26 to 49 of 49 SIEM Jobs in Lancashire

to understand technical capabilities to ensure solutions align with security challenges and business objectives. Technical Requirements: Hands-on experience with security technologies such as SIEM, EDR, SOAR, vulnerability, threat intelligence etc. Experience in pre-sales, solution consulting, or technical advisory roles Proactive mindset and strong customer engagement skills Please apply More ❯

scans and advise relevant teams for mitigation steps. Monitor security alerts and events to identify potential security incidents. Use security information and event management (SIEM) tools to analyze log data for signs of suspicious activity. Keep up to date with the latest security and privacy legislationand security enhancing technologies and More ❯

hands-on experience in security monitoring, incident response, and threat detection. Strong understanding of network security principles, protocols, and technologies (firewalls, IDS/IPS, SIEM, etc.). Experience with security tools such as SIEM/SOAR platforms, endpoint detection and response (EDR) solutions, vulnerability management, detection and response/remediation More ❯

global business risk/objectives. This role is focused on technical operations and support of various information security tools including event/incident management (SIEM), cloud security, endpoint detection and response, email security, and vulnerability management. This position will be responsible for supporting the Director IT Security in reviewing and … will be done monthly. Deploy new information security tools, services, processes, and procedures to support the information security roadmap. Support information security services including SIEM, MDR, endpoint technology, secure email gateway, cloud security, certificate management, network security, and vulnerability management. Respond to critical incidents in a timely manner in partnership More ❯

across Microsoft Azure environments. 3. Security Automation & Incident Response Automate security workflows with Power Automate, Power Apps, and Microsoft Defender XDR. Deploy Microsoft Sentinel (SIEM) for threat detection, log analysis, and incident response. Establish incident response playbooks and conduct forensic investigations when needed. 4. Compliance & Risk Management Ensure adherence to … Security. Skills Deep expertise in Microsoft 365 Security, Entra ID (Azure AD), Microsoft Intune, and Microsoft Defender Suite. Strong knowledge of IAM, MFA, PAM, SIEM (Microsoft Sentinel), and security automation. Experience securing Microsoft Azure environments (Azure Security Center, Azure Policy, Conditional Access). Familiarity with hybrid and multi-cloud security More ❯

/Open API specs for vulnerabilities Advise on secure API design patterns Familiar with fallback controls such as WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's More ❯

This role offers an opportunity to work with market-leading vendors across networking (Cisco), data infrastructure (NetApp, IBM, cloud), and security solutions (NOC, SOC, SIEM) . While the focus is on new business development , there’s potential to inherit a small number of key accounts to support your success. What More ❯

Password Vault Web Access) PSM (Privileged Session Manager) AAM (Application Access Manager) Conjur (Secrets Management) Integrate CyberArk with other security tools and platforms (e.g., SIEM, IAM, ITSM). Configure and manage safes, platforms, and policies within CyberArk. 3. Operational Management: Monitor and maintain the CyberArk environment to ensure optimal performance … PVWA, PSM, AAM, Conjur). Strong understanding of privileged access management concepts and best practices. Experience with integrating CyberArk with other security tools (e.g., SIEM, IAM, ITSM). Proficiency in scripting languages (e.g., PowerShell, Python) for automation and customization. Excellent problem-solving and troubleshooting skills. Preferred: Experience with cloud platforms More ❯

config portals). For example, hands-on configuration across the different security platforms, working with Cloud and on-prem AD, EntraID, M365, working on SIEM logic and configs with MSSP, scripting/coding, and troubleshooting configurations day to day. Hybrid/Location: 2 days per week in the City of … Systems Engineering Demonstrated ability working with IT System Administration of Azure (Security Centre), Defender (ATP), M365, and Windows (on-premise Active Directory) Security monitoring, SIEM tooling such as Exabeam, QRadar, Splunk,k, and Sentinel. Senior experience with security management and incident response across SOC, Malware Ransomware, Threat/Analytics, Server More ❯

and compliance responsibilities. Role Highlights Monitor, detect, and respond to security incidents and vulnerabilities Own and manage key elements of the security stack, including SIEM and DLP tools Lead audits, penetration testing, and remediation actions to uphold ISO27001 & SOC2 compliance Collaborate with product teams to embed security into the development … KPI-driven security reports and dashboards for internal stakeholders Experience needed: 1+ year in a SOC or similar cybersecurity role Hands-on experience with SIEM, IDS/IPS, and vulnerability scanning tools Knowledge of AWS, Linux, Windows, IAM (e.g. Okta), and firewalls Understanding of ISO27001, SOC2, GDPR, and third-party More ❯

activities across multiple stakeholders and environments Support deployment and configuration of endpoint detection and logging tools Assist in designing detection use cases and refining SIEM rules Participate in threat hunting and vulnerability management activities What You Bring: 2+ years of experience in a SOC or security-focused technical role Strong … knowledge of SIEM platforms (e.g., Alien Vault, QRadar, ArcSight, or LogRhythm) Experience in incident response, malware analysis, and threat hunting Proficiency with Linux command line and network security tools Familiarity with public cloud platforms (AWS, Azure) Understanding of network protocols, proxies, WAFs, and endpoint protection solution Benefits include: Comprehensive health … more! Ready to take the next step in your cybersecurity career? Apply now or contact Jarlath O'Rourke today for a confidential conversation. Skills: SIEM QRadar Cyber Information Security More ❯

Job Title: SIEM Engineer Location: Remote Salary: £40,000 - £50,000 The Company An exciting opportunity has arisen at an award-winning Microsoft Partner for a SIEM Engineer. The business is a fast-growing, industry-leading managed service and managed security service provider, delivering to mid-sized and large enterprise … clients. This is a fantastic opportunity for a SIEM Engineer to continue developing their expertise in security platforms at an established Microsoft Partner. The company places strong emphasis on staff development, offering support for training and professional certifications. You’ll also gain exposure to cutting-edge technologies, working across security More ❯

up to £75000 Per annum Languages: Mandarin Chinese and English Key Responsibilities: 1. Security Monitoring & Incident Response Monitor security tools (firewalls, IDS/IPS, SIEM) to detect and analyze potential threats. Investigate security alerts, logs, and incidents (e.g., malware, unauthorized access, breaches). Assist in incident response and remediation efforts. … IP telephony). Technical Skills: Hands-on experience with OSPF, BGP, STP, NAC, and IPT (Cisco). Proficiency in network monitoring tools, NDR, and SIEM systems. Knowledge of vulnerability assessment tools and patch management. Soft Skills: Ability to work under pressure and handle emergencies. Strong communication and collaboration skills. Working More ❯

the implementation and management of various security technologies. Main responsibilities: Analysing security events and incidents relating to internal and customer assets. Designing and developing SIEM security use cases. Designing and implementing security controls and secure configurations. Maintaining proactive vulnerability scanning ensuring that all known vulnerabilities are addressed in line with … internal stakeholders to discuss security related matters. Skills Required: Proven hands-on experience as a Security Engineer or similar working with tools such as SIEM, vulnerability management, endpoint detection & response (EDR), applications security, identity, and access management, etc. Ability to work in a small high performing team, collaborating with other … with experience of learning, adapting and utilising different security technologies, including but not limited to private and cloud infrastructure. Technical knowledge and experience with SIEM, SOAR, IDPS, DDoS, Malware Protection, Vulnerability Management, and Application Security tooling, etc. Knowledge of Information Security frameworks (CIS, NIST, NCSC CAF), supporting processes and toolsets. More ❯

L2&L3 SOC/Cyber Security Engineer - Threat Hunter/SIEM Sentinel - £45-65K + 25% Shift - Home/Office 2x per month My client is one of the most recognisable names in IT and has some of the best professionals in the industry. They are top partners with … upon hire. Key Skills required: At least 2 years' experience in a SOC environment, preferably MSSP, or in a technical security role. Experience with SIEM tools such as MS Sentinel, AlienVault, or Splunk. Cybersecurity qualifications, certifications, or degrees e.g., CySA+, CompTIA SEC+, or similar experience. Microsoft SC-200 certifications are … Management, including Major Incidents and analysis for ongoing investigations. Conduct proactive threat hunts, RCAs, and develop detection capabilities. Monitor and investigate security alerts from SIEM platforms like MS Sentinel, AlienVault, or Splunk. Respond to security alerts, incidents, and requests, managing threats and vulnerabilities effectively. Document cases and generate reports with More ❯

comes with an attractive salary and has one of the best benefits packages around! (See below) Key Highlights: Monitor and respond to cybersecurity threats (SIEM, EDR, IDS/IPS, DLP) Investigate incidents using MITRE ATT&CK, Cyber Kill Chain Provide desktop and infrastructure support to onsite teams Lead escalated support … junior IT staff Collaborate with global security teams Requirements: 5+ years in Cyber Security/Infra Experience with cloud (AWS/Azure/GCP), SIEM (Splunk, LogRhythm) Security+/CISSP/GCIA or similar Excellent troubleshooting, communication & documentation skills Benefits Salary range of £45K - £70K! Private medical insurance - individual/… days Enhanced maternity/paternity leave And many more! Apply now or contact Jarlath O'Rourke today for a confidential conversation. Skills: Crowdstrike SIEM EDR DLP More ❯

You'll own and optimise enterprise-wide log onboarding into Microsoft Sentinel – deploying standard and custom connectors, Function Apps, and parsers to build tailored SIEM solutions that drive real-world threat detection and response. Log ingestion at scale across numerous hybrid and multi-cloud environments Enhance custom Function Apps and … Experience building and integrating complex Microsoft Sentinel at SMC and enterprise Understanding of security telemetry across identity, endpoint, cloud, and network layers Experience in SIEM content development, including KQL, analytics rules, and custom data connectors Scripting and engineering skills – Python, PowerShell, APIs, Function Apps A background in cyber threat detection More ❯

technologies. Create and maintain detection rules and logic to identify suspicious activity and potential security threats. Participate in the creation, implementation, and optimisation of SIEM event correlation rules, logic, and content to filter out security events associated with known network behaviour, false positives, and errors. Support the transition of project … technologies such as NDR/content filtering/FW/IPS/IDS/DDOS, EDR/MDR, DAST/SAST, Identity Access Management, SIEM & SOAR, log management. Preferable experience in Azure, AWS, Defender, Darktrace. Experience and technical knowledge in multiple areas of cyber defence operations. Experience as a Cyber More ❯

contract XSIAM Engineer with deep expertise in Palo Alto Networks technologies , ideally coming from an XSOAR background , and possessing strong experience across XDR and SIEM environments. This is a key role within our security operations function, focused on enhancing detection, automation, and response capabilities. *For this role you must be … and manage security automation workflows , drawing from previous XSOAR experience Integrate and optimize XDR capabilities to support proactive threat detection Set up and maintain SIEM-style log ingestion , correlation rules, and enrichment pipelines Build custom dashboards and reporting tools for real-time security insights Troubleshoot complex issues related to XSIAM … XSIAM in real-world environments but will consider strong XSOAR Consultants who want to evolve into XSIAM. Strong understanding of Security Operations, XDR , and SIEM principles Proficient in scripting and automation (e.g., Python, PowerShell) Solid experience with log analysis , event correlation, and alert tuning Needs to be eligible for SC More ❯

Azure, SharePoint, etc. In-depth working knowledge of Microsoft Windows Active Directory management and implementation, understanding and experience with M365 E5 security policies and SIEM/SOC solutions, and experience with Windows Operating Systems both client and server are required. Additionally, you should have experience with network troubleshooting and diagnostic … Azure, SharePoint, etc. In-depth working knowledge of Microsoft Windows Active Directory management and implementation, understanding and experience with M365 E5 security policies and SIEM/SOC solutions, and experience with Windows Operating Systems both client and server are required. Additionally, you should have experience with network troubleshooting and diagnostic … of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be Skills: azure 365 SIEM Benefits More ❯

I am currently supporting a business engaged in the setup and deployment of a new Security Information and Event Management (SIEM) solution. The scope of work includes replacing the existing Trend Micro infrastructure and rolling out CrowdStrike across all server environments to enhance threat detection and response capabilities. Job Title … Job Type: 3 month Contract Contract: Outside I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. … Serve as the Subject Matter Expert (SME) for SIEM deployment, supporting data ingestion from sources such as AWS and Qualys. Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with More ❯

business on ISO27001 and Cyber Essentials - Network and data security monitoring - Responding to tickets and working with teams on access, malware and vulnerability - Deploy SIEM - Support ongoing improvements to internal defence - Oversee policies and procedures - Support data protection initiatives - Security projects - Develop disaster recovery plans - Establish and improve vulnerability management … suitable you will need the following skills and experience: - Relevant cyber certifications - Experience in either a Cyber Analyst or Cyber Engineer role - Knowledge on SIEM and EDR tools - Experience in network audits and penetration testing - Infrastructure support experience - Knowledge on security frameworks More ❯

with a passion for cyber defence — from junior SOC analysts to aspiring incident responders — helping them build practical detection and analysis skills in a SIEM-driven environment. * We need OffSec certified Instructors or willingness to complete OffSec Instructor Bootcamp (OSIB)* Key Responsibilities: Deliver the SOC-200 course content to bootcamp … learner success throughout the training programme Experience Required: Experience delivering cyber security training (SOC-focused delivery preferred) Familiar with tools and frameworks such as SIEM , MITRE ATT&CK , ELK , and endpoint/network forensics Comfortable delivering to diverse learners (remote or classroom-based) Strong communication, mentoring, and instructional skills OffSec More ❯

is your chance to make a difference at scale – influencing strategy, steering major bids, and delivering cutting-edge secure digital infrastructure across cloud, SOC, SIEM, EDR/XDR, and advisory services. London | Manchester | Bristol | Birmingham | Glasgow | Belfast Flexible hybrid working encouraged Impact: Over £1bn revenue footprint Critical experience: Sales leadership … and Technology products and services business Skilled in managing high-performing specialist teams (6–8+) A persuasive C-suite influencer with deep vendor knowledge (SIEM, SOC, Cloud Sec, Endpoint, etc.) A strategy-setter with a growth mindset and proven results in a major technology environment Why Join? This is a More ❯