1 to 25 of 224 SIEM Jobs in England

of our technical security infrastructure and policies.Develop technical solutions and new security toolsets to mitigate security vulnerabilities and automate repeatable tasks.Build, implement and tune SIEM event correlation rules, logic, and content to filter out security events associated with known network behaviour, known false positives and/or known errors.Build, implement more »

management – AlgoSec would be advantageous Network support and troubleshooting Cisco router/Cisco Switches Any F5 experience would be beneficial SDWan experience desirable Any SIEM experience would be useful Experience or knowledge of network structures, their management & implementation Certifications could include: CCNA/CCNP, CCIE, CISSP, CCSA qualified (highly desirable more »

time, budget and quality. Experience/essential and desired for successful job performance • Extensive experience in delivery of Security projects like Data loss prevention, SIEM, Identity access management and Privileged Access management. • Significant practical experience of leading and managing Corporate/Infrastructure change programmes across an end-to-end project more »

Benefits: 10% pension contributions, flexible working, in house L&D, 28 days holiday +BH Skills required for this role: - Experience working with SIEM solutions (ideally Sentinel) - Vulnerability management (Nessus) - Incident Response - Implementing appropriate mediation Desirables: - SC Clearance - Large guideline expérience (ISO27001, Cyber Essentials, etc) This role gives the right candidate more »

or equivalent experience. 2-4 years of experience in a SOC Analyst or similar role. Strong knowledge of security methodologies, processes, and technologies (firewalls, SIEM, IDS/IPS). Proficiency in TCP/IP protocols, network analysis, and troubleshooting. Experience with incident response and threat intelligence. Excellent written and verbal more »

IT Recruitment specialist that provides support to the clients across UK, Europe and Australia. We have an excellent job opportunity for you. Role Title: SIEM/Incident SME(Need Active DV Clearance) Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or … cyber defence hardware. • Support Junior Analysts to manage SOC systems. • Previous experience of Enterprise ICS/network architectures and technologies • Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. • Experience as a mentor/coach to junior analysts Your … C2M2) • Excellent communication skills • Experience of writing Defence/Government documentation Desirable Qualifications: • Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) • SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) • Advanced Analyst Course (SANS SEC503 or equivalent more »

reduction across all IT Systems Essential Skills & Experience: Experience with analysing event logs and recognizing cyber intrusions or attacks. Experience using tools such as SIEM, IDS/IPS, antivirus and endpoint protection (e.g. Microsoft Sentinel and Microsoft Defender for Endpoint) Understanding of relevant Cyber Security standards, legislation and regulations including more »

ll need: · Extensive experience of working within a SOC or adjacent role. · Experienced in responding to cyber incidents. · Conversant with common security tooling (E.g., SIEM, SOAR, EDR, NDR). · Understanding of threat actors, their tactics, techniques, and procedures. · Understanding of security event data, the value of different data sources and more »

Dell, Cisco, Pure, Palo Alto) Microsoft Exchange, Microsoft SQL Networking Cisco, Palo Alto, Big IP (FW, SDWAN, VLAN’s, Routing, Switching) Security (Splunk, APM, SIEM) Login/Monitoring (Splunk, Elastic, Prometheus, PRTG, Netbox, IPAM, CMDB) Mattermost, Atlassian The role As a Site Reliability Engineer you will work on projects relating more »

Cyber Security Engineer/SIEM Engineer (ArcSight) Day Rate: Excellent Day Rate IR35 Status: Inside IR35 Contract Length: Initial 6-months (likely to be extended multiple times) Office Location: Central London Hybrid Location: 3 days per week in office, 2 days remote About the Client and the Role: My client … an major ongoing ArcSight integration project . Main Responsibilities: Act as point of contact for ArcSight (integration, deployment, configuration etc.) Implementing and integration of SIEM/security tools and processes Automate build, configuration, and updates for security tools Integration of security capabilities - Scripting with Python, PowerShell etc. Candidate Requirements: SME more »

Tier 1 Analysts to improve detection/analytical capabilities within the SOC and monitor SOC Tier 1 Analyst performance. Qualifications: Skills: Proficiency in using SIEM tools, especially Microsoft Sentinel and the Microsoft Defender suite. Proficiency in Kusto Query Language (KQL). Experience with the creation, configuration and use of Playbooks more »

Cyber Security Management - Incident Response, Security Monitoring, Threat Modelling Frameworks, NIST, Kill Chain, Attack Lifecycle, MITRE, Windows, UNIX, Stratus, Networks, SIEM, IAM, DLP I am looking for a Cyber Security professional for my client who is a leading investment bank based in London. You will join the Information Risk Management … NIST, Kill Chain, Attack life cycle, MITRE Cloud Security Assessments Windows Server, Windows XP, UNIX, Stratus Networks - LAN, WAN, Routers, Switches, Firewalls, remote access SIEM Tools IAM Solutions - DLP This is a Full time role at AVP level within the bank offering a salary of £65k plus a bonus. You … please get in contact. Cyber Security Management - Incident Response, Security Monitoring, Threat Modelling Frameworks, NIST, Kill Chain, Attack Lifecycle, MITRE, Windows, UNIX, Stratus, Networks, SIEM, IAM, DLP more »

Engineer you'll work handling both reactive and proactive security engagements. Your responsibilities will include: ?Protective Monitoring: Utilize industry-leading Security Information & Event Management (SIEM) and Intrusion Detection Systems (IDS) to monitor and detect threats. Provide advice and guidance to clients targeted by cyber attacks and malicious activity. ?Incident Reporting … Communication: Communicate directly with customers regarding threats and alerts. Prepare and present findings to clients. ?Technical Assistance: Assist with the onboarding process, including deploying SIEM, Endpoint Detection and Response (EDR), and Vulnerability Management tools. Provide support for active directory administration and firewall management. Key Skills and Traits Needed: Must be more »

systems, including Linux and Windows Server; Experience with network hardware, including firewalls, switches, and routers Familiarity with technologies for network monitoring, such as Solarwinds SIEM Outstanding troubleshooting abilities Strong interpersonal and communication abilities The capacity to function both alone and together, while on-site The ideal candidate will have experience more »

management – AlgoSec would be advantageous Network support and troubleshooting Cisco router/Cisco Switches Any F5 experience would be beneficial SDWan experience desirable Any SIEM experience would be useful Experience or knowledge of network structures, their management & implementation Certifications could include: CCNA/CCNP, CCIE, CISSP, CCSA qualified (highly desirable more »

management – AlgoSec would be advantageous Network support and troubleshooting Cisco router/Cisco Switches Any F5 experience would be beneficial SDWan experience desirable Any SIEM experience would be useful Experience or knowledge of network structures, their management & implementation Certifications could include: CCNA/CCNP, CCIE, CISSP, CCSA qualified (highly desirable more »

management – AlgoSec would be advantageous Network support and troubleshooting Cisco router/Cisco Switches Any F5 experience would be beneficial SDWan experience desirable Any SIEM experience would be useful Experience or knowledge of network structures, their management & implementation Certifications could include: CCNA/CCNP, CCIE, CISSP, CCSA qualified (highly desirable more »

and communicate effectively at all levels to both technical and non-technical audiences, assess and evaluate risk and understand the implications of new technologies. SIEM experience with designing, implementing and maintaining Splunk Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective more »

Role: SIEM/Incident SME Contract length: 6 months initially Day rate: Market Rate Inside IR35 Location: Hyrbid 2/3 days onsite in either Corsham, Northallerton or Portsmouth Clearance: DV clearance required Role Description: Main Tech Skills required are ELK (Elastic, Logstash, Kibana) and Tanium The Cyber role is … cyber defence hardware. * Support Junior Analysts to manage SOC systems. * Previous experience of Enterprise ICS/network architectures and technologies * Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. * Experience as a mentor/coach to junior analysts Your … C2M2) * Excellent communication skills * Experience of writing Defence/Government documentation Desirable Qualifications: * Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) * SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) * Advanced Analyst Course (SANS SEC503 or equivalent) Due to the nature and urgency of this more »

and data security. Some knowledge of GDPR & PCI-DSS Strong experience of AWS and ideally certified Forensic investigation techniques. Experience with security technologies (e.g., SIEM, DLP, IDS, IPS). Knowledge of Microsoft Security Centre and Sentinel. Understanding of ISO27001:22, NIST, and secure software development. Attributes: Excellent communication and stakeholder more »

SIEM/Incident SME £5500-750/pd-Inside Hybrid - Corsham (x2 days per week) Looking for a SIEM/Incident SME to join a rapidly growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks … to identify internal and external cyber-threats/attacks. Requirements - Hands-on SIEM tooling ELK stack exposure Working knowledge of vulnerability and endpoint management *Candidates must hold an active DV clearance* If this opportunity aligns with your expertise and aspirations, please connect with me at (see below) or call. Ref more »

PowerShell is a plus). Knowledge of Anti-virus, Endpoint Detection and Response, Vulnerability Management, and Patching. Familiarity with Security Information and Event Management (SIEM). Experience with CI tools, such as Azure DevOps or GitHub Actions. Experience in pipeline builds, release packaging, and artifact management. Experience with enterprise-wide more »

industry standard accreditations and a keen interest in cyber security best practices including but not limited to firewalls, Intrusion protection systems, protected monitoring solutions (SIEM), privileged access management, SharePoint, servers, laptops, desktops, tablets, and mobile phones. Some duties include: This role will be required to research, implement, and integrate new more »

Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM technologies eg Microsoft Sentinel An interest in automation of Security operation function including artificial intelligence An understanding of Microsoft security product portfolio CISSP/CISM more »

of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and/or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams through the deployment where required more »