401 to 425 of 428 Permanent SIEM Jobs

robust protection of business systems and data. Key Responsibilities Manage day-to-day cyber security operations and incident response Monitor and optimise security tools (SIEM, firewalls, endpoint security) Maintain and support network infrastructure (LAN/WAN, Wi-Fi, L2/L3) Identify threats, conduct investigations, and implement security fixes Support … cyber security projects and ongoing improvements Key Skills & Experience Proven experience in cyber security operations and network infrastructure Strong knowledge of Palo Alto firewalls, SIEM tools, and endpoint security Experience with L2/L3 networking (Nexus, LAN/WAN, Wi-Fi) Vulnerability management (e.g. Qualys) and incident response expertise Understanding ...

improvements and engineering enhancements Support detection engineering, tuning, and platform optimisation Lead automation and SOAR initiatives to improve efficiency Collaborate with SOC providers on SIEM governance and data ingestion Ensure platforms meet regulatory and compliance requirements Maintain engineering documentation, standards, and governance Represent engineering in client governance and audit activities … issues Experience & Knowledge Essential: Significant experience in security engineering and platform management Strong leadership experience managing technical teams Deep knowledge of Microsoft Defender and SIEM platforms (e.g. Sentinel) Experience in hybrid cloud and on-prem environments Strong understanding of security architecture and frameworks Experience in regulated environments (e.g. financial services ...

pipelines and shared enterprise services Detection, Automation & Response Build detection logic, automation, and response mechanisms to improve security operations Integrate cloud security tooling with SIEM and monitoring platforms Support incident response activities through improved detections and recovery mechanisms Contribute to post-incident improvements and continuous optimisation of controls Modern Engineering … supporting cloud security controls and automation Familiarity with CI/CD, Infrastructure as Code, and cloud automation tooling Desirable Experience with CSPM, DLP, SIEM, or cloud security tooling Exposure to detection engineering, incident response, or security automation Understanding of secure cloud design principles and distributed systems Experience with policy ...

enhancing detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation … evolve a repository of use cases, KPIs, and SOC performance metrics Requirements 3+ years of commercial experience in SOC content engineering, detection engineering, or SIEM administration Strong commercial experience with Splunk Strong hands-on experience with SIEM platforms and query languages (e.g. SPL, KQL) Solid understanding of detection engineering principles ...

with BAE Systems in Preston on helping them source a Systems Administrator that has a couple of years' experience working with Linux (RHEL) and SIEM technologies. About the Role This role focuses on the day-to-day administration, monitoring, and support of Red Hat Linux servers within an enterprise environment. … system health, troubleshooting issues, and ensuring reliable performance across both Linux and Windows platforms. Alongside core system administration duties, you'll support security tooling (SIEM and SOAR), ensuring systems are correctly configured to collect, process, and deliver accurate data. You'll also help onboard new systems and data sources, ensuring ...

SIEM Engineer – Watford, UK Up to £85,000 salary depending on experience Full time onsite role in Watford DV clearance required ABOUT THE CLIENT Our client is a highly respected technology and security services provider supporting organisations operating in complex and security critical environments. Their teams design and deliver advanced … ensure the right controls, tooling and processes are in place to protect critical systems and data. You will take ownership of detection engineering, SIEM platform performance and the full lifecycle of security detection content, ensuring security monitoring remains effective, scalable and reliable. Key responsibilities include: Acting SME on Splunk Enterprise ...

across identity, access, network and XDR technologies, ensuring system health, data integrity and effective alerting. You will support multi-tenant platforms such as XDR, SIEM, monitoring analytics, queries and dashboards, and identify opportunities to improve performance. You will contribute to onboarding by supporting ingestion pipelines, enrichment processes and integrations that … incidents, supporting investigation, containment and recovery activities, and contributing to post incident remediation and service improvement. Diagnose and resolve service incidents relating to security tooling (e.g. SIEM, XDR, logging pipelines), escalating complex issues where appropriate and contributing to root cause analysis and preventative actions. Support the planning, assessment and implementation ...

ensuring compliance with relevant industry standards, enabling the business to operate securely and efficiently in a dynamic threat landscape. PRINCIPAL ACCOUNTABILITIES: Monitor and analyse SIEM, network, and endpoint logs to detect threats, vulnerabilities, and anomalies. Evaluate and triage security alerts, accurately distinguishing genuine threats from false positives and applying appropriate … experience in cybersecurity Strong knowledge of security protocols, cryptography, and security technologies Proven experience with security tools such as firewalls, EDR/XDR software, SIEM and intrusion detection systems. Experience within a NOC/SOC environment. Ability and enthusiastic approach to pick up new technologies and learn them Ability ...

rapidly expanding team investing in new capabilities and empowering analysts to develop and progress Key Responsibilities Deliver high‐quality security analysis by reviewing SIEM outputs and taking appropriate investigative and response actions Drive improvements across monitoring capability, processes, and tooling Engage confidently with a wide range of stakeholders, from technical … security challenges Act as an escalation point for junior analysts and manage incidents through investigation to response Essential Skills & Experience Strong experience working with SIEM technologies such as Splunk, ArcSight, LogRhythm, or AlienVault Solid understanding of how to maximise the value of security tooling Exposure to building SOC capability and ...

Senior Network and Security Analyst - L2/L3 Network Infrastructure - Cyber Security - SIEM tools My client who are leaders in their field are looking for a Senior Cyber Security and Network Analyst to provide effective and timely operational support, development and management of the IT network and security infrastructure … cyber security and network infrastructure, ensuring systems remain secure, resilient, and aligned to business needs Manage day-to-day security operations, including monitoring SIEM platforms, Firewalls, endpoint protection, and threat detection tools Investigate security incidents and vulnerabilities, recommending and implementing corrective actions where required Maintain and support network technologies including ...

Senior Network and Security Analyst - L2/L3 Network Infrastructure - Cyber Security - SIEM tools My client who are leaders in their field are looking for a Senior Cyber Security and Network Analyst to provide effective and timely operational support, development and management of the IT network and security infrastructure … cyber security and network infrastructure, ensuring systems remain secure, resilient, and aligned to business needs Manage day-to-day security operations, including monitoring SIEM platforms, firewalls, endpoint protection, and threat detection tools Investigate security incidents and vulnerabilities, recommending and implementing corrective actions where required Maintain and support network technologies including ...

What You'll Be Doing Lead day-to-day cyber security operations , ensuring systems remain protected and resilient Monitor and respond to threats via SIEM tools , investigating incidents and implementing fixes Manage and optimise next-generation firewalls (Palo Alto) and endpoint security platforms Oversee vulnerability management and patching (e.g. Qualys … security + networking expertise, including: Proven experience in cyber security operations and engineering Strong hands-on experience with: Palo Alto Firewalls (essential) SIEM tools Endpoint Detection & Response (EDR) Vulnerability management tools (e.g. Qualys) Solid networking knowledge: L2/L3 switching (Cisco Nexus) LAN/WAN, Wi-Fi (Aruba), load balancing ...

Support cyber testing exercises and continuous operational improvements. Analyse network traffic, PCAP captures, endpoint activity, and attack patterns to identify malicious behaviour. Work with SIEM technologies and security tooling across large and complex enterprise environments. Produce technical reports and provide briefings to senior stakeholders and executives. Support cyber risk management … and detection technologies. Experience with scripting languages and strong proficiency in data analysis. Strong understanding of cyber risk, controls, and security governance. Proficiency with SIEM technologies within large and complex computing environments. Incident response expertise including: PCAP Capture Network Analysis Traffic Pattern Analysis Excellent interpersonal and stakeholder management skills. Experience ...

pipelines using Cribl Stream in a cloud-centric environment. This role focuses on enabling reliable, scalable, and cost-efficient log ingestion and routing across SIEM and observability platforms, supporting detection engineering, audit, and operational excellence objectives. Key Responsibilities: Design, build, and maintain Cribl Stream pipelines (routes, parsing, filtering, transformation). … SLAs and reliability standards . Apply security and compliance best practices for log handling and transmission. Experience supporting large-scale migrations highly desired (e.g., SIEM or log pipeline transformations) Required Qualifications: Hands-on experience with Cribl Stream (pipelines, routes, packs, edge/workers). Experience with log management/observability ...

Security Consultant/Engineer - Fortinet, NSE7, SIEM, SOAR, LAN - £55,000 - £75,000 - NW England Do you want to be one of the Fortinet experts within a Fortinet Expert Partner? Do you want to work on some of the most exciting SecOps projects out there? Do you want … escalation when needed Be able to undergo DBS clearance. NPPV3 - will need to be undertaken post probation. Security Consultant/Engineer - Fortinet, NSE7, SIEM, SOAR, LAN - £55,000 - £75,000 - NW England ...

Responsibilities: • Perform triage of security events and incidents • Determine scope, impact and remediation priorities • Real-time incident management from detection to resolution • Support SIEM engineering and tool configuration within an enterprise SOC • Develop use cases, analytics and playbooks • Work within a fast-paced, highly secure operational environment Essential Experience: ✔ Proven … Tier 2/3 SOC Analyst experience (2+ years) ✔ Hands-on SIEM experience (ArcSight preferred) ✔ SOC certifications such as SANS, ISC2 or equivalent ✔ Strong incident response and threat analysis capability ✔ Understanding of cloud technologies. Desirable: ➕ Defence/MOD experience ➕ Team lead exposure ➕ Degree in Computing, Engineering or related discipline. Please ...

support issues Supporting and mentoring Tier 1 Engineers Troubleshooting Microsoft 365, Azure and infrastructure issues Investigating and responding to security alerts from SOC/SIEM platforms Supporting Cisco Meraki networking environments Managing issues through to resolution with clear customer communication throughout Identifying recurring technical or service trends and helping improve … teams where required Technical Environment Microsoft 365 Azure Windows Server/Active Directory Cisco Meraki Endpoint Manager/Intune MFA/Security tooling SIEM/EDR platforms Hyper-V Windows, Mac, iPhone and Android device support What They're Looking For Previous experience in a 2nd Line Support or Escalation ...

support issues Supporting and mentoring Tier 1 Engineers Troubleshooting Microsoft 365, Azure and infrastructure issues Investigating and responding to security alerts from SOC/SIEM platforms Supporting Cisco Meraki networking environments Managing issues through to resolution with clear customer communication throughout Identifying recurring technical or service trends and helping improve … teams where required Technical Environment Microsoft 365 Azure Windows Server/Active Directory Cisco Meraki Endpoint Manager/Intune MFA/Security tooling SIEM/EDR platforms Hyper-V Windows, Mac, iPhone and Android device support What They're Looking For Previous experience in a 2nd Line Support or Escalation ...

their entire fleet. This hire will design and build partner API integrations across the cybersecurity stack — endpoint protection, network security, user awareness training, and SIEM/SOC tooling — and set the standard for test-driven development across the codebase. This is a hands-on, permanent role. You will not just … day. Responsibilities Integration Development Design and build partner API integrations across GT Maritime's cybersecurity stack — endpoint protection, network security, user awareness training, and SIEM/SOC tooling. Write clean, modular, well-tested code following object-oriented design principles. Participate in code reviews and hold a high bar for what ...

and analysis. Experience in training curriculum development. Experience working with Intrusion Detection System (IDS), Intrusion Prevention System (IPS), and Security Information and Event Management (SIEM) tools. Strong presentation skills. Excellent written and verbal communication skills. Must be able to travel up to 25% CONUS and OCONUS. Must be able ...

and development opportunities THE MANAGING SECURITY ENGINEER ROLE: You will lead the design, implementation and optimisation of security monitoring platforms, with a focus on SIEM technologies. Working closely with cross-functional teams, you will assess risk, define controls and deliver scalable, high-performance security solutions. You will … and risk-based alerting Experience building and maintaining data pipelines, log ingestion and schema standardisation Advanced knowledge of SPL, KQL or EQL Experience with SIEM operations, including scalability, high availability and performance Automation experience using CI/CD, Infrastructure as Code or scripting tools Strong problem-solving skills and ...

Experience with OPA (Open Policy Agent) policy authoring in Rego and sidecar deployment patterns Hands-on with OpenTelemetry (traces, metrics, logs), Dynatrace, and Splunk SIEM integration Working knowledge of CDN/WAF platforms (Akamai Ion, Kona, Cloudflare) and WAF-as-code automation Experience with PostgreSQL (HA, connection pooling, PITR) and … maintain OPA policy bundles for coarse-grained authorization at the gateway layer Build and extend OpenTelemetry instrumentation pipelines (OTel Collector, Dynatrace OTLP ingest, Splunk SIEM forwarding) Manage GitOps-driven deployments via ArgoCD and Helm across multi-cluster Kubernetes environments Automate WAF rule management across Akamai and Cloudflare using ...

supporting a portfolio of customers across multiple sectors. You’ll act as an escalation point for Tier 1, owning investigations end-to-end — triaging SIEM and EDR alerts, leading incident response, hunting threats using MITRE ATT&CK, and tuning detections to cut noise. You’ll also mentor junior analysts and … help mature playbooks and runbooks. We’re looking for 3+ years in a SOC or MSSP, hands-on with SIEM, EDR, and Microsoft 365/Entra ID security. KQL or PowerShell scripting, phishing and malware triage experience, and clear written communication are essential. Security+, SC-200, BTL1 or similar certs ...

SIEM Engineer – Watford, UK Up to £85,000 salary depending on experience Full time onsite role in Watford DV clearance required ABOUT THE CLIENT Our client is a highly respected technology and security services provider supporting organisations operating in complex and security critical environments. Their teams design and deliver advanced … ensure the right controls, tooling and processes are in place to protect critical systems and data. You will take ownership of detection engineering, SIEM platform performance and the full lifecycle of security detection content, ensuring security monitoring remains effective, scalable and reliable. Key responsibilities include: Acting SME on Splunk Enterprise ...

overzicht, en communiceer je helder naar stakeholders. Je kent je weg in het security technologie landschap. Of het nu gaat over EDR, SIEM, IAM of SASE, je praat mee op niveau met de specialisten. Een smakelijk loon dat aansluit bij jouw kennis en ervaring, flexibele planning voor telewerk, diverse extralegale … Agristo word je gehoord, gewaardeerd en ondersteund. Niet omdat het moet, maar omdat we geloven dat mensen het verschil maken. Beslissingen nemen, Business, SIEM, IDM, Management, Bedrijfsvoering, ISO Standards, ISA, Beveiligingsdienst, Informatietechniek, Cyber Security, Vertaling, Risicoanalyse JBRP1 ...