51 to 69 of 69 SIEM Jobs in London

incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. Oversee operational security processes with tools like SIEM, EDR, and Vulnerability Management, continuously enhancing capabilities. Network and System Security Manage advanced security tools such as firewalls and IDS/IPS to protect network … qualifications. Good underpinning knowledge of the Microsoft technology stack, cloud, on-premises and End user Compute. Understanding and experience of web filtering, email security, SIEM, EDR/XDR. Experience of managing investigations in SOC (L2 or above ...

work and can collaborate effectively across technical and business stakeholders. Responsibilities for the Cyber Security Analyst: Monitor, investigate and respond to security alerts across SIEM platforms and ticketing systems, managing incidents through to resolution Participate in an on-call rota to support live security incidents Manage incident queues and approvals … overall security posture Essential Skills for the Cyber Security Analyst: Strong experience in security use case development and security tooling operations Practical experience with SIEM platforms and vulnerability management solutions Solid understanding of Security Operations processes and incident response frameworks Knowledge of networking fundamentals, IAM, perimeter controls and operating systems ...

AIOps, ServiceNow) Project & Governance Frameworks (PMI, PRINCE2) Connectivity Services (Network Underlay & Overlay) Cloud Infrastructure (Managed Hosting, Hybrid & Platform Services) Managed Security (Firewalls, SSE, SOC, SIEM) Requirements 15+ years’ experience in IT infrastructure, managed services, or enterprise transformation Proven success with $10m+ deals Strong commercial acumen and solution architecture expertise Experience ...

tiered access model, legacy AD decommissioning, secure hybrid environments Microsoft 365 & Cloud Security Microsoft Defender XDR (Endpoint, Identity, Office 365, Cloud Apps) Microsoft Sentinel (SIEM): log ingestion, alert tuning, detection rules, incident workflows Intune & Endpoint Management: device compliance, MDM/MAM, BYOD enforcement Endpoint, Infrastructure & Asset Security Network, DNS & Access … Azure Firewall, VPN security, and network segmentation of azure infrastructure PowerShell scripting for security, identity, and infrastructure tasks Security automation using Logic Apps and SIEM workflows if required The salary on offer for this role is up to £60,000. ...

Key Responsibilities: Security Onboarding & Product Integration: Collaborate closely with Product Team to integrate and onboard product to security controls. Work with CSO to agree compliance and onboarding requirements to CSO controls. Interpret security policies and ...

and Service Owners Support projects such as: Firewall migrations, data centre moves, cloud connectivity, segmentation initiatives Zero Trust or least privilege initiatives Integration with SIEM/SOAR tooling Required Skills: Strong hands-on experience administering Palo Alto NGFWs in enterprise environments Proven experience with Panorama for centralised policy and device … Security Cloud security/networking exposure: Azure/AWS/GCP, cloud-native firewalls, transit networking VM-Series deployments, Terraform/automation exposure SIEM integration experience: Splunk/Sentinel/QRadar log forwarding and use-case support Scripting/automation: Python, PowerShell, Ansible, PAN-OS API, IaC patterns Experience ...

hunting, and detection engineering Identifying vulnerabilities and documenting exploitation paths, with clear remediation guidance Reviewing threat intelligence feeds and contributing to security advisories Supporting SIEM rule optimisation and detection use cases Assisting in the deployment and automation of security tooling (SIEM, EDR, DLP, email security) Contributing to scripting and automation ...

future business needs.• Own the full network and security lifecycle, maintaining uptime close to 99.99%.• Monitor, investigate, and respond to security incidents using SIEM tools, Sophos MDR, and threat-hunting techniques.• Configure and manage firewalls, VPNs, IDS/IPS, web and email security solutions.• Maintain high patching and vulnerability … Expert knowledge of Checkpoint firewalls, Cisco routers and switches, and Cisco ISE.• Strong experience with Zscaler Internet Access, Zscaler Private Access, Splunk, and enterprise SIEM tooling.• Proven background in network security, threat prevention, and incident response.• Cisco CCNA and CCNP certifications.• Experience with data centre colocation and vendor/carrier ...

Role - Database Security Consultant Location -3 days from Canary Wharf office and 2 days from home Contract - Inside IR35 Job Description Key Responsibilities: Security Onboarding & Product Integration: Collaborate closely with Product Team to integrate and ...

tiered access model, legacy AD decommissioning, secure hybrid environments Microsoft 365 & Cloud Security Microsoft Defender XDR (Endpoint, Identity, Office 365, Cloud Apps) Microsoft Sentinel (SIEM): log ingestion, alert tuning, detection rules, incident workflows Intune & Endpoint Management: device compliance, MDM/MAM, BYOD enforcement Endpoint, Infrastructure & Asset Security Network, DNS & Access … Azure Firewall, VPN security, and network segmentation of azure infrastructure PowerShell scripting for security, identity, and infrastructure tasks Security automation using Logic Apps and SIEM workflows if required The salary on offer for this role is up to £60,000. ...

cyber security operations , owning the end-to-end security lifecycle across enterprise infrastructure. Key responsibilities include: Security monitoring, threat hunting and incident response SIEM, MDR oversight and vulnerability management Firewall, VPN, IDS/IPS and Zero Trust technologies Pen testing coordination and CVSS-led remediation Security architecture planning, policies and … Checkpoint, Cisco ISE, Zscaler (ZIA/ZPA/ZDX), Splunk, Sophos MDR, Mimecast, Okta Networking: Cisco (Catalyst, Nexus), Fortinet, firewalls and VPNs Security Ops: SIEM, intrusion detection, ethical hacking Scripting: PowerShell What They’re Looking For Proven experience in a security-focused infrastructure role Strong hands-on expertise with firewalls ...

Project Manager with a broad Technical and Cyber background, with proven experience of bringing a Platform live, with strong knowledge of GRC, CMDBs, SIEM tooling as well as Service acceptance criterias, key artefacts and good understanding of how to build out a Data Lake.Key Requirements: · Proven experience … implementation (into live) · Previous experience of building out a CMDB and good understanding of how to build out a Data Lake · Excellent knowledge of SIEM tooling and commercial understanding of bringing data in from different places · Strong knowledge of Service acceptance criterias and key artefacts · Ability to ensure projects align ...

with enterprise architecture and security policies. Design and architect solutions across various security domains including: Data Loss Prevention (DLP) Security Information and Event Management (SIEM) Identity and Access Management (IAM) Endpoint Detection and Response (EDR), MDM, and Endpoint Management tools Cloud and On-Prem Security Solutions Collaborate with stakeholders such … knowledge of emerging security threats and best practices to continuously enhance solution designs. Qualifications - Proven experience designing security solutions across multiple domains including DLP, SIEM, IAM, and Endpoint Security. Bachelor’s degree in computer science, Cybersecurity, Information Systems, or related field (master’s preferred). Experience in cybersecurity with 3+ ...

scale. Key Responsibilities Strategic Platform & Automation Leadership Lead and support the selection, design, and transition from fragmented security tooling to a unified SIEM platform and security data lake . Drive a fundamental shift from incident-focused, task-based workflows to preventative security activities and platform optimisation . Proactive Threat Focus … months, ideally in regulated or high-availability environments. End-to-End Programme Ownership Full lifecycle ownership of major initiatives including MDR consolidation, SIEM, SOAR, and security data lake deployments , delivering measurable business outcomes. Formal RFP & Vendor Management Expertise Proven experience authoring RFPs, evaluating vendors, and overseeing complex onboarding and integration. ...

Location: UK (remote/hybrid) Stack: • Microsoft Security: Defender XDR, Sentinel, Entra ID • SIEM/XDR: Microsoft Sentinel (KQL), SentinelOne (S1QL) • Exposure to other platforms such as CrowdStrike, or Elastic a plus • Threat intelligence integration and detection tuning • Tooling: KQL, S1QL, PowerShell, API usage Join us and help strengthen … testing and validation across endpoint, identity, and cloud telemetry. Platform & engineering responsibilities • Understand how telemetry from endpoints, identity, cloud, and network sources feeds into SIEM/XDR platforms. • Support optimisation of logging pipelines and signal ingestion where required. • Contribute to detection-as-code, structured rule development, and repeatable deployment practices. ...

incidents, overseeing team members and ensuring technical excellence throughout delivery. Support detection engineering and SecOps enhancement initiatives, including identifying coverage gaps in EDR/SIEM tooling and contributing to orchestration and automation playbooks. Work directly with client technical teams, acting as a trusted advisor and primary point of contact during … least two of the following areas: Digital forensics and technical incident response Enterprise security operations tooling and processes Detection engineering within EDR/SIEM environments, including addressing ATT&CK TTP coverage gaps Enterprise IT networks and Active Directory Cloud platforms such as Microsoft 365, Azure, AWS or GCP You will ...

Cyber SOC Engineers and Analysts to maintain and enhance protective monitoring and detection capability. This is a hands-on engineering role with exposure to SIEM, security tooling, and incident investigation support. Key responsibilities include: Monitoring and improving performance of SOC protective controls and tooling Investigating, resolving or escalating technical issues … toolset Liaising with technology vendors where required Skills & Experience Required Strong analytical capability with experience handling and interrogating large data sets Experience working with SIEM platforms (essential) IPS experience (desirable) Solid understanding of Cyber Security Operations Good awareness of current cyber threats and attack techniques Advanced IT technical skills, including ...

services over multiple years. Drive the deployment of best-in-class security technologies, including Endpoint Detection & Response (EDR) and Security Information and Event Management (SIEM) solutions. Collaborate with Cyber Security, IT, and business stakeholders to ensure alignment, adoption, and smooth transition to business-as-usual operations. Support M&A activities … enabling rapid onboarding/offboarding of businesses into the SOC environment. What we're looking for: Proven experience leading SOC consolidation programmes and EDR/SIEM implementations Strong knowledge of cyber security operations, frameworks, and standards Excellent programme and stakeholder management skills Ability to oversee complex, multi-year workstreams, balancing ...

Product Owner to take end-to-end ownership of a key component area within our engineering pod-such as segmentation, NAC, DDI, egress, SIEM detections, or runbook automation. In this role, you will refine epics into clear, testable stories, manage cross-tower dependencies, and keep delivery flowing smoothly from idea … discipline and excellent backlog hygiene. Comfortable working with technical configuration and policy artefacts (firewall baselines, ISE/NAC policy, DDI designs, proxy/ZTNA, SIEM rules). Fluent in ITIL change processes and familiar with ServiceNow request/change models. Preferred Certifications PSPO or CSPO ITIL 4 Foundation Vendor fundamentals ...