51 to 75 of 247 SIEM Jobs in England

understanding of Azure identity, network security, encryption, and data protection . Experience with security frameworks (SABSA, TOGAF) and enterprise architecture governance. Hands-on familiarity with security tooling such as SIEM, Defender for Cloud, Key Vault, Sentinel, etc. Strong stakeholder engagement and communication skills across business, risk, and technical domains. Experience working within consulting or global programmes is highly advantageous. Full More ❯

effectively communicate information internally and to customers Facilitate root cause investigations and manage the implementation of corrective and preventative measures Qualifications Previous experience with Endpoint Security software is required SIEM experience, including - Deep understanding of how SIEMs works Experience in creating custom collections and data parsing Experience in creating complex correlation rules, reports and dashboard Experience in integration and implementation More ❯

NAC solutions. Career growth - mentor others, lead projects, and become a go-to technical expert. What you’ll be doing: Taking ownership of CrowdStrike EDR , including policy configuration and SIEM tuning. Working with network teams on segmentation, NAC, and firewall controls . Leading on incident response , root cause analysis, and runbook development. Managing and optimising a wide suite of tools More ❯

NAC solutions. Career growth - mentor others, lead projects, and become a go-to technical expert. What you’ll be doing: Taking ownership of CrowdStrike EDR , including policy configuration and SIEM tuning. Working with network teams on segmentation, NAC, and firewall controls . Leading on incident response , root cause analysis, and runbook development. Managing and optimising a wide suite of tools More ❯

NAC solutions. Career growth - mentor others, lead projects, and become a go-to technical expert. What you’ll be doing: Taking ownership of CrowdStrike EDR , including policy configuration and SIEM tuning. Working with network teams on segmentation, NAC, and firewall controls . Leading on incident response , root cause analysis, and runbook development. Managing and optimising a wide suite of tools More ❯

threats by researching, testing, and implementing new solutions. What we'd love you to bring: A solid grounding in network and system security (think firewalls, VPNs, IDS/IPS, SIEM). Knowledge of security frameworks (ISO 27001, NIST, CIS, etc.) and how to actually apply them. Experience with cloud platforms (AWS, Azure, GCP) and securing them. Scripting or coding chops More ❯

within SOC management, within Energy/Construction/Utilities Holds an Active Security Clearance (SC) Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC/SIEM/XDR). Strong working knowledge of M365 security features. Familiarity with cloud platforms, in particular Azure and/or AWS. Ability to effectively communicate SOC value to stakeholders through More ❯

within SOC management, within Energy/Construction/Utilities Holds an Active Security Clearance (SC) Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC/SIEM/XDR). Strong working knowledge of M365 security features. Familiarity with cloud platforms, in particular Azure and/or AWS. Ability to effectively communicate SOC value to stakeholders through More ❯

UAGs, Zero/Thin client environments. Desirable Skills EVPN/VXLAN, Fortigate, Panorama, VMware SSP (vDefend). IaC (Terraform, Ansible), CI/CD (GitLab), Python orchestration. Observability (Prometheus, Grafana), SIEM (Splunk, Aria Logs). Advanced VMware: SRM, Avi Load Balancer, Workspace ONE. Application/data platforms: Kubernetes, Vault, Redis, RabbitMQ, Elastic Stack. Dell Powerscale & NVIDIA GPU passthrough experience. Professional Skills More ❯

UAGs, Zero/Thin client environments. Desirable Skills EVPN/VXLAN, Fortigate, Panorama, VMware SSP (vDefend). IaC (Terraform, Ansible), CI/CD (GitLab), Python orchestration. Observability (Prometheus, Grafana), SIEM (Splunk, Aria Logs). Advanced VMware: SRM, Avi Load Balancer, Workspace ONE. Application/data platforms: Kubernetes, Vault, Redis, RabbitMQ, Elastic Stack. Dell Powerscale & NVIDIA GPU passthrough experience. Professional Skills More ❯

aspects of M365 and Power Platform projects across diverse customer estates , supporting project managers and delivery leads Advise customers on security posture enhancements , including Secure Score, audit log management, SIEM integration, and regulatory alignment Ensure Power Platform governance policies, lifecycle models, and technical controls are applied consistently across customer environments Support subscription and licensing management in collaboration with Asset Management More ❯

Profile Practical experience and understanding of ISO27001 Familiar with NIST and GDPR is preferred Solid experience in threat, risk and vulnerabilities management process Experience with security tools such as SIEM, intrusion detection systems, and endpoint protection. Strong analytical and problem-solving skills. Hold at least one security related professional certification is desirable Job Offer 24 days of holiday leave Performance More ❯

monitoring approaches What were looking for 3+ years experience in consultancy or complex ICT delivery Knowledge of frameworks such as HMG SPF and ISO27001 Familiarity with identity management, PKI, SIEM, cryptography and firewalls Strong communication skills, able to influence at all levels A STEM degree or relevant security certification (CCP, CISSP, SABSA, TOGAF) desirable Eligibility for UK Security Clearance is More ❯

/AZ-500. Excellent communication and stakeholder engagement skills. Passion for continuous learning and staying updated on emerging threats. Ability to translate technical risks into business impacts. Familiarity with SIEM tools and incident response processes. Closing date: 24th October Shortlist date: 25th October Interview date: TBC More ❯

related field. Strong analytical and problem-solving skills with keen attention to detail. Basic understanding of networking, operating systems, and information security principles. Familiarity with security tools (e.g., firewalls, SIEM systems, antivirus software) is a plus. Ability to work collaboratively and communicate technical concepts clearly. What We Offer: Structured training and professional certifications support. Mentorship from experienced cybersecurity professionals. A More ❯

Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and stakeholders. Experience with integrating SailPoint solution with other security tools and technologies, including SIEM and PAM solutions is a plus. Experience working with Scrum/Agile Methodologies. Experience working on multi-cultural environment. Office presence according to policies is expected.Demonstrated ability to work independently More ❯

Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and stakeholders. Experience with integrating SailPoint solution with other security tools and technologies, including SIEM and PAM solutions is a plus. Experience working with Scrum/Agile Methodologies. Experience working on multi-cultural environment. Office presence according to policies is expected. Demonstrated ability to work More ❯

concepts. Working knowledge of Hyper-V, Veeam, WSUS, certificate services, and endpoint management tools (e.g. ManageEngine). Familiarity with security tools and concepts, such as endpoint protection, email filtering, SIEM/monitoring, or extended AV tools. Understanding of network fundamentals (TCP/IP, VLANs, firewalls) and general troubleshooting. Desirable Experience using collaboration and tracking tools like Jira and Confluence. Experience More ❯

escalated incidents and mentor junior engineers. Implement and maintain container platforms (Docker, Kubernetes) and automation frameworks (Terraform, Ansible, CI/CD). Apply advanced security practices including zero-trust, SIEM integration and EDR. Prepare and maintain technical documentation, policies, and procedures. Support enterprise backup, disaster recovery and business continuity capabilities. Contribute to change management, incident management, and occasional out-of More ❯

engineering. DV Clearance. Programming and scripting such as Python, Perl, Bash, PowerShell, C++. CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar. If you are interested in this role but not sure if your skills and experience are exactly what were looking More ❯

upgrades, VDI rollouts, Office 365/M365 migrations. Network & security upgrades - WAN/LAN refresh, SD-WAN, firewall/security infrastructure enhancements. Cybersecurity initiatives - IAM (Identity and Access Management), SIEM integration, encryption, vulnerability management. Infrastructure for regulatory change programmes (e.g. Basel III, MiFID II support). DevOps enablement projects - CI/CD pipelines, tooling standardisation. Skills & Experience Required Strong track More ❯

upgrades, VDI rollouts, Office 365/M365 migrations. Network & security upgrades - WAN/LAN refresh, SD-WAN, firewall/security infrastructure enhancements. Cybersecurity initiatives - IAM (Identity and Access Management), SIEM integration, encryption, vulnerability management. Infrastructure for regulatory change programmes (e.g. Basel III, MiFID II support). DevOps enablement projects - CI/CD pipelines, tooling standardisation. Skills & Experience Required Strong track More ❯

Power Automate and CI/CD pipelines. Knowledge of disaster recovery and business continuity planning. Experience with storage solutions and playbook maintenance. Experience with Microsoft Defender, Sentinel or equivalent SIEM tools, RBAC, PIM, and awareness of ISO 27001/Cyber Essentials. Familiarity with IAM, PAM, XDR, and GRC tools. Proficient in Microsoft 365, Azure, Entra, SharePoint, Exchange, Purview, Intune, Teams More ❯

upgrades, VDI rollouts, Office 365/M365 migrations. Network & security upgrades - WAN/LAN refresh, SD-WAN, firewall/security infrastructure enhancements. Cybersecurity initiatives - IAM (Identity and Access Management), SIEM integration, encryption, vulnerability management. Infrastructure for regulatory change programmes (e.g. Basel III, MiFID II support). DevOps enablement projects - CI/CD pipelines, tooling standardisation. Skills & Experience Required Strong track More ❯

position will be responsible for developing the strategy for the Detection Engineering program and establishing metrics to demonstrate continuous improvement. The ideal candidate will possess expert-level knowledge in SIEM implementation and log ingestion, SOAR, Incident Response, and Threat Intelligence that will be data-driven with strong verbal, written communication, and leadership skills. Cybersecurity Detection Engineering: Define detection engineering strategy … roadmap, and objectives to achieve. Design and implement advanced threat detection techniques using tools such as SIEM, EDR, NDR, and SOAR platforms. Develop innovative custom detection rules and automated remediation, playbooks, and alerts tailored to the organization's threat landscape for enterprise and customer security. Leverage industry standard MITRE frameworks to identify detection coverage and close gaps. Monitor, optimize, and … the most efficient and effective manner. Performs attack simulation testing to validate efficacy of use cases and purple teaming exercises collaborating with the Vulnerability Mgmt team. Manages and maintains SIEM/Data Lake data management and log ingestion infrastructure in collaboration with Cyber Defense Engineering. Evaluate, validate, tune, and sunset where necessary detection capabilities Maintains operational guidelines, diagrams, and documentation More ❯