1 to 25 of 39 SIEM Jobs in the North of England

highly technical engineering role, where you'll be hands-on developing and maintaining our security operations tooling. Key Responsibilities: Security Infrastructure & Engineering Architect, implement, and manage security technologies including: SIEM (Sentinel) Microsoft Defender suite (Cloud, Endpoint and Identity), Microsoft Sentinel, Purview and Azure infrastructure (including RBAC, PIM, NSGs and identity protections). Firewalls, IDS/IPS, WAF, VPN, and network More ❯

posture and make a measurable impact, we'd love to have you on the team. What you will do: Operate and optimise a wide range of security platforms, including SIEM, XDR, EDR, IAM, DLP, PAM, ZTNA, and vulnerability management tools Take ownership of the detection and response lifecycle - triaging alerts, investigating incidents, identifying root causes, and coordinating response actions Implement More ❯

detection and DevSecOps practices, ensuring security is embedded within operational workflows and cloud-native architectures. What you will do: Operate and optimise core cyber security tools and platforms, including SIEM, XDR, EDR, DLP, IAM, PAM, ZTNA and vulnerability management solutions Lead or support the detection and response lifecycle, including triage of alerts, investigation of incidents, root cause analysis, and coordination More ❯

of security investigations best practice including the use of Microsoft Purview and computer forensics an advantage. Experience of utilising and monitoring Information Security solutions e.g. email/web gateways, SIEM, Endpoint protection etc. Strong awareness of Cloud services and supporting security solutions & standards. Good understanding of cloud native and devops practices including pipelines and associated processes Hands on experience of More ❯

programming language - Demonstrable experience in using SOAR tooling and its application - Application of data science against large datasets involving unstructured data and designing data models - Knowledge of using SIEM platforms to identify suspected security events and creating content to enhance the platform - Knowledge of custom API's to leverage the SOAR's functionality - Ability to communicate to other stakeholders across More ❯

programming language - Demonstrable experience in using SOAR tooling and its application - Application of data science against large datasets involving unstructured data and designing data models - Knowledge of using SIEM platforms to identify suspected security events and creating content to enhance the platform - Knowledge of custom API's to leverage the SOAR's functionality - Ability to communicate to other stakeholders across More ❯

of: Corestream (GRC Business Assurance tool) End-point protection Email Protection Encryption Technologies Web Filtering Application control Data Leakage Mobile Device Management Vulnerability Testing Penetration Testing Phishing simulation campaigns SIEM and logging systems Cyber Incident Response OWASP top 10 compliance analysis Forensic Investigation/Breaches Managerial Duties Please see job description for full details of responsibilities Person Specification QUALIFICATIONS/ More ❯

Teams, SharePoint, Intune, Azure) Windows Server/Active Directory, Networking fundamentals (DNS, DHCP, VPNs, firewalls). Security tools, vulnerability management, and incident response Security technologies (firewalls, IDS/IPS, SIEM, vulnerability scanners) Familiarity with Microsoft Defender and Mimecast. Strong analytical and troubleshooting skills across complex IT environments. Experience of Compliance, IT Governance, Change Management etc Any relevant professional certifications would More ❯

and collaboratively with cross-functional teams. Understanding of Microsoft Azure, Entra ID, Conditional Access, and Intune. Experience with Active Directory, DNS/DHCP, Group Policy, and VPNs. Familiarity with SIEM/XDR platforms, endpoint protection, and incident response tools. Ability to work independently and collaboratively across teams. Preferred Experience: Minimum 3 years' experience in a technical support role with exposure More ❯

You have excellent problem-solving and analytical skills, along with effective communication and presentation abilities. You have hands-on experience with cyber security platforms from industry leaders, including EDR, SIEM, IPS, WAF, DLP, Identity & Data Management, and Network Security technologies. Experience with related infrastructure technologies is also acceptable. You are hands on experience with cloud platforms such as Azure and More ❯

Network, Application Logs Security frameworks/Standards (NIST, CIS, ISO27001) Scripting & Automation (PowerShell, Azure CLI, Azure Logic Apps) MITRE ATT&CK, Threat Modelling Knowledge of CVEs and security vulnerabilities SIEM Tools, Cyber Hunting Techniques Operational threat intelligence and common attack vectors Security vulnerabilities, technical reports Cyber Defence Manager will pay a salary range of £70,000 to £85,000 plus More ❯

interest in technology Experience of Information Security standards and frameworks Awareness and understanding of the Information Security threat landscape Understanding of Information Security solutions e.g. email/web gateways, SIEM, Endpoint protection etc. Knowledge/experience working with next gen security solutions Awareness of Cloud security solutions and standards is highly advantageous Experience working within recognised Information Security frameworks and More ❯

/responsibilities: • Proven experience up to 12 months working as a SOC Analyst• Experience in deep diving into security issues and analysis rather than just ticket management.• Experience with SIEM solutions (Azure Sentinel as #1 but Splunk etc also useful to have.• Scripting experience with – KQL/PowerShell Scripting• Threat Hunting/Analysis Investigation• Opportunity to run and be involved More ❯

Cloud & Modern Workplace: Microsoft 365, Azure AD, Intune, Teams, Conditional Access- On-Premise Infrastructure: Windows Server, VMware, Hyper-V, DNS, DHCP, Active Directory- Security & Compliance: Cyber Essentials+, ISO27001, Firewalls, SIEM, EDR, VPN- Remote Monitoring & Management (RMM): Patch Management, NAble, Proactive Monitoring- Licensing Models: Microsoft CSP, NCE, OV, SPLA, Volume Licensing This is a brilliant opportunity for a results-driven IT More ❯

escalated cases. • Proven leadership capability with experience line managing analysts, conducting performance reviews, and overseeing HR-related duties. • Experience providing ticket quality assurance and training delivery. • Familiarity with leading SIEM, endpoint and XDR security platforms, in multi-tenant MSSP environments. • Willingness to obtain or hold relevant security certifications, such as SBT BTL2 and CREST CRIA. More ❯

escalated cases. • Proven leadership capability with experience line managing analysts, conducting performance reviews, and overseeing HR-related duties. • Experience providing ticket quality assurance and training delivery. • Familiarity with leading SIEM, endpoint and XDR security platforms, in multi-tenant MSSP environments. • Willingness to obtain or hold relevant security certifications, such as SBT BTL2 and CREST CRIA. More ❯

Cloud & Modern Workplace: Microsoft 365, Azure AD, Intune, Teams, Conditional Access - On-Premise Infrastructure: Windows Server, VMware, Hyper-V, DNS, DHCP, Active Directory - Security & Compliance: Cyber Essentials+, ISO27001, Firewalls, SIEM, EDR, VPN - Remote Monitoring & Management (RMM): Patch Management, NAble, Proactive Monitoring - Licensing Models: Microsoft CSP, NCE, OV, SPLA, Volume Licensing This is a brilliant opportunity for a results-driven IT More ❯

Cisco, Palo Alto, ATP DR/Backup: Veeam, Zerto, DataDomain, Commvault, Avamar, Rubrik, Cohesity Storage Technology: File, Block, Object, including vSAN Cloud: AWS, Azure, Google Automation: Terraform, Ansible, Aria SIEM: Elastic, Aria Operations for Logs ServiceNow (Desirable) If you are the Infrastructure Engineer that my client is after, then please apply via the link. Please only apply if you have More ❯

CompTIA CySA+, Forescout FSCA) plus real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into cyber security. Course cost - £2795, or, £232.91 per More ❯

CompTIA CySA+, Forescout FSCA) plus real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into cyber security. Course cost - £2795, or, £232.91 per More ❯

plus buy and sell 5 more days) 7% employer pension contribution. Flexible working opportunities Experience required: Proven track record in an IT Security Specialist/Engineer role Experience with SIEM Platforms e.g. Microsoft Sentinel Endpoint protection experience Track record of timely delivery of infrastructure/security projects Microsoft security tech stack Good understanding of networking technologies Security compliance knowledge would More ❯

plus buy and sell 5 more days) 7% employer pension contribution. Flexible working opportunities Experience required: Proven track record in an IT Security Specialist/Engineer role Experience with SIEM Platforms e.g. Microsoft Sentinel Endpoint protection experience Track record of timely delivery of infrastructure/security projects Microsoft security tech stack Good understanding of networking technologies Security compliance knowledge would More ❯

Knowledge of REST APIs, JSON/XML, and web services integration Familiarity With Cribl, Grafana, Logic Monitor, Datadog, Newrelic or comparable monitoring & APM solutions is a plus. Exposure to SIEM and Service Management toolsets like ServiceNow would be advantageous. Nice to have UNIX/RHEL/Ubuntu with Scripting experience Should have Knowledge of ITIL processes and service management principles More ❯

CompTIA CySA+, Forescout FSCA) plus real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into cyber security. Course cost - £2795, or, £232.91 per More ❯

CompTIA CySA+, Forescout FSCA) plus real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into cyber security. Course cost - £2795, or, £232.91 per More ❯