1 to 25 of 106 SIEM Jobs in London

cyber threats and AI-enabled attack techniques.Core Skills Strong foundation in modern cyber security engineering and detection engineering principles. Experience with security monitoring platforms, SIEM systems, and alerting/detection pipelines. Strong understanding of identity and access management, endpoint security, logging, network security, and vulnerability management. Knowledge of security architecture ...

work closely together to improve NHS cyber resilience and enable a "Defend as one" strategy across the health and care system. The Senior Security Analyst SIEM Engineering is responsible for deploying feeds from data sources into NHS England's SIEM system, for both newly developed services and existing services being … also manage the SIEM environment, build cyber detection capability and improve the automation of security monitoring. Main duties of the job The Senior Security Analyst SIEM Engineering is responsible for: Deploying feeds from data sources into the NHS England's SIEM tool and ensuring compliance with the SIEM's data ...

/plugins and automation for discovery, onboarding, provisioning and de-provisioning. Integrate PAM with other security and IT systems (LDAP/AD/EntraID, SIEM, ITSM, identity stores, cloud providers). Collaborate with PAM vendors to resolve product issues and support roadmaps. Define and enforce access control policies within ...

WebAuthn, SAML, OAuth 2.0, OpenID Connect). Practical experience securing macOS, Windows and Linux endpoints using MDM and EDR/XDR tooling. Experience operating SIEM and/or SOAR platforms and tuning detection logic. Experience with vulnerability management and patch governance. Ability to write production-quality automation scripts. Demonstrated experience ...

certification (e.g., CISSP, CISM, SANS) with ongoing professional development. Experience with cloud security controls and monitoring (e.g., Microsoft 365/Azure). Experience with SIEM/SOAR, detection engineering or incident automation. Experience implementing IAM tooling and access governance (e.g., PAM, IGA). Experience commissioning security testing and remediation programmes ...

depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols ...

scenarios and leading in-depth CTI investigations. Act as the escalation tier for cyber threat intelligence tasks within Cyber Security tooling including EDR and SIEM tooling. Interrogate threat intelligence and internal security tooling to identify items of interest and potential cyber threats. Proactive research and assessment of Tactics. Techniques and ...

Assisting with Zero Trust Client configuration and rollout, including secure network and data access. Integrate Zero Trust solutions with identity providers (Entra AD, Okta), SIEM/SOAR systems, endpoint platforms, and data repositories. Assisting infrastructure teams in migrating legacy VPN, proxy, and firewall solutions to cloud native Zero Trust models ...

remediation actions Security project experience Excellent problem-solving and communication skills Ability to work independently and proactively improve security operations Desirable Skills Experience with SIEM technologies Familiarity with vulnerability management and patching processes Knowledge of Microsoft 365 security technologies Security certifications such as Security+ ...

Risk in financial services. Experience with frameworks such as NIST, ISO27001, COBIT, SOX, and FFIEC. Good understanding of cloud security, GDPR, IAM/PAM, SIEM, vulnerability management, and network security. CISSP, CISM, CRISC, or similar certifications preferred. Skills & Experience: Strong strategic and analytical thinking Excellent communication and stakeholder management Strong ...

technologies, with experience managing and operating FortiGate firewalls Proven experience with Active Directory/Azure AD, including patch and group policy management Cloud native SIEM, SOCs and SOAR Windows Server, Windows 11, and Microsoft Application Suite Experience with adoption of Infrastructure-as-Code (IaC) utilising technologies such as Terraform and ...

CISO) Need an individual with a strong hands‐on network and security background Cisco networking Cisco firewalls (Firepower/Threat Detection) Palo Alto firewalls SIEM experience (Logarithm desirable) Web proxy (Forcepoint desirable) Governance skills Policy writing/reviewing Reporting KPI monitoring Certifications like CCNP/CISM would be desirable ...

security policies, standards, and operational controls; support audits, incident response, vulnerability remediation, and ensure effective use of security tooling (eg., Sentinel, Defender for Cloud, SIEM). Work closely with Operational Risk, DevOps, and Information Security teams to embed best practices into Agile delivery pipelines, balance stakeholder priorities, and drive ...

complex enterprise environments.**Technical Expertise:*** Hands-on exposure to one or more of: AWS, Azure, GCP, Kubernetes, IAM, CI/CD, API gateways, SIEM/SOAR, email security, EDR, ZTNA technologies or data security technologies.* Strong understanding of security principles, design patterns, and defense-in-depth strategies.**Knowledge of Standards ...

stakeholders. Desirable: Experience within financial services, FinTech, or other regulated environments. Familiarity with cloud security, operational resilience, or third-party risk management. Exposure to SIEM, vulnerability management, or security monitoring tools. Relevant certifications such as Security+, CISSP, CISM, CRISC, or ISO 27001. Cyber Risk & Compliance Analyst | £60,000 | London Hybrid ...

. Ability to obtain and maintain UK Government security clearances. Ideally You’ll Also Have Experience supporting security transformation or modernisation programs. Familiarity with: SIEM/SOAR technologies MITRE ATT&CK. Awareness of modern access management such as PAM and ZTNA. Exposure to Microsoft security technologies such as: Microsoft Sentinel ...

and international as required). Ideally, You’ll Also Have Experience supporting security transformation or modernization programs. Familiarity with: SOC/MDR operating models SIEM/SOAR technologies MITRE ATT&CK. Awareness of modern access management such as PAM and ZTNA. Exposure to Microsoft security technologies such as: Microsoft Sentinel ...

operations, IAM, or security governance. Strong stakeholder management and communication skills, with the ability to engage across both business and technical teams. Familiarity with SIEM, SOAR, IAM, or other security technologies would be highly advantageous. Previous experience within financial services or other regulated environments is strongly preferred. Fluent English communication ...

tracking remediation, validating fixes, and assisting with reporting. * Develop and maintain playbooks, runbooks, and procedural documentation. Required Skills: * Microsoft Defender XDR * Microsoft Sentinel (SIEM/SOAR) * Privacy Management Solutions (e.g. Purview, OneTrust) * Understanding of key cybersecurity and privacy concepts, such as Threat detection and analysis, Incident response lifecycle, Vulnerability and ...

Engineer required for global legal firm. You will be responsible for advancing the maturity of the SIEM platform alongside other strategic security solutions, working closely with internal teams to improve the organisation's overall security posture. This position focuses on onboarding new log sources, optimising data pipelines, developing advanced detection … review of security controls. There may occasionally be a requirement to support out-of-hours changes or respond to critical security incidents. Key Responsibilities SIEM Engineering & Optimisation Enhance and optimise SIEM performance, coverage, and detection fidelity Assess and improve SIEM architecture, including ingestion pipelines, parsing, and correlation logic Implement automation ...

Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials ...

technologies and modern software development approaches. You’re comfortable working across cloud and on‐premise environments, using tools such as identity and access management, SIEM, firewalls and secure remote access. You understand DevOps and SecOps ways of working, are used to operating at pace in a culture of continuous release ...

following audits or gap assessments Knowledge of NIST and/or ISO27001 Experience with: Conditional Access, Identity & Access Management (IAM), Privileged Access, Management (PAM), SIEM, monitoring, Endpoint security Key Responsibilities of the Cloud Security Engineer: Implement and remediate recommendations identified through recent security audits and assessments Support the organisation ...

and site-to-site connectivity Experience configuring and managing Sophos firewalls, including SD-WAN, intrusion prevention, and web filtering policies Familiarity with Microsoft Sentinel (SIEM) and Microsoft Defender for Endpoint for security monitoring, threat detection, and incident response Familiarity with infrastructure and application monitoring tools, such as Auvik or WhatsUp ...

Excellent communication and presentation skills. Desired Skills and Qualifications Demonstrable capability and qualifications across multiple of the following technical areas is advantageous. SOC/SIEM assessments and tooling Identity and Zero trust Security design and architecture GovAssure Operational Technology (OT) ISA 62443 Artificial Intelligence SWIFT CSP Cloud related certifications across ...