51 to 75 of 179 SIEM Jobs in England

Years Must Have/Mandatory Skills Palo Alto Networks – Firewalls (MUST) Network Security Architecture IAM, MFA, AAA, RBAC, Privilege Access Cloud Security (OCI/Azure/AWS) SIEM/Vulnerability Management/PKI/Cryptography LAN/WAN/DMZ/Routing/Switching/Subnetting Key Responsibilities Design/Architect network security infra solutions like Firewalls, IDPS, Proxy, Load More ❯

Incident Response: Oversee the day-to-day operation of security systems and tools, including firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus, anti-malware, SIEM (Security Information and Event Management), vulnerability scanners, and data encryption solutions. Manage vulnerability management programs, including regular scanning, penetration testing, and remediation of identified weaknesses. Lead and manage security incident response, including detection … creating Cyber Security roadmaps. Strong understanding of information security principles, frameworks (e.g., ISO 27001, NIST, Cyber Essentials), and best practices. Hands-on experience with security technologies such as firewalls, SIEM, IDS/IPS, vulnerability scanners, endpoint detection and response (EDR), and identity management solutions. Experience with cloud security (e.g., Azure Security). Proven experience in managing security incidents and conducting More ❯

standard incident response frameworks (e.g., NIST, SANS) Experience with both network-based and host-based threat detection and analysis Proficiency in writing detection queries (Splunk preferred) and working with SIEM/EDR/SOAR tools At least 5 years of experience in Information Security within the financial services sector Strong analytical and communication skills, with the ability to present complex More ❯

knowledge of network protocols (TCP/IP) and security practices (IPSec, SSL-VPN, NAT, GRE) Hands-on experience with cloud infrastructure operations and troubleshooting customer tech stacks. Familiarity with SIEM tools, vulnerability management, malware analysis, and firewall configurations Ability to communicate complex technical solutions to a wide range of audiences, both technical and non-technical Skilled in Python, JSON, YAML More ❯

malware analysis and reverse engineering. Scripting/programming skills (Python, Bash, PowerShell, etc.). Relevant certifications (e.g., CREST Practitioner Intrusion Analyst, Blue Team Level 1). Exposure to other SIEM platforms like QRadar. Additional Info: Permanent role with a generous benefits package including 25 days annual leave (plus buy/sell options), pension, life assurance, health cash plan, and a More ❯

prem infrastructure on virtualized platform , networking, and storage. * Ability to produce HLDs and LLDs with clarity and precision. * Excellent communication and stakeholder engagement skills. * Involved with integrating SentinelOne with SIEM/SOAR platforms (e.g., Splunk) and deployment to Windows and RHEL endpoints. Preferred Qualifications: * SentinelOne certifications (e.g., SentinelOne Certified Architect or equivalent). * Scripting knowledge (e.g., PowerShell, Python) for automation More ❯

in Security Architecture. Cloud security architecture experience (AWS, Azure, GCP), multi-cloud preferred. Deep financial services security knowledge and regulatory experience. Expertise in IAM, network, data, application, container security, SIEM, and Zero Trust. DevSecOps and CI/CD security implementation experience. Relevant certifications desirable (CISSP, CCSP, AWS Security Specialty, Azure Security, GCP Security). Desirable Skills Strong communication, leadership, and More ❯

Infrastructure-as-Code (e.g., ARM, Bicep, Terraform). • Experience implementing zero-trust architectures and identity-driven security models. • Knowledge of monitoring platforms such as Azure Monitor, Sentinel, or enterprise SIEM/SOAR tools. • Experience with backup, DR, and business continuity solutions. • Certification in Microsoft, Azure, or ITIL. Personal Attributes • Clear communicator with the ability to translate technical issues into business More ❯

or incident response. Strong problem-solving skills and willingness to learn. Nice to Have Exposure to containerization (Docker, Kubernetes). Knowledge of monitoring tools (Grafana, Datadog). Experience with SIEM/SOC tools or security automation. Cloud certifications or security training (AWS, GCP, Azure, or similar). To find out more about Computer Futures please visit www.computerfutures.com Computer Futures, a More ❯

Lead Implementer. * Endpoint Security: EDR solutions and endpoint management platforms. * Microsoft 365/Entra ID: Identity protection, Conditional Access, MFA, and Privileged Identity Management (PIM). * Security Monitoring & Operations: SIEM platforms and SOC processes. * Network Security: Firewalls, web application firewalls, and VPN technologies. * Encryption: PKI and data encryption for both data at rest and in transit. * Email Security: Mimecast and More ❯

handling, remediation, and reporting * Proficiency in Microsoft Office products * Experience in securing AI-driven systems and leveraging AI tools. * Familiar with Microsoft Defender for Endpoint, Thales, CrowdStrike Falcon and SIEM, CyberArk, Rapid7, and Palo Alto products is a plus Lead Information Security Engineer In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon More ❯

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Cyber Security, Vulnerability Management, Penetration Testing, Risk Assessment, Compliance, PCI DSS, Security Tooling, Governance, SIEM, Endpoint Security, Security Investigations More ❯

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Cyber Security, Vulnerability Management, Penetration Testing, Risk Assessment, Compliance, PCI DSS, Security Tooling, Governance, SIEM, Endpoint Security, Security Investigations More ❯

External Audit to respond to, and act upon, compliance related issues. Partner with business, IT, and product leads to define security controls across the SAP landscape, integrating with enterprise SIEM, vulnerability management, and incident response processes. Drive risk assessment and remediation for legacy ECC-to-S/4 migrations, ensuring consistent security baselines, traceable control evidence, and resilience against evolving More ❯

clearance) DV Bonus : 10% of base salary upon clearance and deployment on project Experience & Skills Minimum 2 years in security analyst role Experience : Security Operations Centre (SOC) or equivalent SIEM platforms Vulnerability management Incident response & resolution System log analysis Certifications : CompTIA or equivalent (preferred) Qualifications : Experience prioritized over formal education Please Apply/Reach Out to learn more More ❯

networks, and operating systems. Good written and verbal communication skills to explain risks to both technical and non-technical stakeholders. CompTIA Security+ or equivalent qualification ??. Desirable: Experience with SIEM systems, EDR, IDS/IPS, and vulnerability scanners. Previous experience in a law firm or professional services environment. Familiarity with Practice Management Systems (PMS) and Document Management Systems (DMS). More ❯

the risks Your engineering experiences include Golang and Terraform Technologies AWS, GCP, Azure and private Data Centers Kubernetes, Helm, Flux Distributed systems, mostly Golang based with CockroachDB and NATS SIEM/SOAR, EDR, CNAPP, and a suite of open source tools with custom integrations This is a fully remote role, please email your CV to apply More ❯

upgrades, VDI rollouts, Office 365/M365 migrations. Network & security upgrades - WAN/LAN refresh, SD-WAN, firewall/security infrastructure enhancements. Cybersecurity initiatives - IAM (Identity and Access Management), SIEM integration, encryption, vulnerability management. Infrastructure for regulatory change programmes (e.g. Basel III, MiFID II support). DevOps enablement projects - CI/CD pipelines, tooling standardisation. Skills & Experience Required Strong track More ❯

upgrades, VDI rollouts, Office 365/M365 migrations. Network & security upgrades - WAN/LAN refresh, SD-WAN, firewall/security infrastructure enhancements. Cybersecurity initiatives - IAM (Identity and Access Management), SIEM integration, encryption, vulnerability management. Infrastructure for regulatory change programmes (e.g. Basel III, MiFID II support). DevOps enablement projects - CI/CD pipelines, tooling standardisation. Skills & Experience Required Strong track More ❯

platforms · Leading patch management, system upgrades, and infrastructure automation initiatives · Supporting cloud infrastructure (e.g., Azure, M365) and hybrid environments · Implementing hardening standards and security controls across infrastructure · Familiarity with SIEM, EDR, and other security technologies · Collaborating on incident response, vulnerability remediation, and cyber investigations · Contributing to infrastructure and security roadmaps, policies, and best practices What We're Looking For We More ❯

and disaster recovery processes. Administer and monitor Active Directory, Azure Entra, and Intune environments. Manage compliance policies, conditional access, and mobile device management. Work with third-party providers supporting SIEM and threat analytics systems. Lead on implementing IT security best practices, standards, and access controls. Support infrastructure and security projects, including system upgrades and migrations. Create and maintain technical documentation More ❯

and disaster recovery processes. Administer and monitor Active Directory, Azure Entra, and Intune environments. Manage compliance policies, conditional access, and mobile device management. Work with third-party providers supporting SIEM and threat analytics systems. Lead on implementing IT security best practices, standards, and access controls. Support infrastructure and security projects, including system upgrades and migrations. Create and maintain technical documentation More ❯

utilising tools like AWS Inspector, GuardDuty, and Security Hub, complemented by regular vulnerability scanning and penetration testing. Design, implement, and automate enterprise-level security systems and controls -including IAM, SIEM, DLP, firewalls, endpoint protection, and cloud-native guardrails-to safeguard assets across both cloud and hybrid environments. Actively respond to security events and incidents by leading investigations, coordinating remediation efforts … understanding of security principles, technologies, and industry best practices , including vulnerability and incident management. Practical experience with security monitoring and protection tools such as Firewalls, IDS/IPS, XDR, SIEM, CNAPP, and log collection platforms (e.g., CrowdStrike, Lacework). Experience in designing and implementing Identity and Access Management (IAM) solutions and maintaining secure authentication practices. Proficiency with Windows and Linux More ❯

highlight the risk to client environment Proficient in preparation of reports, dashboards and documentations. Knowledge/Experience of security technologies such as Cisco/Juniper Firewalls, Application Firewalls, IPS, SIEM, Proxy, NAC, etc. Skills: Network Protocols Cyber Security Tools/Products Cyber Security Policy Management Cyber Security Planning Cyber Security Risk Management What we offer: Our benefits support you through More ❯

SABSA & TOGAF Experience following the green book five case model would be a plus and certifications such as: CCP, CISMP, CISSP, CREST. Identity management and federation, public key infrastructure, SIEM, cryptography, firewalls, vulnerability scanning. A varied background, diverse programme exposure and a security-based master’s degree or alternatively STEM degree are needed with an ability to demonstrate your capability More ❯