226 to 250 of 261 Permanent Sentinel Jobs

incidents and lead on incident response. Conduct in-depth threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance to junior SOC analysts, enhancing team capability. Collaborate with IT and OT teams to address unique security requirements across CNI environments. Drive improvements in … and compliance frameworks (NIS2, CAF, ISO 27001). Skills & Experience Required Extensive background in SOC operations, incident response, and threat hunting. Expertise with the Microsoft security stack, including: Microsoft Sentinel (SIEM/SOAR) Microsoft Defender for Endpoint, Identity, Cloud Apps, and Office 365 Microsoft Entra ID (Azure AD) Microsoft Purview (compliance and data protection) Strong knowledge of attacker tactics and More ❯

clusters, Istio Service Mesh , and container orchestration. Audit and restructure existing Terraform modules and state files for scalability and compliance. Implement security-focused Terraform modules with policy-as-code (Sentinel, OPA). Enforce GCP Organisation Policies , including access, encryption, and network governance. Integrate IaC with CI/CD pipelines using tools such as Harness, Jenkins, and GitHub . Collaborate with … Service Mesh , and cloud automation. Skilled in CI/CD pipeline design (Harness, Jenkins, GitHub). Experience with GCP Organisation Policy , Custom Org Policies , and Policy-as-Code frameworks (Sentinel/OPA). Certified in Google Cloud and Terraform (Associate or Professional level). Excellent communication and stakeholder collaboration skills. If you are interested or would like to know more More ❯

clusters, Istio Service Mesh , and container orchestration. Audit and restructure existing Terraform modules and state files for scalability and compliance. Implement security-focused Terraform modules with policy-as-code (Sentinel, OPA). Enforce GCP Organisation Policies , including access, encryption, and network governance. Integrate IaC with CI/CD pipelines using tools such as Harness, Jenkins, and GitHub . Collaborate with … Service Mesh , and cloud automation. Skilled in CI/CD pipeline design (Harness, Jenkins, GitHub). Experience with GCP Organisation Policy , Custom Org Policies , and Policy-as-Code frameworks (Sentinel/OPA). Certified in Google Cloud and Terraform (Associate or Professional level). Excellent communication and stakeholder collaboration skills. If you are interested or would like to know more More ❯

clusters, Istio Service Mesh , and container orchestration. Audit and restructure existing Terraform modules and state files for scalability and compliance. Implement security-focused Terraform modules with policy-as-code (Sentinel, OPA). Enforce GCP Organisation Policies , including access, encryption, and network governance. Integrate IaC with CI/CD pipelines using tools such as Harness, Jenkins, and GitHub . Collaborate with … Service Mesh , and cloud automation. Skilled in CI/CD pipeline design (Harness, Jenkins, GitHub). Experience with GCP Organisation Policy , Custom Org Policies , and Policy-as-Code frameworks (Sentinel/OPA). Certified in Google Cloud and Terraform (Associate or Professional level). Excellent communication and stakeholder collaboration skills. If you are interested or would like to know more More ❯

clusters, Istio Service Mesh , and container orchestration. Audit and restructure existing Terraform modules and state files for scalability and compliance. Implement security-focused Terraform modules with policy-as-code (Sentinel, OPA). Enforce GCP Organisation Policies , including access, encryption, and network governance. Integrate IaC with CI/CD pipelines using tools such as Harness, Jenkins, and GitHub . Collaborate with … Service Mesh , and cloud automation. Skilled in CI/CD pipeline design (Harness, Jenkins, GitHub). Experience with GCP Organisation Policy , Custom Org Policies , and Policy-as-Code frameworks (Sentinel/OPA). Certified in Google Cloud and Terraform (Associate or Professional level). Excellent communication and stakeholder collaboration skills. If you are interested or would like to know more More ❯

clusters, Istio Service Mesh , and container orchestration. Audit and restructure existing Terraform modules and state files for scalability and compliance. Implement security-focused Terraform modules with policy-as-code (Sentinel, OPA). Enforce GCP Organisation Policies , including access, encryption, and network governance. Integrate IaC with CI/CD pipelines using tools such as Harness, Jenkins, and GitHub . Collaborate with … Service Mesh , and cloud automation. Skilled in CI/CD pipeline design (Harness, Jenkins, GitHub). Experience with GCP Organisation Policy , Custom Org Policies , and Policy-as-Code frameworks (Sentinel/OPA). Certified in Google Cloud and Terraform (Associate or Professional level). Excellent communication and stakeholder collaboration skills. If you are interested or would like to know more More ❯

clusters, Istio Service Mesh , and container orchestration. Audit and restructure existing Terraform modules and state files for scalability and compliance. Implement security-focused Terraform modules with policy-as-code (Sentinel, OPA). Enforce GCP Organisation Policies , including access, encryption, and network governance. Integrate IaC with CI/CD pipelines using tools such as Harness, Jenkins, and GitHub . Collaborate with … Service Mesh , and cloud automation. Skilled in CI/CD pipeline design (Harness, Jenkins, GitHub). Experience with GCP Organisation Policy , Custom Org Policies , and Policy-as-Code frameworks (Sentinel/OPA). Certified in Google Cloud and Terraform (Associate or Professional level). Excellent communication and stakeholder collaboration skills. If you are interested or would like to know more More ❯

clusters, Istio Service Mesh , and container orchestration. Audit and restructure existing Terraform modules and state files for scalability and compliance. Implement security-focused Terraform modules with policy-as-code (Sentinel, OPA). Enforce GCP Organisation Policies , including access, encryption, and network governance. Integrate IaC with CI/CD pipelines using tools such as Harness, Jenkins, and GitHub . Collaborate with … Service Mesh , and cloud automation. Skilled in CI/CD pipeline design (Harness, Jenkins, GitHub). Experience with GCP Organisation Policy , Custom Org Policies , and Policy-as-Code frameworks (Sentinel/OPA). Certified in Google Cloud and Terraform (Associate or Professional level). Excellent communication and stakeholder collaboration skills. If you are interested or would like to know more More ❯

clusters, Istio Service Mesh, and container orchestration. Audit and restructure existing Terraform modules and state files for scalability and compliance. Implement security-focused Terraform modules with policy-as-code (Sentinel, OPA). Enforce GCP Organisation Policies, including access, encryption, and network governance. Integrate IaC with CI/CD pipelines using tools such as Harness, Jenkins, and GitHub. Collaborate with architecture … Service Mesh, and cloud automation. Skilled in CI/CD pipeline design (Harness, Jenkins, GitHub). Experience with GCP Organisation Policy, Custom Org Policies, and Policy-as-Code frameworks (Sentinel/OPA). Certified in Google Cloud and Terraform (Associate or Professional level). Excellent communication and stakeholder collaboration skills. If you are interested or would like to know more More ❯

Why This Role Stands Out Join a $1B global IT and Cyber Defence provider that invests heavily in people and technology Work with cutting edge platforms such as Microsoft Sentinel, Defender, Elastic and Palo Alto Be part of a collaborative culture that values curiosity and continuous learning Clear progression into leadership or specialist technical roles Hybrid working model, flexible hours … or cyber defence environment Strong understanding of attack methodologies such as MITRE ATT&CK and the Cyber Kill Chain Hands on experience with SIEM and EDR tools including Microsoft Sentinel, Defender, Splunk or CrowdStrike Experience with triage, containment and incident response Solid understanding of networks, Windows and Linux systems and cloud security across M365, Azure and AWS Excellent communication skills More ❯

Why This Role Stands Out Join a $1B global IT and Cyber Defence provider that invests heavily in people and technology Work with cutting edge platforms such as Microsoft Sentinel, Defender, Elastic and Palo Alto Be part of a collaborative culture that values curiosity and continuous learning Clear progression into leadership or specialist technical roles Hybrid working model, flexible hours … or cyber defence environment Strong understanding of attack methodologies such as MITRE ATT&CK and the Cyber Kill Chain Hands on experience with SIEM and EDR tools including Microsoft Sentinel, Defender, Splunk or CrowdStrike Experience with triage, containment and incident response Solid understanding of networks, Windows and Linux systems and cloud security across M365, Azure and AWS Excellent communication skills More ❯

Why This Role Stands Out Join a $1B global IT and Cyber Defence provider that invests heavily in people and technology Work with cutting edge platforms such as Microsoft Sentinel, Defender, Elastic and Palo Alto Be part of a collaborative culture that values curiosity and continuous learning Clear progression into leadership or specialist technical roles Hybrid working model, flexible hours … or cyber defence environment Strong understanding of attack methodologies such as MITRE ATT&CK and the Cyber Kill Chain Hands on experience with SIEM and EDR tools including Microsoft Sentinel, Defender, Splunk or CrowdStrike Experience with triage, containment and incident response Solid understanding of networks, Windows and Linux systems and cloud security across M365, Azure and AWS Excellent communication skills More ❯

provide status updates to clients as needed. Collaborate with internal SOC and engineering teams to resolve complex incidents. Gain exposure to SIEM alert triage and basic investigation using Microsoft Sentinel or LogPoint (training provided). Essential Skills & Experience 1–2+ years of experience in a networking or firewall support role (or equivalent hands-on experience). Strong understanding of networking … and remote monitoring tools. Strong communication and documentation skills. Desirable Skills & Experience Hands-on experience with Fortinet FortiGate and/or Check Point SmartConsole. Exposure to SIEM platforms (Microsoft Sentinel, LogPoint) or SOC environments (training provided). Relevant certifications (e.g., Fortinet NSE4, Check Point CCSA, CompTIA Network+/Security+). Knowledge of ITIL processes and service management best practices. Familiarity More ❯

You’ll Bring • 3 to 5 years of experience in a SOC, security engineering or cyber operations environment • Hands on experience with SIEM or EDR platforms such as Microsoft Sentinel, Splunk, Defender, CrowdStrike or Elastic • Proven ability to build and tune detection rules, dashboards and automation playbooks • Knowledge of scripting or automation using KQL, PowerShell, Python or similar • Familiarity with … M365 • Strong grasp of network, system and identity security fundamentals • Analytical mindset and passion for problem solving and continuous improvement Desirable Experience • Experience with SOAR platforms such as Microsoft Sentinel Automation, Cortex XSOAR or Splunk SOAR • Knowledge of MITRE ATT&CK mapping and detection engineering frameworks • Experience using Infrastructure as Code such as Terraform, Bicep or ARM templates • Integration experience More ❯

You'll Bring • 3 to 5 years of experience in a SOC, security engineering or cyber operations environment • Hands on experience with SIEM or EDR platforms such as Microsoft Sentinel, Splunk, Defender, CrowdStrike or Elastic • Proven ability to build and tune detection rules, dashboards and automation playbooks • Knowledge of scripting or automation using KQL, PowerShell, Python or similar • Familiarity with … M365 • Strong grasp of network, system and identity security fundamentals • Analytical mindset and passion for problem solving and continuous improvement Desirable Experience • Experience with SOAR platforms such as Microsoft Sentinel Automation, Cortex XSOAR or Splunk SOAR • Knowledge of MITRE ATT&CK mapping and detection engineering frameworks • Experience using Infrastructure as Code such as Terraform, Bicep or ARM templates • Integration experience More ❯

You’ll Bring • 3 to 5 years of experience in a SOC, security engineering or cyber operations environment • Hands on experience with SIEM or EDR platforms such as Microsoft Sentinel, Splunk, Defender, CrowdStrike or Elastic • Proven ability to build and tune detection rules, dashboards and automation playbooks • Knowledge of scripting or automation using KQL, PowerShell, Python or similar • Familiarity with … M365 • Strong grasp of network, system and identity security fundamentals • Analytical mindset and passion for problem solving and continuous improvement Desirable Experience • Experience with SOAR platforms such as Microsoft Sentinel Automation, Cortex XSOAR or Splunk SOAR • Knowledge of MITRE ATT&CK mapping and detection engineering frameworks • Experience using Infrastructure as Code such as Terraform, Bicep or ARM templates • Integration experience More ❯

to help shape something rather than simply follow a process, this is the right environment for you. Core Responsibilities: Security Monitoring & Incident Response Monitor security alerts generated by Microsoft Sentinel, Microsoft Defender, Datadog and Elastic. Assess severity and impact of alerts, triage and investigate incidents independently. Execute containment and remediation actions using defined runbooks and playbooks. Correlate data across platforms … reports, RCA and after-action reviews for internal and client use. Maintain accurate incident records in JIRA Service Management. Detection Engineering Develop and implement new detection rules in Microsoft Sentinel aligned to the MITRE ATT&CK framework. Draft and optimise KQL queries for detection and threat hunting. Refine existing detection logic based on false positive analysis and threat evolution. Threat … Experience University educated with a degree in computer science, information security or equivalent At least one year of experience in a SOC environment monitoring and responding to incidents Microsoft Sentinel and Defender hands-on expertise SC-200 certification or willingness to achieve it Within commuting distance (~1 hour) of Canary Wharf, London Technical Skills Strong KQL skills for threat hunting More ❯

to help shape something rather than simply follow a process, this is the right environment for you. Core Responsibilities: Security Monitoring & Incident Response Monitor security alerts generated by Microsoft Sentinel, Microsoft Defender, Datadog and Elastic. Assess severity and impact of alerts, triage and investigate incidents independently. Execute containment and remediation actions using defined runbooks and playbooks. Correlate data across platforms … reports, RCA and after-action reviews for internal and client use. Maintain accurate incident records in JIRA Service Management. Detection Engineering Develop and implement new detection rules in Microsoft Sentinel aligned to the MITRE ATT&CK framework. Draft and optimise KQL queries for detection and threat hunting. Refine existing detection logic based on false positive analysis and threat evolution. Threat … Experience University educated with a degree in computer science, information security or equivalent At least one year of experience in a SOC environment monitoring and responding to incidents Microsoft Sentinel and Defender hands-on expertise SC-200 certification or willingness to achieve it Within commuting distance (~1 hour) of Canary Wharf, London Technical Skills Strong KQL skills for threat hunting More ❯

to help shape something rather than simply follow a process, this is the right environment for you. Core Responsibilities: Security Monitoring & Incident Response Monitor security alerts generated by Microsoft Sentinel, Microsoft Defender, Datadog and Elastic. Assess severity and impact of alerts, triage and investigate incidents independently. Execute containment and remediation actions using defined runbooks and playbooks. Correlate data across platforms … reports, RCA and after-action reviews for internal and client use. Maintain accurate incident records in JIRA Service Management. Detection Engineering Develop and implement new detection rules in Microsoft Sentinel aligned to the MITRE ATT&CK framework. Draft and optimise KQL queries for detection and threat hunting. Refine existing detection logic based on false positive analysis and threat evolution. Threat … Experience University educated with a degree in computer science, information security or equivalent At least one year of experience in a SOC environment monitoring and responding to incidents Microsoft Sentinel and Defender hands-on expertise SC-200 certification or willingness to achieve it Within commuting distance ( 1 hour) of Canary Wharf, London Technical Skills Strong KQL skills for threat hunting More ❯

to help shape something rather than simply follow a process, this is the right environment for you. Core Responsibilities: Security Monitoring & Incident Response Monitor security alerts generated by Microsoft Sentinel, Microsoft Defender, Datadog and Elastic. Assess severity and impact of alerts, triage and investigate incidents independently. Execute containment and remediation actions using defined runbooks and playbooks. Correlate data across platforms … reports, RCA and after-action reviews for internal and client use. Maintain accurate incident records in JIRA Service Management. Detection Engineering Develop and implement new detection rules in Microsoft Sentinel aligned to the MITRE ATT&CK framework. Draft and optimise KQL queries for detection and threat hunting. Refine existing detection logic based on false positive analysis and threat evolution. Threat … Experience University educated with a degree in computer science, information security or equivalent At least one year of experience in a SOC environment monitoring and responding to incidents Microsoft Sentinel and Defender hands-on expertise SC-200 certification or willingness to achieve it Within commuting distance (~1 hour) of Canary Wharf, London Technical Skills Strong KQL skills for threat hunting More ❯

to help shape something rather than simply follow a process, this is the right environment for you. Core Responsibilities: Security Monitoring & Incident Response Monitor security alerts generated by Microsoft Sentinel, Microsoft Defender, Datadog and Elastic. Assess severity and impact of alerts, triage and investigate incidents independently. Execute containment and remediation actions using defined runbooks and playbooks. Correlate data across platforms … reports, RCA and after-action reviews for internal and client use. Maintain accurate incident records in JIRA Service Management. Detection Engineering Develop and implement new detection rules in Microsoft Sentinel aligned to the MITRE ATT&CK framework. Draft and optimise KQL queries for detection and threat hunting. Refine existing detection logic based on false positive analysis and threat evolution. Threat … Experience University educated with a degree in computer science, information security or equivalent At least one year of experience in a SOC environment monitoring and responding to incidents Microsoft Sentinel and Defender hands-on expertise SC-200 certification or willingness to achieve it Within commuting distance (~1 hour) of Canary Wharf, London Technical Skills Strong KQL skills for threat hunting More ❯

to help shape something rather than simply follow a process, this is the right environment for you. Core Responsibilities: Security Monitoring & Incident Response Monitor security alerts generated by Microsoft Sentinel, Microsoft Defender, Datadog and Elastic. Assess severity and impact of alerts, triage and investigate incidents independently. Execute containment and remediation actions using defined runbooks and playbooks. Correlate data across platforms … reports, RCA and after-action reviews for internal and client use. Maintain accurate incident records in JIRA Service Management. Detection Engineering Develop and implement new detection rules in Microsoft Sentinel aligned to the MITRE ATT&CK framework. Draft and optimise KQL queries for detection and threat hunting. Refine existing detection logic based on false positive analysis and threat evolution. Threat … Experience University educated with a degree in computer science, information security or equivalent At least one year of experience in a SOC environment monitoring and responding to incidents Microsoft Sentinel and Defender hands-on expertise SC-200 certification or willingness to achieve it Within commuting distance (~1 hour) of Canary Wharf, London Technical Skills Strong KQL skills for threat hunting More ❯

a vital part in helping the Identity and Authentication team drive change across hundreds of applications, ensuring alignment with modern security practices, including Microsoft Entra ID and SailPoint, Microsoft Sentinel, Privileged Access Management etc Roles and Responsibilities: To be successful in the role, the role holder will be expected to: Engage with stakeholders across the airline to gather, refine and … organisation Must be a good communicator when speaking and writing – requirements need to be super clear for everyone to understand Desirable Experience Prior experience with SailPoint, Entra ID, Microsoft Sentinel or Privileged Access Management projects Previous involvement in airline, transport, or highly regulated sectors. Familiarity with Agile ways of working and backlog refinement ceremonies What’s in it for you More ❯

a vital part in helping the Identity and Authentication team drive change across hundreds of applications, ensuring alignment with modern security practices, including Microsoft Entra ID and SailPoint, Microsoft Sentinel, Privileged Access Management etc Roles and Responsibilities: To be successful in the role, the role holder will be expected to: Engage with stakeholders across the airline to gather, refine and … organisation Must be a good communicator when speaking and writing – requirements need to be super clear for everyone to understand Desirable Experience Prior experience with SailPoint, Entra ID, Microsoft Sentinel or Privileged Access Management projects Previous involvement in airline, transport, or highly regulated sectors. Familiarity with Agile ways of working and backlog refinement ceremonies What’s in it for you More ❯

a vital part in helping the Identity and Authentication team drive change across hundreds of applications, ensuring alignment with modern security practices, including Microsoft Entra ID and SailPoint, Microsoft Sentinel, Privileged Access Management etc Roles and Responsibilities: To be successful in the role, the role holder will be expected to: Engage with stakeholders across the airline to gather, refine and … organisation Must be a good communicator when speaking and writing – requirements need to be super clear for everyone to understand Desirable Experience Prior experience with SailPoint, Entra ID, Microsoft Sentinel or Privileged Access Management projects Previous involvement in airline, transport, or highly regulated sectors. Familiarity with Agile ways of working and backlog refinement ceremonies What’s in it for you More ❯