in a Security Operations Centre (SOC) environment Experience working as a SOC Level 2 Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client More ❯
SIEM Content Engineer – National Security & Defence Hybrid role - Hemel Hempstead (1 day/week on-site) Clearance: Must hold or be eligible for DV I have a great opportunity for a skilled SIEM professional to work as a SIEM Content Engineer working for a leading consultancy’s Security Operations Centre … SOC) team. The role will be focused on Country Critical technology in the defence and national security space. Key Responsibilities Develop and maintain SIEM content (rules, dashboards, reports) Analyse SIEM data to detect and respond to threats Collaborate with SOC Analysts, Architects, and Engineers Stay current on emerging threats and … incorporate into detection logic Support security standards and best practices Requirements: 3+ years with SIEM tools (Splunk, Sentinel, QRadar) Strong understanding of security protocols and frameworks (NIST, ISO, PCI DSS) Scripting experience (Python, PowerShell, regex) Excellent problem-solving and communication skills Security certifications (CISSP, CISM, etc.) would be a plus. More ❯
prioritize workload, and manage competing demands. • Experience in analyzing IT logs andevent sources is preferred. • Monitor and administer SecurityInformationandEventManagement (SIEM). • Malware analysis and forensics research. • Understanding/differentiation of intrusion attempts and false positives. • Investigation tracking and threat resolution. • Familiarity with data storage systems More ❯
SOC Analyst, you will provide expert technical support for complex network and cybersecurity deployments across key UK contracts. You will be responsible for managing SIEMand EDR platforms, developing security playbooks, and enhancing security operations. This role requires a strong understanding of IT infrastructure, operating systems, firewalls, and networking, along … functions for customer projects. Conduct integration testing for new services and document findings. Represent the team in meetings with key stakeholders. Support and maintain SIEM infrastructure, including applications and operating systems. Protect sensitive customer informationand ensure security best practices are followed. Skills/Must have: Strong expertise in supporting … and designing SIEM/EDR platforms. Extensive experience in cybersecurity investigations and troubleshooting, including: Operating Systems: Linux/Unix, Windows Security Infrastructure: Firewalls, Next-Gen Firewalls, Network devices Cloud Platforms & Networking: TCP/IP, Operational Technology SC clearance eligibility. Benefits: Competitive salary and career growth opportunities. Pension scheme (5% employee More ❯
and Experience: Proven experience in a Security Operations Centre (SOC) environment SOC Level 2 Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client … programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities As a SOC Shift Lead , you will ensure the smooth operation and continual enhancement of SOC processes and personnel. You More ❯
