as they occur as part of an incident response team. • Implement metrics and dashboards to give visibility of the Enterprise infrastructure. • Use of the SOAR platform to assist with playbook automationand case management capabilities to streamline team processes and tools. • Produce documentation to ensure the repeatability and standardisation of more »
Portsmouth, Hampshire, United Kingdom Hybrid / WFH Options
J & C Associates Ltd
as they occur as part of an incident response team. Implement metrics and dashboards to give visibility of the Enterprise infrastructure. Use of the SOAR platform to assist with playbook automationand case management capabilities to streamline team processes and tools. Produce documentation to ensure the repeatability and standardisation of more »
Corsham, England, United Kingdom Hybrid / WFH Options
J&C Associates Ltd
as they occur as part of an incident response team. • Implement metrics and dashboards to give visibility of the Enterprise infrastructure. • Use of the SOAR platform to assist with playbook automationand case management capabilities to streamline team processes and tools. • Produce documentation to ensure the repeatability and standardisation of more »
Leeds, England, United Kingdom Hybrid / WFH Options
Cyber Security Jobsite
a coaching capacity Work with other teams within BAE to improve services on the basis of customer needs. Produce new workflows for automation into SOAR tools for common attack types. Continually improve the service and review use cases and propose changes and enhancements in line with the changing threat. Requirements more »
confidential investigations with discretion Ability to multi-task and prioritize workload Familiarity with PowerShell, Python and/or SQL is a plus Familiarity with securityorchestration, automationandresponse (SOAR) is a plus more »
and internal threats is a top priority which makes this role very challenging.Principal ResponsibilitiesResponsible for the daily operation of enterprise security systems including SIEM, SOAR, Elastic, ticketing, alerting, and messaging systems.Manage junior level analysts in the daily operation of enterprise security systems including shift rotations and hand-offs.Work closely with more »
quick, informed decisions under pressure. Relevant certifications such as GIAC, or Microsoft certifications would be advantageous. Any experience with SOC Prime, Carbon Black, andSOAR would be advantageous. Hybrid based - 2 days per week expected in their Warrington office. Paying up to 70k, depending on experience. As this is a more »
cyber security systems and tooling • Reasonable knowledge of Security Information and Event Management systems • Reasonable knowledge of Firewall systems (Fortigate essential) • Foundational knowledge of SecurityOrchestration, AutomationandResponse (SOAR) systems • Good knowledge of common operating systems (Windows, Mac, Linux) • Good knowledge of networking and network equipment • Relevant certifications such more »
cyber security systems and tooling * Reasonable knowledge of Security Information and Event Management systems * Reasonable knowledge of Firewall systems (Fortigate essential) * Foundational knowledge of SecurityOrchestration, AutomationandResponse (SOAR) systems * Good knowledge of common operating systems (Windows, Mac, Linux) * Good knowledge of networking and network equipment * Relevant certifications such more »
Fratton, England, United Kingdom Hybrid / WFH Options
J & C Associates Ltd
as they occur as part of an incident response team. Implement metrics and dashboards to give visibility of the Enterprise infrastructure. Use of the SOAR platform to ass... more »
define the technology, policies and practices used to protect the company and its clients. You’ll work to implement the Splunk monitoring solution andSOARand you’ll be able to work across vulnerability detection, infrastructure management, Web and Mobile Application Security, DevSecOps and many other areas – A Very varied more »
and protocols Detailed technical knowledge related to endpoints, servers, infrastructure and networking technologies Strong experience in supporting security systems, including vulnerability management, SIEM, DLP,SOAR, EDR solution, Network Firewalls etc. Working knowledge of IT processes (i.e., ITIL) including incident, problem, defect, change and release management The Cyber Security IT Analyst more »
Cyber Assessment Framework (CAF) and ISA/IEC 62443, ISO/IEC 27001/27002, and GDPR. Working knowledge of security technologies including SIEM, SOAR, EDR, AV, IDS/IPS, NAC, AD, DLP, Web Filtering, Email Filtering, Behavioural Analytics. Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks more »
will have good security qualifications such as SANS/CREST qualifications, however, equivalent experience is just as well regarded. Strong working knowledge of SIEM, SOAR, EDR tooling is essential, as is an understanding of the MITRE ATT&CK framework. Experience in CNI/Defence sectors is also desirable.This is a more »
within Secuirty Engineering · Understanding of Security Operations · Experience with security toolsets such as (but not limited to) SIEM, cloud security (zero trust, CASB ect), SOAR, CVM tools. Desirable skills: · Experience with using Zscaler · Experience with using CrowdStrike. · Experience with using Qualys CVM. If you are ready to take the next more »
the technology, policies and practices used to protect the company and its clients. You’ll drive the implement of a Splunk monitoring solution andSOARand you’ll be able to work across vulnerability detection, infrastructure management, Web and Mobile Application Security, DevSecOps and many other areas - A key andmore »
related field AND 5+ years sales and negotiation experience or related work or internship experience. 3+ years' experience selling Security Solutions (EDR, XDR, SIEM, SOAR) to MSSP and MSP customers. Additional Or Preferred Qualifications (PQs) Bachelor's degree in business management, Information Technology, Marketing (or equivalent) or related field ANDmore »
incidents Experience in log analysis, incident responseand/or digital forensicsExperience with SIEM and centralized data lake logging (e.g., Splunk, Snowflake)Experience with SecurityOrchestration, Automation, andResponse (SOAR)Experience securing cloud environments such as AWS, GCP, and/or AzureProficient in programming languages to automate/build features more »
Preston, Lancashire, United Kingdom Hybrid / WFH Options
BAE Systems
security toolsets as required for the role Continuously work towards organisational, departmental, and individual objectives and uphold security standards and principles Supporting SIEM andSOAR technologies Provide ongoing management and administration of Cyber Security solutions Provide support to projects delivering and implementation of Cyber Security solutions Provide guidance and support more »
Employment Type: Permanent
Salary: £60000/annum Depending on skills and experience
Leeds, England, United Kingdom Hybrid / WFH Options
Harvey Nash
by design. Other essentials: Background that covers cyber technology, security operations, incident response, architecture, and training. Experience in implementing technology such as SIEM, XDR, SOAR, etc. Background in Financial Services or other regulated industries (desired) Experience in leading through leaders and developing an internal capability Good soft skills, and the more »
need: · Extensive experience of working within a SOC or adjacent role. · Experienced in responding to cyber incidents. · Conversant with common security tooling (E.g., SIEM, SOAR, EDR, NDR). · Understanding of threat actors, their tactics, techniques, and procedures. · Understanding of security event data, the value of different data sources and tools more »
and managing Fortinet FortiAnalyzer. • Provide guidance to Infrastructure and Product teams on securing Microsoft 365 and Azure cloud services. • Establish and manage SIEM andSOAR capabilities using Azure Logic Apps or equivalents. • Enhance the usage and support of Entra ID (previously Azure AD) for IAM, Identity Governance, and PIM. • Document … with enhancing security in Azure Landing Zones (e.g., Key Vault, NSGs, WAF). • Experience with Microsoft Entra ID, including identity governance. • Proficiency in using SOAR tooling, automating security operations, and policy as code. • Ideally, experience in securing GitHub or similar platforms. • Ideally, experience in securing data platforms (e.g., Databricks, Snowflake more »
as Code practices. Assist in securing data platforms and implementing internal SIEM. Collaborate on securing Microsoft 365 and Azure cloud services. Operate SIEM andSOAR capabilities and enhance identity governance. Requirements: Hands-on experience with Microsoft Sentinel and Defender suite. Proficiency in Azure Landing Zones security enhancement. Familiarity with Microsoft … Entra ID andSOAR tooling. Ideally, experience in securing GitHub and data platforms. Knowledge of ISO 27001, Cyber Essentials Plus, and CIS. Scripting skills with Python and KQL. Strong English communication skills. more »
relevant experience CISSP, CEH, OSCP, GCIH or applicable security field Incident, change and problem process management experience Experience in SIEM (Splunk, Sentinel), IPS andSOAR tools a plus Experience with investigating and managing major/complex cyber security incidents end-to-end Knowledge of adversarial tactics, techniques, procedures (TTPs) & industry … Att&ck, ISO27000, ISO27001) Strong working knowledge of security technologies including but not limited to SIEM, EDR/EPP, AV, IDS, IPS, AD, DNS, SOAR E: j.bhard@locke-mccloud.com Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber more »
Cyber Security Engineer, M&A, £635(inside) 10 months +Extension – SIEM, SOAR, IdAM, Vulnerability Management, Trellix Are you a Cyber Security Engineer and ready to take on a pivotal role in a global business? Working on a M&A, the largest in its sector. You will be joining the team … cyber action plan. Track and communicate progress, risks, and issues. Review, report, and sign-off Infrastructure designs. Security Tooling (EDR, Vulnerability Management, IdAM, SIEM, SOAR). Input/review into cyber security design artefacts (HLD/LLD) and provide security engineering consultancy. Implementation cyber security support activities (configuration, connectivity, integration more »