Collaborate with the SIEMand Threat Intel teams to effectively contribute to increasing security posture at the organisation.Provide mentorship, guidance and positive recognition to security analysts and team leads.Improve … operations teamIn-depth knowledge of cyber threat landscape and the technics, tactics & procedures of advanced adversariesIn-depth knowledge of security technologies, tools, methodologies including SIEM, IDP/IPS, EDRExcellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholdersAbility to work more »
Cyber Security Engineer, M&A, £635(inside) 10 months +Extension – SIEM, SOAR, IdAM, Vulnerability Management, Trellix Are you a Cyber Security Engineer and ready to take on a pivotal role in a global business? Working on a M&A, the largest in its sector. You will be joining the team … maintain cyber action plan. Track and communicate progress, risks, and issues. Review, report, and sign-off Infrastructure designs. Security Tooling (EDR, Vulnerability Management, IdAM, SIEM, SOAR). Input/review into cyber security design artefacts (HLD/LLD) and provide security engineering consultancy. Implementation cyber security support activities (configuration, connectivity more »
recommendations. Design, implement, and provide support for customer security solutions. Serve as a senior security escalation point for the Service Desk. Configure and maintain SIEM systems. Participate in presales meetings with customers. Required Skills: Certified Cyber Essentials Assessor. Certified Cyber Essentials Lead Assessor. Experience in scoping and conducting penetration tests. … Strong understanding of SIEMand EDR solutions. Experienced in designing and delivering cybersecurity solutions across diverse environments. Proficient in both on-premise and cloud technologies. Excellent organisational skills, effective communication, and a strong customer service focus. Desired Qualifications: OSCP eJPT Benefits include: Unlimited annual leave (yes seriously) Flexible working options more »
Newcastle Upon Tyne, Tyne and Wear, North East, United Kingdom Hybrid / WFH Options
Reed Technology
recommendations. Design, implement, and provide support for customer security solutions. Serve as a senior security escalation point for the Service Desk. Configure and maintain SIEM systems. Participate in presales meetings with customers. Required Skills: Certified Cyber Essentials Assessor. Certified Cyber Essentials Lead Assessor. Experience in scoping and conducting penetration tests. … Strong understanding of SIEMand EDR solutions. Experienced in designing and delivering cybersecurity solutions across diverse environments. Proficient in both on-premise and cloud technologies. Excellent organizational skills, effective communication, and a strong customer service focus. Benefits include: Unlimited annual leave (yes seriously) Flexible working options Social events Accreditations andmore »
Central London, London, United Kingdom Hybrid / WFH Options
Hireful
experienced individual will know what the role entails, but some key points to be considered: - Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, Penetration Testing,) directly, or through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS … such as PCI, GDPR, ISO 27001, SOC2, NIST - Skills in leveraging application monitoring tools- AWS monitoring/alert tools (CloudTrail, GuardDuty), Qualys tools andSIEM experience, to detect and respond to security events/incidents. - Industry certifications such as CISSP, CISM, CEH, ECSA, LPT, OSCP, AWS certified security, or equivalent more »
Central London, London, United Kingdom Hybrid / WFH Options
Hireful
experienced individual will know what the role entails, but some key points to be considered: - Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, Penetration Testing,) directly, or through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS … cloud knowledge - obviously with a strong security focus. - Skills in leveraging application monitoring tools- AWS monitoring/alert tools (CloudTrail, GuardDuty), Qualys tools andSIEM experience, to detect and respond to security events/incidents. - Industry certifications such as CISSP, CISM, CEH, ECSA, LPT, OSCP, AWS certified security, or equivalent more »
London, England, United Kingdom Hybrid / WFH Options
Client Server Careers
Lead SOC Engineer/Manager (SC Cleared) London/WFH to £70k Are you an experienced SOC Engineer with a strong knowledge of SIEM combined with leadership experience? You could be progressing you career in an impactful role at a tech company that provide cyber security products to a range … role in ensuring the securityand resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform and then once it's embedded ensuring BAU and leading security monitoring, carrying out indepth investigations and actively participating in incident response. This is more »
Focussing on developing highly secure pipelines while using Terraform to deploy into the Azure Cloud. You'll also require skills in the likes of SIEMand familiar with the likes of DAST & SAST testing. Finally, strong knowledge of frameworks like ISO & NIST is required. Any experience of the OT/… though; they'll consider a more mid-level candidate with strong foundations Tech-Stack essentials are: Azure (ideally but will consider AWS/GCP), SIEM, ELK, Terraform, Security tools & Scripting Company working heavily in Green-technology, Carbon-Emissions & Sustainability Please submit your CV to be considered and Ben Griffiths from more »
Microsoft Sentinel (SIEM) Consultant/Engineer Up to £85,000 Remote An innovative Consultancy with a Microsoft Security Solutions Partner with additional multi vendor security product complements are expanding their service offerings, adding this key role to their expansion. They tailor and implement complete Microsoft/Azure solutions to customers … at an enterprise and mid market level, supporting them with expert SIEM services, advice and guidance on the Microsoft security product stacks. They require a SIEM specialist who is able to support the delivery of end-to-end solutions and provide additional Microsoft Sentinel expertise to clients. This role will … and external customers. The Role: This is a client-facing role and the successful candidate with have strong experience deploying and engineering Microsoft Sentinel (SIEM) solutions. You will provide specialist advice, recommendations and oversight to external clients and internal colleagues that are implementing Sentinel solutions. Responsibilities: · Designing, engineering and deploying more »
Lincoln, Lincolnshire, East Midlands, United Kingdom Hybrid / WFH Options
Red Recruitment 24/7 Ltd
from both a practical andmanagement perspective. The role involves setting up, fine-tuning, and gathering intelligence from a SecurityInformationandEventManagement (SIEM) system. The IT Security Specialist will be responsible for reviewing infrastructure plans, adding recommendations, and procuring penetration tests from third-party services. They will ensure … adheres to the GDPR requirements. They will also develop and deliver annual IT security training and ensure compliancewith our Phishing Simulations Responsibilities: Develop and manage the SIEM, ensuring the effective capture and analysis of security data. Review infrastructure plans to identify potential security weaknesses and recommend enhancements. Coordinate with third … Assist other departments in developing policies and procedures to comply with GDPR, working with the DPO outsourcing company. Skills and Qualifications: Proven experience with SIEM tools and incident response Strong understanding of network infrastructure andsecurity protocols Experience with GDPR, data securityand other compliance regulations Experience with GDPR, data more »
cyber security technologies and services in use at the company Role & Accountabilities KEY Identity access management, experience/involvement with Security services such as SIEMand Vulnerability Management. Provide expert knowledge and act as a subject matter expert on key principles of (IAM) with an in-depth knowledge in the … remediation of vulnerabilities in line with best practise and policy. Assist with the investigation vulnerability results and remediation efforts. Assist with management of the SIEM service, including the ingestion of new log sources, configuration of alerting and providing expert knowledge to aid the investigation of alerts where required. Support the more »
Edinburgh, Scotland, United Kingdom Hybrid / WFH Options
Denholm Associates
platform. This role presents an exciting opportunity to get involved in innovative projects designing security controls and delivering emerging security technologies. Good knowledge of SIEM tooling is essential. Reporting to the Cyber Security Engineering Manager, you will help to deliver improvements across a number of our cyber security domains including … Analytics, onboarding data and developing detection logic and analytics Essential Criteria: Demonstrable experience working in cyber security Experience supporting security tools, such as SOAR, SIEM, EDR, NGFW, CSPM, WAF, AV Industry recognised certifications such as Certified Splunk Architect, PCSAE, CISSP/CCSP, CEH or equivalent experience Experience working in a more »
City of London, London, United Kingdom Hybrid / WFH Options
MECS Communications Ltd
k + £8k Bonus + Bens dep on Skillset Location:- Central London, 3 days office, 2 days home Environment:- Microsoft Security, Modern Workplace, SIEM, MDR/EDR, M365 Security, Sentinel, Endpoint, Defender, InTune, Windows CoPilot, SharePoint, Lan, Wan, SD-Wan, SASE, Wireless, Firewalls, Audits, Risk Assessments, HLD, Fortinet, Aruba, Meraki … experience with the Microsoft suite of services to secure the Modern Workplace (Defender, Intune & Sentinel) as well as advanced, cloud-delivered services (SOC/SIEM, MDR/EDR). In addition, our customers will require expert guidance in protecting their data, securing their IT infrastructure allowing them to work securely … o Windows Copilot o SharePoint o Defender o Intune o Entra o Teams o Sentinel * Advisor in advanced cybersecurity services including SSE, SASE, SIEM, MDR/EDR * Solutions design experience - modern workplace infrastructure - SD-WAN, SASE, LAN, WiFi & Cybersecurity * Experience in recommending and designing solutions to meet compliance * Microsoft, Cisco more »
Oxfordshire, England, United Kingdom Hybrid / WFH Options
University of Oxford
on automation in collaboration with the Head of InformationSecurity Operations and the rest of the team. OxCERT runs an on-premises Elasticsearch-based SIEM solution, an Intrusion Detection System (IDS), and a vulnerability scanning service as well as other open source and commercial tools. We are one of the … Software and Open Source technologies and actively supports several related project communities. Current projects include the enhancement of the existing Elastic based securityinformationandeventmanagement system, the deployment of a new incident response tool, and development of an IT forensics capability. The team has achieved standing and recognition more »
Security Services and Solutions providers as they expand their SOC capability with the growth of SMC customers. An accredited Managed SOC service offering multiple SIEM vendor services, although with a primary focus on Microsoft Sentinel, they're looking for 2 experienced Security Operations Analysts to support the growth of the … The Role: In this role you will be a senior member of the Managed Services team and play a pivotal role in the Sentinel SIEM service offering. You will support the maturation of the service through the implementation of documentation, processes and policies that will improve and maintain the efficiency … and support junior SOC Analysts in their personal growth . Provide support to customers on the use of the SOC Managed Service and the SIEM tool Create policies and documentation to support the maturation of the SOC practice Work closely with the Head of Securityand Compliance to improve the more »
mostly on-premises financial environment. Key Responsibilities: Lifecycle management of security, covering tools and technology platforms Supporting and managing security tools eg CyberArk , Qualys, SIEM tools Python Scripting for various purposes Automation/Build & Deployment of CI/CD pipelines (Ansible/Atlassian Stack) Implementation & integration of security technologies Use … case development and onboarding for Security Incident andEvent Monitoring (SIEM) Maintain software version and patch management for security products Essential Candidate Requirements: Strong background in Financial/Banking environments Python Scripting (advanced level) Expert in Automation ( Ansible ) Strong knowledge of 2 or more of the following tools: CyberArk, Qualys … Carbon Black, ArcSight, McAfee, SIEM tools etc. Extensive general knowledge of Cyber Security Relevant Security Certification/Educational qualification (eg CISSP) CORE SKILLS: Python, CyberArk, Qualys, ArcSight, Carbon Black, McAfee, CI/CD Pipelines, PowerShell, Automation, Deployment, Integration, Ansible, SIEM, On-Prem Technology To be considered, please ensure you complete more »
security operations and incident management Good knowledge of various security operations tools, technologies and processes including security device management tools, IDs/IPS andSIEM tools You'll also be well versed in security concepts such as threat vectors, eventand incident management, cyber threats and attacks etc. Experience with … security device managementandSIEM solutions Experience in global delivery operations support model (e.g. 24-7/16-8) You'll also have experience in leading security operational meetings with key internal and external stakeholders and managing relationship with service providers Any InformationSecurityand/or Information Technology industry more »
Preston, Lancashire, United Kingdom Hybrid / WFH Options
BAE Systems
hardware & cyber security toolsets as required for the role Continuously work towards organisational, departmental, and individual objectives and uphold security standards and principles Supporting SIEMand SOAR technologies Provide ongoing managementand administration of Cyber Security solutions Provide support to projects delivering and implementation of Cyber Security solutions Provide guidance … to create custom KQL scripts that are used to conduct sophisticated security data analysis and uplift incident response and threat detection capabilities within a SIEM Highly motivated with the ability to work autonomously to complete a range of tasks to time and quality with the minimum of supervision Understanding of … log management, log source integration and connector development skills to support ingests without off the shelf support Capable of building and supporting a Sentinel SIEM platform from a Cyber-Engineering perspective Possessing an open and communicative style that engenders trust and promotes good working relationships Desirable: Cyber Security Technical Control more »
Employment Type: Permanent
Salary: £60000/annum Depending on skills and experience
Information Technology, Computer Science or relevant experience CISSP, CEH, OSCP, GCIH or applicable security field Incident, change and problem process management experience Experience in SIEM (Splunk, Sentinel), IPS and SOAR tools a plus Experience with investigating and managing major/complex cyber security incidents end-to-end Knowledge of adversarial … tactics, techniques, procedures (TTPs) & industry standard frameworks (Mitre Att&ck, ISO27000, ISO27001) Strong working knowledge of security technologies including but not limited to SIEM, EDR/EPP, AV, IDS, IPS, AD, DNS, SOAR E: j.bhard@locke-mccloud.com Locke & McCloud are the UK’s leading cyber security & informationsecurity staffing company more »
as necessary for the protection of Firm assets. Provide input, create documentation, and review informationsecurity policies and procedures. Utilize a common security toolset (SIEM, sniffer, IDS, vulnerability scanner, etc., to identify issues and analyze compliance with existing policies and procedures. Provide reports to the InformationSecurity Manager. Maintain the … and utilities. Utilizes remote control and remote access software in the performance of her/his duties. Utilize standard security tools such as a SIEM, endpoint/network protection technologies, DLP, two-factor, vulnerability scanners, custom scripts, and packet analyzer. Capable of moving 40 pounds of material or equipment without more »
Firewalling principles generally) - virtual and physical, IDS/IDP, CASB and SASE concepts, network segmentation as well as experience in network packet analysis andSIEM log analysis (advantageous). The Perimeter Security Engineer will be an SME and act as a platform owner for perimeter security technologies and will need … virtual and physical Extensive experience in secure network perimeter design including network segmentation Packet capture and analysis experience using vendor and open-source tooling SIEM log analysis and anomaly detection experience (preferable) Coding and automation experience Python and/or Terraform (preferable) CISSP certifications or familiarity with CISSP concepts Hybrid more »
to your skills to include Google Chronicle. As such this role will require somebody with experience of managed cyber security products/services stacks (SIEM, Endpoint, Cloud Security, Network Security, EDR/XDR, Vulnerability etc). HOWEVER.. if you just have the Microsoft Security stack this unique opportunity will also … in an MSSP already, or have worked in a shared service model as an inhouse cyber security engineer/consultant across a range of SIEM (Sentinel), Endpoint Services, Cloud Security, EDR/XDR, and Network Security. Plus you will ideally hold industry and vendor certifications. Vendors include: Microsoft, Google, CrowdStrike more »
to your skills to include Google Chronicle. As such this role will require somebody with experience of managed cyber security products/services stacks (SIEM, Endpoint, Cloud Security, Network Security, EDR/XDR, Vulnerability etc). HOWEVER.. if you just have the Microsoft Security stack this unique opportunity will also … consultant/architect role already, or have worked in a shared service model as an inhouse cyber security solutions architect across a range of SIEM (Sentinel), Endpoint Services, Cloud Security, EDR/XDR and Network Security. Plus you will ideally hold industry and vendor certifications. Vendors include: Microsoft, Google, CrowdStrike more »
About The RoleHippo Digital is recruiting a Principal SIEM Engineer to join our Hippo Herd. SIEM Engineers work in multi-disciplinary teams who build, support & maintain enterprise scale data platforms and solutions helping clients to drive transformation through improved data access and visibility.As a Principal SIEM Engineer, you will have … in a nutshell:Splunk Core Certified accredited SME acting as both consultant and engineer on large scale Splunk Enterprise Security projectsCreating/tuning of SIEM detection rules to satisfy client requirementsProviding technical consultancy for Hippo clients predominantly in the cyber security spaceWorking in hybrid teams across multiple clientsLeading and providing more »