1 to 25 of 39 SIEM Jobs in Berkshire

activities. Monitor security alerts and assist with investigating potential incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. ...

activities. Monitor security alerts and assist with investigating potential incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. ...

activities. Monitor security alerts and assist with investigating potential incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. ...

during security incidents in a front-facing role. Formal qualifications not essential; proven hands-on experience and delivery record valued. Technical Capabilities: Experience with SIEM platforms (e.g. Rapid7), Email Security and Data Security/DLP solutions (e.g. Varonis). Strong knowledge of Entra ID security features including Conditional Access and ...

Cloud • Azure RBAC and Entra ID • Azure Policy and network security controls • Experience remediating findings using native Azure security tooling and/or SIEM/CSPM platforms • Working knowledge of Azure logging, monitoring, and threat detection capabilities Additional Skills • Ability to work independently on remediation tasks while coordinating with multiple ...

security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments or penetration testing. Manage relationships with external pentest providers, auditors, and assessors. Secure Development Lifecycle (SDLC) Partner ...

security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments or penetration testing. Manage relationships with external pentest providers, auditors, and assessors. Secure Development Lifecycle (SDLC) Partner ...

customers Facilitate root cause investigations and manage the implementation of corrective and preventative measures Qualifications Previous experience with Endpoint Security software is required SIEM experience, including - Deep understanding of how SIEMs works Experience in creating custom collections and data parsing Experience in creating complex correlation rules, reports and dashboard Experience ...

migrating firewall rules, designing segmentation at multiple layers (macro/meso/micro), and integrating identity‐based controls. Strong background in logging/monitoring, SIEM/SOAR integration, and building operational metrics. Proficiency with capacity planning, performance tuning, and platform visibility tooling. Excellent documentation skills; able to produce architecture artefacts ...

policies, and standards Own vulnerability management, security monitoring, and incident response Ensure compliance with NCSC, PSN, PCI-DSS, GDPR and other national frameworks Manage SIEM, Microsoft security tooling (Sentinel/Defender/E5), identity & access, firewalls, and endpoint protection Advise on secure design for projects and change governance Prepare annual ...

traffic engineering. Strong background in security, including firewalls, VPNs, IDS/IPS, secure segmentation, and Zero Trust architecture. Experience with threat detection/response, SIEM integration, and incident response. Familiarity with compliance frameworks such as ISO 27001, NIST, and GDPR. Knowledge of cloud & hybrid networking, including AWS/Azure/ ...

Produce concise weekly/monthly threat reports and post-incident summaries. Detection Engineering & Threat Response Lead development and refinement of detection content across multiple SIEM and monitoring platforms. Design new queries, alerts, and automated workflows to improve visibility and reduce analyst workload. Tune existing detection rules, reduce false positives, and ...

and performance Excellent communication skills - able to translate complex technical issues into actionable insights for non-specialist teams (Preferred) Exposure to vulnerability assessment tooling, SIEM integration, or event correlation pipelines .. ...

more consultative, client-facing role. Ideal Background: Proven experience in cyber security design, architecture, or consultancy. Hands-on expertise across domains such as SIEM, SOAR, EDR, Vulnerability Management, WAF, IDAM , and Cloud Security . Strong understanding of vendor technologies (e.g., Fortinet, Palo Alto, Juniper ). Excellent communication and stakeholder engagement ...

Title: SIEM Engineer Location: Wokingham/Hybrid (3 days per week on site) Duration: 3 months from the start Rate: £430 per day inside ir35 SC security clearance is required for this role We are looking for a highly skilled Security Engineer to support the deployment, configuration, and management … modern SIEM and EDR platforms. This role is ideal for someone with strong hands-on technical security expertise and a passion for threat detection, analysis, and automation. Key Responsibilities: Syslog experience and/or strong Linux skills SIEM Deployment & Management Configure, deploy, and maintain SIEM platforms such as Microsoft Sentinel ...

response, and recovery (NIST/NIS2 frameworks) Strong foundation in security operations, but with strategic vision beyond SOC alert handling Experience with security telemetry, SIEM platforms, and threat detection technologies Understanding of enterprise security architecture in complex, matrixed organisations Experience & Background Proven track record maturing incident response and tabletop exercise ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

/asset records. • Lead root‐cause analysis and continuous improvement activities. 4. Security, Compliance & Pharma Requirements • Implement and maintain security controls: hardening, MFA, logging, SIEM, privileged access and patching. • Ensure infrastructure changes comply with GxP, validation, MHRA, audit and data protection requirements. • Own and regularly test backup and disaster recovery ...

level of security for the customer. The Cyber Security Consultant leads detailed risk assessments, implements industry-standard frameworks (NIST, NCSC, NIS2), and actively manages SIEM/XDR tools such as IBM QRadar, Microsoft Sentinel, and Defender XDR. This role involves deeper client interaction, proactive risk management, and advanced threat detection … interactions. Lead comprehensive cybersecurity risk assessments aligned to industry standards. Conduct environment reviews, ensuring compliance with NIST frameworks and related standards. Oversee and implement SIEM/XDR deployments, custom rule development, and incident response processes. Provide guidance on best practices for SIEM/XDR and threat detection. Conduct security posture ...

resided continuously in the UK for the past five years, due to Security Clearance requirements. Key Responsibilities: Lead investigations of security incidents raised by SIEM and CNAPP tooling. Drive improvements in cloud security posture using Microsoft Defender for Cloud. Guide project teams on remediation steps and ensure alignment with security … best practices. Support WebOps activities including deployment and configuration of SIEM and CNAPP tools. Oversee vulnerability management processes and ensure timely remediation. Manage and maintain LogicMonitor for cloud platform monitoring: Create and update logicmodules Configure alert rules and escalation chains Manage ServiceNow integration for incident handling Build and maintain dashboards ...

Cyber Security Engineer Focus: Azure/M365/Identity Management/SIEM/SOAR/Firewalls Salary: £70,000 + 20% Bonus + 20% Pension Location: Central London – Hybrid Join a prestigious financial organisation that has recently migrated to Azure Cloud and is now strengthening its security posture. With around … experience in Cyber Security, with strong technical skills in Azure and M365 security Hands-on experience with Azure security tools (Defender, Sentinel, Conditional Access) SIEM/SOAR Understanding of Identity and Access Management in cloud environments Background in IT support or infrastructure roles, with troubleshooting experience Relevant certifications Strong stakeholder ...

progression pathways into Threat Intelligence, SOC Engineering, Professional Services, Senior SOC roles, and Incident Response. Key Responsibilities Detect & Investigate Monitor and triage alerts across SIEM, EDR/XDR, email, and web security platforms. Investigate suspicious activity and assess escalation requirements. Follow SOC runbooks and structured investigation workflows. Build clear timelines … and common attack chains. Ability to recognise indicators of compromise (processes, network activity, logons, file changes). Hands-on experience with at least one SIEM, EDR, or XDR platform. Familiarity with ticketing tools such as ServiceNow, JIRA, or Salesforce. Experience reviewing Windows authentication/event logs and basic process trees. ...

including Copilot, Azure OpenAI, and agentic systems—ensuring proper guardrails, risk assessments, and data protection. Participate in cloud monitoring, detection & incident response, working with SIEM/XDR tooling and platform/application teams. Collaborate closely with data governance to ensure appropriate classification, labelling, access control, and lifecycle management of sensitive … using Microsoft Purview. Practically skilled in AI security, including risk identification, secure integration patterns, and AI governance models. Experience with cloud monitoring, incident response, SIEM/XDR operations. Ability to translate complex security risks into clear business language and actionable recommendations. DESIRABLE SKILLS Experience with secure data platforms (Azure Data ...

senior security leaders, with the ability to diagnose challenges and deliver strategic recommendations 10+ years of hands-on experience in deploying and integrating SIEM/security analytics solutions within large enterprise environments 8+ years of experience with Security Operations Center (SOC) tooling, processes, and workflows Hands-on technical mastery across … SIEM, SOAR, EDR, cloud security, and threat intelligence Ability to conceive, architect, and develop effective correlation and detection rules Familiarity with a range of SIEM technologies, such as Splunk and IBM QRadar, is a plus. Strong expertise in Regular Expressions (Regex) Relevant bachelor's degree or industry-recognized qualifications (CISSP ...