26 to 38 of 38 SIEM Jobs in the North West

Essential Experience 8-10+ years' experience across network and security engineering (design, build, operate) Strong troubleshooting across multiple layers: Network Identity Endpoint Proxy SIEM/SOAR Hands-on automation experience (e.g., Ansible, Terraform, GitHub, Azure DevOps) Proven ITIL change leadership experience Major Incident Management (MIM) exposure Desirable Certifications CCNP ...

GitHub/Azure DevOps). . ITIL change leadership and MIM experience; disciplined PIR culture. . Strong troubleshooting across layers (network, identity, endpoint, Proxy, SIEM/SOAR). Preferred Certifications . CCNP/CCIE, Zscaler Professional, Fortinet NSE 4+, Splunk Admin/ES, ITIL 4 MP (or equivalents). KPIs ...

understand and proactively manage risk across the technology estate at both the national and force level. Key Responsibilities Development, maintenance, and deployment of SIEM detection rules for complex technical environments. Working alongside wider NMC functions, maintain knowledge of the threat landscape and TTPs employed by threat actors. Work across wider … Optimization of log collection to align with detection requirements. Maintain documentation for detection rules to be used by analysts. Scoping, testing and implementing new SIEM data connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Support with the creation of automation and analyst playbooks What ...

understanding of Information Security solutions e.g. email/web gateways, Privileged Account Management (PAM), Identity Governance and Administration (IGA), Security Information and Event Management (SIEM), Endpoint protection etc. Knowledge/experience working with firewalls is highly advantageous Experience of Cloud security solutions and standards is highly advantageous Competence, knowledge and ...

modules: Network & Cloud: Configure network devices and explore cloud computing models like IaaS and SaaS. Digital Security: Learn to protect data using risk management, SIEM tools and vulnerability assessments. IT Support: Manage helpdesk tickets, resolve technical issues and configure operating systems. Data Management: Source, cleanse and analyse data to present ...

international Consultancy firm, specialist in Cyber Security and looking for a Senior Security Engineer to take a lead role in advanced engineering work for SIEM and XDR , escalated security incident response, and advanced threat hunting. What this job is really about Owning M icrosoft Sentinel and Defender XDR so they … habit, not a once-a-month exercise: building KQL hunts, mapping to MITRE ATT&CK, and turning "interesting patterns" into hardened detections.? Making the SIEM/XDR bill make sense : understanding ingestion, licensing, and where to cut noise without cutting visibility. Who this will suit You've already run security ...

Responsibilities Act as the escalation point for all security incidents Report incidents and SOC performance metrics to SOC Leadership Define, specify, and agree SIEM detection content and use-case development Liaise with 3rd party provider on configuration changes, enhancements, and operational alignment Support the establishment and scaling … capabilities against defined quality and compliance criteria Required experience Strong experience in SOC operations within government, defence, or critical national infrastructure Good understanding of SIEM platforms, detection engineering, and alert lifecycle management Experience working with third-party or managed SOC providers Familiarity with ITSM tooling, ideally ServiceNow Current DV clearance ...

Duration: 18/12/2026 Rate £646 MUST BE PAYE THROUGH UMBRELLA Role Description: Own a component area (e.g., segmentation, NAC, DDI, egress, SIEM detections, runbook automation) within the pod. Refine epics into stories with clear acceptance tests; manage dependencies and keep delivery flow unblocked. Responsibilities Story elaboration: translate … domains; excellent story writing and backlog hygiene. Comfortable with config/policy artefacts (firewall baselines, ISE/NAC policy, DDI plans, proxy/ZTNA, SIEM rules). ITIL change fluency; ServiceNow request/change models. Preferred Certifications PSPO/CSPO; ITIL 4 Foundation; vendor fundamentals in one or more stacks ...

Budget planning & vendor procurement to ensure cost-efficiency. Produce and present performance metrics to senior leadership. Implement and optimise monitoring, detection, and investigative tools (SIEM, etc.) Ideal Experience C5yrs+ years in either (or both) network and security operations — ideally with at least 3-5 years in a managerial/leadership … technical teams. Broad expertise in network infrastructure: routing, switching, firewalls, VPNs, load balancers, cloud networks. Deep understanding of security monitoring and incident response tools (SIEM, etc.) Side notes Hybrid working; 2-3 days office based in Bolton MSP experience is highly desirable ...

Role: SIEM Application Engineer Have you got what it takes to succeed The following information should be read carefully by all candidates. Type: Contract (3 Months) Location: Birmingham/Manchester, UK (Hybrid 3 days a week) Payrate: £450 - £550 per day INSIDE IR35 Umbrella Elastic Stack Mastery: 5+ years ...

Role: SIEM Application Engineer Type: Contract (3 Months) Location: Birmingham/Manchester, UK (Hybrid 3 days a week) Payrate: £450 - £550 per day INSIDE IR35 Umbrella Elastic Stack Mastery: 5+ years of cybersecurity engineering experience, specializing in the end-to-end delivery, optimization, and operation of the Elastic Stack ...

Role: SIEM Application Engineer Type: Contract (3 Months) Location: Birmingham/Manchester, UK (Hybrid 3 days a week) Payrate: £450 - £550 per day INSIDE IR35 Umbrella Elastic Stack Mastery: 5+ years of cybersecurity engineering experience, specializing in the end-to-end delivery, optimization, and operation of the Elastic Stack ...

seeking a Network Component Product Owner to lead delivery across a defined network or security capability area (e.g., segmentation, NAC, DDI, egress, SIEM detections, or runbook automation). You will translate technical and risk requirements into actionable delivery outcomes, manage dependencies across technology towers, and ensure smooth, continuous delivery within … user stories and maintaining healthy backlogs. Familiarity with configuration and policy artefacts such as firewall baselines, NAC policies, DDI plans, proxy/ZTNA, and SIEM rules. Working knowledge of ITIL change processes and ServiceNow request/change models. Preferred Certifications PSPO or CSPO ITIL 4 Foundation Vendor fundamentals across ...