26 to 50 of 67 Permanent Sentinel Jobs

statements or policies Confidence working with non-security teams to challenge assumptions and improve outcomes What You’ll Work With SIEM tooling including Microsoft Sentinel and Log360 Cyber risk assessments across infrastructure, networks, systems and a wide variety of software applications Network architecture, firewall rules, segmentation, and access controls Third ...

technical excellence. Oversee the full lifecycle of security incidents — from detection through to resolution and review. Manage and optimise SIEM and SOAR platforms (Splunk, Sentinel, Elastic) to enhance detection and automation capabilities. Drive continuous improvement through ITIL-aligned processes and adherence to CREST standards. Oversee vulnerability management, threat intelligence ...

experience beyond basic log review. Comfortable engaging directly with technical stakeholders. Able to prioritise and operate effectively under pressure. Useful but not essential Microsoft Sentinel experience. Container or Kubernetes environments. CI/CD security tooling exposure. Red or purple team experience. Why this opportunity Senior ownership and autonomy. Modern cloud ...

insider risk initiatives Develop and enforce security policies and awareness programs Lead incident response and produce investigation reports Utilise and enhance Microsoft Security Stack (Sentinel, Defender, Purview) Drive Zero Trust implementation Conduct security audits and generate KPI/compliance reports Mentor junior analysts and support their growth What ...

threat intelligence and/or threat hunting Strong understanding of MITRE ATT&CK, malware analysis, and adversary behaviour Hands-on experience with Microsoft Sentinel, Defender XDR, and threat intelligence platforms Proficiency in KQL, Python, or similar scripting/query languages Excellent communication skills — comfortable presenting to clients Analytical, detail-driven ...

diversity and inclusiveness. Skills and Attributes for Success EDR technologies and tools, ability to conduct engagements using Endpoint Detection and Response technologies - Defender, CrowdStrike, Sentinel etc. Strong management skills to oversee multiple IR workstreams, timely delivery and adherence to budget managing organizational change and user training. Excellent communication and interpersonal ...

with the security team to establish and maintain security standards and procedures. What you’ll bring: Proficient in using SIEM technologies such as Splunk, Sentinel, and QRadar. Thorough grasp of security standard methodologies and protocols, for instance ISO 27001/27002, PCI DSS. Familiarity with security frameworks such as NIST ...

united by one goal: delivering an exceptional customer experience with speed and precision. Responsibilities: Be fast: Monitor alerts and events using tools like Microsoft Sentinel and PRTG, spotting issues before they become problems. Stay curious : Triage security and infrastructure incidents, follow playbooks, and keep things moving to resolution. Go further ...

Strong grasp of cybersecurity (firewalls, EPP, vulnerabilities, threat detection). Understanding of ISO 27001 and GDPR; audit support experience. Familiar with SIEM tools (Splunk, Sentinel). Operating Systems & Automation Working knowledge of Linux (Ubuntu, CentOS). Scripting with PowerShell, Bash, Python. Familiar with ITSM platforms (ServiceNow, Freshservice). Soft Skills ...

technologies as well as comprehensive knowledge set of Information & Cyber Security frameworks and principles. Fully conversant with the Microsoft suite of tools (E5, DFC, Sentinel, Entra, Defender for IoT) Should have exposure to Endpoint, Data Protection, Threat Intelligence and Application Security technologies Experience in creating architecture design documents, including HLDs ...

Hardware firmware and Microsoft patching requirements Asset Management Management Reporting Microsoft Defender PCI-DSS DESIRABLE CRITERIA (experience of) NHS DSP Toolkit NIS2 ISO27001 Microsoft Sentinel (or other SIEM solution) Microsoft Purview Strategy creation We reserve the right to close our adverts early if a successful candidate is found, so please ...

CRITERIA GDPRCompliance Hardware firmware and Microsoftpatching requirements Asset Management Management Reporting MicrosoftDefender PCI-DSS DESIRABLE CRITERIA(experience of) NHS DSP Toolkit NIS2 ISO27001 Microsoft Sentinel(or other SIEM solution) Microsoft Purview Strategy creation We reserve the right to close our adverts early if a successful candidate is found, sopleasesubmityour application ...

discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including EDR, vulnerability management tools ...

security improvement activities. Exposure to security tooling such as endpoint protection, email security, and next-generation firewalls. Exposure to SIEM tooling such as Microsoft Sentinel (desirable). Skills Ability to work independently, take ownership, and perform your own research when required. Ability to work under pressure and manage competing priorities. ...

security improvement activities. Exposure to security tooling such as endpoint protection, email security, and next-generation firewalls. Exposure to SIEM tooling such as Microsoft Sentinel (desirable). Skills Ability to work independently, take ownership, and perform your own research when required. Ability to work under pressure and manage competing priorities. ...

private & public cloud such as AWS & Azure Security Experience with MDM, MFA, Email filtering, Next generation firewalls & Anti-Virus solutions, SIEM Solutions such as Sentinel Skills An ability to work independently and perform their own research Ability to work under pressure Creative problem solving Ability to work on your ...

Cyber Operations Manager and project manager, the role is responsible for the delivery of the Cyber Improvement Programme, with a specific focus on Sentinel and Defender optimisation. Client Details This public sector organisation is committed to delivering essential services and maintaining high standards of security. They are a medium-sized … organisation with a focus on leveraging technology to ensure the integrity and protection of their operations. . Description Upgrade of Sentinel workspace environment Optimisation of Sentinel instances across the TPR estate Integration between Sentinel and Defender to the current MS best practice Support the Delivery Lead with meeting the requirements ...

escalated incident response, and threat hunting across a Microsoft-centric SIEM and XDR environment. This is a hands-on L3 role focused on Microsoft Sentinel and the Microsoft Defender XDR suite, acting as a technical authority within the SOC and supporting the ongoing expansion of security tooling and controls. Responsibilities … Engineering and optimising Microsoft Sentinel, including log onboarding, connectors, parsers, and data normalisation Monitoring and optimising Sentinel and Defender licensing and ingestion costs Designing automated response and SOAR workflows using Sentinel playbooks Leading complex incident investigations and advanced threat response Proactive threat hunting using KQL and developing custom detections aligned ...

nature of the clients supported, candidates must be eligible for SC and NPPV3 security clearance . Key Responsibilities Create, maintain, and optimise Microsoft Sentinel analytics rules, Logic Apps, and playbooks to support incident detection and response. Support and enhance integrations between Microsoft Sentinel and other security and IT systems … within an MSSP environment, responding to security incidents for public sector customers in line with agreed SLAs. Essential Experience Hands-on experience with Microsoft Sentinel within a SOC or MSSP environment. Experience building and maintaining automation using Azure Logic Apps and Sentinel playbooks. Working knowledge of API integrations to support ...

Network & Security Engineer to support and secure a modern, cloud-connected environment. The focus is on Cisco Meraki networking and Microsoft Azure Sentinel for security monitoring, incident response, and continuous improvement of the security posture. This is a hands-on role. Youll be expected to configure, support, troubleshoot, and improve … oversee. Key Responsibilities: Design, configure, and support Cisco Meraki networks (LAN, WAN, Wi-Fi, firewalls.) Monitor, manage, and respond to security events using Azure Sentinel (SIEM/SOAR.) Investigate incidents, perform root cause analysis, and recommend remediation. Work closely with cloud, infrastructure, and IT teams to maintain secure connectivity. Contribute ...

business, ensuring workforce competence, regulatory compliance, and accurate reporting across rail and infrastructure projects. The role will act as a central coordination point for Sentinel, training, HR onboarding, fatigue management, plant & equipment, document control, and audit preparation, supporting safe and efficient operations. Telecoms/Rail background - HSQE - Health and Safety … Proficient in Microsoft Office (Excel, Word, Outlook) Ability to manage multiple priorities and deadlines Desirable: Experience working within rail or infrastructure sectors Knowledge of Sentinel, RISQS, ISO or CHAS Familiarity with fatigue management systems Experience with document control systems and KPI reporting Blue Arrow is proud to be a Disability ...

enterprise security architectures, including infrastructure, data ingestion pipelines, and cloud security posture components. Lead the implementation and optimization of Microsoft security technologies such as Sentinel , Defender XDR , SOAR , and integrations involving DevOps (IDE/CI/CD) and Cribl . Develop advanced security analytics, threat intelligence models, and monitoring capabilities … Drive continuous improvements, best practices, and innovation within the enterprise security architecture domain. Required Skills & Expertise Deep expertise in enterprise security technologies, especially: Microsoft Sentinel Defender XDR SOAR DevOps security (IDE/CI/CD) Cribl Strong hands-on experience with: Azure Security services Cloud Security Posture Management (CSPM) Data ...

Ready to lead complex security operations, shape detection strategy, and be the go-to expert for Microsoft Sentinel and Defender XDR? Join my international client and take ownership of advanced engineering, threat hunting, and incident response in a modern, cloud-first environment.? My client is an international Consultancy firm, specialist … advanced engineering work for SIEM and XDR , escalated security incident response, and advanced threat hunting. What this job is really about Owning M icrosoft Sentinel and Defender XDR so they work for you, not the other way round: shaping the data, the rules, the playbooks, and the signal-to-noise ...

Provide day-to-day monitoring and initial response for SOC customers in line with Intercitys Security Incident Response Framework. Investigate alerts generated by Microsoft Sentinel and Microsoft Defender for 365, identifying true positives and responding appropriately. Analyse multiple security data sources to detect malicious activity and support containment actions. Communicate … recommend strategies to reduce risk across customer environments. Contribute to the ongoing development of the SOC service through: Tuning detection rules within Microsoft Sentinel Improving automation and ticket workflows Identify vulnerabilities within Microsoft Defender 365 and support customers in improving their overall security posture. Essential Experience & Knowledge: Strong, demonstrable experience ...

continuous improvement of SOC runbooks, KPI's, dashboards and reporting. You will have exceptional understanding of all the Microsoft Security suite of technologies Sentinel, Defender XDR, Entra ID and Microsoft 365 security signals. Key Skills & Experience Proven SOC Leadership within a Managed Security Services environment Overseeing 24/… service delivery and SLA performance. Managing triage, detection, investigation, threat hunting, escalation, and incident closure processes. Continuously improve SOC runbooks, KPIs, dashboards, and reporting. Sentinel, Defender XDR, Entra ID and Microsoft 365 security signals M365 audit & contextual logs Drive optimisation, tuning, and governance across SIEM/XDR/SOAR platforms. ...