9 of 9 Remote/Hybrid SIEM Jobs in the North West

mitigate cyber risks at both national and local levels. Key Responsibilities Responsible or gathering, normalising, and integrating cybersecurity-related data from multiple sources (e.g., SIEM, threat feeds, vulnerability sources, and cloud platforms) to develop trends and to detect threats, vulnerabilities, and anomalies. Ability to translate raw data into meaningful insights ...

with live incidents, real attackers, and industry-leading tools — not just alert watching. What you'll be doing Monitoring, triaging & investigating alerts across SIEM/EDR/XDR Analysing attacker behaviour & building incident timelines Escalating incidents with clear technical context Using tools such as Microsoft Sentinel, Google SecOps, Defender ...

client in conjunction with this vacancy only. KEY SKILLS Cyber Security, Vulnerability Management, Penetration Testing, Risk Assessment, Compliance, PCI DSS, Security Tooling, Governance, SIEM, Endpoint Security, Security Investigations ...

client in conjunction with this vacancy only. KEY SKILLS Cyber Security, Vulnerability Management, Penetration Testing, Risk Assessment, Compliance, PCI DSS, Security Tooling, Governance, SIEM, Endpoint Security, Security Investigations ...

protocols (e.g. TCP/IP, BGP, OSPF) and experience securing routers, switches, firewalls and load balancers. Threat analysis and mitigation using tooling such as SIEM, IDS/IPS, and endpoint detection systems. Encryption & Cryptography expertise (e.g. SSL/TLS, IPsec, Kerberos, VPNs, PKI) including securing data in transit and ...

including their TTPs Experience in utilising open-source intelligence and the development of tools to assist with this Experience in conducting malware, phishing, and SIEM log analysis Knowledge of relevant cyber threat intelligence sources Demonstrated ability to manage customer relationships Proven ability to translate cyber threats to the relevant audience ...

ensure solutions are cost-efficient, scalable and compliant Working across Linux environments (primarily Ubuntu) while collaborating with Windows teams where needed Supporting vulnerability management, SIEM engineering and wider security initiatives Reading documentation, troubleshooting independently and quickly becoming productive in complex systems Working closely with a team of juniors, mid-level … Ability to troubleshoot independently, read documentation and identify efficient solutions Strong consulting skills - calm, pragmatic communication, and ability to challenge when required Exposure to SIEM (Splunk/Elastic), vulnerability tools, or cloud security platforms A problem-solving mindset and willingness to learn new tools and languages quickly Experience in fast ...

understand and proactively manage risk across the technology estate at both the national and force level. Key Responsibilities Development, maintenance, and deployment of SIEM detection rules for complex technical environments. Working alongside wider NMC functions, maintain knowledge of the threat landscape and TTPs employed by threat actors. Work across wider … Optimization of log collection to align with detection requirements. Maintain documentation for detection rules to be used by analysts. Scoping, testing and implementing new SIEM data connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Support with the creation of automation and analyst playbooks What ...

cyber-attacks. Configuration and maintenance of the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Development, maintenance, and deployment of detection rules and other SIEM content. Creation of custom solutions using both low-code and traditional development approaches. Providing support to forces for the configuration of Sentinel and log sources. … Leveraging Microsoft support for technical assistance and information regarding roadmap features. What you need to succeed in the role Experience of supporting and developing SIEM platforms in the context of a Security Operations Centre. Experience of log source configuration and parsing, as part of a SIEM implementation, including experience ...