26 to 50 of 60 Azure Sentinel Jobs in the City of London

Role Lead the design, deployment and tuning of enterprise-grade SIEM platforms (e.g. Splunk, Azure Sentinel etc.) Collaborate with stakeholders to define logging requirements, use cases, detection rules and dashboards Oversee integration of data sources from cloud, on-prem, endpoint, network and application layers Create and … and capacity planning Skills Expertise in SIEM design, deployment and optimisation Hands-on expertise with one or more major SIEM platforms (e.g. Splunk, Sentinel etc.) Deep understanding of log ingestion, parsing, normalisation and enrichment Strong grasp of MITRE ATT&CK framework, threat detection and alert logic Solid scripting …/automation skills (e.g., Python, PowerShell, Bash) Experience with cloud logging and monitoring (AWS CloudTrail, Azure Monitor, GCP etc.) Experience with threat modelling, cloud security or Identity and Access Management is desirable More ❯

Key Responsibilities: Lifecycle management of security, covering tools and technology platforms Supporting and managing security tools e.g. EDR, Anti-Virus, SentinelOne, Crowdstrike, Defender Azure, M365, Windows Strong Knowledge with routing and switching technologies (WAN), Network Access Control, Cisco, and Palo Alto Implementation & integration of security technologies (MFA Gateway More ❯

Key Responsibilities: Lifecycle management of security, covering tools and technology platforms Supporting and managing security tools e.g. EDR, Anti-Virus, SentinelOne, Crowdstrike, Defender Azure, M365, Windows Strong Knowledge with routing and switching technologies (WAN), Network Access Control, Cisco, and Palo Alto Implementation & integration of security technologies (MFA Gateway More ❯

Key Responsibilities: Lifecycle management of security, covering tools and technology platforms Supporting and managing security tools e.g. EDR, Anti-Virus, SentinelOne, Crowdstrike, Defender Azure, M365, Windows Strong Knowledge with routing and switching technologies (WAN), Network Access Control, Cisco, and Palo Alto Implementation & integration of security technologies (MFA Gateway More ❯

operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and … of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as … Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all More ❯

practices. You’ll play a key part in embedding security across the full software development lifecycle (SDLC), with a particular focus on our Azure-based infrastructure and applications. The position requires someone who can take ownership, work independently, and has proven expertise in both Azure and … storage, control plane) and practical experience applying security principles within zero-trust and cloud-native environments. Tool & Platform Proficiency: Hands-on experience with Azure services (e.g. Azure DevOps, Security Center, Key Vault, Policy) and security tools like Sentinel, Darktrace, IDS/IPS, and vulnerability More ❯

practices. You’ll play a key part in embedding security across the full software development lifecycle (SDLC), with a particular focus on our Azure-based infrastructure and applications. The position requires someone who can take ownership, work independently, and has proven expertise in both Azure and … storage, control plane) and practical experience applying security principles within zero-trust and cloud-native environments. Tool & Platform Proficiency: Hands-on experience with Azure services (e.g. Azure DevOps, Security Center, Key Vault, Policy) and security tools like Sentinel, Darktrace, IDS/IPS, and vulnerability More ❯

practices. You’ll play a key part in embedding security across the full software development lifecycle (SDLC), with a particular focus on our Azure-based infrastructure and applications. The position requires someone who can take ownership, work independently, and has proven expertise in both Azure and … storage, control plane) and practical experience applying security principles within zero-trust and cloud-native environments. Tool & Platform Proficiency: Hands-on experience with Azure services (e.g. Azure DevOps, Security Center, Key Vault, Policy) and security tools like Sentinel, Darktrace, IDS/IPS, and vulnerability More ❯

practices. You’ll play a key part in embedding security across the full software development lifecycle (SDLC), with a particular focus on our Azure-based infrastructure and applications. The position requires someone who can take ownership, work independently, and has proven expertise in both Azure and … storage, control plane) and practical experience applying security principles within zero-trust and cloud-native environments. Tool & Platform Proficiency: Hands-on experience with Azure services (e.g. Azure DevOps, Security Center, Key Vault, Policy) and security tools like Sentinel, Darktrace, IDS/IPS, and vulnerability More ❯

Detection (e.g., XDR tools like Carbon Black, Microsoft Defender XDR, CrowdStrike) Strong KQL capabilities for log analysis and detection tuning Cloud Security (Microsoft Azure, Google Cloud Platform) Kubernetes and container technologies (e.g., Docker) Threat Hunting, Detection Engineering, Incident Response Security Automation (SOAR), Hyper Automation practices Familiarity with the … MITRE ATT&CK framework SIEM platforms (Microsoft Sentinel, Splunk, Google Chronicle, etc.) Experience with Zero Trust Network Architecture, IDS/IPS, vulnerability scanners, and web proxies Scripting or programming (Python, PowerShell, Bash, etc.) Join a global leader at the forefront of data-driven customer insights, where you’ll More ❯

Detection (e.g., XDR tools like Carbon Black, Microsoft Defender XDR, CrowdStrike) Strong KQL capabilities for log analysis and detection tuning Cloud Security (Microsoft Azure, Google Cloud Platform) Kubernetes and container technologies (e.g., Docker) Threat Hunting, Detection Engineering, Incident Response Security Automation (SOAR), Hyper Automation practices Familiarity with the … MITRE ATT&CK framework SIEM platforms (Microsoft Sentinel, Splunk, Google Chronicle, etc.) Experience with Zero Trust Network Architecture, IDS/IPS, vulnerability scanners, and web proxies Scripting or programming (Python, PowerShell, Bash, etc.) Join a global leader at the forefront of data-driven customer insights, where you’ll More ❯

take on a Senior and develop the security systems whilst still being very hands on. Experience required Familiar with NIST, ISO 27001, ITIL Azure - 5 years experience Info Sec (Azure AD, Defender, Sentinel) PIM/PAM Audits and report writing Assessments Vulnerability Management and More ❯

take on a Senior and develop the security systems whilst still being very hands on. Experience required Familiar with NIST, ISO 27001, ITIL Azure - 5 years experience Info Sec (Azure AD, Defender, Sentinel) PIM/PAM Audits and report writing Assessments Vulnerability Management and More ❯

take on a Senior and develop the security systems whilst still being very hands on. Experience required Familiar with NIST, ISO 27001, ITIL Azure - 5 years experience Info Sec (Azure AD, Defender, Sentinel) PIM/PAM Audits and report writing Assessments Vulnerability Management and More ❯

detection, and security monitoring efforts. You'll guide a capable SOC team, manage real-time investigations, and enhance their security posture using Microsoft Sentinel, Defender, and KQL. Key Responsibilities: Lead and manage the Security Operations Centre (SOC) Handle incident response (including drills, simulations, response actions) Oversee threat detection … and monitoring (via SIEM tools) Drive vulnerability management Report security posture via dashboards and metrics Use Microsoft Sentinel, Defender, and KQL for threat detection and investigation Lead and develop SOC analysts Requirements: Degree in Computer Science/IT or relevant industry certifications such as GSOC, CPSA, SANS, CCIM …/300/400. Proven experience managing a SOC/Security Operations function within housing association/public sector. Strong experience with Microsoft Sentinel, Kusto (KQL), Azure Defender tools Hands-on incident response, threat monitoring, and SIEM use Knowledge of ISO 27001, GDPR, and NIST If More ❯

to stakeholders through meetings and reports. Provide guidance on threat detection best practices. Technical Skills & Experience: Proficient with SIEM/XDR tools (QRadar, Sentinel, Defender XDR). Strong knowledge of NIST CSF, NCSC CAF, and cloud security (AWS, Azure, GCP). Experienced in risk methodologies (e.g. More ❯

to stakeholders through meetings and reports. Provide guidance on threat detection best practices. Technical Skills & Experience: Proficient with SIEM/XDR tools (QRadar, Sentinel, Defender XDR). Strong knowledge of NIST CSF, NCSC CAF, and cloud security (AWS, Azure, GCP). Experienced in risk methodologies (e.g. More ❯

a Security Operations or SOC environment, with previous leadership or senior analyst responsibilities. Strong working knowledge of Microsoft Security solutions such as: Microsoft Sentinel (SIEM) Defender for Endpoint, Office 365, or Identity Solid understanding of incident response processes and best practices. Familiarity with MITRE ATT&CK framework and … communication and leadership skills, with the ability to influence and guide both technical and non-technical stakeholders. Desirable: Experience with KQL and customising Sentinel detections. Exposure to cloud security operations (Azure preferred). Microsoft certifications such as SC-200 or AZ-500 are a bonus but More ❯

a Security Operations or SOC environment, with previous leadership or senior analyst responsibilities. Strong working knowledge of Microsoft Security solutions such as: Microsoft Sentinel (SIEM) Defender for Endpoint, Office 365, or Identity Solid understanding of incident response processes and best practices. Familiarity with MITRE ATT&CK framework and … communication and leadership skills, with the ability to influence and guide both technical and non-technical stakeholders. Desirable: Experience with KQL and customising Sentinel detections. Exposure to cloud security operations (Azure preferred). Microsoft certifications such as SC-200 or AZ-500 are a bonus but More ❯

a Security Operations or SOC environment, with previous leadership or senior analyst responsibilities. Strong working knowledge of Microsoft Security solutions such as: Microsoft Sentinel (SIEM) Defender for Endpoint, Office 365, or Identity Solid understanding of incident response processes and best practices. Familiarity with MITRE ATT&CK framework and … communication and leadership skills, with the ability to influence and guide both technical and non-technical stakeholders. Desirable: Experience with KQL and customising Sentinel detections. Exposure to cloud security operations (Azure preferred). Microsoft certifications such as SC-200 or AZ-500 are a bonus but More ❯

solve complex challenges, and deliver solutions tailored to modern enterprise needs. Design and implement robust cloud security architectures across multi-cloud platforms (AWS, Azure, Google Cloud). Design and deploy IAM solutions to ensure robust authentication, authorisation and access controls. Lead threat modelling exercises to identify, assess and … mitigate risks in systems and applications. Lead the design, implementation and optimisation of SIEM solutions (e.g. Splunk, Sentinel). Integrate SIEM systems with other security tools like EDR, SOAR and threat intelligence feeds. Skills Extensive experience in Cyber Security, with a significant portion in a leadership role. A … SOC engineering tools combined with expertise in either cloud security, Identity & Access Management or threat modelling. Proficiency in cloud platforms and services (AWS, Azure, GCP) with deep knowledge of native security tools. Hands-on experience designing and implementing SIEM solutions in enterprise environments. Skilled in scripting and automation More ❯

solve complex challenges, and deliver solutions tailored to modern enterprise needs. Design and implement robust cloud security architectures across multi-cloud platforms (AWS, Azure, Google Cloud). Design and deploy IAM solutions to ensure robust authentication, authorisation and access controls. Lead threat modelling exercises to identify, assess and … mitigate risks in systems and applications. Lead the design, implementation and optimisation of SIEM solutions (e.g. Splunk, Sentinel). Integrate SIEM systems with other security tools like EDR, SOAR and threat intelligence feeds. Skills Extensive experience in Cyber Security, with a significant portion in a leadership role. A … SOC engineering tools combined with expertise in either cloud security, Identity & Access Management or threat modelling. Proficiency in cloud platforms and services (AWS, Azure, GCP) with deep knowledge of native security tools. Hands-on experience designing and implementing SIEM solutions in enterprise environments. Skilled in scripting and automation More ❯

solve complex challenges, and deliver solutions tailored to modern enterprise needs. Design and implement robust cloud security architectures across multi-cloud platforms (AWS, Azure, Google Cloud). Design and deploy IAM solutions to ensure robust authentication, authorisation and access controls. Lead threat modelling exercises to identify, assess and … mitigate risks in systems and applications. Lead the design, implementation and optimisation of SIEM solutions (e.g. Splunk, Sentinel). Integrate SIEM systems with other security tools like EDR, SOAR and threat intelligence feeds. Skills Extensive experience in Cyber Security, with a significant portion in a leadership role. A … SOC engineering tools combined with expertise in either cloud security, Identity & Access Management or threat modelling. Proficiency in cloud platforms and services (AWS, Azure, GCP) with deep knowledge of native security tools. Hands-on experience designing and implementing SIEM solutions in enterprise environments. Skilled in scripting and automation More ❯

and Access Management (IAM) solutions that enforce Zero Trust principles. Deep knowledge of Microsoft security tools (e.g., Microsoft Entra ID, Defender suite, Purview, Sentinel). Collaborate with cross-functional IT teams to unify security efforts under a common Zero Trust framework. Work closely with business stakeholders to deliver … the Security Architect: Experience in Cybersecurity focussing on Zero Trust Architecture Experience with Microsoft Security tools (e.g., Microsoft Entra ID, Defender suite, Purview, Sentinel). Experience with Azure, Windows Server and Active Directory Experience with IAM, monitoring and Network Security The Security Architect is Outside of More ❯

range of industries, whilst collaborating with multiple teams to support customers in maximising their investment in Microsoft Purview and associated Microsoft 365 and Azure security technologies. This includes advising on, designing, and implementing end-to-end data governance, compliance, and risk management solutions. Work on a range of … Management - Deployment + Optimisation of Purview - Data Discovery, Classification, + Regulatory Compliance. Key Duties: Designing/deploying Microsoft Purview solutions across M365 + Azure platforms to meet organisational data governance and compliance objectives. Assessing customer environments and requirements to deliver tailored Microsoft Purview configurations, policies, and controls. Supporting … align technical solutions with business policies and regulatory requirements. Integrating Microsoft Purview with wider Microsoft 365 services (Exchange Online, SharePoint, Teams, OneDrive) and Azure infrastructure. · Creating and maintaining technical project documentations such as technical configuration documents, LLD's. Technical Requirements: Microsoft Purview DLP/Data Loss Prevention IP More ❯