23 of 23 Remote/Hybrid SIEM Jobs in the South East

types of log sources such as firewall, web and database to identify anomalous activity. Understand network communications and protocols. Experience and deep knowledge of SIEM, EDR and other core cyber toolsets. Strong problem-solving skills as applied to technical solutions. Sound technical knowledge of security as applied to IT/ ...

automating processes. Working knowledge of SecDevOps tools and methodologies. Excellent analytical and problem-solving skills. Strong communication and documentation abilities. Hands on experience with SIEM solutions i.e. Splunk, ArcSight, LogRhythm Communication and Soft Skills Experience speaking to and working with leadership as well as ability to write reports and present ...

qualification delivered by LearnTech. Receive structured learning, coaching and mentoring from FSP’s Cyber team. Develop experience across real security operations, clients, environments and SIEM technologies. Gain exposure to industry frameworks such as MITRE ATT&CK and NIST. Build foundational knowledge across: Threat detection & incident response SOC processes and tooling ...

years' experience in information security within a global enterprise environment . Strong knowledge of cloud and network security (Azure, O365). Experienced in DLP, SIEM, and incident response processes. Familiar with ISO 27001/27002 and governance frameworks. CISSP or CEH certification preferred. Excellent communication, stakeholder management, and documentation skills. ...

engineering or related fields Strong cloud security expertise across AWS and ideally GCP Experience working with compliance and regulatory frameworks Hands on experience with SIEM, firewalls and vulnerability management tools Scripting or coding capability for automation Excellent stakeholder communication skills Comfortable operating autonomously within a scale up environment What ...

their vision for the future. Location: Hybrid, London office 2x a week, 3 days from home. Key Responsibilities Monitor and analyse alerts from SIEM, EDR, firewalls, and other security platforms Lead and coordinate incident response activities Manage security projects including DPIAs, supplier assurance, penetration testing, and remediation Support evaluation and … Essential Experience & Knowledge Experience in Security Operations, Incident Response, or similar role Strong understanding of networking, Windows/Linux, and cybersecurity fundamentals Experience with SIEM (e.g., Sentinel, Splunk), EDR tools, and vulnerability platforms Understanding of security frameworks (ISO 27001, NIST, CIS) Working knowledge of Microsoft InTune Familiarity with GDPR and ...

Microsoft 365, Azure), and oversee patch management, disaster recovery, and business continuity testing Manage and oversee a Cyber Security Analyst Provide technical oversight across SIEM, firewalls, endpoint protection, and IAM Monitor systems for risks, including data breaches and gaps in security mechanisms, and implement corrective measures Develop and apply ...

identify systemic issues, and drive continuous improvement across SOC processes. Collaborate with engineering, cloud, and cybersecurity teams to enhance log ingestion, telemetry quality, and SIEM/SOAR architecture Produce clear, structured incident reports, threat briefs, and stakeholder updates What you'll bring: Extensive hands-on experience with Microsoft Sentinel (SIEM ...

longer-term security improvements, projects and risk reduction initiatives across the organisation. Key responsibilities Monitor, investigate and respond to cyber security incidents using SIEM, EDR/MDR and other security tooling Perform deep-dive incident analysis across multiple log sources to identify root cause, indicators of compromise (IoCs) and remediation … closely with IT, Infrastructure, Cloud and Service teams to improve security controls across the organisation Review, onboard and manage log sources into SOC/SIEM platforms Validate and respond to security alerts generated by SIEM and endpoint protection platforms Manage security incidents and tickets in line with ITIL best practices ...

passion for cyber security. You will ideally bring: Strong analytical skills with the ability to manipulate, interrogate and interpret large datasets. Experience working with SIEM and IPS tools (preferred). Good understanding of Cyber Security Operations and cyber threat landscapes. Advanced IT skills and experience working within an IT support ...

defend through the Sophos Central platform. Secureworks provides the innovative, market‐leading Taegis XDR/MDR, identity threat detection and response (ITDR), next‐gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security ...

Check Point (CCSE/CCSM), Palo Alto Load balancing technologies AWS and/or Azure VMware (ESXi, vSAN) Windows & Linux Servers Network monitoring tools SIEM tooling (Defender/Sentinel) ITIL exposure (incident/change management) Server rack management in live environments Due to the volume of applications received for positions ...

Check Point (CCSE/CCSM), Palo Alto Load balancing technologies AWS and/or Azure VMware (ESXi, vSAN) Windows & Linux Servers Network monitoring tools SIEM tooling (Defender/Sentinel) ITIL exposure (incident/change management) Server rack management in live environments If you’re a technically strong Network Engineer with ...

quality of their service and acting swiftly on escalations. You'll maintain, optimise and enhance a broad suite of security tools, including EDR, SIEM, email security, cloud security platforms, vulnerability management tooling and threat-detection technologies, ensuring they are configured to best practice and delivering maximum protection. You'll conduct … Cyber Security Engineer or Security Analyst with a strong track record operating in live security environments. You bring deep technical knowledge across endpoint protection, SIEM/EDR tooling, cloud security platforms, identity security, vulnerability management, threat detection workflows and Microsoft-based environments. You're confident analysing events, responding to incidents ...

technical teams, and stakeholders to coordinate responses and share information. Provide input on and help optimise security tools, such as EDR/XDR and SIEM platforms. Expectation to assist with other tasks requested by line manager. OT SOC Engineer Desired Skills/Qualifications/Experience The following list highlights … IEC62443. Basic understanding of: ICS/SCADA systems and OT network architecture. Common OT protocols (Modbus, DNP3, OPC). Experience/Understanding of SIEM/SOAR solutions and OT-specific monitoring platforms (e.g. Nozomi Vantage). Knowledge of network environments (routing/switching/VLANS/Security/Wireless/ ...

Strong experience with CyberArk, BeyondTrust, Delinea, or similar PAM tools Solid understanding of Active Directory, LDAP, and authentication mechanisms Experience integrating PAM solutions with SIEM, IAM, or security platforms Experience working in cloud environments such as AWS, Azure, or GCP Scripting experience using PowerShell or Python for automation Understanding … SKILLS PAM Engineer, Privileged Access Management, CyberArk, BeyondTrust, Delinea, Cyber Security Engineer, Identity and Access Management, Active Directory, Azure, AWS, PowerShell, Python, IAM, SIEM ...

ensuring alignment with enterprise architecture standards, secure by design principles, and regulatory requirements. - development of data ingestion, telemetry, and integration patterns between Darktrace, Defender, SIEM/SOAR tools, and existing security stacks. - production of architecture decision records, design patterns, and technical documentation for long-term maintainability. - Leading technical delivery workstreams … baselining across both platforms. - Coordinate testing, validation, and acceptance of detection capabilities, including simulation of realistic attack techniques. - Integrate Darktrace and Defender outputs into SIEM, SOAR, and ticketing systems. - Work with SOC and automation teams to design playbooks, response workflows, and escalation paths. - Ensure centralised logging, enrichment, and context tagging ...

technology and career development. Skills required: Microsoft Certified: Security Operations Analyst Associate Certification (SC200) is a mandatory requirement for role fulfilment Experience working with SIEM technologies and security tooling An understanding of IT Infrastructure and Networking An understanding of vulnerability and threat management An understanding of the incident response lifecycle … responsible for providing Protective Monitoring Services across a range of Secure Customers. They will be responsible for the day-to-day monitoring using various SIEM Tools (Qradar, Sentinel & LogRhythm). Some of the responsibilities that come along with this role include the following: Security Analytics Incident investigation, triage and escalation ...

Detection Engineer - SIEM, KQL, Sentinel Client is looking for a Detection Engineer to join their security team. Will be creating and improving detetions. - KQL exp is a must (Sentinel/Log Analytics/Microsoft Defender)- Translate threat intelligence into actionable detection logic- Windows, MacOS or Linux operating systems exp London ...

Detection Engineer - SIEM, KQL, Sentinel Client is looking for a Detection Engineer to join their security team. Will be creating and improving detetions. - KQL exp is a must (Sentinel/Log Analytics/Microsoft Defender)- Translate threat intelligence into actionable detection logic- Windows, MacOS or Linux operating systems exp London ...

Detection Engineer - SIEM, KQL, Sentinel Client is looking for a Detection Engineer to join their security team. Will be creating and improving detetions. - KQL exp is a must (Sentinel/Log Analytics/Microsoft Defender)- Translate threat intelligence into actionable detection logic- Windows, MacOS or Linux operating systems exp London ...

Detection Engineer - SIEM, KQL, Sentinel Client is looking for a Detection Engineer to join their security team. Will be creating and improving detetions. - KQL exp is a must (Sentinel/Log Analytics/Microsoft Defender)- Translate threat intelligence into actionable detection logic- Windows, MacOS or Linux operating systems exp London ...

Detection Engineer - SIEM, KQL, Sentinel Client is looking for a Detection Engineer to join their security team. Will be creating and improving detetions. - KQL exp is a must (Sentinel/Log Analytics/Microsoft Defender)- Translate threat intelligence into actionable detection logic- Windows, MacOS or Linux operating systems exp London ...