1 to 25 of 140 SIEM Jobs in the South East

years' experience in cybersecurity or information security roles Strong understanding of network protocols, operating systems and enterprise security technologies Experience implementing and managing SIEM and SOAR platforms Knowledge of cybersecurity frameworks such as NIST, ISO27001, CIS benchmarks and Cyber Essentials Experience with threat intelligence frameworks such as MITRE ...

remote access/VPN configurations where required and ensure changes follow change control. Enable and review network security logging/alerting (e.g., syslog/SIEM integrations where applicable). Monitoring, Detection & Incident Response (Sophos MDR) Act as the internal technical point of contact for Sophos MDR and ensure smooth collaboration ...

security with leadership or ownership of security functions. Strong knowledge of network, application, cloud (AWS/Azure), and endpoint security. Hands-on experience with SIEM (e.g., Arctic Wolf), Fortinet firewalls, Nessus, and vulnerability remediation. Experience working with SOC teams and supplier security assessments. Familiarity with CAF, CE+, NIST, CIS Controls ...

network segmentation VPN technologies Network monitoring and performance management Cloud networking and hybrid environments IDS/IPS technologies Secure network architecture principles Knowledge of SIEM, SOAR, endpoint security, vulnerability management, and threat intelligence platforms. Understanding of modern cyber threats, attack techniques, and defensive security controls. Desirable Qualifications ISO 27001 Lead ...

Looking For 10+ years in a cybersecurity engineering role, ideally in a complex, enterprise-scale environment Deep experience with security tools: Firewalls, SIEM, EDR/XDR, DLP, WAF, PAM, etc. Strong understanding of server/network/system security – Windows (2012–2022), Linux, Azure, Active Directory, M365 Knowledge of secure ...

security policies, logging and monitoring, and integrating advanced solutions such as IDS/IPS, NAC, and network segmentation. Management & Monitoring: Proficient with SNMP, syslog, SIEM, and network automation, capacity planning and monitoring tools including introducing such tooling. Threat Landscape: Deep understanding of common networking attack vectors and defense-in-depth ...

Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Strong analytical and problem-solving skills Excellent communication and stakeholder engagement ...

Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Strong analytical and problem-solving skills Excellent communication and stakeholder engagement ...

and root cause analysis. Collaborate across engineering, architecture, and compliance teams to embed security-by-design. What youll bring : Strong background in network security, SIEM, IDAM, endpoint protection, and cloud security. Knowledge of threat intelligence, IOC analysis, and detection engineering. Experience in secure SDLC, code review, and threat modelling (incl. ...

Security Monitoring & SIEM Analyst Location: Berkshire (Onsite) Salary: £45,000 - £60,000 + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC (UK Nationals only) ________________________________________ Company Overview An exciting opportunity to join a global technology organisation with a well-established cyber security capability supporting mission-critical environments. … mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices to defend against evolving threats. ________________________________________ Role Overview As a Security Monitoring & SIEM Analyst, you will play a key role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM ...

identification, and continuous improvement Lead security engagement within client Design Authority and Enterprise Architecture forums Manage integration with the client SOC, including security reporting, SIEM alignment, and incident response coordination Oversee security incident management in line with the client Cyber Security Incident Response Plan Own joiner/mover/leaver ...

goals and compliance requirements Work across InfoSec, IT, risk, and compliance teams to deliver initiatives such as vulnerability management, identity and access management (IAM), SIEM upgrades, and cloud security improvements Manage third-party vendors and internal stakeholders to ensure smooth project execution Develop and maintain project documentation, risk logs, and ...

goals and compliance requirements Work across InfoSec, IT, risk, and compliance teams to deliver initiatives such as vulnerability management, identity and access management (IAM), SIEM upgrades, and cloud security improvements Manage third-party vendors and internal stakeholders to ensure smooth project execution Develop and maintain project documentation, risk logs, and ...

scripting such as Python, Perl, Bash, PowerShell, C++. CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar. If you are interested in this role but not sure if your skills and experience ...

security operations as a discipline Required Experience & Skills 3+ years' experience in a SOC or closely related cyber security role Strong working knowledge of: SIEM platforms Security Incident Management Cloud environments Networking fundamentals Threat intelligence and threat hunting Information security principles Phishing, ransomware, and modern attack vectors Identity & Access Management ...

Environment You will work across a modern technology estate including: Microsoft Azure Microsoft Intune Okta Identity & Access Management Zscaler SentinelOne Mimecast SD-WAN Technologies SIEM and Security Monitoring Platforms About You We are looking for an experienced security professional with a strong blend of technical expertise, governance experience, and stakeholder ...

Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK ...

with Terraform and Infrastructure as Code Experience building or supporting CI/CD pipelines, ideally using GitHub Actions Knowledge of security tooling such as SIEM, EDR, DLP, IDS/IPS, or vulnerability management platforms Scripting experience using Python, Shell, or similar languages Experience with monitoring and observability tools such ...

alerts (e.g., XDR detections) in coordination with the IT Manager. Maintain vulnerability and patch governance; reduce attack surface through secure baselines and hardening. Support SIEM processes where applicable (alert triage, evidence capture, escalation paths). Ensure vendor access aligns to governance (MFA, time-bound access, segmentation, approved tooling). Skills ...

working in a Security Operations Centre (SOC). Hands-on knowledge of security tools and technologies, including Web Application Firewalls, SASE, access control, SIEM, antivirus, email/web security gateways, firewalls, load balancers, ACLs, and network protocols (TCP/IP, routing, switching). Strong grasp of security infrastructure design ...

Agile methods such as SCRUM; Enterprise security packages, security enforcing software and devices, such as identity management and federation, cryptography, public key infrastructure, firewalls, SIEM, vulnerability scanning, etc. Additional Requirements: Must be eligible and willing to obtain UK Government Security Clearance. Key Attributes for Success: Ability to engage effectively with ...

modern network platforms (experience with Arista would be advantageous). Practical understanding of cyber security principles, threat monitoring and operational security controls. Experience using SIEM or monitoring platforms (experience with Splunk would be highly advantageous); Knowledge of secure network segmentation, filtering and access control models. Experience investigating and responding ...

VMware vSphere Windows Server Red Hat Enterprise Linux (RHEL) Active Directory DNS Group Policy (GPO) Remote Desktop Services (RDS) Security Trellix/McAfee technologies SIEM platforms Syslog reporting and integration Antivirus technologies TLS certificates and PKI concepts Secure gateway technologies Linux & Scripting Linux administration Shell scripting Regular Expressions (Regex) Firewall ...

infrastructure is defined and provisioned. Proficiency in deploying and administering enterprise security platforms, ideally with direct experience managing tools spanning CNAPP, EDR, SIEM, and zero-trust networking. A heavy and active user of AI in both professional and personal contexts, including agentic AI tools and coding assistants, with a grounded ...

infrastructure is defined and provisioned. Proficiency in deploying and administering enterprise security platforms, ideally with direct experience managing tools spanning CNAPP, EDR, SIEM, and zero-trust networking. A heavy and active user of AI in both professional and personal contexts, including agentic AI tools and coding assistants, with a grounded ...