1 to 25 of 28 Remote/Hybrid SIEM Jobs in London

initiatives. Skills & Experience Essential: Strong grounding in security engineering principles, practices and risk management. Experience working with a broad range of security controls (e.g., SIEM, IDS/IPS, firewalls, secure SDLC, cloud security configuration, CIS hardening, API security). Knowledge of security frameworks such as NIST, ISO 27001, CIS and ...

years in cybersecurity or technical security or solutions engineering roles. Hands-on experience deploying and managing security tooling - such as DLP, EDR, IAM, MDM, SIEM, ZTNA, or vulnerability scanners, and enjoy solving problems at the implementation level. Strong communication skills and comfortable communicating technical security concepts to non-security stakeholders. ...

years' experience in information security within a global enterprise environment . Strong knowledge of cloud and network security (Azure, O365). Experienced in DLP, SIEM, and incident response processes. Familiar with ISO 27001/27002 and governance frameworks. CISSP or CEH certification preferred. Excellent communication, stakeholder management, and documentation skills. ...

security controls. Experience with information security control testing methodologies, information security risk assessments, auditing tools and an interest in emerging technologies.. Security tooling (e.g. SIEM, Identity and Access Management platforms, DLP), cloud platforms (AWS, GCP, Azure), Infrastructure as Code (Terraform) and scripting languages (e.g. Python). Experience with workflow platform ...

logging, and security operations. Develop, optimise, and tune KQL queries for detection engineering and threat hunting. Review and enhance security configurations across cloud and SIEM/SOAR platforms. Manage engagements through architecture, deployment, tuning, documentation, and customer enablement. Identify security gaps and recommend improvements across logging, identity, endpoint hardening, cloud … remediation of misconfigurations and optimisation of security deployments. Leverage scripting, APIs, and automation to streamline repeatable tasks. Integrate firewalls, EDR platforms, logging pipelines, and SIEM/SOAR tooling. Customer & Collaboration Act as a trusted technical advisor to security and engineering stakeholders. Communicate complex technical concepts clearly to both technical and ...

Exposure to regulated or highly secure enterprise environments Security or architecture certifications such as CISSP, CCSP, TOGAF, AWS/Azure Security Specialty Familiarity with SIEM, security monitoring, logging, and observability tools Experience embedding security controls into DevOps and SRE practices ...

engineering or related fields Strong cloud security expertise across AWS and ideally GCP Experience working with compliance and regulatory frameworks Hands on experience with SIEM, firewalls and vulnerability management tools Scripting or coding capability for automation Excellent stakeholder communication skills Comfortable operating autonomously within a scale up environment What ...

engineering or related fields Strong cloud security expertise across AWS and ideally GCP Experience working with compliance and regulatory frameworks Hands on experience with SIEM, firewalls and vulnerability management tools Scripting or coding capability for automation Excellent stakeholder communication skills Comfortable operating autonomously within a scale up environment Whats ...

expect you to maintain awareness of emerging cyber threats, vulnerabilities, and trends through threat intelligence sources. You'll be familiar in using and deploying SIEM technologies, experienced with Azure Security Solutions, Defender for endpoint, Defender for Identity and Office 365, and be experienced with the development of Microsoft Sentinel Kusto ...

risk, not just control statements or policies Confidence working with non-security teams to challenge assumptions and improve outcomes What You’ll Work With SIEM tooling including Microsoft Sentinel and Log360 Cyber risk assessments across infrastructure, networks, systems and a wide variety of software applications Network architecture, firewall rules, segmentation ...

Microsoft 365, Azure), and oversee patch management, disaster recovery, and business continuity testing Manage and oversee a Cyber Security Analyst Provide technical oversight across SIEM, firewalls, endpoint protection, and IAM Monitor systems for risks, including data breaches and gaps in security mechanisms, and implement corrective measures Develop and apply ...

approach, with the ability to translate technical detail into clear business value. Excellent communication and presentation skills. Strong understanding of modern security architectures, including SIEM, SOAR, and Managed Security Services. Exposure to advanced security areas such as DDoS protection, Web Application Firewalls (WAF), Identity and Access Management (IDAM), Endpoint Detection ...

risk, not just control statements or policies Confidence working with non-security teams to challenge assumptions and improve outcomes What You’ll Work With SIEM tooling including Microsoft Sentinel and Log360 Cyber risk assessments across infrastructure, networks, systems and a wide variety of software applications Network architecture, firewall rules, segmentation ...

identify systemic issues, and drive continuous improvement across SOC processes. Collaborate with engineering, cloud, and cybersecurity teams to enhance log ingestion, telemetry quality, and SIEM/SOAR architecture Produce clear, structured incident reports, threat briefs, and stakeholder updates What you'll bring: Extensive hands-on experience with Microsoft Sentinel (SIEM ...

and resilient technology estate. You will also contribute to enhancing identity security, infrastructure protection, awareness initiatives, and the onboarding of systems to SOC/SIEM tooling. This role is ideal for someone with strong technical knowledge, excellent communication skills and a passion for defending large-scale environments from emerging threats. … gaps and recommending mitigating actions. Support cyber incident response processes and manage related tickets (ServiceNow). Onboard systems and log sources to SOC/SIEM; validate SIEM-generated alerts. Implement vulnerability scanning and coordinate corrective actions. Produce clear reports on emerging risks and security posture. Support governance, compliance, training and ...

candidates with a red team, exploit development, or adversary-simulation background, or those who deeply understand attack mechanics Practical experience working with telemetry pipelines, SIEM platforms, or custom detection tooling Comfort with automation and lightweight coding to transform and enrich data (string and structure transformation, pipeline logic, scripting) Background ...

Doing Architect and deploy Microsoft Purview (DLP, classification, compliance) Implement the Defender suite (Endpoint, Identity, Cloud Apps, Office 365) Build and tune Sentinel SIEM: analytics rules, playbooks, KQL, automation Design Zero Trust controls via Entra ID: Conditional Access, PIM, RBAC Lead client-facing workshops and contribute to presales and security ...

longer-term security improvements, projects and risk reduction initiatives across the organisation. Key responsibilities Monitor, investigate and respond to cyber security incidents using SIEM, EDR/MDR and other security tooling Perform deep-dive incident analysis across multiple log sources to identify root cause, indicators of compromise (IoCs) and remediation … closely with IT, Infrastructure, Cloud and Service teams to improve security controls across the organisation Review, onboard and manage log sources into SOC/SIEM platforms Validate and respond to security alerts generated by SIEM and endpoint protection platforms Manage security incidents and tickets in line with ITIL best practices ...

Premises and Privilege Cloud Upgrade of CyberArk PAM including all components between both major and minor versions Integration of CyberArk with Active Directory, SMTP, SIEM systems Knowledge of integration with 2FA using SAML, Radius CyberArk scripting experience using PACLI, REST API Configuration of CyberArk PSM Connection Components including ...

Premises and Privilege Cloud Upgrade of CyberArk PAM including all components between both major and minor versions Integration of CyberArk with Active Directory, SMTP, SIEM systems Knowledge of integration with 2FA using SAML, Radius CyberArk scripting experience using PACLI, REST API Configuration of CyberArk PSM Connection Components including ...

Skills & Experience of Cyber Sales Manager will include: 3+ Years Minimum of Successful Cyber Security Sales Experience Technical grounding in SOC, MDR, IR, SIEM, or related Solutions or Industrial/OT Environments is highly advantageous Proven Ability to Influence Senior IT/Security Stakeholders Established Network of UK Private-Sector ...

tiered access model, legacy AD decommissioning, secure hybrid environments Microsoft 365 & Cloud Security Microsoft Defender XDR (Endpoint, Identity, Office 365, Cloud Apps) Microsoft Sentinel (SIEM): log ingestion, alert tuning, detection rules, incident workflows Intune & Endpoint Management: device compliance, MDM/MAM, BYOD enforcement Endpoint, Infrastructure & Asset Security Network, DNS & Access … Azure Firewall, VPN security, and network segmentation of azure infrastructure PowerShell scripting for security, identity, and infrastructure tasks Security automation using Logic Apps and SIEM workflows if required The salary on offer for this role is up to £60,000. ...

and Service Owners Support projects such as: Firewall migrations, data centre moves, cloud connectivity, segmentation initiatives Zero Trust or least privilege initiatives Integration with SIEM/SOAR tooling Required Skills: Strong hands-on experience administering Palo Alto NGFWs in enterprise environments Proven experience with Panorama for centralised policy and device … Security Cloud security/networking exposure: Azure/AWS/GCP, cloud-native firewalls, transit networking VM-Series deployments, Terraform/automation exposure SIEM integration experience: Splunk/Sentinel/QRadar log forwarding and use-case support Scripting/automation: Python, PowerShell, Ansible, PAN-OS API, IaC patterns Experience ...

Role - Database Security Consultant Location -3 days from Canary Wharf office and 2 days from home Contract - Inside IR35 Job Description Key Responsibilities: Security Onboarding & Product Integration: Collaborate closely with Product Team to integrate and ...

tiered access model, legacy AD decommissioning, secure hybrid environments Microsoft 365 & Cloud Security Microsoft Defender XDR (Endpoint, Identity, Office 365, Cloud Apps) Microsoft Sentinel (SIEM): log ingestion, alert tuning, detection rules, incident workflows Intune & Endpoint Management: device compliance, MDM/MAM, BYOD enforcement Endpoint, Infrastructure & Asset Security Network, DNS & Access … Azure Firewall, VPN security, and network segmentation of azure infrastructure PowerShell scripting for security, identity, and infrastructure tasks Security automation using Logic Apps and SIEM workflows if required The salary on offer for this role is up to £60,000. ...