51 to 66 of 66 SIEM Jobs in London

Defining the system specifications to support optimal performance. Integrating workflows with third-party systems and security tools, such as Security Information and Event Management (SIEM) solutions, multi-factor authentication solutions, and cloud platforms like Amazon Web Services (AWS) and Azure. Defining the Responsible, Accountable, Consulted, and Informed (RACI) matrix ...

networking and infrastructure security Experience with containerised environments and CI/CD pipelines ( Docker, Kubernetes ) Proven experience implementing security tools such as EDR, SIEM/logging, IAM, vulnerability scanning, and secrets management Scripting and automation skills ( Python, PowerShell, Bash ) Knowledge of security frameworks and standards (ISO 27001, NIST, GDPR … Excellent problem-solving, communication, and collaboration skills Nice to have: retail or e-commerce experience, modern data stacks, SIEM platforms (Datadog, Splunk), and certifications such as CISSP or CISA Why This Role ...

tiered access model, legacy AD decommissioning, secure hybrid environments Microsoft 365 & Cloud Security Microsoft Defender XDR (Endpoint, Identity, Office 365, Cloud Apps) Microsoft Sentinel (SIEM): log ingestion, alert tuning, detection rules, incident workflows Intune & Endpoint Management: device compliance, MDM/MAM, BYOD enforcement Endpoint, Infrastructure & Asset Security Network, DNS & Access … Azure Firewall, VPN security, and network segmentation of azure infrastructure PowerShell scripting for security, identity, and infrastructure tasks Security automation using Logic Apps and SIEM workflows if required The salary on offer for this role is up to £60,000. ...

Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform ...

Join our leading consulting firm's Technology & Transformation practice as a Security Engineer (permanent or FTC, hybrid working). Help secure major financial services clients' platforms from cloud infrastructures and DevSecOps pipelines to Zero Trust ...

reporting to the IT Security Officer, to implement and maintain robust security across their infrastructure. Key responsibilities include managing WAF/DDoS, security gateways, SIEM/SOAR/EDR, firewalls, MFA/SSO, MDM/MAM, vulnerability scans, and incident response. Key Responsibilities: Manage WAF/DDoS, web/email … security gateways, SIEM/SOAR/EDR (alert response), firewalls, MFA/SSO, MDM/MAM, vulnerability scans/remediation, security certificates, IDS/IPS, PAM, and deliver security awareness training. Remediate penetration test findings and contribute to ad-hoc projects. Essential Experience: Strong knowledge of CrowdStrike EDR, Mimecast ...

absence of senior management. Key Responsibilities Lead investigations into escalated security incidents, assessing attack vectors, scope, and business impact. Correlate telemetry across SIEM, EDR, network, and cloud data sources to form complete incident narratives. Direct containment, eradication, and recovery actions in partnership with IT/OT stakeholders. Own medium‐ and … Preferred Certifications: GCIA, GCIH, CompTIA CySA+, Microsoft SC‐200, Splunk Power User (or equivalent). Technical Expertise: Strong analytical mindset with deep knowledge of SIEM/EDR tooling. Understanding of adversary behaviour, malware characteristics, and incident‐handling methodologies. Shift Structure & Security Conditions 14 shifts every 28 days , each 12 hours ...

absence of senior management. Key Responsibilities Lead investigations into escalated security incidents, assessing attack vectors, scope, and business impact. Correlate telemetry across SIEM, EDR, network, and cloud data sources to form complete incident narratives. Direct containment, eradication, and recovery actions in partnership with IT/OT stakeholders. Own medium- and … Preferred Certifications: GCIA, GCIH, CompTIA CySA+, Microsoft SC-200, Splunk Power User (or equivalent). Technical Expertise: Strong analytical mindset with deep knowledge of SIEM/EDR tooling. Understanding of adversary behaviour, malware characteristics, and incident-handling methodologies. Shift Structure & Security Conditions 14 shifts every 28 days , each 12 hours ...

standards. You will play a key role in clearing an immediate backlog of assurance deliverables while providing technical oversight to junior engineers and supporting SIEM integration activities. This is a hybrid East London role with no trackside/site access required. Key Responsibilities Cybersecurity Governance & Assurance Produce and maintain: Cyber … Provide design assurance for: Secure communications Firewalls (e.g., Cisco, Juniper) Switching and routed network environments Assess effectiveness of implemented security controls in networked systems SIEM Integration Support Produce documentation for SIEM onboarding: Data source identification Logging requirements Use-case and control alignment Support assurance activities for SIEM integration (e.g., Microsoft ...

shell) Demonstrated experience working in all phases of the SDLC Deep understanding and experience using cyber security operations, security monitoring, endpoint (EDR), Network, and SIEM Tools. Prior SOC experience a plus Extensive knowledge of network and server security protocols, technologies, and products. Industry recognized certifications (CISSP, GCIH, GCFA, OSCP … effectively solve current security challenges. Refusing to accept the status quo Qualifications Combination of the following: Degree in Information Technology, Engineering or similar SIEM management - Desirable to have some advanced Certification from SIEM vendor on products such as ArcSight , MS Sentinel or Logrhythem Skills Network Protocols Cyber Security Tools/ ...

through to resolution. Key responsibilities include: Leading investigations into advanced security incidents, identifying attack vectors, scope, and business impact Correlating data across multiple sources (SIEM, EDR, network, cloud) to build a complete incident narrative Executing and coordinating containment, eradication, and recovery actions Producing detailed incident reports and root cause analyses … team What We’re Looking For 3+ years’ experience in a SOC, Incident Response, or Threat Analysis role Strong hands-on expertise with SIEM and EDR platforms Deep understanding of attacker tactics, techniques, and procedures (TTPs) Proven experience handling high-severity incidents end-to-end Solid knowledge of malware behaviour ...

and help identify, investigate, and respond to security threats Triage vulnerabilities and work with internal teams to support remediation activity Use, maintain, and configure SIEM and monitoring tools across NOC and SOC environments Gather and analyse information from a wide range of security and infrastructure tools Handle operational tickets, escalations … technologies such as Zscaler , Palo Alto , and Vault Experience working within SOC and/or NOC environments , including monitoring and incident support Knowledge of SIEM platforms , vulnerability triage, and security event analysis Experience identifying security threats and supporting incident response activity Comfortable working across both operational support and engineering/ ...

background in solution design and development for security operations Experience with Architecture Frameworks (ideally TOGAF) and developing HLD and LLD documents Technical expertise in SIEM and SOAR tooling, such as Google SecOps or similar Proficiency with EDR, XDR, and NDR tools like Crowdstrike or Microsoft Defender Experience working within Agile … and submit (subject to required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Security Operations Architect, Cyber Security, SIEM, SOAR, EDR, XDR, Solution Design, TOGAF, HLD, LLD, Google SecOps ...

capabilities across client environments - particularly in areas like security monitoring, cloud security and automation. Build and improve security monitoring and detection use cases across SIEM/XDR platforms Create and tune alerts to identify suspicious or malicious activity Onboard and work with log and security data to improve visibility and … content in proposals and solution designs (pre-sales support) Skills Strong background in Cyber Security operations, monitoring, or defensive security Hands-on experience with SIEM/XDR platforms (e.g. Microsoft Sentinel, Splunk, Elastic) Ability to create, tune and improve detection use cases/alerts based on real-world threats Experience ...

proven skills working with the following – • Monitoring security alerts and events across enterprise environments • Investigating potential cyber security incidents and responding appropriately • Working with SIEM platforms such as Splunk, Sentinel or QRadar • Conducting threat analysis and triaging security alerts • Supporting incident response and remediation activities • Working with security engineering teams … Experience within financial services, fintech or other regulated environments would be beneficial. Interested? Please apply below SOC Analyst, Security Operations Analyst, Cyber Security Analyst, SIEM Analyst, Splunk, Microsoft Sentinel, Incident Response, Outside IR35 Contract ...

expensive indexing or hot storage. We specialize in comprehensive monitoring of logs, metrics, trace and security events with features such as APM, RUM, SIEM, Kubernetes monitoring and more, all enhancing operational efficiency and reducing observability spend by up to 70%. Solution Architects in Coralogix are key in meeting … Docker, Prometheus, OpenTelemetry. Background in Engineering/DevOps will be considered an advantage. Previous experience in Technical Sales of Observability, Monitoring, APM, RUM, SIEM is desirable. Proficiency in coding with high-level programming languages (Java, Go, Python) - advantage Candidates should have hands-on experience and the ability to integrate these ...