26 to 45 of 45 SIEM Jobs in Berkshire

to cybersecurity threats in a proactive and efficient manner. Key Responsibilities: Security Architecture & Implementation Design, deploy, and manage security solutions including firewalls, intrusion detection/prevention systems, endpoint protection, SIEM, and identity management platforms. Implement secure network architecture and enforce segmentation and least-privilege access controls. Support secure cloud environments across Azure, AWS, or GCP (e.g., IAM, security groups, encryption … Certifications (Preferred): CompTIA Security+, CEH, OSCP, CISSP, CCSP, Azure/AWS security certifications. Skills & Competencies Strong knowledge of network security (TCP/IP, VPNs, DNS, firewalls). Experience with SIEM tools (e.g., Splunk, Sentinel, QRadar) and EDR platforms. Familiarity with scripting or automation (PowerShell, Python, Bash). Understanding of secure cloud architecture and Zero Trust principles. Ability to analyze complex More ❯

for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory: 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities Possess a deep technical … knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) : Experience in security operations design, engineering and/or analysis and investigations, ideally in complex environments, with security event correlations More ❯

SABSA & TOGAF Experience following the green book five case model would be a plus and certifications such as: CCP, CISMP, CISSP, CREST. Identity management and federation, public key infrastructure, SIEM, cryptography, firewalls, vulnerability scanning. A varied background, diverse programme exposure and a security-based master’s degree or alternatively STEM degree are needed with an ability to demonstrate your capability More ❯

in security incident investigation, detection, response, and recovery (NIST/NIS2 frameworks) Strong foundation in security operations, but with strategic vision beyond SOC alert handling Experience with security telemetry, SIEM platforms, and threat detection technologies Understanding of enterprise security architecture in complex, matrixed organisations Experience & Background Proven track record maturing incident response and tabletop exercise programs Experience working alongside third More ❯

Confluence), Google Workspace security, Proofpoint (email security). Azure guardrails (Entra/Conditional Access, Azure Policy/PaC), Kubernetes context for platform integrations. Experience integrating CNAPP/CSPM or SIEM/SOAR signals into advisory workflows. Why join Shape a green-field Security Platform capability with real impact across dozens of teams. Modern stack, supportive culture, funded training/certifications More ❯

health audits across all systems Maintain awareness of emerging threats and advise on appropriate mitigations Incident Detection, Response, and Monitoring Lead detection, triage, and investigation of security incidents using SIEM tools such as Azure Sentinel, Splunk, or ELK Stack Correlate and analyse logs from network, endpoint, and cloud sources to identify potential compromises Work with DevOps and IT teams to … and managing security controls across cloud and on-premise environments Strong knowledge of network security, endpoint protection, and cloud security principles Hands-on experience with security tools such as SIEM, EDR/XDR, and vulnerability scanners Understanding of regulatory frameworks including GDPR, ISO 27001, and FCA requirements Experience with scripting and automation (Python, PowerShell, or similar) Ability to analyze security More ❯

ensuring security best practices Effective technical hands-on experience configuring/implementing products such as Microsoft Azure, Entra & Purview. Excellent consulting, design and delivery of Microsoft Defender suite and SIEM/XDR. Provide ongoing support, troubleshooting, and training to client end-users. Building relationships with key stakeholders, 3rd party vendors and Microsoft. Nice to have: Good understanding of Microsoft Fabric More ❯

ability to explain sophisticated topics to a varied audience of people who work in both IT and non-IT roles. Proficient with commonly used incident response tools, logging, and SIEM technologies. In-depth knowledge of and experience in security concepts such as cyber-attacks and techniques, risk management, incident management, threat management, etc. What We Offer You Looking to make More ❯

experience focusing on key customer accounts and delivering value to strategic accounts in the cybersecurity industry Extensive platform selling experience in complex sales with multiple buying centers Experience selling SIEM, EDR, or CNAPP (DevSecOps, CloudOps) solutions is highly preferred Established trusted relationships with CIOs and CISOs with the ability to influence and drive strategic conversations Expertise in applying complex solution More ❯

in the managed IT or telecoms sector. Solid knowledge of network principles (TCP/IP, routing protocols like OSPF & BGP, VRRP). Understanding of security concepts: firewalls, UTM, IPSec, SIEM, etc. Hands-on experience with at least two of the following: Networks, Cloud, Unified Communications, Cyber Security. Desirable: SD-WAN & SASE experience. Understanding of public/private cloud architecture. Technical More ❯

ensuring that security operations stay one step ahead of emerging threats. What You’ll Do Lead the creation and optimization of detection rules, alerting logic, and use cases across SIEM, EDR, and SOAR platforms. Analyze and investigate alerts across cloud and on-prem infrastructures to identify real threats and eliminate false positives. Strengthen visibility across Azure, AWS, and GCP environments … improvement of detection strategies and mentor analysts to uplift overall team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial More ❯

their PAM offering Working closely with the Security team Skills: 3+ years experience with PAM Solid knowledge of CyberArk or BeyondTrust etc. Knowledge of SailPoint, Okta etc. Knowledge of SIEM tools are a plus Financial Services experience is essential More ❯

security controls. Key responsibilities will include: Working closely with the in-house security operations team to drive world class threat detection Building effective detection use cases within the chosen SIEM while minimizing false positives. Utilize online resources for researching and collecting threat intelligence to enhance the SOC’s abilities to detect cyber-attacks. Utilize telemetry available throughout the environment to … build and improve detection capabilities. Testing of existing and new detection use cases Participation in security incidents/investigations Key skills needed for the role: Experience of SIEM administration – Splunk or Exabeam preferred but other SIEM tools considered Broad technical information security knowledge including networking, malware analysis, incident response and Knowledge of information security protection, detection and authentication systems Understanding More ❯

for security solutions, ensuring alignment with enterprise architecture and security policies. Design and architect solutions across various security domains including: Data Loss Prevention (DLP) Security Information and Event Management (SIEM) Identity and Access Management (IAM) Endpoint Detection and Response (EDR), MDM, and Endpoint Management tools Cloud and On-Prem Security Solutions Collaborate with stakeholders such as IT operations, application teams … documentation. Maintain up-to-date knowledge of emerging security threats and best practices to continuously enhance solution designs. Qualifications - Proven experience designing security solutions across multiple domains including DLP, SIEM, IAM, and Endpoint Security. Bachelor’s degree in computer science, Cybersecurity, Information Systems, or related field (master’s preferred). Experience in cybersecurity with 3+ years in a security architect More ❯

for security solutions, ensuring alignment with enterprise architecture and security policies. Design and architect solutions across various security domains including: Data Loss Prevention (DLP) Security Information and Event Management (SIEM) Identity and Access Management (IAM) Endpoint Detection and Response (EDR), MDM, and Endpoint Management tools Cloud and On-Prem Security Solutions Collaborate with stakeholders such as IT operations, application teams … documentation. Maintain up-to-date knowledge of emerging security threats and best practices to continuously enhance solution designs. Qualifications - Proven experience designing security solutions across multiple domains including DLP, SIEM, IAM, and Endpoint Security. Bachelor’s degree in computer science, Cybersecurity, Information Systems, or related field (master’s preferred). Experience in cybersecurity with 3+ years in a security architect More ❯

team with the addition of a Technical Consultant . As a Technical Consultant , you’ll bring expertise across Core Networking (Netskope, Fortinet, Palo Alto, or Juniper) or Cyber Security (SIEM, SOAR), helping to design and deliver enterprise-level solutions for clients across the UK. This is an excellent opportunity to join a dynamic, fast-growing business where innovation, technical excellence … Hands-on expertise with leading vendors such as Netskope, Fortinet, Palo Alto, or Juniper Networks , including the design and support of enterprise-grade architectures , or, a strong understanding of SIEM , SOAR , and Managed Security Services , with the ability to translate technical capabilities into clear business value . Additional knowledge of DDoS protection , Web Application Firewalls (WAF) , Endpoint Detection & Response (EDR More ❯

work with the largest companies in the world, to conceptualize and implement new and inventive ways to integrate our products as well as our data within their systems (i.e. SIEM, TIP, SOAR technologies). As a Solutions Engineer, you will have a dual focus, developing net new relationships by supporting the Regional Sales Director as well as championing adoption with … industry. Understanding of common OS, Browser, OSI Stack, DNS, Domain Registration, TCP/IP and networking technologies. Good understanding of various firewall and web proxy technologies. Working knowledge of SIEM/TIP/SOAR platforms. Familiarity with JSON/RESTful API endpoints. Familiarity with Big Data concepts and the management of large on-premise datasets. More ❯

for MDR We are also in the Top 25 MSSPs as ranked by MSP Alert Top 250 Global MSSPs. With 12 simple to execute, optional, modules including – Cloud, Network, SIEM, Endpoint, Mobile, OT/IOT, Recon (Dark Web Monitoring), Deceptions and Identity - we can create the service to complement existing technology and based on client requirements operating in the SME … and execute upon company or team-wide initiatives such as process improvement, training, content creation, etc. Key Skills In depth knowledge of infrastructure components including Endpoint, Networking, Identity Management, SIEM, and Cloud Services. Technical understanding of security tools and strategies. E.g. security frameworks, security operations, incident response, SIEM, XDR, EDR/EPP, NDR, CSPM etc. Ability to articulate and demonstrate More ❯

global managed service provider, assisting them with searching for a Technical Delivery Manager on a contract basis. The successful candidate will be leading the delivery of a large-scale SIEM migration and Elastic Agent rollout across multiple telecom estates. This role is critical to the success of the project and requires someone who is not only an effective coordinator but … also technically capable of driving delivery execution. Key Responsibilities: Lead end-to-end delivery of the SIEM migration and Elastic Agent rollout across complex, multi-environment telecom estates. Coordinate technical delivery plans and ensure alignment across all participating organisations and workstreams. Manage cross-functional teams, ensuring technical tasks are executed to scope, quality, and schedule. Drive progress proactively identifying risks … delivery status, risks, and dependencies to senior leadership. Key Skills: Proven background in the telecommunications industry, ideally having delivered large-scale infrastructure or platform projects. (Essential) Deep understanding of SIEM platforms such as Splunk and Elastic. (Essential) Strong hands-on technical delivery experience, not just governance or coordination. Familiarity with telecom-specific delivery processes, governance, and operational models. Excellent stakeholder More ❯

global managed service provider, assisting them with searching for a Technical Delivery Manager on a contract basis. The successful candidate will be leading the delivery of a large-scale SIEM migration and Elastic Agent rollout across multiple telecom estates. This role is critical to the success of the project and requires someone who is not only an effective coordinator but … also technically capable of driving delivery execution. Key Responsibilities: Lead end-to-end delivery of the SIEM migration and Elastic Agent rollout across complex, multi-environment telecom estates. Coordinate technical delivery plans and ensure alignment across all participating organisations and workstreams. Manage cross-functional teams, ensuring technical tasks are executed to scope, quality, and schedule. Drive progress proactively identifying risks … delivery status, risks, and dependencies to senior leadership. Key Skills: Proven background in the telecommunications industry, ideally having delivered large-scale infrastructure or platform projects. (Essential) Deep understanding of SIEM platforms such as Splunk and Elastic. (Essential) Strong hands-on technical delivery experience, not just governance or coordination. Familiarity with telecom-specific delivery processes, governance, and operational models. Excellent stakeholder More ❯