1 to 25 of 466 Azure Sentinel Jobs in England

date knowledge of Cyber Security. Experience with EDR and Anti-Virus/Malware management such as SentinelOne, CrowdStrike and Defender. Demonstrated ability working with IT System Administration of Azure, Defender (ATP), M365 and Windows. Experience with Identity Access and Management (IDAM) solutions. CyberArk and ENTRA ID Familiarity with conditional/remote access toolsets. ENTRA, DUO SSO & MFA gateway. … Proficient with Data loss prevention tools experience, such as MS Purview Compliance Manager and Tessian Security monitoring, SIEM tooling such as Exabeam, QRadar, Splunk and Sentinel. Experience with Azure (security centre) and M365 cloud infrastructure and configuration and on-premises Active Directory Experience in Cloud email security gateway services, Microsoft Exchange Online, Mimecast and DMARC. Experience developing policies … procedures related to cryptography,key-vault certificate managementandHSM. Azure and Thales. Familiarity with Hyper-V, VMware and Citrix. Practical understanding of SCCM or enterprise patch management tools Experience with Qualys or enterprise Vulnerability Management and Compliance toolsets. Security legislation and regulatory frameworks exposure and awareness • Industry best practices such as OWASP, Cyber security framework and NCSC guidance • Information More ❯

years of experience in cyber security engineering , ideally in legal, financial services or similarly regulated environments Hands–on expertise in: EDR tools : SentinelOne, CrowdStrike, Defender Cloud platforms : Azure, M365, Defender for Cloud SIEM : Exabeam, Splunk, QRadar IAM : ENTRA ID, CyberArk, DUO MFA Firewall & Network Security : Cisco, Palo Alto, NAC DLP tools: Microsoft Purview, Tessian Strong scripting abilities (PowerShell More ❯

Linux) and network protocols. Proficiency in analysing packet captures (Wireshark, TCPDump). Familiarity with scripting languages such as Python, Bash, or PowerShell. Experience with cloud security monitoring (AWS, Azure, GCP). Knowledge of incident management frameworks like NIST, MITRE ATT&CK. Preferred Qualifications: Certification such as CompTIA Security+ Bachelor's degree in Computer Science, Information Security, or related More ❯

will lead the design and implementation of security frameworks within a Microsoft-centric environment. The ideal candidate will have extensive hands-on experience in Microsoft 365, Entra ID (Azure AD), Microsoft Intune, Defender Suite, and Zero Trust Security Architecture. This role will focus on identity security, endpoint management, compliance, and cloud security, ensuring a secure and scalable IT … Virtual Desktop Infrastructure (VDI) is a plus. Your key responsibilities will include: 1. Microsoft Security & Identity Management Design and implement Zero Trust Security Architecture within Microsoft 365 and Azure environments. Manage Entra ID (Azure AD), Conditional Access, Multi-Factor Authentication (MFA), and Privileged Access Management (PAM). Optimize Microsoft Intune for endpoint security, compliance, and mobile … Microsoft Defender Suite (Defender for Office 365, Defender for Endpoint, Defender for Cloud Apps) for advanced threat protection. Strengthen cloud security posture by managing security configurations across Microsoft Azure environments. 3. Security Automation & Incident Response Automate security workflows with Power Automate, Power Apps, and Microsoft Defender XDR. Deploy Microsoft Sentinel (SIEM) for threat detection, log analysis More ❯

given to candidates who meet all of the essential criteria and hold active security clearance. Accountabilities . Subject Matter Expert (SME) for log source evaluation and onboarding into Azure Sentinel . Review existing on-premises logging configurations and recommend improvements for cloud ingestion. . Conduct discovery and assessment of log sources, ensuring appropriate classification and prioritisation. … Track onboarding progress and ingestion metrics using workbooks, dashboards, and reports . Document log schemas, ingestion frequency, source ownership, and normalization mappings Knowledge and Experience . Experience with Microsoft Azure security technologies, especially Azure Sentinel, Log Analytics, and Azure Monitor . Strong understanding of common log formats (Syslog, JSON, CEF, Windows Events … CK, NIST, and CAF . Ability to troubleshoot complex ingestion or parsing issues and resolve at speed Essential Skills . Proven experience onboarding and managing log sources in Azure Sentinel . Hands-on experience configuring data connectors and diagnostic settings in Azure . Solid understanding of use case development and detection engineering . Knowledge More ❯

Defender Portal analysis: Administer and optimize Microsoft Defender for Endpoint, Defender for Identity and Defender for Cloud. Liaising with our IT team to ensure log sources from endpoints, Azure/Azure AD, Entra ID, and Microsoft 365 are properly ingested. Develop and maintain KQL queries, analytics rules, threat hunting scripts, and automation logic. Work with internal … working knowledge of threat landscapes, including common attack vectors (MITRE ATT&CK) and emerging threats Have a good understanding of EDR tools (Microsoft Defender) and SIEM Tools (Microsoft Sentinel) and the Microsoft Defender Portal Are able to identify, analyse and respond to cybersecurity threats and incidents, liaising with other teams as required Can easily explain complex security concepts … United Kingdom 6 days ago Cambridge, England, United Kingdom 1 month ago Cambridge, England, United Kingdom 1 week ago Cambridge, England, United Kingdom 3 days ago Microsoft Security (Sentinel) Automation & Detection Engineer Babraham, England, United Kingdom 1 week ago Croydon, England, United Kingdom 5 days ago Cambridge, England, United Kingdom 2 weeks ago Cambridgeshire, England, United Kingdom More ❯

experience. 4+ years in a cybersecurity role, preferably within an MSP or fast-paced environment. Strong hands-on experience with SIEM, EDR, VPNs, firewalls, and cloud platforms (AWS, Azure, GCP). Expertise in Microsoft Sentinel, Cisco Splunk or Palo Alto QRadar, and KQL. Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR More ❯

experience. 4+ years in a cybersecurity role, preferably within an MSP or fast-paced environment. Strong hands-on experience with SIEM, EDR, VPNs, firewalls, and cloud platforms (AWS, Azure, GCP). Expertise in Microsoft Sentinel, Cisco Splunk or Palo Alto QRadar, and KQL. Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR More ❯

an initial 6-month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure … approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. … Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code. DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and More ❯

professional with a solid foundation in threat detection and response, looking to deepen your impact in a dynamic IT environment? Do you have hands-on experience with Microsoft Sentinel and Microsoft Defender, and a passion for protecting systems and data from evolving threats? We’re seeking an IT Security Analyst to join our innovative and fast-growing team … role in maintaining and enhancing the security of our cloud and on-premises environments. Your responsibilities will include: Safeguard our infrastructure; implement and maintain security controls across Microsoft Azure, Microsoft 365, and on-premises systems Act as a point of contact for security-related queries, providing guidance and training to end-users and technical teams Maintain clear, comprehensive … date documentation of security policies, procedures, incident response plans, and system configurations Work closely with our Security Operations Centre to monitor and investigate security alerts generated by Microsoft Sentinel and Microsoft Defender Collaborate with our SoC to develop, refine, and optimize detection rules and custom alerts, ensuring alerting mechanisms are aligned with evolving threat landscapes while reducing false More ❯

join our Information & Cyber Security Group . If you have experience securing cloud environments and business applications and want to help shape UKAEA’s cyber resilience across M365, Azure, and beyond—this is your next step. What you’ll be doing: You’ll play a key role in protecting our hybrid cloud infrastructure, identity services, and SaaS applications. … affecting cloud platforms and applications Support the design and implementation of IAM and PAM policies across Entra ID and M365 Manage posture and compliance monitoring tools (Defender, Intune, Sentinel) Support DevSecOps practices in collaboration with platform and application teams Help ensure application-level security is embedded across our enterprise stack Contribute to audits and assessments aligned to ISO … Qualifications Essential Atleast a HND in Information Security, Computer Science, or a related STEM field, or equivalent experience. Degree Preferred Demonstrable hands-on experience with Microsoft Entra ID (Azure AD), Conditional Access, and Identity Protection. Experience administering Microsoft 365 security controls, including Defender for Office 365, Purview, and Intune. Understanding of modern authentication protocols (OAuth2.0, SAML, OpenID Connect More ❯

join our Information & Cyber Security Group . If you have experience securing cloud environments and business applications and want to help shape UKAEA’s cyber resilience across M365, Azure, and beyond—this is your next step. What you’ll be doing: You’ll play a key role in protecting our hybrid cloud infrastructure, identity services, and SaaS applications. … affecting cloud platforms and applications Support the design and implementation of IAM and PAM policies across Entra ID and M365 Manage posture and compliance monitoring tools (Defender, Intune, Sentinel) Support DevSecOps practices in collaboration with platform and application teams Help ensure application-level security is embedded across our enterprise stack Contribute to audits and assessments aligned to ISO … pension. At least a HND in Information Security, Computer Science, or a related STEM field, or equivalent experience. Degree preferred. Demonstrable hands-on experience with Microsoft Entra ID (Azure AD), Conditional Access, and Identity Protection. Experience administering Microsoft 365 security controls, including Defender for Office 365, Purview, and Intune. Understanding of modern authentication protocols (OAuth2.0, SAML, OpenID Connect More ❯

join our Information & Cyber Security Group . If you have experience securing cloud environments and business applications and want to help shape UKAEA’s cyber resilience across M365, Azure, and beyond—this is your next step. What you’ll be doing: You’ll play a key role in protecting our hybrid cloud infrastructure, identity services, and SaaS applications. … affecting cloud platforms and applications Support the design and implementation of IAM and PAM policies across Entra ID and M365 Manage posture and compliance monitoring tools (Defender, Intune, Sentinel) Support DevSecOps practices in collaboration with platform and application teams Help ensure application-level security is embedded across our enterprise stack Contribute to audits and assessments aligned to ISO … Qualifications At least a HND in Information Security, Computer Science, or a related STEM field, or equivalent experience. Degree Preferred Demonstrable hands-on experience with Microsoft Entra ID (Azure AD), Conditional Access, and Identity Protection. Experience administering Microsoft 365 security controls, including Defender for Office 365, Purview, and Intune. Understanding of modern authentication protocols (OAuth2.0, SAML, OpenID Connect More ❯

Knowledge and experience of hybrid cloud environments with a particular emphasis on EntraID/M365 Knowledge and experience of these technologies is a key requirement: Microsoft EntraID/Azure Microsoft Defender 365 (including Microsoft Defender XDR) Microsoft Sentinel Microsoft Active Directory Microsoft Intune VMWare Experience in as many of these technologies/areas as possible is More ❯

able to obtain SC Clearance or already hold SC clearance. Must have a good understanding on Incident Response approaches Must have knowledge and hands-on knowledge of Microsoft Sentinel (or any SIEM tool). Strong verbal and written English communication. Strong interpersonal and presentation skills. Strong analytical skills Must have good understanding on network traffic flows and able … a job that involves 24/7 operations or on call. Threat Hunting & Detection (IOC & IOA Analysis, TTP Profiling, Cyber Kill Chain) SIEM Fine-Tuning & Optimisation (QRadar, Splunk, Sentinel, ArcSight) Incident Response & Forensics (MITRE ATT&CK, DFIR, Log Analysis) Threat Intelligence Analysis Security Analytics & Automation (SOAR, YARA Rules, Sigma Rules) Malware Analysis & Reverse Engineering Network & Endpoint Security Monitoring … a SOC/NOC environment. Preferably holds Cyber Security Certification e.g. ISC2 CISSP, GIAC, SC-200, Certified SOC Analyst Experience with Cloud platforms (AWS and/or Microsoft Azure) Excellent knowledge of Microsoft Office products, especially Excel and Word Reports to Security Director - NTT DATA UK Security Practice Client Delivery Director - NTT DATA UK Managed Service Who we More ❯

able to obtain SC Clearance or already hold SC clearance. Must have a good understanding on Incident Response approaches Must have knowledge and hands-on knowledge of Microsoft Sentinel (or any SIEM tool). Strong verbal and written English communication. Strong interpersonal and presentation skills. Strong analytical skills Must have good understanding on network traffic flows and able … a job that involves 24/7 operations or on call. Threat Hunting & Detection (IOC & IOA Analysis, TTP Profiling, Cyber Kill Chain) SIEM Fine-Tuning & Optimisation (QRadar, Splunk, Sentinel, ArcSight) Incident Response & Forensics (MITRE ATT&CK, DFIR, Log Analysis) Threat Intelligence Analysis Security Analytics & Automation (SOAR, YARA Rules, Sigma Rules) Malware Analysis & Reverse Engineering Network & Endpoint Security Monitoring … a SOC/NOC environment. Preferably holds Cyber Security Certification e.g. ISC2 CISSP, GIAC, SC-200, Certified SOC Analyst Experience with Cloud platforms (AWS and/or Microsoft Azure) Excellent knowledge of Microsoft Office products, especially Excel and Word Reports to Security Director – NTT DATA UK Security Practice Client Delivery Director – NTT DATA UK Managed Service Who we More ❯

areas, including: Data Loss Prevention (DLP) Information Protection (Sensitivity Labels, encryption, etc.) Insider Risk Management eDiscovery & Communication Compliance Data Lifecycle Management & Records Management Information Barriers Demonstrable experience with Azure and Microsoft cloud services. A passion for problem-solving, collaborative team working, and an excitement for creating innovative solutions. Experience delivering customer facing presentations to technical senior stakeholders. Excellent … Identity Governance, Internet Access, Private Access) Microsoft 365 Defender (Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps) Microsoft Defender for Cloud Microsoft Sentinel Microsoft Copilot for Security Microsoft Intune Experience delivering security in AWS and/or GCP environments. Knowledge of scripting languages such as PowerShell, Python or BASH. Knowledge of industry More ❯

overseeing the organisation’s IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support … and data. Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel … and API security for robust protection across all assets Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, Microsoft AD (Entra), Server and SQL experience, O365 administration and design Global Software Patching and More ❯

in Bridewell, including our Managed Security Services team with customer-facing and internal tasks. What skills you’ll have: You need to have all the following: Experience with Azure and Microsoft cloud services. Experience with one or more Microsoft Security products from the following list: Microsoft 365 Defender (Defender for Endpoint, Defender for Office 365, Defender for Identity … Defender for Cloud Apps) Microsoft Defender for Cloud Microsoft Entra (Identity, Identity Protection, Identity Governance, Internet Access, Private Access) Microsoft Sentinel Microsoft Copilot for Security Microsoft Intune A passion for problem-solving, collaborative team working, and an excitement for creating innovative solutions. Excellent time management skills, with the ability to manage multiple deadlines and priorities at any given More ❯

us with their transactions, data, and availability. You will help to grow the dedicated security function at Flagstone and assist with the management of a secure modern Microsoft Azure hosted services as well as help us to build out our automation and controls in the same way we build and provide our services to our customers. Your responsibilities More ❯

Social network you want to login/join with: SOC Security Analyst (Microsoft Sentinel & Defender Specialist), Manchester col-narrow-left Location: Manchester, United Kingdom Job Category: Information Technology EU work permit required: Yes col-narrow-right Job Reference: BBBH64047_1750251157 Job Views: 21 Posted: 18.06.2025 Expiry Date: 02.08.2025 col-wide Job Description: SOC Security Analyst (Microsoft Sentinel & Defender Specialist) Whitehall resources are looking for an experienced SOC Security Analyst (Microsoft Sentinel & Defender Specialist). This role is hybrid working with 2-3 days per week on site in Manchester, and the remainder remote working, for an initial 6-month contract. ***Inside IR35*** Job Summary: We are seeking a highly skilled and experienced SOC … L3 Analyst with strong engineering knowledge and deep expertise in Microsoft Sentinel and the Microsoft Defender suite. The ideal candidate will take a lead role in advanced threat detection, incident response, detection engineering, and security monitoring, while also optimising license consumption and SIEM integration efforts. Key Responsibilities: Advanced Threat Detection & Incident Response - Investigate and analyze complex security incidents More ❯

an initial 6-month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure … approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. … Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code. DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and More ❯

IT Cyber Security At Eames Consulting Head of Information Security We are looking for an experienced and results-driven Information Security leader with a deep background in insurance, Azure Cloud, and identity and access management. The ideal candidate will bring expertise in security frameworks, cloud solutions, and active directory services to lead our security strategy, manage risk, and … a focus on delivering top-tier user experiences. Role Overview: As Head of Information Security, you'll report to the CISO and lead our security operations, focusing on Azure Cloud, Defender, Sentinel, and Entra ID to safeguard critical information assets across the organization. Key Responsibilities: Drive and maintain a robust Cyber Security strategy in line with … business objectives and regulatory requirements (e.g., FCA, ISO 27001, NIST). Lead security operations, including monitoring, incident response, and vulnerability assessments. Ensure top-tier security for Azure Cloud environments, including Microsoft Defender, Sentinel, and Entra ID solutions. Manage audits, compliance, and supplier security profiles, ensuring adherence to industry standards. Oversee risk management and threat detection to More ❯

overseeing the organisation’s IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third-party platforms that support … and data. Oversee the adoption of zero-trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud-first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel … and API security for robust protection across all assets Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge, Microsoft AD (Entra), Server and SQL experience, O365 administration and design Global Software Patching and More ❯

Wolverhampton. Our client is also open to consider candidates who require visa sponsorship on an individual basis only. Core responsibilities: Assist with scoping, design and build of secure Azure cloud services to support the Modernisation programme and deliver a scalable and flexible cloud security capability to support and facilitate innovation for our clients new ecosystem. Work with the … constraints. Essential technical skills and experience Proven experience in Cloud Infrastructure Engineering/Platform Engineer/Security Engineer role, migrating and integrating cloud foundation services (preferably on MS Azure public cloud) is essential. Proven experience with implementing secure core foundational services in a cloud infrastructure for AD, SecDevOps, Networking Services, at an enterprise level is essential. Proven experience … tools such as Terraform, CloudFormation and adopting secure code practices and guidelines is essential. Advanced understanding and use of scripting languages such as Python, Groovy, Go is essential. Microsoft Azure Security Engineer Associate certification or AWS equivalent. Benefits Package: Visa sponsorship/£90 to100k/Up to 25% Bonus/Work from home options/Flexible working/ More ❯