176 to 200 of 265 SIEM Jobs in England

Key Responsibilities: Security Onboarding & Product Integration: Collaborate closely with Product Team to integrate and onboard product to security controls. Work with CSO to agree compliance and onboarding requirements to CSO controls. Interpret security policies and ...

and Service Owners Support projects such as: Firewall migrations, data centre moves, cloud connectivity, segmentation initiatives Zero Trust or least privilege initiatives Integration with SIEM/SOAR tooling Required Skills: Strong hands-on experience administering Palo Alto NGFWs in enterprise environments Proven experience with Panorama for centralised policy and device … Security Cloud security/networking exposure: Azure/AWS/GCP, cloud-native firewalls, transit networking VM-Series deployments, Terraform/automation exposure SIEM integration experience: Splunk/Sentinel/QRadar log forwarding and use-case support Scripting/automation: Python, PowerShell, Ansible, PAN-OS API, IaC patterns Experience ...

tooling is operating effectively to protect client environments. Work with teams to assess risks, design controls and define testing requirements. Support senior engineers with SIEM, threat intelligence and malware analysis platforms. Apply patches/updates, raise changes and follow agreed processes. Keep up to date with threats and recommend improvements. … busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experienceespecially Sentinel or Splunk. If you are interested in this role but not sure if your skills and experience are exactly what were looking for, please ...

technical teams, and stakeholders to coordinate responses and share information. Provide input on and help optimise security tools, such as EDR/XDR and SIEM platforms. Expectation to assist with other tasks requested by line manager. OT SOC Engineer Desired Skills/Qualifications/Experience The following list highlights … IEC62443. Basic understanding of: ICS/SCADA systems and OT network architecture. Common OT protocols (Modbus, DNP3, OPC). Experience/Understanding of SIEM/SOAR solutions and OT-specific monitoring platforms (e.g. Nozomi Vantage). Knowledge of network environments (routing/switching/VLANS/Security/Wireless/ ...

modules: Network & Cloud: Configure network devices and explore cloud computing models like IaaS and SaaS. Digital Security: Learn to protect data using risk management, SIEM tools and vulnerability assessments. IT Support: Manage helpdesk tickets, resolve technical issues and configure operating systems. Data Management: Source, cleanse and analyse data to present ...

office) Employer: Specialist Data & Observability Consultancy This consultancy helps organisations turn high-volume, noisy telemetry and log data into clear, decision-ready insight - feeding SIEM platforms, observability stacks, and data lakes click apply for full job details ...

and remediation, and act as the escalation point for Tier 1 analysts. You’ll play a key part in threat hunting, detection engineering, improving SIEM capability and strengthening the organisation’s overall security posture. This is a hands-on, high-impact role where your expertise genuinely makes a difference. What … Owning complex incident response, containment and root cause analysis • Providing technical escalation support to junior analysts • Conducting threat intelligence analysis and sharing insights • Enhancing SIEM rules and detection logic • Supporting onboarding of new data sources and improving correlations • Leading post-incident reviews and reporting • Engaging in vulnerability lifecycle management and ...

technical work and mentoring others. Senior SOC Analyst essential skills Proven experience working within a SOC environment, ideally 3+ years Strong knowledge of SIEM, incident management and threat intelligence Experience with cloud security, networking and information security principles Understanding of IDAM, RBAC and joiners, movers and leavers processes Ability … consent for your application to be processed and submitted to the client in conjunction with this vacancy only. Key skills: Senior SOC Analyst, SOC, SIEM, Incident Response, Cloud Security, Threat Intelligence, IDAM, ISO 27001, Team Leadership ...

Strong experience with CyberArk, BeyondTrust, Delinea, or similar PAM tools Solid understanding of Active Directory, LDAP, and authentication mechanisms Experience integrating PAM solutions with SIEM, IAM, or security platforms Experience working in cloud environments such as AWS, Azure, or GCP Scripting experience using PowerShell or Python for automation Understanding … SKILLS PAM Engineer, Privileged Access Management, CyberArk, BeyondTrust, Delinea, Cyber Security Engineer, Identity and Access Management, Active Directory, Azure, AWS, PowerShell, Python, IAM, SIEM ...

Infrastructure-as-Code deployments using Terraform or Bicep Strengthen security across Kubernetes environments and CI/CD pipelines Develop and improve detection capabilities using SIEM and cloud-native tooling Maintain logging, monitoring, and alerting pipelines Identify and remediate vulnerabilities across cloud and endpoint systems Maintain security documentation, procedures, and runbooks … Required Experience 3+ years in cloud security engineering or security operations Hands-on experience securing Microsoft Azure environments Experience working with SIEM platforms (Microsoft Sentinel preferred) Strong incident response and investigation experience Knowledge of Infrastructure-as-Code (Terraform, Bicep, or similar) Experience securing containers and Kubernetes environments Scripting or automation ...

Role - Database Security Consultant Location -3 days from Canary Wharf office and 2 days from home Contract - Inside IR35 Job Description Key Responsibilities: Security Onboarding & Product Integration: Collaborate closely with Product Team to integrate and ...

with cloud security across AWS, Azure or Google Cloud Understanding of network security, encryption, authentication and access control Experience with security tooling such as SIEM, IDS, firewalls and vulnerability assessment tools Knowledge of threat modelling and risk assessment TO BE CONSIDERED: Please either apply through this advert or emailing … client in conjunction with this vacancy only. KEY SKILLS Security Architect, Cyber Security, ISO 27001, NIST, Cloud Security, AWS, Azure, Risk Assessment, Threat Modelling, SIEM, Defence ...

technical work and mentoring others. Senior SOC Analyst essential skills Proven experience working within a SOC environment, ideally 3+ years Strong knowledge of SIEM, incident management and threat intelligence Experience with cloud security, networking and information security principles Understanding of IDAM, RBAC and joiners, movers and leavers processes Ability … consent for your application to be processed and submitted to the client in conjunction with this vacancy only. Key skills: Senior SOC Analyst, SOC, SIEM, Incident Response, Cloud Security, Threat Intelligence, IDAM, ISO 27001, Team Leadership ...

tiered access model, legacy AD decommissioning, secure hybrid environments Microsoft 365 & Cloud Security Microsoft Defender XDR (Endpoint, Identity, Office 365, Cloud Apps) Microsoft Sentinel (SIEM): log ingestion, alert tuning, detection rules, incident workflows Intune & Endpoint Management: device compliance, MDM/MAM, BYOD enforcement Endpoint, Infrastructure & Asset Security Network, DNS & Access … Azure Firewall, VPN security, and network segmentation of azure infrastructure PowerShell scripting for security, identity, and infrastructure tasks Security automation using Logic Apps and SIEM workflows if required The salary on offer for this role is up to £60,000. ...

search for a Cyber Security Analyst. This is an ideal role for someone looking to apply their understanding of typical SOC tooling (SIEM, EDR, Vulnerability) in a public service environment with a large and diverse digital estate and it is a key role in helping LCC's vulnerability management, security … security team to develop and implement procedures and policies that are aligned with the NCSC Cyber Assessment Framework (CAF) Working with service providers around SIEM outputs and EDR tools, undertaking IT Health Checks, infrastructure monitoring & security gap remediation. Responding to security tickets, analysing the potential severity and following through with ...

international Consultancy firm, specialist in Cyber Security and looking for a Senior Security Engineer to take a lead role in advanced engineering work for SIEM and XDR , escalated security incident response, and advanced threat hunting. What this job is really about Owning M icrosoft Sentinel and Defender XDR so they … habit, not a once-a-month exercise: building KQL hunts, mapping to MITRE ATT&CK, and turning "interesting patterns" into hardened detections.? Making the SIEM/XDR bill make sense : understanding ingestion, licensing, and where to cut noise without cutting visibility. Who this will suit You've already run security ...

built for you. You will: As our Tier 3 Analyst, youll play a critical role in strengthening our CSOC: Develop, optimise, and maintain SIEM detections across diverse customer estates Lead structured threat hunting informed by intelligence and hypothesis-driven methods Manage complex incidents including scoping, containment strategy, and root cause … Proven background within a SOC or equivalent operational security function Demonstrable ownership of incidents within demanding SLA environments Strong working knowledge of SIEM, EDR, and email security platforms Practical experience with Microsoft XDR technologies Ability to create and tune detections using KQL Track record of supporting or mentoring other analysts ...

Project Manager with a broad Technical and Cyber background, with proven experience of bringing a Platform live, with strong knowledge of GRC, CMDBs, SIEM tooling as well as Service acceptance criterias, key artefacts and good understanding of how to build out a Data Lake.Key Requirements: · Proven experience … implementation (into live) · Previous experience of building out a CMDB and good understanding of how to build out a Data Lake · Excellent knowledge of SIEM tooling and commercial understanding of bringing data in from different places · Strong knowledge of Service acceptance criterias and key artefacts · Ability to ensure projects align ...

ensuring alignment with enterprise architecture standards, secure by design principles, and regulatory requirements. - development of data ingestion, telemetry, and integration patterns between Darktrace, Defender, SIEM/SOAR tools, and existing security stacks. - production of architecture decision records, design patterns, and technical documentation for long-term maintainability. - Leading technical delivery workstreams … baselining across both platforms. - Coordinate testing, validation, and acceptance of detection capabilities, including simulation of realistic attack techniques. - Integrate Darktrace and Defender outputs into SIEM, SOAR, and ticketing systems. - Work with SOC and automation teams to design playbooks, response workflows, and escalation paths. - Ensure centralised logging, enrichment, and context tagging ...

standards. You will play a key role in clearing an immediate backlog of assurance deliverables while providing technical oversight to junior engineers and supporting SIEM integration activities. This is a hybrid East London role with no trackside/site access required. Key Responsibilities Cybersecurity Governance & Assurance Produce and maintain: Cyber … Provide design assurance for: Secure communications Firewalls (e.g., Cisco, Juniper) Switching and routed network environments Assess effectiveness of implemented security controls in networked systems SIEM Integration Support Produce documentation for SIEM onboarding: Data source identification Logging requirements Use-case and control alignment Support assurance activities for SIEM integration (e.g., Microsoft ...

remediate vulnerabilities and implement security controls Document incidents and assist with post-incident analysis reports Support the management and optimisation of security tools including SIEM, IDS/IPS, firewalls, and endpoint protection Stay up to date with emerging security threats and technologies Contribute to cyber security projects and solution implementations … cyber hygiene and data protection best practices Key Skills: Degree in Cyber Security, IT, or a related discipline Knowledge of or understanding of SIEM, IDS/IPS, firewalls, and endpoint protection tools Basic understanding of networking principles and the OSI model Familiarity with scripting tools and Linux environments Strong analytical ...

Your day-to-day will include: Monitoring and triaging security events via our ITSM platform Analysing alerts using a range of security tools including SIEM, EDR, and email security platforms Leading deep-dive investigations and working with incident responders to contain and eradicate threats Acting as the escalation point … privilege access, endpoints, email, and cloud environments Translating complex security findings into clear, actionable communication for customers Enhancing alert playbooks and helping evolve our SIEM use cases Staying ahead of the threat landscape with CTI-informed analysis and mitigation advice Who you are: Proven experience in a SOC or similar ...

detection capabilities across modern security platforms. Key Responsibilities Develop and deliver detection content in line with sprint priorities and operational requirements Create and refine SIEM correlation rules, dashboards, and reports to enhance proactive threat detection and monitoring Build, deploy, and maintain automated playbooks across SOAR and related security platforms Integrate … threat intelligence sources, security tools, and custom logic into automated workflows Continuously tune and optimise SIEM rules and SOAR playbooks to improve detection accuracy and reduce false positives Integrate internal and third-party systems with SIEM and SOAR platforms using APIs and custom connectors Support ongoing sprint activities, daily progress ...

nation-state activity. In this Senior SOC Analyst role, you will: Monitoring, triaging and investigating security alerts in highly secure environments Analysing threats using SIEM, endpoint telemetry, network traffic and logs Supporting live incident response, escalation and containment activities Enhancing detections, rules and playbooks aligned to MITRE ATT&CK Producing … and adversary behaviour To secure this Senior SOC analyst role, you will have: Proven experience working in a Security Operations Centre (SOC) Hands-on SIEM experience (Microsoft Sentinel, Splunk, or similar) Strong understanding of MITRE ATT&CK and modern detection techniques Confident analysis across logs, endpoints and network traffic Solid ...

functional technical teams during major incidents, drive containment and recovery, and own post-incident reviews and playbooks. The role includes mentoring CIRT analysts , enhancing SIEM/SOAR automation, and continuously improving processes using frameworks such as MITRE ATT&CK, NIST 800-61, and PCI DSS. What this job is really … Incident Response, or Threat Hunting and are comfortable leading complex investigations, not just following a runbook.? You've used InsightIDR or another MDR/SIEM platform for rule creation, tuning and dashboards, and you're not afraid of SOAR tools like InsightConnect or Cortex XSOAR.? Python or PowerShell are part ...