101 to 125 of 137 SIEM Jobs in the South East

perks! Governance and Cyber Security Coordinator - Key Skills: 1-3 years of experience in IT governance, cybersecurity, or compliance roles Familiarity with GRC and SIEM tools Familiarity with ISO 27001 and SOX frameworks Expertise in Excel and Word Governance and Cyber Security Coordinator Due to the volume of applications received ...

Ensure tooling is optimised and actively protecting client environments. Collaborate with teams to assess risks and design effective security controls. Support senior engineers across SIEM, threat intelligence and malware platforms. Apply updates, manage changes and follow robust operational processes. Stay ahead of emerging threats and drive continuous improvement. What … focus on delivery. CompTIA Network+ (or equivalent knowledge). It would be great if you had: Experience with Azure or AWS security features. Broader SIEM experience (especially Splunk). Sopra Sterias Aerospace, Defence & Security business delivers digital solutions that support the UKs national security ambitions. Youll be working ...

actively recruiting a Security Solution Architect in Reading, UK. The role includes understanding packet core security and managing security products like firewalls and SIEM systems. Ideal candidates will have a bachelor’s degree and significant experience in telecom security and 5G core networks. You will map customer requirements, provide security ...

role in a growing SecOps function protecting a modern Microsoft and cloud environment. This is a highly technical role focused on incident response, SIEM optimisation, vulnerability management, and security engineering, helping drive a Zero Trust journey and supporting ISO 27001 & CIS controls. What you'll be doing Lead and support … incident response, threat monitoring and root-cause analysis Tune and optimise SIEM & CrowdStrike EDR for maximum effectiveness Drive vulnerability management, remediation and risk reduction Secure cloud and infrastructure across Intune, Entra ID, Palo Alto, Cisco ISE, Mimecast and more Implement key security controls including MFA, SSO, PAM, WAF, DDoS ...

detect and respond to threats quickly and efficiently. Install, configure and maintain security monitoring tools Ensure SOC tooling is optimised and operating effectively Support SIEM platforms and threat intelligence tooling Work with teams to assess risk and design security controls Apply updates, patches and follow change processes Stay current with … emerging threats and recommend improvements SOC ENGINEER ESSENTIAL SKILLS Strong understanding of information security fundamentals Experience with SIEM tools such as Sentinel or Splunk Familiarity with security monitoring technologies Analytical mindset with strong problem solving skills Ability to manage multiple priorities and meet deadlines Strong communication and collaboration skills ...

guardrails, and policies in AWS Implement and maintain IaC security scanning for Terraform Manage IAM policies, network segmentation, and secrets management Configure and tune SIEM (or similar) for cloud-focused detection Establish logging, monitoring, and alerting requirements based on threat modelling Investigate and respond to cloud security events Risk & Compliance … read and write IAC (Terraform) code, comfortable with IAC lifecycles Familiarity with container security and Kubernetes Understanding of secure coding, penetration testing techniques, SIEM, and vulnerability management Strong technical skills relevant to Information Security such as secure coding standards, ethical hacking techniques, network security and risk analysis Understanding of managing ...

with cloud security across AWS, Azure or Google Cloud Understanding of network security, encryption, authentication and access control Experience with security tooling such as SIEM, IDS, firewalls and vulnerability assessment tools Knowledge of threat modelling and risk assessment TO BE CONSIDERED: Please either apply through this advert or emailing … client in conjunction with this vacancy only. KEY SKILLS Security Architect, Cyber Security, ISO 27001, NIST, Cloud Security, AWS, Azure, Risk Assessment, Threat Modelling, SIEM, Defence ...

government backed organisation is hiring an OT Cyber Security Analyst with industry experience in Oil & Gas or Chemical. You must a strong background in SIEM & SOC integration coupled with OT security frameworks IEC 62443, NIST CSF, CAF, ISO 27001 to support the protection and continuous improvement of Operational Technology … Responsibilities Implement and maintain OT security controls across industrial environments Support OT network segmentation and secure remote access solutions Integrate OT environments into SIEM/SOC platforms Develop and tune OT threat detection rules Conduct OT security assessments, gap analysis, and remediation planning Support OT incident response and investigation activities ...

Senior Cyber Security Engineer, you will: Lead Endpoint Strategy: Oversee the deployment and configuration of the CrowdStrike Falcon platform, ensuring robust endpoint protection. Master SIEM: Collaborate with our SOC partner to design and optimise Splunk dashboards and alerts, turning raw data into actionable intelligence to combat sophisticated threats. Incident Response … technical escalation point for high-priority security incidents, employing EDR and SIEM tools for swift containment. Automate Security Processes: Develop Security Orchestration, Automation, and Response (SOAR) workflows to minimise manual intervention and enhance response efficiency. Conduct Threat Hunting: Utilise specialised queries to proactively identify undetected malicious activities within the environment. ...

service accounts. Onboard Windows, Linux/Unix, and network devices into PAM platforms. Manage privileged account controls within Active Directory. Integrate PAM solutions with SIEM tools for event ingestion, correlation, and alerting. Troubleshoot connector, policy, and session issues. Produce high-quality technical documentation and runbooks. Essential experience: Proven hands … discovery and automated governance. Experience onboarding multi-platform systems (Windows/Linux/network devices). Understanding of AD privileged identity management. Experience with SIEM integrations for PAM audit logging. Working knowledge of ISO 27001 and NIST CSF. Strong troubleshooting and analytical skills. Excellent documentation capability. Eligible for SC clearance. ...

using automation, scripting and best practice. Ensure detections are clearly documented and operationally usable. What youll bring: Experience in SOC engineering, detection engineering or SIEM engineering. Strong hands-on experience with Microsoft Sentinel and Splunk. Solid knowledge of KQL and SPL. Experience building, testing and maintaining detection rules. Good understanding … SIEM lifecycle management and security telemetry. Knowledge of cloud environments and IT infrastructure. Familiarity with frameworks such as MITRE ATT&CK. Ability to analyse threats and translate them into detection capability. Nice to have: Experience with SOAR (Logic Apps/Splunk SOAR). Detection-as-code or CI/ ...

and documenting robust processes and workflows oversee the continuous improvement and development of security tools and technologies e.g. NDR, EDR,Vulnerability and Exposure Management, SIEM and SOAR work closely with business owners, to proactively identify and reduce cyber security threats and vulnerabilities We’re looking for someone who is: experienced … security concepts, technologies, and best practices proven to manage and communicate effectively with diverse stakeholders, including executive management experienced overseeing security tools and technologies (SIEM, IDS/IPS, EDR, vulnerability management) able to work with cloud environments exposure to threat modelling (We know it’s tough, but please ...

and documenting robust processes and workflows oversee the continuous improvement and development of security tools and technologies e.g. NDR, EDR,Vulnerability and Exposure Management, SIEM and SOAR work closely with business owners, to proactively identify and reduce cyber security threats and vulnerabilities We’re looking for someone who is: experienced … security concepts, technologies, and best practices proven to manage and communicate effectively with diverse stakeholders, including executive management experienced overseeing security tools and technologies (SIEM, IDS/IPS, EDR, vulnerability management) able to work with cloud environments exposure to threat modelling (We know it’s tough, but please ...

and documenting robust processes and workflows oversee the continuous improvement and development of security tools and technologies e.g. NDR, EDR,Vulnerability and Exposure Management, SIEM and SOAR work closely with business owners, to proactively identify and reduce cyber security threats and vulnerabilities We’re looking for someone who is: experienced … security concepts, technologies, and best practices proven to manage and communicate effectively with diverse stakeholders, including executive management experienced overseeing security tools and technologies (SIEM, IDS/IPS, EDR, vulnerability management) able to work with cloud environments exposure to threat modelling (We know it’s tough, but please ...

and documenting robust processes and workflows oversee the continuous improvement and development of security tools and technologies e.g. NDR, EDR,Vulnerability and Exposure Management, SIEM and SOAR work closely with business owners, to proactively identify and reduce cyber security threats and vulnerabilities We’re looking for someone who is: experienced … security concepts, technologies, and best practices proven to manage and communicate effectively with diverse stakeholders, including executive management experienced overseeing security tools and technologies (SIEM, IDS/IPS, EDR, vulnerability management) able to work with cloud environments exposure to threat modelling (We know it’s tough, but please ...

real time, and driving continuous improvement across a modern IT environment. Key Responsibilities Own and manage the organisation's cyber security tooling including firewalls, SIEM, IPS, endpoint protection, vulnerability management, and threat monitoring. Support and maintain core network infrastructure across LAN/WAN, Layer 2/3 networking … operational stability, compliance, documentation, and high service standards. Experience Required Strong experience across cyber security operations and network infrastructure. Hands-on knowledge of firewalls, SIEM tools, endpoint security, and networking technologies. Experience responding to security incidents and managing vulnerabilities. Strong troubleshooting and problem-solving capabilities. Relevant certifications such as Security+ ...

serviceswhile helping to shape and develop our cyber offering. What Youll Be Doing Analysing security alerts and detections from SOC tools, including SIEM Working with automation and playbooks using SOAR tools Implementing mitigation and remediation activities following cyber incidents Supporting the efficiency and effectiveness of SOC operations Contributing … What Were Looking For Essential Skills & Experience Strong understanding of advanced cyber security concepts Experience working in SOC or cyber advisory environments Knowledge of SIEM technologies and security monitoring Understanding of malware concepts and cyber risk management Ability to communicate complex technical findings to stakeholders Desirable Scripting experience (Python ...

real time, and driving continuous improvement across a modern IT environment. Key Responsibilities Own and manage the organisation's cyber security tooling including firewalls, SIEM, IPS, endpoint protection, vulnerability management, and threat monitoring. Support and maintain core network infrastructure across LAN/WAN, Layer 2/3 networking … operational stability, compliance, documentation, and high service standards. Experience Required Strong experience across cyber security operations and network infrastructure. Hands-on knowledge of firewalls, SIEM tools, endpoint security, and networking technologies. Experience responding to security incidents and managing vulnerabilities. Strong troubleshooting and problem-solving capabilities. Relevant certifications such as Security+ ...

maintain detection logic using a detections-as-code approach, collaborating with Security Solution Engineering to deploy detections through CI/CD pipelines into our SIEM and EDR platforms Maintain and expand detection coverage mapped to MITRE ATT&CK framework, identifying gaps in visibility and prioritizing detection development based on threat … NIST Incident Response Lifecycle and experience developing effective incident response documentation and procedures Expert-level proficiency with security monitoring and forensic tools including EDR, SIEM, and SOAR systems Experience developing and maintaining detections-as-code, including familiarity with version control, CI/CD pipelines, and detection testing frameworks Working knowledge ...

maintain detection logic using a detections-as-code approach, collaborating with Security Solution Engineering to deploy detections through CI/CD pipelines into our SIEM and EDR platforms Maintain and expand detection coverage mapped to MITRE ATT&CK framework, identifying gaps in visibility and prioritizing detection development based on threat … NIST Incident Response Lifecycle and experience developing effective incident response documentation and procedures Expert-level proficiency with security monitoring and forensic tools including EDR, SIEM, and SOAR systems Experience developing and maintaining detections-as-code, including familiarity with version control, CI/CD pipelines, and detection testing frameworks Working knowledge ...

maintain detection logic using a detections-as-code approach, collaborating with Security Solution Engineering to deploy detections through CI/CD pipelines into our SIEM and EDR platforms Maintain and expand detection coverage mapped to MITRE ATT&CK framework, identifying gaps in visibility and prioritizing detection development based on threat … NIST Incident Response Lifecycle and experience developing effective incident response documentation and procedures Expert-level proficiency with security monitoring and forensic tools including EDR, SIEM, and SOAR systems Experience developing and maintaining detections-as-code, including familiarity with version control, CI/CD pipelines, and detection testing frameworks Working knowledge ...

security monitoring strategy and best practice. What you will bring: Proven experience deploying and managing Splunk at enterprise scale. Strong hands-on knowledge of SIEM engineering, including indexing, parsing, onboarding and performance tuning. Experience designing and optimising detection content, including MITRE ATT&CK-aligned use cases and alert tuning … experience with KQL and EQL would be beneficial, but is not essential. Experience with automation and Infrastructure-as-Code within security monitoring or SIEM environments. Solid understanding of SIEM platform operations, including clustering, scaling, high availability, disaster recovery and performance optimisation. Strong problem-solving skills and a proactive approach ...

doing: Overseeing Security Operators during shifts, ensuring continuous security monitoring Performing initial investigations of potential threats using Security Incident and Event Management (SIEM) tools Monitoring SIEM systems for faults and anomalies Contributing to routine security incident management by identifying, prioritising, and escalating threats Supporting the confidentiality, integrity, and availability ...

robust protection of business systems and data. Key Responsibilities Manage day-to-day cyber security operations and incident response Monitor and optimise security tools (SIEM, firewalls, endpoint security) Maintain and support network infrastructure (LAN/WAN, Wi-Fi, L2/L3) Identify threats, conduct investigations, and implement security fixes Support … cyber security projects and ongoing improvements Key Skills & Experience Proven experience in cyber security operations and network infrastructure Strong knowledge of Palo Alto firewalls, SIEM tools, and endpoint security Experience with L2/L3 networking (Nexus, LAN/WAN, Wi-Fi) Vulnerability management (e.g. Qualys) and incident response expertise Understanding ...

person team delivering protective monitoring, threat detection, and incident response across complex and secure environments. This is an exciting opportunity to work with leading SIEM and XDR technologies while contributing directly to national-level cyber defence. What You'll Be Doing Providing continuous protective monitoring across secure client environments Investigating … triaging, and escalating security alerts Operating multiple SIEM/XDR platforms including: IBM QRadar LogRhythm Palo Alto XSIAM/XDR Microsoft Sentinel & Defender Google SecOps Supporting incident response activities and following established SOC runbooks Maintaining situational awareness and contributing to threat detection improvements Working collaboratively within a 24×7 shift ...