251 to 275 of 354 SIEM Jobs in England

LLDs) • Familiarity with estimating BOMs, licensing, and resource efforts • Previous experience working on bids or large-scale technical projects Bonus points if you have experience with Network Management or SIEM tools. If you enjoy solving problems, thrive in a fast-moving environment, and want to contribute to meaningful projects, we'd love to hear from you. Immediate interviews and start More ❯

experience as a Pre-Sales Network Architect , with strong design documentation skills. Knowledge of routing protocols and secure infrastructure standards. Experience with Cisco, Juniper, and Fortinet technologies. Exposure to SIEM or Network Management tooling is advantageous. Must hold SC clearance and be eligible for higher-level UK security vetting. A Pre-Sales Network Architect with a passion for secure, scalable More ❯

architectural documentation Vendor experience with Juniper, Cisco, or Fortinet is strongly desired Familiarity with pre-sales processes or working on bids/change projects Exposure to Network Management or SIEM tools is beneficial Certifications (e.g. CCNP, JNCIP) are a plus, but not essential Clearance Requirements: Must be eligible for SC clearance and willing to undergo DV clearance Once DV is More ❯

experience in cybersecurity and networks Working with vendors such as any of the following - Fortinet, Palo Alto, Cisco, Juniper, Zscaler, CrowdStrike... Experience in any of the following is advantageous: SIEM, SOAR, MSSP, DDoS, WAF, EDR, IDAM... Excellent communication skills and the ability to simplify complex concepts for a range of stakeholders A proactive, can-do attitude and a drive to More ❯

work independently with substantial latitude for action and decision while maintaining focus on achieving optimal outcomes as part of a collaborative development effort. Experience in enterprise security solutions (endpoint, SIEM, networking, etc). Seasoned with financial services sales (banking) or BFSI market. Team Player, Competitive, Optimistic, Enthusiastic, Trust Builder. More ❯

from a variety of industry leaders Experienced at working on bids and large or complex changes Excellent understanding of a variety of networks and routing protocols Network management or SIEM designs, tooling or support This contract is based on-site in Baskingstoke, some travel may be required. This is a great opportunity for an experienced Pre-Sales Network Architect. Due More ❯

Role Title: SIEM Engineer Security Clearance: Must Have Active SC Location: Hybrid 60/40 - Bearwood Rd, Sindlesham, Wokingham RG41 5BN Duration: 6 months Day Rate: £445 Key Responsibilities: - SIEM Deployment & Management - Set up, configure, and maintain SIEM tools like ArcSight, Splunk, or QRadar. - Threat Detection & Analysis - Monitor security logs, detect anomalies, and investigate potential threats. - Incident Response - Work with … Generate reports on security events, trends, and system performance. - Collaboration - Work with IT and security teams to improve overall cybersecurity posture. Required Skills & Qualifications - Technical Expertise - Strong knowledge of SIEM platforms, network security, and cybersecurity frameworks. - Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications. - Programming & Scripting - Familiarity with Python, PowerShell, or other Scripting languages. - Analytical Thinking - Ability to analyze More ❯

knowledge of virtualization technologies including Hyper-V, vSphere, and VMware. Experience with Dell SANs (including iSCSI, Raid) and Dell Servers Experience using Software such as: Nessus, Ad Audit Plus, Siem, Wireshark, SQL Server, and Jira Service Desk Management Experience Designing, proposing, and implementing IT solutions. Linux Experience Excellent troubleshooting skills; must be able to solve problems independently Desirable: In addition More ❯

manage policies and processes to ensure that all technology remains secure and compliant. Ensuring that all security layers align against our Internal Security Standards and Statutory and Regulatory obligations. SIEM Management: Manage, monitor, and respond to security incidents and events using the Council's Security Incident and Event Monitoring (SIEM) platform. Ensure timely detection, analysis, and response to security incidents More ❯

Operations Centre (SOC) staffed by dedicated professionals. We're seeking a skilled Cyber Security Engineer to join our clients eam. The ideal candidate will have expertise in Azure Sentinel SIEM, Microsoft Defender, and KQL scripting. This role demands a proactive individual who can monitor and protect our organization's digital assets while staying updated on the latest security threats and … trends. If you are interested in this opportunity, apply today! Responsibilities: Implement and manage Azure Sentinel SIEM for threat detection, incident response, and security monitoring. Configure and maintain Microsoft Defender for endpoint protection and threat detection. Develop and maintain KQL scripts for querying and analysing data within Azure Sentinel. Collaborate with cross-functional teams to identify security vulnerabilities and develop … Requirements: Bachelor's degree in Computer Science, Information Technology, or related field. Proven experience working as a Cyber Security Engineer or similar role. In-depth knowledge of Azure Sentinel SIEM, Microsoft Defender, and KQL scripting. One of the following certifications: AZ-500 (Microsoft Azure Security Technologies) or SC-200 (Microsoft Security Operations Analyst). Strong analytical and problem-solving skills. More ❯

to align security goals with business objectives. Lead risk assessments and threat modelling exercises for internal systems and third-party services. Manage the deployment and maintenance of security solutions (SIEM, firewalls, endpoint protection, DLP, etc.). Oversee the organization's incident response and business continuity plans, including simulations and real-time responses. Conduct regular security audits and work with internal … ISO/IEC 27001, NIST CSF, CIS Controls) and cybersecurity principles, practices, and regulatory requirements in the finance sector. Experience in security technologies such as firewalls, IDS/IPS, SIEM, encryption, and identity management. Experience with secure cloud computing platforms (e.g., Azure) in a regulated environment. Familiarity with data analytics platforms and financial data governance tooling. Strong working knowledge of More ❯

clients and internal teams What will you need? Minimum 2 years' experience in a cyber security role, ideally within an MSP Strong knowledge of Microsoft Defender suite and Sentinel SIEM Hands-on experience with Microsoft 365 cloud security Familiarity with EDR solutions (e.g., SentinelOne) Experience working with network security appliances (e.g., Cisco Meraki, Fortinet, WatchGuard) Excellent communication and client service … your CV directly to . By applying, you consent to your application being processed and submitted for this vacancy only. KEY SKILLS - Cyber Security, MSP, Microsoft Defender, XDR, Sentinel, SIEM, EDR, SC-200, AZ-500, SC-300, OSCP, Microsoft 365 Security, Vulnerability Management, Cyber Essentials, Meraki, Fortinet, WatchGuard, Mimecast, Tenable, Qualys More ❯

and a passion for cybersecurity. You’ll collaborate closely with other analysts, engineers, and clients to proactively defend against evolving threats. Key Responsibilities Monitor and analyse security events using SIEM and EDR tools across multiple client environments. Triage alerts, identify genuine incidents, and take appropriate response actions. Investigate security breaches and support root cause analysis and reporting. Maintain security monitoring … Participate in on-call rota and provide support during critical security events. Key Skills & Experience Required: 1–3 years' experience in a SOC or cybersecurity operations environment. Proficient with SIEM tools (e.g., Microsoft Sentinel, Splunk, or AlienVault). Experience with EDR solutions, firewalls, and common security appliances. Understanding of networking protocols, Windows/Linux systems, and threat landscapes. Excellent analytical More ❯

and a passion for cybersecurity. You’ll collaborate closely with other analysts, engineers, and clients to proactively defend against evolving threats. Key Responsibilities Monitor and analyse security events using SIEM and EDR tools across multiple client environments. Triage alerts, identify genuine incidents, and take appropriate response actions. Investigate security breaches and support root cause analysis and reporting. Maintain security monitoring … Participate in on-call rota and provide support during critical security events. Key Skills & Experience Required: 1–3 years' experience in a SOC or cybersecurity operations environment. Proficient with SIEM tools (e.g., Microsoft Sentinel, Splunk, or AlienVault). Experience with EDR solutions, firewalls, and common security appliances. Understanding of networking protocols, Windows/Linux systems, and threat landscapes. Excellent analytical More ❯

Engineer, you will play a critical role in safeguarding our organization's assets and data by overseeing the management of Trainline's SIEM. This is done by ensuring the SIEM is fully operational and that we have the logs and alerts needed to support incident detection and response efforts. Along with this the Security Operations Engineer will support the wider … within a fast-paced and evolving environment, we'd love to hear from you! As a Security Analyst at Trainline, you will Own the management and configuration of our SIEM platform (Splunk), ensuring its fully operational, updated, configured to best practice and providing value for money. Drive the creation of new alerts, working with the wider Security Operations team to … d love to hear from you if you have Strong technical knowledge, this could be across the domain (Security, Networks, Infrastructure, End User Compute). Hands-on experience with SIEM platforms (Splunk, Microsoft Sentinel, Elastic, etc). Familiarity with other security tools (EDR, Vulnerability Management, Firewalls, IDS). An understanding of cloud platforms (AWS, Azure, GCP) and relevant Security principles. More ❯

broad and senior Cyber Security skillset who are seeking to further develop their Cyber Security career in an exciting industry. Engineering skills in maintaining Security Information and Event Management (SIEM) platforms and the configuration of our wider security tools are key. We are also seeking candidates with experience leveraging AI to enhance productivity and effectiveness. Key Deliverables: Threat Detection & Incident … to incidents. Tool and Platform Management Maintaining and optimising our Cyber Security tools and platforms to continuously improve our detection and response capability. Supporting the management, administration and support of our SIEM platform, including general infrastructure and system administration, troubleshootingand user access management Maintaining and tuning security detections and alerts within our SIEM platform. Onboarding and managing security log sources … for our SIEM platform, including agent and policy deployment, creation and maintenance of ingest pipelines and index template and pattern creation. Team Collaboration and Mentoring Guiding and mentoring the day to day work of our Security Analysts, providing expertise to support their task and project delivery. Collaborating with risk and architecture teams to continuously test and refine our security controls More ❯

Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. … Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD-WAN, DNS security, endpoint protection, and cloud security controls. IT Service Management & Automation: Experience implementing ITIL More ❯

. Experience with Kubernetes threat detection and anomaly detection. Experience with service mesh security concepts (e.g., Istio, Linkerd) and workload identity. Experience in detection engineering, logging pipeline development, or SIEM tuning in containerised environments. Experience in contributing to security-focused open-source projects or internal security platform tooling. About the job The UK Security Operations (SecOps) team in Google Public … the complex needs of local, state and federal government and educational institutions. Responsibilities Deploy, configure, and manage cloud security platform tools and technologies, including Security Information and Event Management (SIEM), Intrusion Detection/Prevention Systems (IDS/IPS), and Cloud Workload Protection Platforms (CWPP). Develop and implement security monitoring and logging strategies. Investigate and analyse security incidents, including identifying More ❯

involve the following: * Endpoint monitoring and analysis. * Incident readiness and handling as part of the Computer Security Incident Response (CSIRT) team. * Monitor and administer Security Information and Event Management (SIEM). * Malware analysis and forensics research. * Understanding/differentiation of intrusion attempts and false positives. * Investigation tracking and threat resolution. * Vulnerability identification & mitigation/remediation. * Compose security alert notifications. * Advise More ❯

Cyber Security, ideally selling to the following industry verticals Financial Services, Technology, Manufacturing, Retail or Energy (FTSE 250) Service sales background (preferably Managed Services) Experience of Managed Threat Detection (SIEM, EDR, XDR etc), SASE and OT security would be preferred. Full lifecycle sales experience ( from acquisition to through to account management ). Commercial knowledge and business acumen including financial management. More ❯

the ability to create design documentation •Knowledge of LAN/WAN, MPLS, •Knowledge of SDN and SD-WAN technology and solutions •Experience in designing secure Internet solutions (UTM firewalls. SIEM) In addition to the great tech, the salary is competitive too. If feel that this is a great fit for your skill set and ambition, please get in touch ASAP More ❯

Operations and ensuring the highest level of security for the customer. The Cyber Security Consultant leads detailed risk assessments, implements industry-standard frameworks (NIST, NCSC, NIS2), and actively manages SIEM/XDR tools such as IBM QRadar, Microsoft Sentinel, and Defender XDR. This role involves deeper client interaction, proactive risk management, and advanced threat detection consulting. Candidates must have demonstrated … client relationships with regular strategic interactions. Lead comprehensive cybersecurity risk assessments aligned to industry standards. Conduct environment reviews, ensuring compliance with NIST frameworks and related standards. Oversee and implement SIEM/XDR deployments, custom rule development, and incident response processes. Provide guidance on best practices for SIEM/XDR and threat detection. Conduct security posture reviews and gap analysis. Prepare … UK Good understanding of cybersecurity frameworks (NIST CSF, NCSC CAF, NIS2, NIST 800-30). Good understanding of risk assessment methodologies (NIST 800-30). Hands-on experience with SIEM/XDR solutions (QRadar, Sentinel, Defender XDR). Familiarity with cloud security principles across AWS, Azure, and GCP, particularly within managed services environments. Additional Skills: Proven experience within IT Support More ❯

has responsibility for coaching and mentoring the analysts on a day to day basis. Provide out of hours technical escalation support to shift analysts Main Duties and Responsibilities: Developing SIEM detection rules and tuning alerts across our client estates. Conduct proactive threat intelligence research and carry out threat hunting across client estates Training of analysts and developing training resources and … and performance within the CSOC What are we looking for in the successful candidate? Essential: Experience in investigating and responding to cyber security threats within strict SLAs. Experience with, SIEM, EDR and Email Security toolsets and how to leverage these tools to provide robust Detect & Respond services. Experience working in a Microsoft XDR SOC KQL (Kusto Query Language) experience Experience More ❯

enabling our customer's needs. Responsibilities Review and analyse outputs from Qualys, or equivalent, vulnerability and compliance scans. Actively monitor and respond to alerts from our SIEM (Security Information and Event Management) platform. Monitor and react to activity from Antivirus and EDR (Endpoint Detection and Response) tools. Define and document security requirements for new development efforts. Provide support to Commercial … support external ISO audits and certifications. Work cross-functionally with IT, DevOps, and business teams to drive security improvements. Requirements Hands-on experience with security tools such as Qualys, SIEM platforms (e.g., Splunk, Sentinel), and AV/EDR tools. Strong understanding of network security, infrastructure hardening, and secure application development principles. Familiarity with compliance frameworks such as ISO 27001. Ability More ❯

part of the broader IT function, you will be instrumental indriving forward our security posture. What will you be doing? Administer and maintain the Security Information and Event Management (SIEM) system and other IT security platforms. Review and evaluate security aspects of IT projects, identifying risks and ensuring appropriate controls are implemented. Investigate and respond to security incidents and queries … security solutions for complex IT environments. Experience with penetration testing and vulnerability assessments; certifications such as CEH (Certified Ethical Hacker) are an advantage Solid hands-on experience managing and administering SIEM platforms for threat detection and incident analysis. Strong interpersonal and communication skills, with the ability to collaborate across teams-including non-technical stakeholders Analytical mindset combined with a pragmatic More ❯