1 to 25 of 34 Remote/Hybrid SIEM Jobs in the South East

remote access/VPN configurations where required and ensure changes follow change control. Enable and review network security logging/alerting (e.g., syslog/SIEM integrations where applicable). Monitoring, Detection & Incident Response (Sophos MDR) Act as the internal technical point of contact for Sophos MDR and ensure smooth collaboration ...

client environments Perform threat detection, triage, analysis, and remediation activities Lead incident response activities and provide technical guidance to junior analysts Analyse alerts from SIEM, EDR, IDS/IPS, and other security tooling Conduct threat hunting and proactive security monitoring Support continuous improvement of SOC processes, playbooks, and operational procedures … development of junior team members Required Experience Proven experience working within an MSSP environment Strong background in Security Operations/SOC environments Experience with SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, or similar Knowledge of EDR technologies and incident response methodologies Strong understanding of network security, firewalls, endpoint security ...

identification, and continuous improvement Lead security engagement within client Design Authority and Enterprise Architecture forums Manage integration with the client SOC, including security reporting, SIEM alignment, and incident response coordination Oversee security incident management in line with the client Cyber Security Incident Response Plan Own joiner/mover/leaver ...

Risk in financial services. Experience with frameworks such as NIST, ISO27001, COBIT, SOX, and FFIEC. Good understanding of cloud security, GDPR, IAM/PAM, SIEM, vulnerability management, and network security. CISSP, CISM, CRISC, or similar certifications preferred. Skills & Experience: Strong strategic and analytical thinking Excellent communication and stakeholder management Strong ...

modern network platforms (experience with Arista would be advantageous). Practical understanding of cyber security principles, threat monitoring and operational security controls. Experience using SIEM or monitoring platforms (experience with Splunk would be highly advantageous) Knowledge of secure network segmentation, filtering and access control models. Experience investigating and responding ...

Agile methods such as SCRUM; Enterprise security packages, security enforcing software and devices, such as identity management and federation, cryptography, public key infrastructure, firewalls, SIEM, vulnerability scanning, etc. Additional Requirements: Must be eligible and willing to obtain UK Government Security Clearance. Key Attributes for Success: Ability to engage effectively with ...

and responding to cloud security threats, managing incidents end to end, and advising stakeholders on how to maintain a strong security posture Experience with SIEM tooling, ideally Microsoft Sentinel, along with a strong understanding of Zero Trust principles, modern authentication and secure baseline configuration, will be highly valuable ...

and site-to-site connectivity Experience configuring and managing Sophos firewalls, including SD-WAN, intrusion prevention, and web filtering policies Familiarity with Microsoft Sentinel (SIEM) and Microsoft Defender for Endpoint for security monitoring, threat detection, and incident response Familiarity with infrastructure and application monitoring tools, such as Auvik or WhatsUp ...

incidents Lead and support incident response activities Conduct threat hunting and threat modelling exercises Manage vulnerability remediation and penetration testing activities Support and improve SIEM, EDR/XDR and security tooling Provide security guidance across infrastructure and change projects Drive security best practice and security-by-design principles Maintain and … internal IT teams and third-party security providers Technology and experience required: 5+ years’ experience in Cyber Security or Information Security Strong experience with SIEM, EDR/XDR, IDS/IPS and firewalls Good understanding of Microsoft Azure security technologies Knowledge of NIST, ISO27001 and CIS Controls Experience in incident ...

detection engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities including alerting, tuning, and integrations Build intelligent detection and response workflows Develop automation solutions using scripting and AI-assisted … best practices Monitor emerging threats and recommend improvements to security posture Technical EnvironmentThe team works across a modern cloud-first stack with exposure to: SIEM/SOAR platforms EDR/XDR tooling AWS cloud environments Identity & Access Management Vulnerability Management Security Automation & Scripting CSPM tooling AI-assisted security operations What ...

detection engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities including alerting, tuning, and integrations Build intelligent detection and response workflows Develop automation solutions using scripting and AI-assisted … best practices Monitor emerging threats and recommend improvements to security posture Technical EnvironmentThe team works across a modern cloud-first stack with exposure to: SIEM/SOAR platforms EDR/XDR tooling AWS cloud environments Identity & Access Management Vulnerability Management Security Automation & Scripting CSPM tooling AI-assisted security operations What ...

within a security-focused environment, supporting and implementing solutions such as Mobile Device Management (MDM), Microsoft Endpoint Manager, Multi-Factor Authentication (MFA), Password Management, SIEM, EDR (Endpoint Detection & Response) and vulnerability scanning technologies. Assist with maintaining and improving client cyber security standards, contributing towards Cyber Essentials Plus accreditation projects and ...

meet business, compliance, and risk mitigation requirements; ensuring controls are effective, measurable, and operationally sustainable. Implement and maintain detection and response capabilities through SIEM integration with security controls and IT systems, with a focus on reducing time-to-detect and time-to-remediate through improved pre-incident engineering. Participation … 24x7 on-call support rota, responding to SIEM health alerts and restoring log ingestion where required. Manage use cases, perform data enrichment, and define standardized and automated containment workflows. Develop and manage operational procedures and reporting methodology. Manage and oversee security technology platforms (e.g. SIEM, SOAR, EDR, and email security ...

and recommending remediation actions Provide technical and procedural guidance to junior SOC analysts Develop and enhance detection use cases, correlation rules, and playbooks within SIEM and EDR platforms Conduct proactive threat hunting activities across client environments Collaborate with engineering teams to improve visibility, telemetry, and automation Support major incident response … CSIRT, or cyber defence environment Strong understanding of attack frameworks (e.g. MITRE ATT&CK, Cyber Kill Chain) Hands-on experience with SIEM and EDR tools (e.g. Microsoft Sentinel, Splunk, CrowdStrike, Defender) Experience in incident triage, containment, and response Good knowledge of network protocols, Windows/Linux systems, and cloud environments ...

will play a central role in our cyber defence operations, working daily with platforms including Microsoft Defender for O365, Entra ID, Intune, Rapid7 SIEM, and Sophos Antivirus. The role involves monitoring security events, investigating suspicious activity, responding to incidents, and continuously strengthening our security posture. You’ll join a supportive … your career within cyber security. Key Responsibilities Security Monitoring & Incident Response Monitor alerts and telemetry across endpoints, identities, email, and cloud services using Rapid7 SIEM, Microsoft Defender, and Sophos Antivirus. Investigate cyber security incidents including malware infections, phishing attacks, identity compromise, and unauthorised access attempts. Conduct incident triage, root cause ...

resilience. You will sit at the heart of our cyber defence operations, working daily with technologies including Microsoft O365 Defender, Entra ID, Intune, Rapid7 SIEM, and Sophos Antivirus. Youll be responsible for monitoring security events, investigating suspicious activity, responding to incidents, and continuously improving our security posture. This … cyber security What you will do: Security Monitoring & Incident Response Actively monitor alerts and telemetry across endpoints, identities, email, and cloud services using Rapid7 SIEM, Microsoft Defender, and Sophos AV. Investigate suspected cyber attacks including malware infections, phishing campaigns, identity compromise, and unauthorised access attempts. Perform triage, root cause analysis ...

A leading cybersecurity firm in Bracknell is seeking a Senior Security Engineer to safeguard digital assets and infrastructure. The ideal candidate will manage security tools, conduct risk assessments, and lead incident response. A Bachelor's ...

demonstrate you are well versed in dealing with Cyber Security incident management/responses and mitigating the risks. You will have proven experience in SIEM, Anti-Virus, Vulnerability management, Data Loss Prevention and security tools as well as a good understanding of compliance around ISO 27001 and PCI-DSS This ...

security best practices across all technology initiatives, supporting the organisation's security posture and resilience. Key Responsibilities Security Operations & Monitoring Monitor and manage the SIEM platform and security alerts to identify, investigate, and respond to potential threats. Administer and optimise EDR solutions (CrowdStrike) to ensure comprehensive endpoint protection across … CISSP, CCSP, Security+, or similar), and/or Minimum of 3-5 years' experience in security engineering or adjacent roles. Hands-on experience with SIEM platforms, EDR solutions (ideally CrowdStrike), and vulnerability management tools. Experience with IAM solutions, SaaS security, and data protection tools. Strong understanding of networking concepts, protocols ...

Senior Cyber Security Analyst, Professional Services, CompTIA, SIEM, ISO27001, Part Remote Senior Cyber Security Analyst required to work for a Law Firm based in the City of London. It will be 3 days a week in the office and 2 from home. We need an experienced Senior Cyber Security Analyst … relevant certification preferred Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS Strong knowledge of Microsoft Azure cloud security technologies and concepts Familiar with cybersecurity frameworks such ...

NIST, ISO/IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Web Application Firewalls (WAF) Encryption and key management solutions Collaborate with engineering, DevOps, and IT teams ...

while remaining at the forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment, and remediation. … Security or Cybersecurity role. Strong understanding of cyber defence practices and modern attack techniques. Hands-on experience with security technologies such as EDR, XDR, SIEM, SOAR, IDS, and IPS. Experience in vulnerability analysis, security alert analysis, incident response, and email threat analysis. Ability to read and understand scripting and query ...

Collaborate with stakeholders to design, implement and maintain security controls that are effective, measurable and sustainable. Implement and maintain detection and response capabilities through SIEM integration, improving time‐to‐detect and time‐to‐remediate. Participate in a 24x7 on‐call support rota, responding to SIEM health alerts and restoring … cases, perform data enrichment and define automated containment workflows. Develop and manage operational procedures, reporting methodology and risk reporting frameworks. Oversee security technology platforms (SIEM, SOAR, EDR, email security). Monitor control performance, coordinate remediation and automate operation procedures. Align control design with industry standards, regulations and best practices (e.g. ...

implement improvements aligned to security best practice and compliance requirements Secure and support cloud platforms including: Microsoft Azure Amazon Web Services Configure and manage SIEM and security monitoring solutions Provide technical guidance and cyber security advice directly to clients Work closely with internal engineering teams and mentor junior technical staff … experience in a Solutions Engineer, Infrastructure Engineer, Service Desk Engineer, or Cyber Security role Strong understanding of: Network security Firewalls Endpoint Detection & Response (EDR) SIEM technologies Hands-on experience with endpoint security solutions such as: Microsoft Defender Sophos Bitdefender Experience securing cloud-based environments within Azure and/ ...

and benefits. Why This Role is Exciting High autonomy : Lead projects from idea to deployment Innovation-driven : Develop cutting-edge detections beyond standard SIEM rules Collaborative : Work closely with internal teams and an outsourced SOC partner Mission-focused : Protect critical healthcare data that supports precision medicine Key Responsibilities Design and … Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer, Detection & Response Engineer, SIEM Engineer, Security Detection Engineer,T hreat Hunting Engineer, Security Automation Engineer, SOC Engineer, Incident Response Engineer, Cloud Security Engineer, Network Security Engineer, Cybersecurity Analyst (Threat ...