51 to 75 of 205 SIEM Jobs in London

improve threat detection capabilities. Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. Maintain and optimize security information and event management systems and other security tools used in the SOC. Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide More ❯

improve threat detection capabilities. Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. Maintain and optimize security information and event management systems and other security tools used in the SOC. Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide More ❯

improve threat detection capabilities. - Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. - Maintain and optimize security information and event management systems and other security tools used in the SOC. - Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide More ❯

can share once we've spoken, but these are the key requirements: * Endpoint Detection and Response, WAF, Privileged Access Management, Cloud Security, CASB, Firewalls, SIEM platforms * Microsoft tech stack - Azure, M365, Windows Server 201202022, OnPrem EntraID * Security framework knowledge across NIST CSF, ISO 27001, CIS controls, MITRE ATT&CK * Familiarity More ❯

can share once we've spoken, but these are the key requirements: * Endpoint Detection and Response, WAF, Privileged Access Management, Cloud Security, CASB, Firewalls, SIEM platforms * Microsoft tech stack - Azure, M365, Windows Server 201202022, OnPrem EntraID * Security framework knowledge across NIST CSF, ISO 27001, CIS controls, MITRE ATT&CK * Familiarity More ❯

IDS/IPS, encryption tools, and antivirus systems Familiarity with compliance audits and certification processes. Skills Strong knowledge of cybersecurity tools and frameworks (e.g., SIEM, NIST). Expertise in IT infrastructure, Active Directory (Hybrid), virtualization, and cloud (Azure). Excellent communication, leadership, and project management abilities. Analytical mindset with a More ❯

a banking or financial services environment . Strong knowledge of network security, cloud security (AWS/Azure/GCP), encryption, IAM, endpoint protection, and SIEM solutions . Hands-on experience with tools such as Splunk, CrowdStrike, Qualys, Nessus, Palo Alto, Fortinet, or similar . Solid understanding of security frameworks and More ❯

Head of Engineering to develop the security strategy and ensure appropriate security governance is in place Operating and improving/implementing security infrastructure including SIEM, WAFs, Firewalls and EDR/AV Working with engineering teams to ensure best practices including secure development, security testing, vulnerability remediation and supply chain security More ❯

Experience with SOC or NOC environments. A good understanding of SOC deployment or operation and/or typical SOC solutions or technologies (e.g. SOAR, SIEM, orchestration and automation, threat intelligence, incident response) would be a plus. • Proven ability to handle technical escalations, working closely with both technical and business stakeholders. More ❯

develop defense signatures Desired Skills: Certifications such as GIAC, GCIH, GCIA, ITIL Familiarity with NIST frameworks, Cyber Kill Chain Experience with case management, SOAR, SIEM, EDR tools Experience with multinational organizations and automation scripting (Python) Qualifications: Bachelor's degree or equivalent in Computer Science, Cybersecurity, or related fields Additional Information More ❯

Alerting: Expertise in building centralized logging solutions, integrating ELK Stack, Prometheus, Grafana, Splunk, and AWS-native security monitoring tools such as CloudWatch, Security Hub, SIEM integrations CI/CD Security & Automation: Proficient in Jenkins, Git, GitHub Actions, ensuring secure CI/CD pipelines with artifact encryption, automated security scanning, and More ❯

Alerting: Expertise in building centralized logging solutions, integrating ELK Stack, Prometheus, Grafana, Splunk, and AWS-native security monitoring tools such as CloudWatch, Security Hub, SIEM integrations CI/CD Security & Automation: Proficient in Jenkins, Git, GitHub Actions, ensuring secure CI/CD pipelines with artifact encryption, automated security scanning, and More ❯

. Track Record: Demonstrated success in building and scaling cloud security programs from scratch. Tooling: Familiarity with core cloud security components including IAM , WAFs , SIEM , CSPM , and vulnerability scanners. Technical Skills: Proficiency in at least one scripting or programming language (e.g. Python, Go, Bash). Threat Modeling: Practical knowledge of More ❯

Security: Enforcing and designing Security and access management policies IAM management Azure AD, MFA, SSO, PAM etc. Threat monitoring and detection – Microsoft Defender, Sentinel, SIEM etc. Adhering to security frameworks – ISO27001, NIST, GDPR Conducting risk assessments Core skills required: Strong Azure and Microsoft 365 experience (Exchange, SharePoint, Teams, Azure Infrastructure More ❯

a similar position within a large, complex, and technologically diverse organization. Proficiency in deploying, maintaining, and configuring a wide range of security technologies, including SIEM solutions, DLP solutions, firewall solutions, cloud security centers, IPS (Intrusion Prevention Systems), CTI (Cyber Threat Intelligence) solutions, and vulnerability scanners. Proxy solutions like Zscaler are More ❯

understanding of SOC best practices, incident response, and regulatory frameworks (e.g., GDPR, NIST, ISO 27001). Hands-on experience with security technologies such as SIEM, IDS/IPS, EDR, etc. Excellent communication skills, including the ability to explain technical topics to non-technical audiences Apply here or reach out to More ❯

or PowerShell is a plus Experience with security design and architecture, content development, workload automation and use-cases Experienced with technologies such as EDR, SIEM, SOAR, NGFW and their ecosystems Familiarity with cloud technologies, providers (such as GCP, AWS, Azure) Familiarity with attack surface management is a plus Experience in More ❯

improvements WHAT YOU'LL BRING: 5+ years of experience working within a security operations environment At least 1 year of experience in writing detections, SIEM rules, or EDR Significant experience with standard incident response processes Expertise in a broad range of information technologies, such as public cloud infrastructure (AWS, GCP More ❯

Solid understanding of AWS/Azure/GCP cloud security and web application security principles. Strong communication and documentation skills. Experience with tools like SIEM, CSPM, vulnerability scanners, and monitoring platforms. Nice to Have Experience working in or with UK healthcare organisations (e.g., NHS or private providers). CISSP, CISM More ❯

Solid understanding of AWS/Azure/GCP cloud security and web application security principles. Strong communication and documentation skills. Experience with tools like SIEM, CSPM, vulnerability scanners, and monitoring platforms. Nice to Have Experience working in or with UK healthcare organisations (e.g., NHS or private providers). CISSP, CISM More ❯

cloud providers' certification paths Security qualifications (e.g., apprenticeships or degrees) Experience with preparing high-quality documentation Experience using logging tools (whether this was a SIEM system or not) to generate alerts and reports Knowledge of the MITRE ATT&CK framework Why else you'll love it here Wondering what the More ❯

become an Information Security Manager in time. Required experience for the Cyber Security Analyst role: Cyber operations and incident response Incident investigations and remediation SIEM expertise Threat hunting and analysis Security assessments and compliance Security engineering and architecture Security operations Take on this hybrid Cyber Security Analyst position, requiring just More ❯

become an Information Security Manager in time. Required experience for the Cyber Security Analyst role: Cyber operations and incident response Incident investigations and remediation SIEM expertise Threat hunting and analysis Security assessments and compliance Security engineering and architecture Security operations Take on this hybrid Cyber Security Analyst position, requiring just More ❯

security principles, protocols, and standards. Proficiency with DevOps and DevSecOps tools (e.g. GitLab CI/CD, Ansible, Terraform). Experience with security tools like SIEM/SOAR (preferably Rapid7), IDS/IPS, vulnerability scanners, and code analysis tools (SonarCloud, Snyk, Chekov) Strong knowledge of network security, encryption, identity and access More ❯

network protocols, ports, and services * Understanding of encryption algorithms AES, RSA etc * Knowledge of Public Key Infrastructure (PKI), SSL/TLS certificates * Basics of SIEM * Basics of OS Patching Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the More ❯