26 to 50 of 204 SIEM Jobs in England

Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer,Detection & Response Engineer,SIEM Engineer,Security Detection Engineer,Threat Hunting Engineer,Security Automation Engineer,SOC Engineer,Incident Response Engineer,Cloud Security Engineer,Network Security Engineer,Cybersecurity Analyst (Threat Focus ...

years’ experience in a SOC or security operations environment Previous experience in a technical leadership or senior analyst role Strong hands-on knowledge of SIEM, SOAR, EDR, firewalls, and threat intelligence platforms Practical experience handling security incidents, threat hunting, and investigations Solid understanding of attacker tactics, techniques, and frameworks such ...

architecture for ServiceNow SecOps modules including Security Incident Response, Vulnerability Response, Threat Intelligence, and Configuration Compliance. Lead integration of ServiceNow with key cybersecurity tools: SIEM, SOAR, EDR, CMDB, threat intelligence platforms, and OT/ICS systems. Collaborate across cybersecurity, IT, engineering, and energy operations to define secure workflows and automation ...

successful in this role, candidates should bring: 35 years experience in SOC, incident response, or threat analysis roles Strong hands-on experience with SIEM and EDR tools Deep understanding of: Incident response methodologies Malware behaviour and analysis Threat detection and investigation techniques Proven ability to: Investigate and respond to high ...

experience who wants real technical ownership and variety across the full defensive lifecycle. What You’ll Be Doing Lead investigations, triage and containment using SIEM/EDR (Microsoft Sentinel preferred) Harden IAM, PIM/PAM , Windows/Linux, endpoint baselines and identity services Strengthen M365 security : Defender for Endpoint/… security hardening (Windows + Linux) Network security concepts (firewalls, IDS/IPS) Incident Response & Detection Hands-on IR: triage investigation containment recovery Experience with SIEM (Sentinel strongly preferred) Experience with EDR/XDR tools: Defender/CrowdStrike/SentinelOne Log analysis, packet captures, forensic investigation fundamentals Microsoft Security Defender suite ...

information security role within a UK-based organisation, ideally supporting public sector or critical services. Practical experience with security monitoring and incident response tooling (SIEM/XDR) Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS. Practical experience with Cyber Essentials/Cyber Essentials Plus certification. ...

function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24×7 detection, response, threat hunting), DFIR, purple ...

management at production scale - Network flow log analysis and intrusion detection engineering - building detection logic for lateral movement, beaconing, anomalous egress, and C2 patterns - SIEM engineering: detection rule authoring (KQL, SPL, or equivalent), log pipeline design, alert correlation, triage workflow - you write the rules, not just read the dashboard - Endpoint ...

systems Experience with cloud hosting, cloud migration, application testing, and working with developers to improve security Solid knowledge of security products including WAFs, SIEM, AV, email/web gateways, firewalls, load balancers, ACLs, TCP/IP, routing, and switching Familiarity with OWASP, SASE, zero-trust, and risk-based vulnerability management ...

environments Technology Skills & Experience Principles of network and boundary protection (firewalls, mail gateways, load balancers, antivirus, IPS/IDS, Diodes) Protective Monitoring systems (SIEM/SOC) and deployment principles Authentication & authorisation technologies (SAML, LDAP, PKI, etc.) Encryption protocols and structures supporting secure deployment Communication & Soft Skills Excellent verbal and written ...

with DLP incident handling, remediation and reporting - Experience with the following products would be highly advantageous; Microsoft Defender for Endpoint, Thales, Crowdstrike Falcon and SIEM, CyberArk, Rapid7 and Palo Alto Products - CISSP or CEH certification desirable Lead Cloud Security Engineer (Azure) In accordance with the Employment Agencies and Employment Businesses ...

role are summarised below: · Security monitoring and incident response · Detection engineering - Develop, maintain, and enhance security detection content primarily for the Splunk SIEM, to enable the detection of threats across diverse platforms (e.g. cloud, endpoints, and networks) · Use frameworks like MITRE ATT&CK to map detection rules and maximise threat ...

audiences. Technical & Industry Knowledge: Understanding of cybersecurity frameworks and compliance (ISO 27001, NIST, GDPR). Familiarity with threat detection, MDR/EDR/XDR, SIEM, email security, and identity management solutions. Awareness of current threat landscape and MSSP service models (SOC, vulnerability management, incident response). ...

Demonstrable leadership or team management within an operational setting Strong knowledge of industry frameworks such as MITRE ATT&CK, D3FEND or ENGAGE Proficiency with SIEM platforms and security analytics tooling Strong analytical mindset with an innovative approach to problem-solving Desirable Industry certifications such as OSDA, GIAC or equivalent Experience ...

and monitor Active Directory, Azure Entra, and Intune environments. Manage compliance policies, conditional access, and mobile device management. Work with third-party providers supporting SIEM and threat analytics systems. Lead on implementing IT security best practices, standards, and access controls. Support infrastructure and security projects, including system upgrades and migrations. ...

first culture across the organisation through awareness initiatives, training programmes, and targeted education efforts. Requirements: Strong technical understanding across various security toolings, IAM, DLP, SIEM, EDR, and vulnerability management. Deep understanding of compliance frameworks including, ISO27001, NIST, GDPR, and industry best practice Collaborative leadership style with ability to influence and ...

ISO27001 Familiar with NIST and GDPR is preferred Solid experience in threat, risk and vulnerabilities management process Experience with security tools such as SIEM, intrusion detection systems, and endpoint protection. Strong analytical and problem-solving skills. Hold at least one security related professional certification is desirable Job Offer 24 days ...

first culture across the organisation through awareness initiatives, training programmes, and targeted education efforts. Requirements: Strong technical understanding across various security toolings, IAM, DLP, SIEM, EDR, and vulnerability management. Deep understanding of compliance frameworks including, ISO27001, NIST, GDPR, and industry best practice Collaborative leadership style with ability to influence and ...

and ability to integrate security into service delivery. Skilled in presenting complex security strategies to senior leadership and external stakeholders. Experience with security automation, SIEM platforms, and SOC operations. Knowledge of enterprise architecture frameworks (TOGAF). Familiarity with NHS Data Security and Protection Toolkit and Cyber Essentials Plus. Demonstrable compassionate ...

understanding of; Networking (TCP/IP, firewalls, segmentation), Operating systems (Windows/Linux), Identity and access management concepts, Cloud Fundamentals. Exposure to security tooling (SIEM, IDS/IPS, EDR) Strong understanding of core security principles such as: Defence in depth, Least privilege, Zero trust concepts An understanding of designing and ...

integration, LDAP directory structures, and directory management/maintenance Resource management of server platforms and optimisation of system performance Trellix/McAfee security platforms SIEM integration , including syslog creation, forwarding and reporting pipelines Email security standards and protocols Linux & Platform Engineering Experience working within Red Hat Enterprise Linux environments Ability ...

/LLD documents for security solutions. Strong understanding of Security Operations/SOCs. Hyperscaler experience (AWS, Azure, GCP); Professional Cloud Architect cert preferred. SIEM/SOAR tooling (e.g., Google SecOps/Chronicle). EDR/XDR/NDR experience (e.g., Crowdstrike , Corelight, Microsoft Defender XDR). What's on Offer ...

and responding to cloud security threats, managing incidents end to end, and advising stakeholders on how to maintain a strong security posture Experience with SIEM tooling, ideally Microsoft Sentinel, along with a strong understanding of Zero Trust principles, modern authentication and secure baseline configuration, will be highly valuable ...

and digital threats Experience handling cyber incidents end-to-end in line with the NIST framework Hands-on experience with Splunk, CrowdStrike, or equivalent SIEM/endpoint security tools Confidence coordinating and engaging multiple stakeholders during live incident scenarios Strong documentation, reporting, and communication skills Able to work independently, manage ...

building strong relationships based on expertise. Maintain vendor certifications and stay current with cybersecurity trends and innovations. Core Expertise: Advanced cybersecurity services: SSE, SASE, SIEM, MDR/EDR. Endpoint detection and threat management solutions. Security frameworks and compliance standards: ISO27002, CIS, NIST CSF. SOC processes and Microsoft security stack. Experience ...