13 of 13 Azure Sentinel Jobs in Central London

We’re looking for a hands-on technical expert to join our team and enhance our Microsoft Sentinel & Azure SIEM threat detection capabilities. The Role: Design, implement & tune advanced detection rules and analytics. Translate threat intelligence into actionable detection logic. Lead SIEM enhancements, integrations & content migration. Mentor junior engineers and drive best practices. Collaborate with IR … threat intel teams to refine detections. Skills: Proven experience in SIEM content development & threat detection. Strong expertise with Microsoft Sentinel, Azure & Logic Apps. Deep knowledge of MITRE ATT&CK, attacker TTPs & security principles. Strong analytical & problem-solving skills. More ❯

malware, phishing, and endpoint compromise Perform root cause analysis, containment, and recovery actions Tune detection rules and develop new use cases to improve response times Utilise Microsoft Defender, Sentinel, and Azure Security tools to detect and respond to threats Conduct post-incident reviews and recommend long-term prevention strategies Collaborate with infrastructure and security teams to … systems and processes Experience required Minimum 2 years in a SOC environment followed by recent hands-on incident response experience Strong working knowledge of SIEM and EDR tools (Sentinel, Defender, CrowdStrike, etc.) Solid understanding of Windows, Linux, and network security principles Experience with forensic or threat analysis techniques Familiarity with MITRE ATT&CK, NIST, or similar frameworks Desirable … malware, phishing, and endpoint compromise * Perform root cause analysis, containment, and recovery actions * Tune detection rules and develop new use cases to improve response times * Utilise Microsoft Defender, Sentinel, and Azure Security tools to detect and respond to threats * Conduct post-incident reviews and recommend long-term prevention strategies * Collaborate with infrastructure and security teams to More ❯

Proven experience in a 3rd Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud … improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part More ❯

detection/prevention systems, endpoint protection, SIEM, and identity management platforms. Implement secure network architecture and enforce segmentation and least-privilege access controls. Support secure cloud environments across Azure, AWS, or GCP (e.g., IAM, security groups, encryption, KMS). Threat Detection & Incident Response Monitor and analyze security alerts and network traffic for threats or suspicious activity. Lead or … Computer Science, Networking, or a related field. Experience: 3+ years’ experience in cybersecurity, network engineering, or IT infrastructure security roles. Certifications (Preferred): CompTIA Security+, CEH, OSCP, CISSP, CCSP, Azure/AWS security certifications. Skills & Competencies Strong knowledge of network security (TCP/IP, VPNs, DNS, firewalls). Experience with SIEM tools (e.g., Splunk, Sentinel, QRadar) and More ❯

GRC). Requirements In-depth understanding of the incident response lifecycle — preparation, detection, containment, eradication, recovery, and lessons learned. Hands-on experience with SIEM tools such as Splunk, Sentinel, or QRadar — including log analysis and data correlation. Strong familiarity with EDR platforms like CrowdStrike, SentinelOne, or Carbon Black. Working knowledge of network security , including protocols, firewalls, IDS/… IPS, and traffic analysis. Experience with cloud security principles in AWS, Azure, or GCP. Ability to interpret and apply threat intelligence to improve controls and detection coverage. Experience with MacOS preferred Strong communication skills — capable of articulating complex technical issues to both technical and non-technical stakeholders. Proven track record of managing vendor relationships and holding third-party More ❯

SOPs). Senior 3rd Line IT Engineer - Key Responsibilities Act as the primary escalation point for complex 2nd/3rd line incidents and service requests across infrastructure, networking, Azure, Microsoft 365, and cybersecurity. Manage and maintain client systems and centralized services, including Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, DR/BC, Huntress, Autotask, and Datto RMM. Provide … in cybersecurity, resilience, and performance. Key Skills & Experience Proven experience in a 3rd Line/Senior Engineer role within an MSP environment Strong knowledge of Microsoft technologies, including Azure, 365, SharePoint, and Intune Excellent understanding of networking, firewalls, VPNs, and Windows Server environments Experience with RMM tools, security platforms, and endpoint management Familiarity with tools and platforms such … across teams Experience with Cyber Essentials, Cyber Essentials Plus, and other frameworks such as NIST, ISO27001 Commitment to producing clear documentation and knowledge sharing Desirable Certifications Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, or similar cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, etc.) Why Join the Company Join a technically strong, supportive More ❯

and standards. Ensures accurate delivery progress reporting is completed and communicated to relevant stakeholders Knowledge & Experience Certification in one or more cloud vendor offerings such as AWS, GCP, Azure, OCI preferred . CISSP, CCSP, OSCP, SANS or equivalent desirable Specific Knowledge & Experience: Strong hands-on experience in a cloud security environment. This could either be as a cloud … cloud connectivity methods and orchestration technologies. Experience with Infrastructure as Code (IaC) and Policy as Code(PaC) - Terraform, CloudFormation, Deployment Manager, CfnNag, CloudFormation Guard, Cloud Query Language, Hashicorp Sentinel Language, Prisma Cloud Resource Query Language, and Monitoring Query Language. Cloud Security Policy Engineering and Testing - create cloud security policy, engineer it, test it and deploy it. Experience Workload … Security, SIEM, Logging and Monitoring. In depth knowledge of various Cloud Models - IaaS, PaaS, SaaS, hybrid and multi-cloud models. Familiar with common industry cloud providers - AWS, GCP, Azure, OCI. Practical understanding of industry cloud security principles and their application - NCSC, NIST, CSA. Familiarity with common cloud related compliance Benchmarks - CIS, GDPR, PCI-DSS, ISO27001, ISO27017, ISO27018, TSR More ❯

Security Engineer required to work for a leading financial services organisation in London. They are looking for a well rounded security professional with a history working in Azure cloud environments with M365 security tools to support varied projects and BAU work across incident response, risk management, operations, tooling implementations, and security framework certifications. The successful candidate will play … penetration testing to identify and address weaknesses in the tech estate. Required Technical Experience: 5+ years of experience in information/cyber security roles Experience working in an Azure Cloud environment Experience deploying, configuring, and implementing Microsoft Defender, Purview, Sentinel, Intune Offering an opportunity to shape the security infrastructure and posture within a well established leader More ❯

with frameworks including CIS Controls, NIST, ISO 27701, and GDPR Oversee incident response, threat detection, and access governance across systems such as iManage, Intapp, Aderant, Microsoft 365, and Azure Drive firm-wide security awareness and training initiatives Monitor regulatory changes and emerging threats, and advise on best practices Ideal Candidate Profile: Strong knowledge of ISO 27001 implementation and … certification Experience in a professional services or legal environment Familiarity with Microsoft 365 Defender, SentinelOne, Purview, and Azure security tools Skilled in managing access controls and security operations across enterprise platforms Excellent communication and stakeholder engagement skills Desirable Attributes: Certifications such as CISM, CISSP, or ISO 27001 Lead Implementer/Auditor Experience working with MDR/XDR partners More ❯

growing digital transformation and cloud consultancy delivering secure, innovative Microsoft solutions across multiple industries. We're seeking a Microsoft Security Consultant with hands-on expertise across Microsoft 365, Azure, and Defender technologies, passionate about helping clients strengthen their security posture while embracing the latest in modern work and AI. This is a great opportunity for someone who thrives … on solving complex security challenges, designing enterprise-grade cloud solutions, and staying ahead of Microsoft's evolving technology landscape. Key Responsibilities: Design and deliver Microsoft 365 and Azure security solutions in line with best practices and industry standards. Implement and configure tools such as Microsoft Defender, Sentinel (SIEM/XDR), Entra, and Purview. Support internal and … ISO-aligned delivery processes. Experience: Minimum 3+ years' experience delivering Microsoft cloud and security solutions for clients across multiple sectors. 3 or more Microsoft certifications in relevant areas - Azure (AZ), Security (SC), Power Platform (PL), Modern Work (MS), or Copilot/AI. Strong consulting experience in the design and implementation of Microsoft Defender solutions and SIEM/XDR. More ❯

and knowledge of Cyber & network security, e.g. management of firewalls, IDS, Web Gateways etc. Familiarity with deploying Infrastructure as Code and using CI/CD technologies, such as Azure DevOps. Hands-on experience working with cloud networking with a focus on security. For example, working with virtual networks, network security groups, virtual firewalling, Web Application Firewalls, and cloud … in applying zero-trust principles to secure large-scale IT infrastructures, demonstrated by successful deployments within a corporate setting. Web Gateway, Web Security Detect & Respond end points, Siem, Sentinel & Defender It's a bonus if you have but not essential Experience as a Cyber Security Engineer, Cyber Security Analyst, or a Network Engineer with an interest in becoming More ❯

own time and resources to ensure aims are met. Using information effectively - able to develop insights and conclusions following risk events Desirable Knowledge of cloud security particularly Microsoft Azure (E5) including defender for endpoint, sentinel, and purview. A knowledge of ITIL including incident management and problem management including root cause analysis. A knowledge of the data More ❯

Analysis; monitoring and responding to incidents whilst also developing new detection rules and enhancing their monitoring infrastructure and tooling. This is a cloud-native SOC capability, based in Azure with a big emphasis on the Microsoft E5 suite of security monitoring and detection tooling. Experience configuring, fine-tuning and managing this tooling will be essential, as well as … years minimum) , dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft E5 Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure preferably. Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering More ❯