Cambridge, Cambridgeshire, East Anglia, United Kingdom
The Bridge (IT Recruitment) Limited
automation, alert enrichment and detections Knowledge of adversary tactics, techniques, and procedures (TTPs) and MITRE ATT&CK principles Comfortable with macOS, Windows & Linux operating systems Domain experience working with SIEMand SOAR platforms Experience developing tools and automation using common DevOps toolsets and programming languages Understanding of malware functionality and persistence mechanisms Ability to analyse endpoint, network, and application logs More ❯
Azure A strong understanding of software development methodologies and practices Ability to Rapid Risk Assessment and Threat Modeling Other technical skills required: Azure Security Monitoring including Application Insights, andSIEM Excellent communication skills to guarantee stakeholder alignment and successful outcomes at all stages of Product delivery and ongoing support This is a great opportunity and salary is dependent upon experience. More ❯
for a system: Microsoft OS Linux OS Virtualisation technologies Networking Endpoint Security Products Working knowledge of the accreditation process for secure systems Experience in producing design artefacts Experience implementing SIEM products Experience with network technologies (firewalls, mail gateways, load balancers, anti-virus) We're currently looking at a September/October start date (dependant on your availability/notice period More ❯
Infrastructure as Code (Terraform), and scripting (Python, Bash) Knowledge of secure engineering standards (OWASP, CIS, NIST) and Agile/DevOps practices Experienced with CSPM, CNAPP, security incident response, andSIEM tools Ability to evaluate and recommend new security technologies Clear communicator focused on enhancing developer experience Calm, evidence-based decision-making under pressure Entrepreneurial, goal-oriented, and innovative Comfortable sharing More ❯
security vulnerabilities identified by Qualys, Nessus, or other scanning tools. Contribute to incident response planning, patching SLAs, and compliance reporting. Design and maintain logging, audit trails, and syslog/SIEM integrations Authentication, Authorization, and Directory Services Integrate UNIX systems with enterprise identity management platforms Implement and enforce secure access controls, sudo policies, and RBAC schemes. Collaborate with IAM and InfoSec More ❯
West London, London, United Kingdom Hybrid / WFH Options
Walsh Employment
in a Tier 1 Cyber Security SOC Support Analyst role Prior experience in a Managed Service Provider (MSP) environment preferred Working knowledge of Microsoft Defender XDR and Microsoft Sentinel (SIEM) Hands-on experience with the Microsoft Defender suite , including Endpoint Detection and Response Solid understanding of Microsoft 365 Cloud Technologies , particularly from a threat landscape perspective Certifications: SC-200 Microsoft More ❯
in malware analysis or reverse engineering. Experience with scripting or programming (Python, PowerShell, Bash, etc.). Relevant SOC certifications (e.g., CREST, Blue Team Level 1). Exposure to additional SIEM tools such as QRadar. Shift Pattern: 2 Days, 2 Nights, 4 Off Benefits: 25 days annual leave (plus option to purchase more). Health cash plan, life assurance, and company More ❯
every client interaction. Key Qualifications 3+ years in solutions architecture, sales engineering, or a similar client-facing technical role. Demonstrated experience integrating with enterprise securityand data platforms, including SIEM (e.g., Splunk, Sentinel, Elastic), DLP, UEBA, or SCRM systems. Proficiency with scripting and programming languages (e.g., Python, Node.js, Java, SQL, C++, or C#). Strong understanding of authentication protocols such More ❯
Azure A strong understanding of software development methodologies and practices Ability to Rapid Risk Assessment and Threat Modeling Other technical skills required: Azure Security Monitoring including Application Insights, andSIEM Excellent communication skills to guarantee stakeholder alignment and successful outcomes at all stages of Product delivery and ongoing support This is a great opportunity and salary is dependent upon experience. More ❯
every client interaction. Key Qualifications 3+ years in solutions architecture, sales engineering, or a similar client-facing technical role. Demonstrated experience integrating with enterprise securityand data platforms, including SIEM (e.g., Splunk, Sentinel, Elastic), DLP, UEBA, or SCRM systems. Proficiency with scripting and programming languages (e.g., Python, Node.js, Java, SQL, C++, or C#). Strong understanding of authentication protocols such More ❯
every client interaction. Key Qualifications 3+ years in solutions architecture, sales engineering, or a similar client-facing technical role. Demonstrated experience integrating with enterprise securityand data platforms, including SIEM (e.g., Splunk, Sentinel, Elastic), DLP, UEBA, or SCRM systems. Proficiency with scripting and programming languages (e.g., Python, Node.js, Java, SQL, C++, or C#). Strong understanding of authentication protocols such More ❯
response activities and containment strategies. Perform deep forensic analysis across endpoints, logs, and network traffic to uncover advanced threats. Develop and fine-tune detection rules and correlation logic in SIEM platforms (e.g., Splunk). Collaborate with engineering and threat intelligence teams to improve detection coverage and SOC workflows. Mentor and guide L1/L2 analysts, providing training, quality reviews, andMore ❯
Desirable Skills Experience with Azure DevOps and pipelines. Comfortable presenting technical solutions to stakeholders. Exposure to Scaled Agile Framework (SAFe) . Familiarity with or open to learning the ArcSight SIEM toolset (ESM, SmartConnectors, Logger, ArcMC). Tech Stack : Operating Systems : Windows, Linux Tools : VMware, PowerShell, VBScript, Python, Azure DevOps, ArcSight More ❯
Desirable Skills Experience with Azure DevOps and pipelines. Comfortable presenting technical solutions to stakeholders. Exposure to Scaled Agile Framework (SAFe) . Familiarity with or open to learning the ArcSight SIEM toolset (ESM, SmartConnectors, Logger, ArcMC). Tech Stack : Operating Systems : Windows, Linux Tools : VMware, PowerShell, VBScript, Python, Azure DevOps, ArcSight More ❯
equivalent are highly preferred. Minium 3 years' experience in security operations, incident response, or SOC analyst roles. Proven expertise in managing and optimizing security monitoring and detection tools, including SIEM, IDS/IPS, and Endpoint Detection & Response platforms. Demonstrated ability to develop, maintain, and execute cyber response playbooks and incident handling procedures. Experience responding to Level 1 and Level … knowledge and experience of configuration and trace analysis on the following systems: AWS, Azure and Microsoft 365 Security Endpoint Detection and Response Firewall and VPN Network Anomalies reporting tools SIEM Technology Experience with working with third party service providers Desirable MDM WAF SQL Excellent analytical skills with the ability to interpret complex security data and incidents. Strong verbal and written More ❯
career within a high-performing security practice. Key Responsibilities Lead technical delivery and onboarding of Cloud Native Security Solutions such as CSPM/CNAPP/XDR/SOAR/SIEM platforms. Perform cloud security assessments (e.g., posture review, CSPM, identity risk, threat exposure) Deliver customer workshops, high- and low-level designs, and technical documentation. Contribute to the development of internal … Security Architect. Minimum of 3 years' experience in Professional Services. managed security services, preferably in a next generation SOC environment or in an MSSP or MDR provider Experience with SIEMand SOAR platforms, particularly Microsoft Sentinel or Google Chronicle, including rule tuning, KQL, and automation. Knowledge of infrastructure-as-code andsecurity automation (e.g., Bicep, Terraform, Logic Apps, PowerShell). More ❯
Basingstoke, Hampshire, South East, United Kingdom Hybrid / WFH Options
Corriculo Ltd
sized organisation Hands-on experience in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of SecurityInformationEventManagement (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as More ❯
controls across OT environments. Contribute to the assessment of OT network architecture , protocols, and change management processes. Lead incident response and remediation for cyber events detected by our OT SIEM systems. Actively support vulnerability managementand ensure threat exposure is minimised. Provide hands-on leadership in data and asset management , including backup and removable media deployments. Apply and track securityMore ❯
Employment Type: Permanent
Salary: £57000 - £60000/annum Pension,Medical,Incentive plan,25 Ho
Immingham, Lincolnshire, North East, United Kingdom
Rullion Limited
controls across OT environments. Contribute to the assessment of OT network architecture , protocols, and change management processes. Lead incident response and remediation for cyber events detected by our OT SIEM systems. Actively support vulnerability managementand ensure threat exposure is minimised. Provide hands-on leadership in data and asset management , including backup and removable media deployments. Apply and track securityMore ❯
Southampton, Hampshire, United Kingdom Hybrid / WFH Options
NICE
closing meetings. External Audit Coordination: Collaborate with external audit teams to streamline processes and provide requested documentation and evidence. Security Monitoring: Use tools such as Rapid7 InsightIDR or other SIEM solutions to assist with security monitoring and incident detection. Incident Response Support: Participate in incident response efforts, documenting security incidents and assisting in containment and recovery actions. Threat Identification: Contribute … audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus. Familiarity with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience in internal and external audits, compliance assessments, and process improvement. Basic understanding of incident response frameworks and cybersecurity best practices. Exceptional analytical, organizational, and communication skills. More ❯
of the latest security threats, threat actors, and the tactics and techniques adopted. Proven experience with programming languages such as Python, Rust, C++, or others. Knowledge of SecOps tooling (SIEM, SOAR, Threat Intelligence). More ❯
As part of a small security team (3 people), your role will be varied and will include managing firewalls, email security, cloud (Azure), IAM/PAM systems, security certificates, SIEM, and SOAR. As the Senior Security Engineer, you will have the opportunity to mentor and develop the security engineer. The successful candidate will have experience gained in a broad, hands More ❯