101 to 125 of 170 SIEM Jobs in England

Required experience and skills Active DV security clearance held on day oneProven experience in a SOC or cybersecurity operations roleStrong hands-on capability with SIEM tools and security incident managementExperience in monitoring and responding to cyber threats in live environmentsSolid understanding of networking, cloud technologies, and threat intelligenceComfortable working within ...

and driving continuous improvement. Key Responsibilities Lead the design and implementation of Azure security best practices, policies, and controls. Manage and optimise Microsoft Sentinel SIEM, including rule creation, use-case development, automation, and threat hunting. Oversee vulnerability management activities using Tenable, ensuring timely identification, prioritisation, and remediation of risks. Support … Experience Required Strong hands-on experience with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io/Tenable.sc). Knowledge of industry security frameworks ...

operation of security systems and tools, including firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus, anti-malware, SIEM (Security Information and Event Management), vulnerability scanners, and data encryption solutions. Manage vulnerability management programs, including regular scanning, penetration testing, and remediation of identified weaknesses. Lead and manage security incident … understanding of information security principles, frameworks (e.g., ISO 27001, NIST, Cyber Essentials), and best practices. Hands-on experience with security technologies such as firewalls, SIEM, IDS/IPS, vulnerability scanners, endpoint detection and response (EDR), and identity management solutions. Experience with cloud security (e.g., Azure Security). Proven experience ...

Delivery Qualifications: CISMP, CompTIA Security+ or other technical certifications desired Experience: 3+ years experience in SOC, or related technical field Understanding of the following: SIEM Cloud Computing Security Incident Management Networking Threat Intelligence Information Security Phishing, Ransomware and other key threats IDAM (Identity and Access Mgmt) JML (Joiners, Movers and ...

experience delivering end-to-end security or platform engineering projects in cloud environments Ability to translate regulatory and security requirements into pragmatic technical controls. SIEM/XDR tooling experience, such as Microsoft Sentinel. Experience contributing to security architecture and design decisions. They're big on expertise, not hierarchy ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

including their TTPs Experience in utilising open-source intelligence and the development of tools to assist with this Experience in conducting malware, phishing, and SIEM log analysis Knowledge of relevant cyber threat intelligence sources Demonstrated ability to manage customer relationships Proven ability to translate cyber threats to the relevant audience ...

responsible for monitoring systems, identifying potential threats, and ensuring rapid incident response to safeguard critical services. Responsibilities Keep a close watch on SIEM platforms and other monitoring tools to spot unusual activity. Evaluate and triage alerts to separate genuine incidents from false positives. Take immediate containment steps and escalate confirmed ...

will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best standard … cause analysis and leading T2 incident investigations Process/Playbook/Runbook development Working knowledge of detection engineering, false positive improvements Capability to tune SIEM rules or create custom detections Scripted automation experience e.g. Python, SOAR, PowerShell Threat modelling and Hunting methodologies ...

procedures, and guidelines. - Conduct regular security audits and assessments to identify vulnerabilities and ensure compliance with industry standards (e.g., Cyber Essentials & ISO 27001). - SIEM & Vulnerability Management. - Monitor and respond to security incidents, conducting investigations and implementing corrective actions. - Collaborate with IT and other departments to ensure the security … and interpersonal skills. **Preferred Qualifications:** - Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX. - Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA/CISSP/CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert; MCITP-Microsoft Certified IT Professional; VMware Certified ...

team, providing frontline defence and hands-on technical support across a modern IT environment. What you'll do Monitor and triage security alerts from SIEM and endpoint protection tools click apply for full job details ...

/CD pipelines Driving ISO 27000 implementation and supporting ongoing compliance initiatives Introducing and managing cybersecurity tools such as vulnerability scanners, endpoint protection, SIEM, and cloud security monitoring solutions Requirements: Extensive experience in a DevOps team lead role using AWS, (IAM, S3, EKS). Experience with IaC such as Terraform.. ...

incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. Oversee operational security processes with tools like SIEM, EDR, and Vulnerability Management, continuously enhancing capabilities. Network and System Security Manage advanced security tools such as firewalls and IDS/IPS to protect network … qualifications. Good underpinning knowledge of the Microsoft technology stack, cloud, on-premises and End user Compute. Understanding and experience of web filtering, email security, SIEM, EDR/XDR. Experience of managing investigations in SOC (L2 or above ...

incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. Oversee operational security processes with tools like SIEM, EDR, and Vulnerability Management, continuously enhancing capabilities. Network and System Security Manage advanced security tools such as firewalls and IDS/IPS to protect network … qualifications. Good underpinning knowledge of the Microsoft technology stack, cloud, on-premises and End user Compute. Understanding and experience of web filtering, email security, SIEM, EDR/XDR. Experience of managing investigations in SOC (L2 or above ...

Role: We are working with a global enterprise who has an opening for a SIEM Engineer/Cyber Security Engineer with experience of building rules to detect threats. The successful team will be working with an established team of engineers to build a new SIEM platform. SIEM Solution Development: Collaborate … with security analysts and architects to design and implement SIEM solutions using Elasticsearch. Optimize SIEM rules, alerts, and dashboards for efficient threat detection. Collaboration: Collaborate effectively with others to drive forward key security objectives Query Optimization and Performance Tuning: Write efficient Elasticsearch queries to retrieve relevant security events. Monitor and ...

Skills & Experience of Cyber Sales Manager will include: 3+ Years Minimum of Successful Cyber Security Sales Experience Technical grounding in SOC, MDR, IR, SIEM, or related Solutions Proven Ability to Influence Senior IT/Security Stakeholders Established Network of UK Private-Sector Contacts advantageous Entrepreneurial, Hunter Mindset; Resilient & Confident Native ...

ensure solutions are cost-efficient, scalable and compliant Working across Linux environments (primarily Ubuntu) while collaborating with Windows teams where needed Supporting vulnerability management, SIEM engineering and wider security initiatives Reading documentation, troubleshooting independently and quickly becoming productive in complex systems Working closely with a team of juniors, mid-level … Ability to troubleshoot independently, read documentation and identify efficient solutions Strong consulting skills - calm, pragmatic communication, and ability to challenge when required Exposure to SIEM (Splunk/Elastic), vulnerability tools, or cloud security platforms A problem-solving mindset and willingness to learn new tools and languages quickly Experience in fast ...

accounts and delivering value to strategic accounts in the cybersecurity industry Extensive platform selling experience in complex sales with multiple buying centers Experience selling SIEM, EDR, or CNAPP (DevSecOps, CloudOps) solutions is highly preferred Established trusted relationships with CIOs and CISOs with the ability to influence and drive strategic conversations ...

accounts and delivering value to strategic accounts in the cybersecurity industry Extensive platform selling experience in complex sales with multiple buying centers Experience selling SIEM, EDR, or CNAPP (DevSecOps, CloudOps) solutions is highly preferred Established trusted relationships with CIOs and CISOs with the ability to influence and drive strategic conversations ...

responsible for monitoring systems, identifying potential threats, and ensuring rapid incident response to safeguard critical services. Responsibilities Keep a close watch on SIEM platforms and other monitoring tools to spot unusual activity click apply for full job details ...

Patching and Maintenance of test and live environments to include installing Anti-Virus, WSUS, RHEL & other product updates o Working with PKI Certificates and SIEM tooling o Providing support to Engineering & Test teams o AD Administration activities accounts, groups, memberships, permissions etc. o Participating in rota for On-Call ...

They're keen to move quickly for the right person. What you'll be doing As SOC Analyst, you will: Operate, tune and configure SIEM tools Monitor and triage security alerts, applying custom queries (e.g. KQL) and correlation rules to detect suspicious activity. Investigate security incidents across endpoints, networks, and … security operations/incident-response role. Strong working knowledge of Microsoft security stack (e.g. Sentinel, Defender) and hands-on experience with SIEM tooling, alerts triage, detection logic, and security incident workflows. Ability to write and optimise detection queries (e.g. in KQL), review firewall and security logs, manage email/ ...

rules, dashboards, and reports for our Security Information and Event Management (SIEM) systems. This role requires a strong understanding of security procedures and experience working with SIEM platforms and within an MSSP environments where you may be working across multiple operational customers and projects. Hybrid Variable: Working in Hemel Hempstead … Clearance. What you'll be doing: Develop, deploy, and uphold security content (including rules, dashboards, and reports) for our SIEM system. Continuously monitor and analyse SIEM data to identify and respond to potential security threats. Collaborate with SOC Analysts, Architects, Project Managers & Engineers to improve the precision and efficiency ...