176 to 200 of 351 SIEM Jobs in England

Azure A strong understanding of software development methodologies and practices Ability to Rapid Risk Assessment and Threat Modeling Other technical skills required: Azure Security Monitoring including Application Insights, and SIEM Excellent communication skills to guarantee stakeholder alignment and successful outcomes at all stages of Product delivery and ongoing support This is a great opportunity and salary is dependent upon experience. More ❯

every client interaction. Key Qualifications 3+ years in solutions architecture, sales engineering, or a similar client-facing technical role. Demonstrated experience integrating with enterprise security and data platforms, including SIEM (e.g., Splunk, Sentinel, Elastic), DLP, UEBA, or SCRM systems. Proficiency with scripting and programming languages (e.g., Python, Node.js, Java, SQL, C++, or C#). Strong understanding of authentication protocols such More ❯

response activities and containment strategies. Perform deep forensic analysis across endpoints, logs, and network traffic to uncover advanced threats. Develop and fine-tune detection rules and correlation logic in SIEM platforms (e.g., Splunk). Collaborate with engineering and threat intelligence teams to improve detection coverage and SOC workflows. Mentor and guide L1/L2 analysts, providing training, quality reviews, and More ❯

Desirable Skills Experience with Azure DevOps and pipelines. Comfortable presenting technical solutions to stakeholders. Exposure to Scaled Agile Framework (SAFe) . Familiarity with or open to learning the ArcSight SIEM toolset (ESM, SmartConnectors, Logger, ArcMC). Tech Stack : Operating Systems : Windows, Linux Tools : VMware, PowerShell, VBScript, Python, Azure DevOps, ArcSight More ❯

Desirable Skills Experience with Azure DevOps and pipelines. Comfortable presenting technical solutions to stakeholders. Exposure to Scaled Agile Framework (SAFe) . Familiarity with or open to learning the ArcSight SIEM toolset (ESM, SmartConnectors, Logger, ArcMC). Tech Stack : Operating Systems : Windows, Linux Tools : VMware, PowerShell, VBScript, Python, Azure DevOps, ArcSight More ❯

equivalent are highly preferred. Minium 3 years' experience in security operations, incident response, or SOC analyst roles. Proven expertise in managing and optimizing security monitoring and detection tools, including SIEM, IDS/IPS, and Endpoint Detection & Response platforms. Demonstrated ability to develop, maintain, and execute cyber response playbooks and incident handling procedures. Experience responding to Level 1 and Level … knowledge and experience of configuration and trace analysis on the following systems: AWS, Azure and Microsoft 365 Security Endpoint Detection and Response Firewall and VPN Network Anomalies reporting tools SIEM Technology Experience with working with third party service providers Desirable MDM WAF SQL Excellent analytical skills with the ability to interpret complex security data and incidents. Strong verbal and written More ❯

career within a high-performing security practice. Key Responsibilities Lead technical delivery and onboarding of Cloud Native Security Solutions such as CSPM/CNAPP/XDR/SOAR/SIEM platforms. Perform cloud security assessments (e.g., posture review, CSPM, identity risk, threat exposure) Deliver customer workshops, high- and low-level designs, and technical documentation. Contribute to the development of internal … Security Architect. Minimum of 3 years' experience in Professional Services. managed security services, preferably in a next generation SOC environment or in an MSSP or MDR provider Experience with SIEM and SOAR platforms, particularly Microsoft Sentinel or Google Chronicle, including rule tuning, KQL, and automation. Knowledge of infrastructure-as-code and security automation (e.g., Bicep, Terraform, Logic Apps, PowerShell). More ❯

sized organisation Hands-on experience in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as More ❯

controls across OT environments. Contribute to the assessment of OT network architecture , protocols, and change management processes. Lead incident response and remediation for cyber events detected by our OT SIEM systems. Actively support vulnerability management and ensure threat exposure is minimised. Provide hands-on leadership in data and asset management , including backup and removable media deployments. Apply and track security More ❯

controls across OT environments. Contribute to the assessment of OT network architecture , protocols, and change management processes. Lead incident response and remediation for cyber events detected by our OT SIEM systems. Actively support vulnerability management and ensure threat exposure is minimised. Provide hands-on leadership in data and asset management , including backup and removable media deployments. Apply and track security More ❯

closing meetings. External Audit Coordination: Collaborate with external audit teams to streamline processes and provide requested documentation and evidence. Security Monitoring: Use tools such as Rapid7 InsightIDR or other SIEM solutions to assist with security monitoring and incident detection. Incident Response Support: Participate in incident response efforts, documenting security incidents and assisting in containment and recovery actions. Threat Identification: Contribute … audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus. Familiarity with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience in internal and external audits, compliance assessments, and process improvement. Basic understanding of incident response frameworks and cybersecurity best practices. Exceptional analytical, organizational, and communication skills. More ❯

of the latest security threats, threat actors, and the tactics and techniques adopted. Proven experience with programming languages such as Python, Rust, C++, or others. Knowledge of SecOps tooling (SIEM, SOAR, Threat Intelligence). More ❯

Security Engineer - SIEM - sought by investment bank based in London - Contract - Hybrid Inside IR35 - umbrella Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot log ingestion and parsing issues Log Source Integration: Onboard and More ❯

Security Engineer - SIEM - sought by investment bank based in London - Contract - Hybrid *Inside IR35 - umbrella* Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot log ingestion and parsing issues Log Source Integration: Onboard and More ❯

As part of a small security team (3 people), your role will be varied and will include managing firewalls, email security, cloud (Azure), IAM/PAM systems, security certificates, SIEM, and SOAR. As the Senior Security Engineer, you will have the opportunity to mentor and develop the security engineer. The successful candidate will have experience gained in a broad, hands More ❯

solutions Strong Understanding of Security Operations working within or alongside Security Operations Centre(s) Experience working in all hyperscaler environments, preferably holding Professional Cloud Architect Certification Experience with multiple SIEM & SOAR Tooling, preferably Google SecOps (formerly Chronicle/Simplify) Experience with EDR/XDR and NDR Tooling, preferably Crowdstrike, Corelight, Microsoft Defender XDR Connect to your business - Technology and Transformation More ❯

principles Hands-on experience with data analysis, modeling, and correlation at scale Operating systems internals and forensics experience for macOS, Windows & Linux Domain experience managing and working with current SIEM and SOAR platforms Experience developing tools and automation using common DevOps toolsets and programming languages Understanding of malware functionality and persistence mechanisms Ability to analyze endpoint, network, and application logs More ❯

that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs), and Managed Security Service Providers (MSSPs) worldwide, defending More ❯

or equivalent experience. You might also have: Prior experience selling threat intelligence feeds, data APIs, or security telemetry to OEM or technology partners. Familiarity with common security solutions (e.g., SIEM, SOAR, EDR, IDS/IPS). Technical background (e.g., computer science or engineering) is a plus. OpenText's efforts to build an inclusive work environment go beyond simply complying with More ❯

manager. Main responsibilities You will be: Leading large, cross-functional technical team in the design, development, and enablement of automated monitoring processes, advising on the latest SIEM (Security Information and Event Management) and network analysis tools, techniques, and procedures to detect malicious activity, while communicating directly with leadership on the progress and status of monitoring. Leading wider implementation of a More ❯

Security Best Practices : secret management (Vault, AWS Secrets Manager), image scanning, least privilege access, zero trust networking. Auditing & Policy Enforcement : integrating runtime policies, access controls, and system-level logging (SIEM-friendly formats). Backend Engineering Strengths in the following areas : Strong Language Proficiency : advanced in Python, Go, or Java with clean code principles, test coverage, and performance awareness. Service Architecture More ❯

manager. Main responsibilities You will be: Leading large, cross-functional technical team in the design, development, and enablement of automated monitoring processes, advising on the latest SIEM (Security Information and Event Management) and network analysis tools, techniques, and procedures to detect malicious activity, while communicating directly with leadership on the progress and status of monitoring. Leading wider implementation of a More ❯

and 24/7 monitoring. Manage AWS infrastructure with a focus on performance, resilience, and cost-efficiency. Oversee disaster recovery, business continuity, secure APIs, and leverage AI-driven monitoring, SIEM, and endpoint protection. Promote CI/CD, DevOps automation, and security testing to ensure high availability across global systems. Collaborate with Product, Support, and Sales teams to deliver value-driven More ❯

A strong working knowledge of hardware and networking components The ability to work unsupervised with strong self-motivation Experience with scripting and automation Experience with virtualization platforms Experience using SIEM platforms Experience with EDR and vulnerability scanning Knowledge of Windows Servers and Azure Cloud Desirable: Experience with ITIL, PCI and GDPR Driving Licence Programming experience with PowerShell, C# and\or More ❯

that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending More ❯