7 of 7 SIEM Jobs in Glasgow

Centre (SOC) team, you'll monitor systems, detect potential incidents, and initiate the incident response process. Your key responsibilities will include: Continuous Monitoring: Use SIEM tools (including Splunk) to identify suspicious activity and respond efficiently. Incident Triage: Analyse alerts and logs to determine genuine incidents and prioritise accordingly. Initial Incident ...

Centre (SOC) team, you'll monitor systems, detect potential incidents, and initiate the incident response process. Your key responsibilities will include: Continuous Monitoring: Use SIEM tools (including Splunk) to identify suspicious activity and respond efficiently. Incident Triage: Analyse alerts and logs to determine genuine incidents and prioritise accordingly. Initial Incident ...

only monitor and respond to incidents but also provide guidance and support to junior team members. Your responsibilities will include: Continuous Monitoring: Oversee SIEM tools (including Splunk) to detect suspicious activity and ensure timely response. Incident Triage: Analyse alerts and logs to confirm genuine incidents and prioritise effectively. Initial Incident ...

only monitor and respond to incidents but also provide guidance and support to junior team members. Your responsibilities will include: Continuous Monitoring: Oversee SIEM tools (including Splunk) to detect suspicious activity and ensure timely response. Incident Triage: Analyse alerts and logs to confirm genuine incidents and prioritise effectively. Initial Incident ...

with Microsoft security tooling, ideally Sentinel and Defender Proficiency in KQL and working knowledge of Python for automation and enrichment Experience integrating intelligence into SIEM, EDR/XDR, and cloud security platforms (Microsoft, AWS, CrowdStrike, etc.) Deep understanding of the UK cyber threat landscape, particularly critical national infrastructure and public ...

making use of the training resources that will be provided. Key Activities & Responsibilities Monitor and respond to security alerts generated by technologies such as SIEM, EDR, Microsoft Sentinel, vulnerability management, phishing and threat intelligence solutions within a given SLA. Performing triage, in-depth analysis and investigation as guided by processes … Successful candidates will have a strong awareness of the cyber security industry and demonstrate knowledge with relevant certifications where appropriate for solutions, including XDR, SIEM solutions, Threat Intelligence, EDR, vulnerability management, network, cloud, Artificial Intelligence/Machine learning, SOAR, automation and endpoint security technologies. 🌍 We’re Committed to Inclusion Sapphire ...

Role Overview: Location: Glasgow Package: Competitive salary + shift allowance + benefits Industry: Cyber Security/Managed Services What You’ll Be Doing: Monitoring SIEM and other security tooling to spot unusual activity and emerging threats. Assessing alerts, digging into logs, and quickly determining what needs escalating. Taking initial incident … cyber operations experience, ideally at Level 2. Knowledge of networking fundamentals, operating systems, and common attack techniques. Confident analysing logs, alerts, and events within SIEM platforms. Strong communication skills and the ability to work calmly under pressure. Relevant cyber qualifications or certifications (Security+, CySA+, etc.) are beneficial but not essential. ...