5 of 5 Remote SIEM Jobs in Scotland

DevOps practices, and CI/CD pipelines. Familiarity with infrastructure monitoring, logging, and alerting tools. Knowledge of regulatory compliance frameworks (e.g. ISO 27001, NIST). Knowledge of Information Security, SIEM, Cyber Defence centre tooling. About working for us Our ambition is to be the leading UK business for diversity, equity and inclusion supporting our customers, colleagues and communities, and we More ❯

attacker techniques and capabilities models; and the various Cyber Kill Chain frameworks. Experience in securing cloud platform. Encryption; Knowledge in threat modelling and ethical hacking. Extensive experience working with SIEM solutions. Basic experience in some scripting languages This role falls inside of IR35 and is hybrid working with the expectation to attend the Glasgow or Milton Keynes office 3 days More ❯

in deployment, support, and maintenance Provide guidance to peers, management, and stakeholders Qualifications and Experience Prior experience as a SOC Analyst, preferably within an MSSP Knowledge of managing a SIEM, ideally Microsoft Sentinel CrowdStrike knowledge is a plus but not required Salary up to £40k plus benefits; remote working is offered. Occasional office attendance may be required, not exceeding once More ❯

and maintain incident response plans. Improve outsourced monitoring value through better use cases and data. Lead regular incident response exercises across teams. Threat Hunting Use tools like EDR and SIEM to identify threats and indicators of compromise. Analyse attacker tactics and recommend security improvements. Security Reporting Define and report security metrics. Evaluate control effectiveness and identify improvements. Communicate emerging risks … for key technologies. Promote secure practices within IT operations. Skills & Experience Strong incident triage and investigation experience. Skilled in endpoint security tools and vulnerability management. Solid understanding of EDR, SIEM, IDS/IPS, Firewalls, and cloud security. Ability to write KQL queries and develop SIEM use cases. Good grasp of security best practices and patching standards. Experience managing third-party More ❯

SIEM/SOAR Content Developer| 12 Months (Inside IR35)| Hybrid (Glasgow) Harvey Nash's Client is recruiting for a SIEM/SOAR Content Developer on a 12 month contract. Main Responsibilities You will join a team of technologists and cyber-security professionals that are dedicated to improving the coverage, quality and automation of cyber-security detection and response Develop playbooks … security incidents and improve security response coverage. Perform analysis of security posture including recommending improvements to controls and processes. Automate auxiliary team processes with SOAR playbooks. Monitor and support SIEM and SOAR platforms to ensure security and stability of SOC infrastructure. Key Skills Cyber Response Platforms is looking for an experienced (5+ years) cyber-security professional to join their team … as a SIEM/SOAR content developer. Our ideal candidate has hands-on experience in computer network defence working either in or for a Security Operations Center or Cyber Incident Response Team. Minimum of 3 years of experience in cyber detection engineering or incident response Minimum of 1 year of experience developing automations in SOAR Experience in the creation and More ❯