4 of 4 SIEM Jobs in Edinburgh

Indicators of Compromise (IOCs) and adversary TTPs Leverage threat intelligence feeds, OSINT, and commercial platforms to enrich detection Develop and maintain detection rules across SIEM and EDR platforms Threat Intelligence Management Collect, validate, and analyse threat data from multiple sources Monitor emerging threats, vulnerabilities, and attack trends Produce high-quality ...

SaaS Engineer solutions by: Integrating systems via APIs Connecting security tooling data Creating dashboards & automations Driving remediation of security gaps Work with tools like SIEM, EDR, Vulnerability Mgmt, CSPM, IAM Automate using Python or PowerShell Success Looks Like Higher asset coverage Fewer unknown devices Automated detection of gaps Automated/ ...

Compromise (IOCs) and attacker behaviour Analyse adversary techniques and map activity to the MITRE ATT&CK framework Develop, tune and maintain detection rules for SIEM and EDR platforms Threat Intelligence Management Collect, validate and analyse cyber threat intelligence from multiple sources Monitor emerging threats, vulnerabilities and attack trends Produce clear … Keywords Cyber Threat Intelligence Analyst, Threat Intelligence Analyst, Cyber Threat Analyst, Threat Hunter, Cyber Security Analyst, Microsoft Sentinel, Defender XDR, KQL, Kusto Query Language, SIEM, EDR, MITRE ATT&CK, Threat Hunting, Cyber Threat Intelligence, Malware Analysis, IOCs, OSINT, SOC, Incident Response, Blue Team, Microsoft Security, Azure Security, MSP, Managed Services ...

APIs, build automations, identify missing security controls and help us turn asset data into real risk-reduction actions. Experience with cybersecurity tooling - things like SIEM, EDR, vulnerability management, CSPM, IAM etc. Comfortable working with Python or PowerShell because we want to automate. Someone who drives to closure and … PowerShell, data normalization, system integrations, and building queries and dashboards. Experience with Axonius or other asset intelligence platforms is ideal. Must understand how EDR, SIEM, IAM, VM, and cloud security tools fit together. We are a global environment - manufacturing, R&D, cloud, and corporate. Lots of data sources. Lots ...