1 to 25 of 79 Remote/Hybrid SIEM Jobs in England

remote access/VPN configurations where required and ensure changes follow change control. Enable and review network security logging/alerting (e.g., syslog/SIEM integrations where applicable). Monitoring, Detection & Incident Response (Sophos MDR) Act as the internal technical point of contact for Sophos MDR and ensure smooth collaboration ...

standards, reference architectures, and policy controls based on industry frameworks (e.g., NIST, ISO/IEC 27001, CIS) Evaluate and integrate security technologies, including IAM, SIEM, EDR, DLP, WAF, and encryption solutions Collaborate with engineering, DevOps, and IT teams to embed security by design and ensure secure software development lifecycles (SSDLC ...

Risk in financial services. Experience with frameworks such as NIST, ISO27001, COBIT, SOX, and FFIEC. Good understanding of cloud security, GDPR, IAM/PAM, SIEM, vulnerability management, and network security. CISSP, CISM, CRISC, or similar certifications preferred. Skills & Experience: Strong strategic and analytical thinking Excellent communication and stakeholder management Strong ...

audits, risk assessments and maturity reviews. Engineer and embed technical controls supporting NIST CSF and ISO/IEC 27001 objectives. Support security tooling integration (SIEM log sources, EDR/XDR dependencies, vulnerability tooling). Enable and validate security telemetry coverage audit policy configuration, log forwarding/collection, event quality (normalisation ...

client environments Perform threat detection, triage, analysis, and remediation activities Lead incident response activities and provide technical guidance to junior analysts Analyse alerts from SIEM, EDR, IDS/IPS, and other security tooling Conduct threat hunting and proactive security monitoring Support continuous improvement of SOC processes, playbooks, and operational procedures … development of junior team members Required Experience Proven experience working within an MSSP environment Strong background in Security Operations/SOC environments Experience with SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, or similar Knowledge of EDR technologies and incident response methodologies Strong understanding of network security, firewalls, endpoint security ...

CISO) Need an individual with a strong hands‐on network and security background Cisco networking Cisco firewalls (Firepower/Threat Detection) Palo Alto firewalls SIEM experience (Logarithm desirable) Web proxy (Forcepoint desirable) Governance skills Policy writing/reviewing Reporting KPI monitoring Certifications like CCNP/CISM would be desirable ...

environments Technology Skills & Experience Principles of network and boundary protection (firewalls, mail gateways, load balancers, antivirus, IPS/IDS, Diodes) Protective Monitoring systems (SIEM/SOC) and deployment principles Authentication & authorisation technologies (SAML, LDAP, PKI, etc.) Encryption protocols and structures supporting secure deployment Communication & Soft Skills Excellent verbal and written ...

architecture Experience with vulnerability management and security operations within OT environments Understanding of security technologies including: IAM, EDR, Firewalls, PKI, DLP, DAM Experience with SIEM technologies such as: Google Chronicle, Splunk ES & QRadar Experience with log source integration, correlation rules and parser development Strong stakeholder engagement and communication skills Desirable ...

systems remain at the required security posture against baseline requirements Work with the Security Monitoring engineering team to ensure logs are forward to the SIEM capability Work with the customer and appropriate agencies to develop new policies, design processes, and procedures, and develop technical designs Assess system vulnerabilities, implement risk ...

stakeholders. Desirable: Experience within financial services, FinTech, or other regulated environments. Familiarity with cloud security, operational resilience, or third-party risk management. Exposure to SIEM, vulnerability management, or security monitoring tools. Relevant certifications such as Security+, CISSP, CISM, CRISC, or ISO 27001. Cyber Risk & Compliance Analyst | £60,000 | London Hybrid ...

this technical role is on threat prevention, detection and response for Marshall, including the configuration and monitoring of a security information and event management (SIEM) system, operating next generation antivirus, intrusion detection/prevention systems (IDS/IPS), vulnerability management tools and Firewall, DLP, Web and Email Security Gateways.This … and help coordinate, routine security event monitoring and investigations using available toolsUse, configure and develop the use of a security information and event management (SIEM) and EDR toolMonitor and configure network intrusion detection and prevention systemsAnalyse and create reports for security incidents, to determine root cause and lessons learntCreate and ...

Proven experience as a Security/Cyber Security Architect Strong cloud security knowledge (Azure, AWS, M365) Broad security control experience (IAM, PAM, DLP, SIEM, endpoint, network) Experience in regulated or critical environments desirable Certifications such as CISSP, CISM or ISO 27001 beneficial If you're looking for a role with ...

from colleagues and service delivery teams Support and coordinate patch management activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor external threat intelligence sources and assess relevance to the organisation Produce and report on security metrics … operational performance Technical expertise Good understanding of information security principles, risk management and the threat landscape Experience of operating and monitoring security tooling, including SIEM, endpoint protection, and email/web security solutions Ability to proactively conduct threat hunting activities and develop or enhance detection analytics to improve identification ...

and their integration.Experience with DevOps practices, CI/CD pipelines (Jenkins, Azure DevOps) and automation tools.Deep understanding of security frameworks, firewalls, endpoint protection, and SIEM tools.Strong knowledge of data management platforms, databases, data lakes, Fabric and ETL processes.Experience with observability tools and practices, including monitoring, logging, tracing, and metrics collection ...

Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials ...

modern network platforms (experience with Arista would be advantageous). Practical understanding of cyber security principles, threat monitoring and operational security controls. Experience using SIEM or monitoring platforms (experience with Splunk would be highly advantageous) Knowledge of secure network segmentation, filtering and access control models. Experience investigating and responding ...

Agile methods such as SCRUM; Enterprise security packages, security enforcing software and devices, such as identity management and federation, cryptography, public key infrastructure, firewalls, SIEM, vulnerability scanning, etc. Additional Requirements: Must be eligible and willing to obtain UK Government Security Clearance. Key Attributes for Success: Ability to engage effectively with ...

skills Experience working within public sector, regulated, or enterprise environments Solid understanding of cyber security domains, including: Identity & Access Management Vulnerability Management Incident Response SIEM/Monitoring & Logging Resilience and business continuity Supply chain security Ability to manage multiple priorities and deliver under tight deadlines Experience working in remote, blended ...

Management. Identifying, addressing current and emerging security threats and vulnerabilities. Researching, evaluating, and recommending security technologies, tools (eg, Firewalls, VPNs, IDS/IPS, EDR, SIEM, SOAR), and solutions to mitigate identified threats and address security needs. Key experience required Deep understanding of computer systems, networking, and cybersecurity principles. Hands ...

Produce detailed incident reports and ensure accurate, timely communication Support threat hunting and threat mining activities Assist with onboarding new clients including deployment of SIEM, EDR, and vulnerability management tools Act as a technical escalation point and mentor junior SOC analysts Engineer and deploy security tooling and detection capabilities Investigate ...

and site-to-site connectivity Experience configuring and managing Sophos firewalls, including SD-WAN, intrusion prevention, and web filtering policies Familiarity with Microsoft Sentinel (SIEM) and Microsoft Defender for Endpoint for security monitoring, threat detection, and incident response Familiarity with infrastructure and application monitoring tools, such as Auvik or WhatsUp ...

Engineer - Cyber As a Cyber SOC Engineer, you will: Act as a technical escalation point and engineering SME across SOC technologies including SIEM, MDR/XDR, EDR, vulnerability management, and cloud security tooling Support, maintain, and improve cyber security infrastructure across enterprise customer environments Work closely with internal teams and … tools such as Tenable or Qualys Azure, Microsoft 365, Intune, or AWS environments Security tooling, infrastructure, and cloud platforms Linux and Windows operating systems SIEM technologies and security monitoring Basic scripting or automation using KQL, PowerShell, Python, or Bash ITIL environments and structured change control processes Firewall, endpoint, or cloud ...

and responding to cloud security threats, managing incidents end to end, and advising stakeholders on how to maintain a strong security posture Experience with SIEM tooling, ideally Microsoft Sentinel, along with a strong understanding of Zero Trust principles, modern authentication and secure baseline configuration, will be highly valuable ...

NIST, CIS Controls, and GDPR compliance Ability to conduct security assessments, risk analyses, and internal audits Familiarity with security tooling and governance platforms (e.g., SIEM, GRC platforms) Excellent communication skills with the ability to influence senior stakeholders A proactive mindset with the ability to work independently and as part ...

crisis management structures and frameworks. Technical Understanding (Desirable): Solid grounding in cyber security concepts and threats. Experience with Endpoint Detection & Response (e.g., CrowdStrike), SIEM platforms (e.g., Microsoft Sentinel), and ServiceNow (Security Operations). Ability to engage with technical teams and interpret technical data. To apply for this Senior Cyber Incident ...