26 to 34 of 34 SIEM Jobs in the Midlands

has responsibility for coaching and mentoring the analysts on a day to day basis. Provide out of hours technical escalation support to shift analysts Main Duties and Responsibilities: Developing SIEM detection rules and tuning alerts across our client estates. Conduct proactive threat intelligence research and carry out threat hunting across client estates Training of analysts and developing training resources and … and performance within the CSOC What are we looking for in the successful candidate? Essential: Experience in investigating and responding to cyber security threats within strict SLAs. Experience with, SIEM, EDR and Email Security toolsets and how to leverage these tools to provide robust Detect & Respond services. Experience working in a Microsoft XDR SOC KQL (Kusto Query Language) experience Experience More ❯

My client, a leading IT Security focused Managed Services Provider is looking to hire a new SIEM focused SOC Engineer for a 6 month project based in Birmingham. The primary function of the Senior SOC Engineer is to enhance our security operations capabilities. This role requires deep expertise in SIEM platforms, including Splunk, IBM QRadar, Microsoft Defender, Microsoft Sentinel, and … Chronicle, with a strong focus on playbook development, analytical rule creation, and threat modelling. You will be instrumental in building and optimizing our detection and response strategies. Job Duties SIEM Engineering & Management Deploy, configure, and maintain SIEM platforms (Splunk, QRadar, Sentinel, Defender, Chronicle). Onboard and normalize log sources across cloud and on-prem environments. Develop and optimize analytical rules … for threat detection, anomaly detection, and behavioural analysis. Skills Must be able to obtain SC Clearance or already hold SC clearance. SIEM Expertise: Hands-on experience with at least two of the following: Splunk IBM QRadar Microsoft Defender for Endpoint Microsoft Sentinel Google Chronicle Technical Skills: Strong knowledge of log formats, parsing, and normalization. Experience with KQL, SPL, AQL, or More ❯

occasionally lend a hand across IT when needed - so a generalist IT background is helpful too. The environment is Microsoft-focused (Azure, M365, Defender), with Exabeam as the primary SIEM, and you'll play a key part in their journey toward Cyber Essentials Plus certification. The Role Investigate, respond to, and resolve security incidents Shape and improve SIEM monitoring and … in IT Security Engineering or a related technical field Proven hands-on experience with: Microsoft 365 & Azure Security (Defender, Entra ID, Conditional Access) Networking fundamentals (Cisco Meraki, VPNs, segmentation) SIEM (ideally Exabeam) Endpoint security and EDR/XDR Background in general IT or infrastructure support Excellent communication skills, patient and clear with non-IT users Proactive and self-starting mindset More ❯

clients. This Junior SOC Analyst role will be an integral member of the Security Operation Centre. They will help identify and analyse potential threats utilising a number of different SIEM & EDR tools. To be a key member of Security Operations Centre (SOC) and provide real-time threat analysis and detection. Respond to system generated alerts, analyse logs and traffic patterns. … years UK residency) 1-3 years' experience as a Security/Network Administrator orequivalent Bachelor's degree in a related field or equivalent experience and knowledge Experience working with SIEM systems Industry standard certifications such as: CompTIA Security+, CompTIA Network+, CompTIA CySa+, Cisco CCNA, EC-Council CEH, and/or relevant specialized degree in Cyber Forensics or Computer Science. Kroll More ❯

Infrastructure & Security Manager 6 Month Contract (Inside IR35) Hybrid Nottingham | Circa £475 per day Were looking for an experienced Infrastructure & Security Manager to lead a cloud-first IT environment for a major UK organisation with a nationally distributed workforce. This More ❯

operational strategy Compensation $100,000 - $115,000 depending on experience and skillset What You'll Be Doing Leading incident response and managing containment, analysis, and resolution Monitoring security systems (SIEM, EDR, threat intel) to identify and respond to threats Conducting vulnerability assessments and supporting remediation for financial systems Ensuring compliance with GLBA, PCI, FFIEC, and other regulatory frameworks Supporting risk … risk, and audit teams What You'll Need to be Considered 3-5+ years of relevant experience Prior experience in financial services, banking, or fintech cybersecurity Expertise with SIEM, EDR, NGFW, and vulnerability management tools Familiarity with scripting (Python, PowerShell) for automation and threat detection Experience conducting third-party risk reviews and regulatory reporting ITAC Solutions firstName lastName Email More ❯

Job title: Cyber Security Engineer - Trellix SIEM Day rate: £400-440 per day - Outside IR35 Location: Fully remote Duration: 4 weeks Vetting/Clearance: BPSS or above, e.g. CTC/SC/DV Start date: ASAP Standard hours: Monday to Friday Role: We are assisting a successful IT consultancy who are supporting their prestigious customer with a new Trellix SIEM … s IT environment. Data Source Integration: Add, import, and configure log and event data sources - such as servers, endpoints, firewalls, and cloud services - to feed security data into Trellix SIEM for analysis. Configuration and Customisation: Customise SIEM dashboards, create custom data views, and modify default event aggregation settings to meet specific organizational requirements. Development: Develop and tune correlation rules to More ❯

policies and processes Co-ordination of security audits and management of outcomes Attend routine board meetings to overview current and future information security developments Manage and enhance the corporate SIEM solution to ensure the estate is being monitored for threats and vulnerabilities. Ensuring the system remains fit for purpose for future threats and estate changes Co-ordination of penetration testing … on potential threats or patterns Respond to security related enquiries Ideal Technical Knowledge: CISSP qualification Networking (prefer Cisco) Active Directory Virtualisation Platforms (prefer VMWARE) AV/EDR/XDR SIEM (preference AlienVault) Email Security (Prefer Mimecast) Vulnerability Management (prefer Nessus) Please apply to hear more More ❯

Key Responsibilities: Deliver security architecture services aligned with TOGAF and SABSA frameworks. Provide expert guidance to clients on secure cloud architecture (Azure, AWS) Lead the design and implementation of SIEM tools (e.g., Azure Sentinel, Splunk). Architect enterprise DLP solutions, including Varonis and Microsoft Purview. Support organisations in defining their security architecture roadmap, ensuring alignment to business and IT strategy … awareness. Skills & Experience: Experience working within a professional services or technology consultancy. Experience working in Pharmaceuticals is desirable. Strong knowledge of security architecture frameworks (TOGAF, SABSA). Experience with SIEM platforms (Azure Sentinel, Splunk). Deep understanding of enterprise DLP systems and data protection strategies. Familiarity with Microsoft security tools including Purview, MCAS, MDI. Strong governance and risk management capabilities. More ❯