101 to 125 of 346 SIEM Jobs in England

support to the wider Cyber Security Team during incident response Maintain accurate documentation of all actions and resolutions Essential Experience Working knowledge of Microsoft Defender XDR and Microsoft Sentinel SIEM technologies Working knowledge of Microsoft Defender suite including Endpoint Detection and Response Understanding of key Microsoft 365 Cloud Technologies from a threat landscape perspective Essential Certifications SC-200 Microsoft Certified More ❯

of scripts in Python JavaScript or PowerShell is a plus Experience with security design and architecture, content development, workload automation and use-cases Experienced with technologies such as EDR, SIEM, SOAR, NGFW and their ecosystems Familiarity with cloud technologies, providers (such as GCP, AWS, Azure) Familiarity with attack surface management is a plus Experience in customer-facing roles (internal or More ❯

integrate with the Security Operations Centre (SOC). Identify cyber risks, evaluate their impact, and develop effective mitigation strategies. Collaborate with Security Architects on solution design for SOC/SIEM tools. Develop and maintain security strategies in line with business objectives. Innovate and apply technical solutions to meet client requirements and security challenges. Skills/Must have: Expertise in Splunk More ❯

engineering. DV Clearance. Programming and scripting such as Python, Perl, Bash, PowerShell, C++. CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar. If you are interested in this role but not sure if your skills and experience are exactly what were looking More ❯

engineering. DV Clearance. Programming and scripting such as Python, Perl, Bash, PowerShell, C++. CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar. If you are interested in this role but not sure if your skills and experience are exactly what we’re More ❯

aspects of M365 and Power Platform projects across diverse customer estates , supporting project managers and delivery leads Advise customers on security posture enhancements , including Secure Score, audit log management, SIEM integration, and regulatory alignment Ensure Power Platform governance policies, lifecycle models, and technical controls are applied consistently across customer environments Support subscription and licensing management in collaboration with Asset Management More ❯

Azure Monitor, Application Insights, Log Analytics). Proficiency in KQL (Kusto Query Language) for log analysis. Experience with automation scripting (PowerShell, Python, or Azure Functions). Desirable Familiarity with SIEM tools (Splunk, ELK, Azure Sentinel) Microsoft Certified: Azure Administrator Associate (AZ-104) Microsoft Certified: Azure Solutions Architect Expert (AZ-305) Microsoft Certified: Azure Security Engineer Associate (AZ-500) Your Personal More ❯

Azure Monitor, Application Insights, Log Analytics). Proficiency in KQL (Kusto Query Language) for log analysis. Experience with automation scripting (PowerShell, Python, or Azure Functions). Desirable Familiarity with SIEM tools (Splunk, ELK, Azure Sentinel) Microsoft Certified: Azure Administrator Associate (AZ-104) Microsoft Certified: Azure Solutions Architect Expert (AZ-305) Microsoft Certified: Azure Security Engineer Associate (AZ-500) Your Personal More ❯

SIEM Engineer Location: Hybrid 60/40 - Bearwood Rd, Sindlesham, Wokingham RG41 5BN Duration: 26/12/2025 MUST BE PAYE THROUGH UMBRELLA We are heading up a recruitment drive for a global consultancy that require a SC Cleared Siem Engineer to join them on a major government project that's based in in Wokingham. Role Description: - SIEM Deployment … Management - Set up, configure, and maintain SIEM tools like ArcSight, Splunk, or QRadar. - Threat Detection & Analysis - Monitor security logs, detect anomalies, and investigate potential threats. - Incident Response - Work with security teams to analyze and mitigate security incidents. - Custom Rule Creation - Develop and fine-tune detection rules and alerts to identify malicious activities. - Security Reporting - Generate reports on security events, trends … and system performance. - Collaboration - Work with IT and security teams to improve overall cybersecurity posture. Required Skills & Qualifications - Technical Expertise - Strong knowledge of SIEM platforms, network security, and cybersecurity frameworks. - Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications. - Programming & Scripting - Familiarity with Python, PowerShell, or other Scripting languages. - Analytical Thinking - Ability to analyze large datasets and identify security threats. More ❯

Azure A strong understanding of software development methodologies and practices Ability to Rapid Risk Assessment and Threat Modeling Other technical skills required: Azure Security Monitoring including Application Insights, and SIEM Excellent communication skills to guarantee stakeholder alignment and successful outcomes at all stages of Product delivery and ongoing support. This is a great opportunity and salary is dependent upon experience. More ❯

incidents: Contribute to incident response plans to address security breaches promptly and effectively. Key Skills and Experience Required: Proven experience in cyber security, with a focus on security information and event management systems including Microsoft Sentinel In-depth knowledge of security monitoring techniques, using Microsoft Sentinel and its integration technologies and related tools to manage and analyse logs to detect More ❯

flexible and solution-oriented mindset. You have knowledge of or are interested in CIAM (e.g. Auth0), threat modeling, vulnerability analysis (e.g. Google Secure Command Center), CSPM (e.g. scrut.io) and SIEM (e.g. Chronicle) systems You have a relevant Bachelor's degree (or higher) You have worked with Google cloud or AWS You have experience with evaluating and onboarding security tools You More ❯

Engineering, Network Security, and/or working in a Security Operations Centre (SOC). Hands-on knowledge of security tools and technologies, including Web Application Firewalls, SASE, access control, SIEM, antivirus, email/web security gateways, firewalls, load balancers, ACLs, and network protocols (TCP/IP, routing, switching). Strong grasp of security infrastructure design, IT security best practices, and More ❯

Engineering, Network Security, and/or working in a Security Operations Centre (SOC). Hands-on knowledge of security tools and technologies, including Web Application Firewalls, SASE, access control, SIEM, antivirus, email/web security gateways, firewalls, load balancers, ACLs, and network protocols (TCP/IP, routing, switching). Strong grasp of security infrastructure design, IT security best practices, and More ❯

detection and threat management products Good knowledge and awareness of global Information Security Standards including ISO27002, CIS, NCSE CAF, NIST CSF Advisor in advanced cybersecurity services including SSE, SASE, SIEM, MDR/EDR Experience working with security frameworks and/or market leading solutions (preferred) Experience in recommending and designing solutions to meet compliance guidelines Engineer certifications in leading market More ❯

cloud-based productivity and management of work. Key Responsibilities of the Security Engineer: Dealing with escalation of security related tickets and hands-on maintenance to solve the issues. Creating SIEM dashboards and detection rules using Splunk. Using CrowdStrike to monitor and investigate security alerts. Management of identity, MDM, or directory services via Jump cloud. Conducting regular vulnerability scans and risk More ❯

and guide implementation of secure cloud infrastructure and services. - Champion Zero Trust and secure-by-design principles across the SDLC. - Evaluate, select, and integrate security technologies (e.g., CSPM, CWPP, SIEM). - Mentor engineers and contribute to security capability uplift across teams. Required Experience & Skills: - 15+ years in Information Security, with at least 7 years in Security Architecture. - Proven track record More ❯

in complex, fast-paced environments Broad knowledge of IT and security frameworks, regulations, and best practices (e.g., ISO 27001, DPA, GDPR) Familiarity with security tools such as vulnerability scanners, SIEM, DDoS protection, remote access, authentication/authorisation technologies, and data loss prevention Understanding of OWASP top vulnerabilities and methodologies Technical knowledge of cloud, networking, virtualisation, mobile technologies, and more Experience More ❯

BA Cyber products Maintain detailed documentation of BA security policies, procedures, and incidents What you'll bring to British Airways: High proficiency in Security Tools and Technologies, such as; SIEM, Vulnerability Management, EDR and Identity Experience in leading and mentoring a team of security professionals and an ability to foster a collaborative and learning-oriented environment Proven track record of More ❯

Access, PIM, IDP, RBAC ) Proven experience troubleshooting and resolving technical challenges . Desirable: Experience with the following: Microsoft Information Protection Email Security/Defender for Office Experience with managing SIEM solutions Experience with managing Endpoint Protection solutions Version control Name Date Prepared by Lee Brown 09/07/2024 Updated by More ❯

of solutions underpinned by simplified data access and management at scale with AI. These solutions include Asset and Risk intelligence, Attack Analysis, Orchestration Automation and Response, User Behavior Analytics, SIEM Enterprise Security, Application Performance Monitoring, Infrastructure Monitoring, Log Analysis, Incident Response, Network Monitoring, Business Risk Observability, AIOps, Digital Experience Monitoring and the ecosystem continues to expand and integrate at a More ❯

that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending More ❯

Computer Science, or a related field; advanced degree preferred. Experience in insider risk, counterintelligence, cybersecurity, or a related discipline. Hands-on experience with insider threat detection tools such as SIEM, UEBA, UAM, DLP, and other monitoring technologies. Strong understanding of insider risk frameworks, regulatory and privacy requirements, and relevant laws. Familiarity with SOC or Fusion Centre operations, including threat monitoring More ❯

access to cloud environments. Non-Human Identity (NHI) Management: Managing access for automated systems and applications. Integration with other security tools: Integrating PAM with other security solutions, such as SIEM and SOAR platforms. Compliance: Understanding and adherence to relevant security and compliance regulations. Teamwork and Collaboration: PAM engineers often work as part of a larger security team. More ❯

streamline workflows and lead on the deployment of Microsoft Purview for data governance, Microsoft Defender for cloud app and endpoint security and Microsoft Sentinel to build a world-class SIEM/SOC. This role will be responsible for gathering business requirements, analysing business processes and collaborating with cross-functional teams to ensure a smooth migration and successful deployment of all More ❯