151 to 170 of 170 SIEM Jobs in England

Data & Information Security Analyst – Hybrid Our client is urgently looking for an experienced Data & Information Security Analyst to join their team on a Fixed-Term contract basis, for 18 months initially with a view to ...

Data & Information Security Analyst – Hybrid Our client is urgently looking for an experienced Data & Information Security Analyst to join their team on a Fixed-Term contract basis, for 18 months initially with a view to ...

Requirements: Circa 5 years' experience in a related IT role, with strong exposure to security operations Hands-on experience managing security products such as SIEM, TVM and PAM platforms Hold recognised industry certifications such as CISSP, CCSP or vendor specific certifications Experience working with and overseeing outsourced security functions Strong … technical skills across the E5/Microsoft 365/Defender suite Familiarity with technologies such as SIEM, PAM, Endpoint Protection, EDR, IPS/IDS, MFA, Encryption and Next Gen Firewalls Experience supporting cyber security event triage, incident response and recovery Strong knowledge of operational security management and tooling This role ...

both technical and GRC security experience. Key Responsibilities: Oversee security incident management and response Threat management Configure, implement and maintain security tools such as SIEM, XDR, EDR, vulnerability management Implement and maintain security controls Conduct vendor risk assessments, support internal and external audits Governance, risk and compliance Skills & Experience: Proven … experience in Cyber Security operations, threat management Strong knowledge of SIEM, XDR, EDR, vulnerability management, firewalls and network security Good understanding of risk management, vendor security assessments and compliance Understanding of UK regulations, including Cyber Essentials, ISO27001, NIST On Offer: Salary up to £65,000 Hybrid working - approximately 2 days ...

Security Manager to evolve SOC capability Senior SOC Analyst essential skills Proven experience in a SOC or similar security operations environment Strong knowledge of SIEM, incident management and threat intelligence Understanding of cloud technologies and modern networking Experience with IDAM, JML processes and ITSM frameworks Ability to lead, support and … develop junior analysts Strong communication and stakeholder engagement skills Key skills: Senior SOC Analyst, SOC, SIEM, Security Incident Management, Threat Intelligence, Cloud Security, IDAM, ISO 27001, Team Leadership ...

/OpenShift Multi-cloud platforms Collaborate with security, DevOps and infrastructure teams to integrate CyberArk with AD/LDAP, SAML/OIDC identity providers, SIEM (e.g. Splunk), ITSM, and MFA solutions . Lead installation, configuration, testing and handover of CyberArk secrets-management solutions into Run & Maintain teams. Provide architectural leadership … integrating CyberArk Conjur/Credential Provider for application and DevOps secrets. Demonstrable experience integrating CyberArk with: AD/LDAP SAML/OIDC identity providers SIEM tools ITSM/ticketing systems At least one MFA platform Solid understanding of DevOps and cloud-native ecosystems, including Kubernetes, OpenShift, containers, Jenkins, CI/ ...

incidents, you'll guide junior analysts, ensure smooth shift transitions, and help refine the tools and processes that keep the operation resilient. Responsibilities Oversee SIEM platforms and other monitoring tools to detect suspicious activity. Review and triage alerts, analysing logs to prioritise incidents effectively. Carry out containment measures and escalate … Contribute to the ongoing improvement and optimisation of security monitoring systems. What you'll need to succeed Hands-on experience with SPLUNK or similar SIEM tools in a SOC environment. Strong analytical mindset with the ability to solve problems under pressure. Excellent communication skills-both written and verbal-and ...

technology and career development. Skills required: Microsoft Certified: Security Operations Analyst Associate Certification (SC200) is a mandatory requirement for role fulfilment Experience working with SIEM technologies and security tooling An understanding of IT Infrastructure and Networking An understanding of vulnerability and threat management An understanding of the incident response lifecycle … responsible for providing Protective Monitoring Services across a range of Secure Customers. They will be responsible for the day to day monitoring using various SIEM Tools (Qradar, Sentinel & LogRhythm). Some of the responsibilities that come along with this role include the following: Security Analytics Incident investigation, triage and escalation ...

activities, including technical scoping, bid responses, service demonstrations, and stakeholder presentations Essential Duties Security Platform Deployment & Optimisation Deploy, configure, and tune SOC technologies across SIEM, EDR, SOAR, and log pipeline tooling Develop and maintain documentation to support repeatable, high-quality delivery Customer Engagement & Delivery Lead the implementation of engineering workstreams … technical design choices and balances customer needs with service feasibility Critical Competencies – Technical Fit Security Tooling & Architecture – Deep understanding of SOC-aligned technologies across SIEM, EDR, SOAR, log pipelines, and detection tooling. Telemetry and Log Management – Ability to design and deliver scalable architectures for data ingestion, correlation, and automation Networking ...

WSUS, and associated domain services • Manage VMware virtualisation platforms including ESXi, vCenter, and VMware Cloud Foundation • Operate and support ASTERIX VoIP systems • Maintain SIEM and monitoring platforms including Splunk, SCOM/SCCM, and telemetry tools • Perform Linux system administration, patching, and security hardening • Develop and maintain automation using PowerShell, Ansible … Security systems experience including IDS/IPS administration • Strong Active Directory and Microsoft infrastructure knowledge • VMware vSphere, ESXi, and VMware Cloud Foundation experience • SIEM and monitoring tools such as Splunk and System Centre Suite • Linux administration and security patching experience • Automation skills using PowerShell, Ansible, and GitLab This vacancy ...

WSUS, and related platforms Managing VMware virtualisation environments , including ESXi, vCenter, and VMware Cloud Foundation Operating and supporting ASTERIX VoIP systems Maintaining SIEM and monitoring platforms , including Splunk and Microsoft System Centre tooling Performing Linux system administration , patching, and security hardening Creating and maintaining automation using PowerShell, Ansible, and GitLab …/IPS Active Directory, ADFS, PKI, DNS, DHCP, GPO, RDS, WSUS, WAP VMware vSphere, ESXi, and VMware Cloud Foundation administration ASTERIX VoIP systems SIEM & monitoring: Microsoft System Centre Suite, Splunk Enterprise/ES/ITSI Telemetry platforms: OpenTelemetry, Telegraf Linux administration and security patching Automation and scripting using PowerShell, Ansible ...

SIEM Application Engineer Location: Birmingham | Hours: Full-time Our client, a large global technology organisation, is seeking an experienced contract (inside IR35) SIEM Application Engineer to design, deploy, and optimize Elastic SIEM solutions built on ECK, enhancing threat detection and security monitoring. The role is based in Birmingham (3 days … week on-site) and is initially until the end of March, with likely extensions. Key Responsibilities: Develop and maintain SIEM solutions using Elasticsearch and Elastic Stack (ELK). Create and optimize detection rules aligned with MITRE ATT&CK Framework. Fine-tune Elasticsearch queries, Logstash pipelines, and Kibana dashboards for performance ...

Information Security Analyst DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require an Information Security Analyst to join the firm in Leeds on an 18 month ...

Information Security Analyst DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require an Information Security Analyst to join the firm in Birmingham on an 18 month ...

DevOps Lead - Kubernetes/Docker/SIEM Birmingham - hybrid working - 3 days in the office/2 days remote £68-72k pa + bonus and benefits We are recruiting a fantastic opportunity to join a busy Security Application Engineering team and be instrumental in the design, development, implementation and … maintenance of a SIEM platform. You will lead the SIEM automation strategy and provide advise and guidance on SIEM platform automation to the DevOps team. Taking ownership of SIEM DevOps your technical experience will need to include Kubernetes, Docker, CI/CD, SIEM and development tools such as Python, JavaScript ...

Location: Hampshire Package: Competitive rate + benefits Industry: Defence & Security Technology What You’ll Be Doing Configure, deploy and maintain advanced security tools, including SIEM and vulnerability scanners. Develop alerts, dashboards and playbooks to detect and respond to incidents quickly. Manage and mitigate technical vulnerabilities across secure environments. Implement and … operations team. Work closely with technical teams to embed security best practices throughout CI/CD pipelines. Main Skills Needed Hands-on experience with SIEM configuration and management. Solid understanding of vulnerability management and threat frameworks (e.g. MITRE ATT&CK). Familiarity with securing CI/CD pipelines and modern ...

teams to secure the solution. Key Responsibilities and Tasks Documenting security configuration Proactive management of technical vulnerabilities Deployment of security tooling (vulnerability scanning/SIEM/etc). Development of alerts and dashboards in SIEM configuration. Deploying secure lockdowns to information systems. Assist 2nd line Security Analysts in triaging critical … incidents. Experience (Essential) Knowledge of configuring SIEM tooling. Basic understanding of threat frameworks, such as ATT&CK. Understanding of CI/CD tools required to secure a pipeline. High standards in written report and/or design documentation. Experience (Nice to have) Experience of supporting information systems in a government ...

looking for an experienced SIEM Technical Consultant to join a high-profile MOD programme, supporting a key transition as an existing on-site consultant steps up into an Architect role. This is a crucial position, ensuring continuity, capability, and momentum across the security operations environment. You'll be working hands … ensuring a smooth transition What You'll Bring Active DV Clearance (essential) Strong, demonstrable experience with the Elastic product suite Confidence in hands-on SIEM configuration, dashboarding, and optimisation Ability to work collaboratively with partner teams and MOD stakeholders A proactive, value-driven mindset - someone who can elevate capability ...

working with a rapidly scaling, high-integrity UK cybersecurity services provider that delivers: ✔️ 24/7 Managed SOC ✔️ MDR/XDR ✔️ Managed SIEM ✔️ Threat Intelligence ✔️ Incident Response ✔️ Pen Testing & Consultancy ✔️ Co-managed security services for mid-market and enterprise organisations They’ve recently secured new investment, strengthened their leadership team … sale. 💼 What We’re Looking For 5–10+ years selling cybersecurity services (SaaS + MSSP strongly preferred). Experience selling: SOC, MDR/XDR, SIEM, threat intel, IR or pen-testing. Strong track record in regulated sectors: FS, energy, SaaS, education, critical infrastructure. Confident engaging C-suite, boards & multi-stakeholder ...

looking for an experienced SIEM Technical Consultant to join a high-profile MOD programme, supporting a key transition as an existing on-site consultant steps up into an Architect role. This is a crucial position, ensuring continuity, capability, and momentum across the security operations environment. You'll be working hands ...