326 to 350 of 356 SIEM Jobs in England

and maintain positive working relationships with them Pre-requisites: Experience of more than 12 years in advanced security technologies Strong security professional skilled in Security Information and Event Management (SIEM), Vulnerability Management and Security Intelligence, IDAM, Digital Rights Management (DRM), Anti-APT, Data Leak Prevention (DLP), Phishing simulation tools etc Experience in managing P1 incidents Experience in managing shift roster More ❯

security frameworks. Knowledge of one or more programming languages with the ability to review and implement secure code. Strong understanding of security automation, orchestration, and continuous monitoring tools (e.g., SIEM, SOAR). The other stuff we are looking for We'd also love you to bring; Deep understanding of application security, including secure coding practices, OWASP Top 10, and API … security frameworks. Knowledge of one or more programming languages with the ability to review and implement secure code. Strong understanding of security automation, orchestration, and continuous monitoring tools (e.g., SIEM, SOAR). What's in it for you Our goal is to celebrate our people, their lives and everything in-between. We aim to create a culture that empowers everyone More ❯

improve how we detect, respond to, and recover from threats. Streamline processes across threat intel, incident response, and vulnerability management by eliminating repetitive manual tasks. Design and fine-tune SIEM detections that surface real signals and support both proactive and reactive actions. Collaborate across multiple cyber disciplines and work with third-party tools and partners to create seamless integrations. Drive … Tooling What you'll bring: Proven experience in a technical cyber role, with a focus on Security Automation and Tools Hands-on experience with security automation tools, scripting, and SIEM platforms. Strong understanding of cloud environments (Azure, AWS, GCP) and how to secure them at scale. What's in it for you? This is a high-impact role in a More ❯

high availability, and monitor replication. Implement periodic patching schedules for all client PCs and Windows Servers. Deploy and configure antivirus solutions for servers and workstations. Deploy, configure, and maintain SIEM solutions. Document procedures and provide knowledge transfer across teams. Assist customers with hardware and software upgrades. Coordinate the introduction of new infrastructure. Help with equipment configuration and provide training on … of network and IT security Excellent customer service and communication skills Ability to travel Desirable: Knowledge of UNIX/Linux systems Experience with NAS (NetApp or Dell) Experience with SIEM solutions Experience with Atlassian Confluence Knowledge of regulatory compliance Experience with Kubernetes and containerized deployments Experience and Education: BA/BS in a technology-related field (preferred) 5+ years in More ❯

Team, Product Team, and Architecture and engineering team. We have just launched our Security centre (SOC) service, which includes endpoint detection and response (EDR), Security Information and Event Management (SIEM) capability and 24x7 security event monitoring. The Security Services Team includes network, SIEM and SOC focused services, service development, transition and delivery. This is where this role sits. About the More ❯

Job title: Cyber Security Engineer - Trellix SIEM Day rate: £400-440 per day - Outside IR35 Location: Fully remote Duration: 4 weeks Vetting/Clearance: BPSS or above, e.g. CTC/SC/DV Start date: ASAP Standard hours: Monday to Friday Role: We are assisting a successful IT consultancy who are supporting their prestigious customer with a new Trellix SIEM … s IT environment. Data Source Integration: Add, import, and configure log and event data sources - such as servers, endpoints, firewalls, and cloud services - to feed security data into Trellix SIEM for analysis. Configuration and Customisation: Customise SIEM dashboards, create custom data views, and modify default event aggregation settings to meet specific organizational requirements. Development: Develop and tune correlation rules to More ❯

hoc travel to other sites/data centres. The Role The Cyber Security Engineer will be joining the internal security team, monitoring and analysing real-time security events using SIEM tools to detect and respond to potential threats. The Cyber Security Engineer will conduct regular vulnerability assessments and penetration tests to identify and mitigate security risks and breaches, and will … virtualisation, etc. Hands-on experience in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as More ❯

e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. So you should have good knowledge of security tooling and processes, compliance and security management (endpoint protection, cloud, SIEM etc). There is an opportunity to build out a cyber security team in the future with this role Skills & Experience Required: 3+ years of experience working in Cyber Security … range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders, as well as the ability to provide training and mentoring around cybersecurity SIEM Ideally, some relevant cybersecurity certifications This role is based at the Central Manchester office - with hybrid working 3 days a week in their brand-new UK headquarters. You will be More ❯

e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. So you should have good knowledge of security tooling and processes, compliance and security management (endpoint protection, cloud, SIEM etc). There is an opportunity to build out a cyber security team in the future with this role Skills & Experience Required: 3+ years of experience working in Cyber Security … range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders, as well as the ability to provide training and mentoring around cybersecurity SIEM Ideally, some relevant cybersecurity certifications This role is based at the Central Manchester office - with hybrid working 3 days a week in their brand-new UK headquarters. You will be More ❯

e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. So you should have good knowledge of security tooling and processes, compliance and security management (endpoint protection, cloud, SIEM etc). There is an opportunity to build out a cyber security team in the future with this role Skills & Experience Required: 3+ years of experience working in Cyber Security … range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders, as well as the ability to provide training and mentoring around cybersecurity SIEM Ideally, some relevant cybersecurity certifications This role is full-time onsite in their Central Manchester office - you must be willing and able to attend the office 4/5 days More ❯

e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. So you should have good knowledge of security tooling and processes, compliance and security management (endpoint protection, cloud, SIEM etc). There is an opportunity to build out a cyber security team in the future with this role Skills & Experience Required: 3+ years of experience working in Cyber Security … range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders, as well as the ability to provide training and mentoring around cybersecurity SIEM Ideally, some relevant cybersecurity certifications This role is full-time onsite in their Central Manchester office - you must be willing and able to attend the office 4/5 days More ❯

incident response Designing and evolving secure architectures using defence in depth and threat modelling principles across cloud, networks and endpoints Driving vulnerability management and scaling tooling such as CSPM, SIEM, IAM and endpoint protection to manage risk effectively Contributing to compliance efforts including ISO27001, supplier security and data privacy, helping ensure we remain audit ready Building lightweight processes that make … and delivery Keeping pace with emerging threats and contributing to strategic conversations about how we evolve our approach Experience with vulnerability management Experience with scaling tools such as CSPM, SIEM, IAM and Endpoint protection You're hands on, curious and motivated by solving real problems You enjoy working closely with others to figure things out collaboratively You bring structure to More ❯

engage with multiple teams, and contribute to key decisions. Additionally, you will provide solutions to problems for your immediate team and across multiple teams. Key Requirements: Detailed Hands On SIEM support including policy updates (KQL/Sentinel) Hands On cyber escalations from L1 support Deep dive into data analysis and tools Incident Responder during a MIM Ensuring all SOC processes … and docs are current SC Clearance required Key Skills: SOC SIEM MS Azure Sentinel Cyber Incident/Threat Security Breach Operations More ❯

engage with multiple teams, and contribute to key decisions. Additionally, you will provide solutions to problems for your immediate team and across multiple teams. Key Requirements: Detailed Hands On SIEM support including policy updates (KQL/Sentinel) Hands On cyber escalations from L1 support Deep dive into data analysis and tools Incident Responder during a MIM Ensuring all SOC processes … and docs are current SC Clearance required Key Skills: SOC SIEM MS Azure Sentinel Cyber Incident/Threat Security Breach Operations More ❯

business on ISO27001 and Cyber Essentials compliance Monitor network and data security Respond to security tickets and work with teams on access control, malware, and vulnerabilities Deploy and manage SIEM solutions Support ongoing improvements to internal security defenses Oversee security policies and procedures Assist with data protection initiatives Participate in security projects Develop disaster recovery plans Establish and improve vulnerability … management processes Requirements Experience in a Cyber Analyst or Cyber Engineer role Knowledge of SIEM and EDR tools Experience with network audits and penetration testing Infrastructure support experience Understanding of security frameworks Create a job alert and receive personalized job recommendations directly to your inbox. More ❯

Key Responsibilities: Deliver security architecture services aligned with TOGAF and SABSA frameworks. Provide expert guidance to clients on secure cloud architecture (Azure, AWS) Lead the design and implementation of SIEM tools (eg, Azure Sentinel, Splunk). Architect enterprise DLP solutions, including Varonis and Microsoft Purview. Support organisations in defining their security architecture roadmap, ensuring alignment to business and IT strategy … awareness. Skills & Experience: Experience working within a professional services or technology consultancy. Experience working in Pharmaceuticals is desirable. Strong knowledge of security architecture frameworks (TOGAF, SABSA). Experience with SIEM platforms (Azure Sentinel, Splunk). Deep understanding of enterprise DLP systems and data protection strategies. Familiarity with Microsoft security tools including Purview, MCAS, MDI. Strong governance and risk management capabilities. More ❯

Key Responsibilities: Deliver security architecture services aligned with TOGAF and SABSA frameworks. Provide expert guidance to clients on secure cloud architecture (Azure, AWS) Lead the design and implementation of SIEM tools (e.g., Azure Sentinel, Splunk). Architect enterprise DLP solutions, including Varonis and Microsoft Purview. Support organisations in defining their security architecture roadmap, ensuring alignment to business and IT strategy … awareness. Skills & Experience: Experience working within a professional services or technology consultancy. Experience working in Pharmaceuticals is desirable. Strong knowledge of security architecture frameworks (TOGAF, SABSA). Experience with SIEM platforms (Azure Sentinel, Splunk). Deep understanding of enterprise DLP systems and data protection strategies. Familiarity with Microsoft security tools including Purview, MCAS, MDI. Strong governance and risk management capabilities. More ❯

tools such as Microsoft Defender, Purview, Symantec, CrowdStrike, or equivalent. Platform Integration & Automation: Drive automation for device onboarding, compliance validation, and health monitoring. Ensure endpoint telemetry is integrated with SIEM platforms and observability stacks. Partner with platform and infrastructure teams to enforce secure device baselines and policies. Build self-healing, zero-trust-aligned architectures for secure device management. Observability & Event … Qualifications: Familiarity with zero-trust security models and endpoint detection and response (EDR). Certifications such as CISSP, CISM, Microsoft Security certifications, or equivalent. Experience integrating device telemetry into SIEM and SOAR platforms. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel for global alignment or vendor engagements. Ability to operate in More ❯

be responsible for: Contributing to the setup and ongoing enhancement of the Security Operations Center (SOC). Investigating security incidents and implementing effective countermeasures. Utilizing SOC tools such as SIEM, vulnerability scanners, and incident response solutions. Performing threat hunting by analyzing and assessing security events on central platforms. Documenting incidents thoroughly in ticketing and SIEM systems, and generating detailed reports. More ❯

Engineer to join their onsite team at one of their longest standing Financial Services clients in the Bank area of London. They have recently rolled out Sentinel as the SIEM including for Endpoint and they currently have many log sources going into it - Forcepoint, Citrix and Fortinet being some of them. You will need to build all the analytical rules … but this is not guaranteed. Required: Exposure working with a previous managed security provider or within an MSSP environment Strong working knowledge of KQL (essential) Experience using SOC tooling (SIEM and EDR solutions) (essential) Previous experience working within financial services Experience using ITSM tools Knowledge of the phases in incident response and Cyber Kill Chain Good blue/purple/ More ❯

Senior Security Architect (Azure & SIEM) Location: Remote (occasional travel to London)Contract Duration: 12 MonthsIR35 Status: Outside IR35Day Rate: Up to £750We’re seeking a highly experienced Senior Security Architect with deep expertise in Microsoft Azure and SIEM technologies to join a leading organisation on a 12-month contract. This is a remote-first role with occasional travel to London … for key meetings.Key Responsibilities: Design and implement secure cloud architectures within Microsoft Azure Lead the integration and optimisation of SIEM solutions, particularly Microsoft Sentinel Conduct threat modelling, risk assessments, and security architecture reviews Collaborate with engineering, DevOps, and compliance teams to embed security best practices Define and enforce security standards across Azure IaaS, PaaS, and SaaS environments Essential Skills & Experience … Strong background in Azure security architecture Hands-on experience with Microsoft Sentinel or other enterprise SIEM platforms Deep understanding of Azure security services (e.g. Defender for Cloud, Key Vault, Azure AD) Familiarity with Microsoft security frameworks and compliance standards Experience with secure cloud migration and hybrid environments Relevant certifications (e.g. AZ-500, SC-100, CISSP) This is a fantastic opportunity More ❯

hoc travel to other sites/data centres. The Role The Cyber Security Engineer will be joining the internal security team, monitoring and analysing real-time security events using SIEM tools to detect and respond to potential threats. The Cyber Security Engineer will conduct regular vulnerability assessments and penetration tests to identify and mitigate security risks and breaches, and will … sized organisation Hands-on experience in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as More ❯

include: - Working with the wider business on ISO27001 and Cyber Essentials - Network and data security monitoring - Responding to tickets and working with teams on access, malware and vulnerability - Deploy SIEM - Support ongoing improvements to internal defence - Oversee policies and procedures - Support data protection initiatives - Security projects - Develop disaster recovery plans - Establish and improve vulnerability management To be considered suitable you … will need the following skills and experience: - Relevant cyber certifications - Experience in either a Cyber Analyst or Cyber Engineer role - Knowledge on SIEM and EDR tools - Experience in network audits and penetration testing - Infrastructure support experience - Knowledge on security frameworks More ❯

opportunity for someone who enjoys hands-on engineering, improving SOC effectiveness, and shaping threat detection capabilities at scale. What you'll be doing Deploying and configuring security tools including SIEM, vulnerability scanning and endpoint monitoring Developing use cases, alerts, and dashboards to support active threat detection Writing and maintaining SOC playbooks and triage workflows Performing 2nd line security monitoring, incident … assurance activities and documentation across the programme lifecycle Working with cross-functional teams in a high-assurance, cloud-native environment What you'll bring Strong experience configuring and optimising SIEM tooling (e.g. Splunk, Elastic) Proven ability to create use cases, alerts, and visualisations for SOC effectiveness Hands-on experience writing playbooks and operational processes for security events A current DV More ❯

opportunity for someone who enjoys hands-on engineering, improving SOC effectiveness, and shaping threat detection capabilities at scale. What you'll be doing Deploying and configuring security tools including SIEM, vulnerability scanning and endpoint monitoring Developing use cases, alerts, and dashboards to support active threat detection Writing and maintaining SOC playbooks and triage workflows Performing 2nd line security monitoring, incident … assurance activities and documentation across the programme lifecycle Working with cross-functional teams in a high-assurance, cloud-native environment What you'll bring Strong experience configuring and optimising SIEM tooling (e.g. Splunk, Elastic) Proven ability to create use cases, alerts, and visualisations for SOC effectiveness Hands-on experience writing playbooks and operational processes for security events A current DV More ❯