101 to 125 of 300 SIEM Jobs in England

identify systemic issues, and drive continuous improvement across SOC processes. Collaborate with engineering, cloud, and cybersecurity teams to enhance log ingestion, telemetry quality, and SIEM/SOAR architecture Produce clear, structured incident reports, threat briefs, and stakeholder updates What you'll bring: Extensive hands-on experience with Microsoft Sentinel (SIEM ...

artefacts (HLDs, LLDs, security patterns). Nice to Have Certifications: CISSP, CCSP, GIAC, SABSA. Experience with DevSecOps, container security, and microservices architecture. Knowledge of SIEM, API analytics, and threat intelligence. ...

experience in cyber security, including previous leadership role(s). Deep knowledge of frameworks, standards, regulations, and cyber best practice. Strong technical proficiency across SIEM, IDS/IPS, antivirus solutions, encryption and more. Industry certifications such as CISSP or CISM (or similar). If you are looking for an exciting ...

candidates with a red team, exploit development, or adversary-simulation background, or those who deeply understand attack mechanics Practical experience working with telemetry pipelines, SIEM platforms, or custom detection tooling Comfort with automation and lightweight coding to transform and enrich data (string and structure transformation, pipeline logic, scripting) Background ...

and development background and proven experience with Gateway technologies. Your technical knowledge should include: Infrastructure & Platforms VMware/vSphere RHEL and Windows Server Trellix SIEM platforms Identity & Directory Services Active Directory DNS LDAP LDIF Gateway & Security Technologies Gateway appliances and associated software Email, Chat and File standards Web and Chat ...

root cause analysis Understanding of OSI model principles and common protocols (DNS, HTTP/S, SMTP, FTP/S, LDAP/S) Experience with SIEM tools and/or network packet capture solutions The ideal candidate must have: Solid understanding of networking principles (TCP/IP, DNS, routing, switching, VLANs ...

qualification or degree in Cyber Security, Computer Science, Networking, or a related field Certifications such as CompTIA, ISACA or technical credentials in cloud, SIEM, or vulnerability management (desirable) Understanding of core security principles, including CIA and risk management Awareness of common threats such as phishing and ransomware Exposure to cloud ...

information classification Relevant academic or professional qualifications in Cyber Security, Computer Science, Networks, or similar Certifications such as CompTIA, ISACA, or technical credentials in SIEM, cloud, or vulnerability management Ability to lead shifts and mentor junior analysts (desirable) What’s in It for You: 25 days annual leave plus bank ...

longer-term security improvements, projects and risk reduction initiatives across the organisation. Key responsibilities Monitor, investigate and respond to cyber security incidents using SIEM, EDR/MDR and other security tooling Perform deep-dive incident analysis across multiple log sources to identify root cause, indicators of compromise (IoCs) and remediation … closely with IT, Infrastructure, Cloud and Service teams to improve security controls across the organisation Review, onboard and manage log sources into SOC/SIEM platforms Validate and respond to security alerts generated by SIEM and endpoint protection platforms Manage security incidents and tickets in line with ITIL best practices ...

longer-term security improvements, projects and risk reduction initiatives across the organisation. Key responsibilities Monitor, investigate and respond to cyber security incidents using SIEM, EDR/MDR and other security tooling Perform deep-dive incident analysis across multiple log sources to identify root cause, indicators of compromise (IoCs) and remediation … closely with IT, Infrastructure, Cloud and Service teams to improve security controls across the organisation Review, onboard and manage log sources into SOC/SIEM platforms Validate and respond to security alerts generated by SIEM and endpoint protection platforms Manage security incidents and tickets in line with ITIL best practices ...

influencing SOC processes and automation Confident communicating risk and recommendations clearly to stakeholders Tech stack experience CrowdStrike (EDR) Microsoft Defender Splunk or similar SIEM tools Qualys (vulnerability management) Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built ...

/ICS, VLAN 20 – Management, VLAN 40 – SCADA). Experience with Azure AD integration for SCADA IPC authentication. Familiarity with security tools such as SIEM logging, Qualys vulnerability scanning, and Microsoft Defender. Ability to configure MPLS and IPSEC VPN tunnels for remote connectivity and backup links (4G failover). Please ...

and closure of security cases, ensuring timely implementation of corrective actions. Develop and maintain threat scenarios to validate detection and response across SOC, EDR, SIEM, and XDR platforms. Translate threat intelligence into testable hypotheses and simulation exercises in collaboration with Threat Intelligence teams. Utilise adversarial emulation tools (Caldera, Atomic ...

passion for cyber security. You will ideally bring: Strong analytical skills with the ability to manipulate, interrogate and interpret large datasets. Experience working with SIEM and IPS tools (preferred). Good understanding of Cyber Security Operations and cyber threat landscapes. Advanced IT skills and experience working within an IT support ...

passion for cyber security. You will ideally bring: Strong analytical skills with the ability to manipulate, interrogate and interpret large datasets. Experience working with SIEM and IPS tools (preferred). Good understanding of Cyber Security Operations and cyber threat landscapes. Advanced IT skills and experience working within an IT support ...

ideally certified Checkpoint CCSE/CCSM Palo Alto, ideally Certified Load balancing VM Ware (ESXI, VSAN) Network Monitoring tools Knowledge of Defender/Sentinel - SIEM Tooling Coburg Banks Limited is acting as an Employment Agency in relation to this vacancy. ...

Certifications & Tools : Relevant certifications (e.g. A+, Network+, Security+) are highly desirable, with additional advantage for Tanium, Corelight, Titania (Nipper), and CrowdStrike (including Next-Gen SIEM and Falcon). Experience or certifications in tools such as Mimecast, Zscaler, Tenable, Sophos, Rapid7 are also beneficial Systems & Endpoint Management : Proven experience managing and … protocols, firewall management and security principles. Experience with security monitoring tools such as PRTG, Nagios and backup solutions like Veeam is beneficial, as with SIEM & SOAR technologies such as Elastic, Splunk, Phantom Virtualisation & Automation : Knowledge of virtualisation technologies like VMWare, Hyper-V, and Proxmox, along with experience in PowerShell, Python ...

systems. Network & Cloud: Configure network devices and explore cloud computing models like IaaS and SaaS. Digital Security: Learn to protect data using risk management, SIEM tools, and vulnerability assessments. Data Management: Source, cleanse, and analyse data to present actionable insights. Digital Transformation: Explore Agile project management and how to support ...

systems. Network & Cloud: Configure network devices and explore cloud computing models like IaaS and SaaS. Digital Security: Learn to protect data using risk management, SIEM tools, and vulnerability assessments. Data Management: Source, cleanse, and analyse data to present actionable insights. Digital Transformation: Explore Agile project management and how to support ...

ideal candidate will have: Experience in a security engineering or IT security-focused role Strong hands-on knowledge of security technologies such as firewalls, SIEM platforms, endpoint protection, and vulnerability management tools Experience securing both cloud-based and on-premise environments A solid background in security incident response and investigation ...

security controls Support program of continuous improvement Security Architect (Client Platform): Experience Okta Island Browser Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI Secure Design, Coding, IAM, Network Security, Security Operations Governance & Risk Cloud or DevOps practises Application Development or Engineering CISSP or equivalent The contract ...

security controls Support program of continuous improvement Security Architect (Client Platform): Experience Okta Island Browser Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI Secure Design, Coding, IAM, Network Security, Security Operations Governance & Risk Cloud or DevOps practises Application Development or Engineering CISSP or equivalent The contract ...

Deep expertise in Azure Landing Zones – design, implementation, governance, and best practices. Hands-on experience with PaaS services, integration, messaging, event-driven architectures, and SIEM/log management in Azure. Strong skills in cloud governance, infrastructure-as-code, and secure cloud adoption. Ability to operate independently, lead discovery sessions, and ...

defend through the Sophos Central platform. Secureworks provides the innovative, market‐leading Taegis XDR/MDR, identity threat detection and response (ITDR), next‐gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security ...

/ICS, VLAN 20 – Management, VLAN 40 – SCADA). Experience with Azure AD integration for SCADA IPC authentication. Familiarity with security tools such as SIEM logging, Qualys vulnerability scanning, and Microsoft Defender. Ability to configure MPLS and IPSEC VPN tunnels for remote connectivity and backup links (4G failover). Please ...