1 to 25 of 52 SIEM Jobs in the North West

Threats : Assist in identifying suspicious activity and responding to security incidents in real time Security Tools and Technologies : Gain hands-on experience with firewalls, SIEM tools (e.g., Splunk, Microsoft Sentinel), endpoint protection, and vulnerability scanners Vulnerability Assessments : Help run scans to identify weaknesses in systems and recommend remediation actions Policy ...

using SOAR tooling and its application Application of data science against large datasets involving unstructured data and designing data models Knowledge of using SIEM platforms to identify suspected security events and creating content to enhance the platform Knowledge of custom API's to leverage the SOAR's functionality Ability ...

manage multiple priorities and remain calm under pressure Excellent written and verbal communication skills Desirable Experience working in an MSSP or MDR environment SIEM and/or SOAR deployment and support experience Security operations or incident response background Experience with Azure and Google Cloud AWS experience Why Apply? Remote-first ...

manage multiple priorities and remain calm under pressure Excellent written and verbal communication skills Desirable Experience working in an MSSP or MDR environment SIEM and/or SOAR deployment and support experience Security operations or incident response background Experience with Azure and Google Cloud AWS experience Why Apply? Remote-first ...

manage multiple priorities and remain calm under pressure Excellent written and verbal communication skills Desirable Experience working in an MSSP or MDR environment SIEM and/or SOAR deployment and support experience Security operations or incident response background Experience with Azure and Google Cloud AWS experience Why Apply? Remote-first ...

manage multiple priorities and remain calm under pressure Excellent written and verbal communication skills Desirable Experience working in an MSSP or MDR environment SIEM and/or SOAR deployment and support experience Security operations or incident response background Experience with Azure and Google Cloud AWS experience Why Apply? Remote-first ...

manage multiple priorities and remain calm under pressure Excellent written and verbal communication skills Desirable Experience working in an MSSP or MDR environment SIEM and/or SOAR deployment and support experience Security operations or incident response background Experience with Azure and Google Cloud AWS experience Why Apply? Remote-first ...

including the use of Microsoft Purview and computer forensics an advantage. Experience of utilising and monitoring Information Security solutions e.g. email/web gateways, SIEM, Endpoint protection etc. Strong awareness of Cloud services and supporting security solutions & standards. Good understanding of cloud native and devops practices including pipelines and associated ...

tools such as EDR, XDR, firewalls, WAF, and email security; experience with CrowdStrike, Palo Alto, and Microsoft Defender is advantageous. Hands-on experience with SIEM platforms, including configuration and data integration. Familiarity with cloud security, network security, and endpoint security across Windows, Linux, and macOS environments. Package ...

tools such as EDR, XDR, firewalls, WAF, and email security; experience with CrowdStrike, Palo Alto, and Microsoft Defender is advantageous. Hands-on experience with SIEM platforms, including configuration and data integration. Familiarity with cloud security, network security, and endpoint security across Windows, Linux, and macOS environments. Package ...

security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments or penetration testing. Manage relationships with external pentest providers, auditors, and assessors. Secure Development Lifecycle (SDLC) Partner ...

security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments or penetration testing. Manage relationships with external pentest providers, auditors, and assessors. Secure Development Lifecycle (SDLC) Partner ...

security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments or penetration testing. Manage relationships with external pentest providers, auditors, and assessors. Secure Development Lifecycle (SDLC) Partner ...

security operations, including vulnerability management, access reviews, and incident response readiness. Provide insights and triage signals from security tooling (SAST, DAST, dependency scanning, SIEM). Work hands-on to perform internal security assessments or penetration testing. Manage relationships with external pentest providers, auditors, and assessors. Secure Development Lifecycle (SDLC) Partner ...

mitigate cyber risks at both national and local levels. Key Responsibilities Responsible?for?gathering, normalising, and integrating cybersecurity-related data from multiple sources (e.g., SIEM, threat feeds, vulnerability sources, and cloud platforms) to?develop trends and to detect?threats,?vulnerabilities,?and anomalies. ? Ability to translate raw data into meaningful insights ...

more consultative, client-facing role. Ideal Background: Proven experience in cyber security design, architecture, or consultancy. Hands-on expertise across domains such as SIEM, SOAR, EDR, Vulnerability Management, WAF, IDAM , and Cloud Security . Strong understanding of vendor technologies (e.g., Fortinet, Palo Alto, Juniper ). Excellent communication and stakeholder engagement ...

with customers and other internal stakeholders. Confidence in effectively communicating technical incidents or security threats to non-technical stakeholders. Previous experience of working with SIEM and log monitoring tools. SC-200, SC-900 or equivalent certification would be beneficial but not essential. To be considered for this role, you must ...

with customers and other internal stakeholders. Confidence in effectively communicating technical incidents or security threats to non-technical stakeholders. Previous experience of working with SIEM and log monitoring tools. SC-200, SC-900 or equivalent certification would be beneficial but not essential. To be considered for this role, you must ...

with customers and other internal stakeholders. Confidence in effectively communicating technical incidents or security threats to non-technical stakeholders. Previous experience of working with SIEM and log monitoring tools. SC-200, SC-900 or equivalent certification would be beneficial but not essential. To be considered for this role, you must ...

solutions (MSP environment highly desirable). Deep product expertise in at least one area: Microsoft 365/Azure, cloud migration, cyber security (firewalls, EDR, SIEM), backup/DR, network infrastructure, or managed services. Proven ability to translate technical capabilities into business value for non-technical audiences. Understanding of the competitive ...

protocols (e.g. TCP/IP, BGP, OSPF) and experience securing routers, switches, firewalls and load balancers. Threat analysis and mitigation using tooling such as SIEM, IDS/IPS, and endpoint detection systems. Encryption & Cryptography expertise (e.g. SSL/TLS, IPsec, Kerberos, VPNs, PKI) including securing data in transit and ...

provisioning and compliance. Integration knowledge across Microsoft Exchange, M365, VMware and enterprise IT ecosystems. Understanding of Zero Trust architecture, identity threat detection, and SIEM integration. Strong stakeholder management, influencing, and communication skills. Ability to translate complex technical challenges into executive-level decisions and investment cases Our company: Peace ...

Information Security standards and frameworks Awareness and understanding of the Information Security threat landscape Awareness of Information Security solutions e.g. email/web gateways, SIEM, Endpoint protection etc. Strong understanding of IT General Controls frameworks Awareness of Operational Risk Management and Risk & Control Self-Assessment (RCSA) processes Competence, knowledge and ...

impactful Required Technical Experience Proven experience as a Security SME/Security Architect in complex enterprise environments Deep hands-on expertise with: Microsoft Sentinel (SIEM/SOAR) Microsoft Defender for Endpoint & Servers Microsoft Defender for Identity Microsoft Defender for Cloud Apps (CASB) Microsoft Defender for Office 365 Strong understanding ...

and closure of security cases, ensuring timely implementation of corrective actions. Develop and maintain threat scenarios to validate detection and response across SOC, EDR, SIEM, and XDR platforms. Translate threat intelligence into testable hypotheses and simulation exercises in collaboration with Threat Intelligence teams. Utilise adversarial emulation tools (Caldera, Atomic ...