18 of 18 Remote/Hybrid SIEM Jobs in the North of England

with day-to-day responsibilities. Essential Skills and Experience: SC clearance required to start; DV sponsorship available. Proven expertise with Splunk and Microsoft Sentinel SIEM platforms. Strong programming skills in Python , with experience developing automation and Detection as Code pipelines. Proficiency in KQL and SPL for creating efficient, high-fidelity ...

Cloud Platforms Experience with private & public cloud such as AWS & Azure Security Experience with MDM, MFA, Email filtering, Next generation firewalls & Anti-Virus solutions, SIEM Solutions such as Sentinel Skills An ability to work independently and perform their own research Ability to work under pressure Creative problem solving Ability ...

required to: • Secure on prem & cloud infra (zero trust, segmentation, VPN, firewalls, IDS/IPS) • Hardening Windows/Linux VMware/Hyper V • SIEM (Sentinel/Alienvault) • EDR • Vulnerability management (Qualys) • Azure/AWS strong IAM & Conditional Access • M365 security: Defender for Office 365, DLP, Secure Score/Purview • Lead ...

mitigate cyber risks at both national and local levels. Key Responsibilities Responsible or gathering, normalising, and integrating cybersecurity-related data from multiple sources (e.g., SIEM, threat feeds, vulnerability sources, and cloud platforms) to develop trends and to detect threats, vulnerabilities, and anomalies. Ability to translate raw data into meaningful insights ...

benefits of establishing a healthy cyber security posture. Essential: Deep understanding of adversarial TTPs and threat actor lifecycles. Proven experience in malware, phishing, and SIEM log analysis. Strong grasp of threat modelling and risk assessment frameworks. Skilled in OSINT collection and analysis. Demonstrated leadership in CTI environments, including mentoring and ...

with live incidents, real attackers, and industry-leading tools — not just alert watching. What you'll be doing Monitoring, triaging & investigating alerts across SIEM/EDR/XDR Analysing attacker behaviour & building incident timelines Escalating incidents with clear technical context Using tools such as Microsoft Sentinel, Google SecOps, Defender ...

with live incidents, real attackers, and industry-leading tools — not just alert watching. What you'll be doing Monitoring, triaging & investigating alerts across SIEM/EDR/XDR Analysing attacker behaviour & building incident timelines Escalating incidents with clear technical context Using tools such as Microsoft Sentinel, Google SecOps, Defender ...

with live incidents, real attackers, and industry-leading tools — not just alert watching. What you'll be doing Monitoring, triaging & investigating alerts across SIEM/EDR/XDR Analysing attacker behaviour & building incident timelines Escalating incidents with clear technical context Using tools such as Microsoft Sentinel, Google SecOps, Defender ...

client in conjunction with this vacancy only. KEY SKILLS Cyber Security, Vulnerability Management, Penetration Testing, Risk Assessment, Compliance, PCI DSS, Security Tooling, Governance, SIEM, Endpoint Security, Security Investigations ...

client in conjunction with this vacancy only. KEY SKILLS Cyber Security, Vulnerability Management, Penetration Testing, Risk Assessment, Compliance, PCI DSS, Security Tooling, Governance, SIEM, Endpoint Security, Security Investigations ...

protocols (e.g. TCP/IP, BGP, OSPF) and experience securing routers, switches, firewalls and load balancers. Threat analysis and mitigation using tooling such as SIEM, IDS/IPS, and endpoint detection systems. Encryption & Cryptography expertise (e.g. SSL/TLS, IPsec, Kerberos, VPNs, PKI) including securing data in transit and ...

protocols (e.g. TCP/IP, BGP, OSPF) and experience securing routers, switches, firewalls and load balancers. Threat analysis and mitigation using tooling such as SIEM, IDS/IPS, and endpoint detection systems. Encryption & Cryptography expertise (e.g. SSL/TLS, IPsec, Kerberos, VPNs, PKI) including securing data in transit and ...

protocols (e.g. TCP/IP, BGP, OSPF) and experience securing routers, switches, firewalls and load balancers. Threat analysis and mitigation using tooling such as SIEM, IDS/IPS, and endpoint detection systems. Encryption & Cryptography expertise (e.g. SSL/TLS, IPsec, Kerberos, VPNs, PKI) including securing data in transit and ...

including their TTPs Experience in utilising open-source intelligence and the development of tools to assist with this Experience in conducting malware, phishing, and SIEM log analysis Knowledge of relevant cyber threat intelligence sources Demonstrated ability to manage customer relationships Proven ability to translate cyber threats to the relevant audience ...

ensure solutions are cost-efficient, scalable and compliant Working across Linux environments (primarily Ubuntu) while collaborating with Windows teams where needed Supporting vulnerability management, SIEM engineering and wider security initiatives Reading documentation, troubleshooting independently and quickly becoming productive in complex systems Working closely with a team of juniors, mid-level … Ability to troubleshoot independently, read documentation and identify efficient solutions Strong consulting skills - calm, pragmatic communication, and ability to challenge when required Exposure to SIEM (Splunk/Elastic), vulnerability tools, or cloud security platforms A problem-solving mindset and willingness to learn new tools and languages quickly Experience in fast ...

understand and proactively manage risk across the technology estate at both the national and force level. Key Responsibilities Development, maintenance, and deployment of SIEM detection rules for complex technical environments. Working alongside wider NMC functions, maintain knowledge of the threat landscape and TTPs employed by threat actors. Work across wider … Optimization of log collection to align with detection requirements. Maintain documentation for detection rules to be used by analysts. Scoping, testing and implementing new SIEM data connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Support with the creation of automation and analyst playbooks What ...

cyber-attacks. Configuration and maintenance of the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Development, maintenance, and deployment of detection rules and other SIEM content. Creation of custom solutions using both low-code and traditional development approaches. Providing support to forces for the configuration of Sentinel and log sources. … Leveraging Microsoft support for technical assistance and information regarding roadmap features. What you need to succeed in the role Experience of supporting and developing SIEM platforms in the context of a Security Operations Centre. Experience of log source configuration and parsing, as part of a SIEM implementation, including experience ...

Data & Information Security Analyst – Hybrid Our client is urgently looking for an experienced Data & Information Security Analyst to join their team on a Fixed-Term contract basis, for 18 months initially with a view to ...