151 to 165 of 165 SIEM Jobs in the South East

this role you will be providing detailed risk assessments, implementing industry-standard security frameworks including NIST, NCSC, and NIS2 as well as actively managing SIEM tools such as QRadar and/or Sentinel. You’ll be working closely with end customer stakeholders, undertaking proactive risk management, and threat detection consulting. … Lead comprehensive security risk assessments inline with industry standards and conduct environment reviews ensuring compliance with NIST Frameworks and related standards Oversee and implement SIEM/XDR deployments, custom rule development, and incident response processes acting as a point of escalation and point of contact for internal and external stakeholders … cybersecurity frameworks (NIST CSF, NCSC CAF, NIS2, NIST 800-30) Confident in using risk assessment methodologies (NIST 800-30). Hands-on experience with SIEM/XDR solutions (QRadar, Sentinel, Defender XDR) Familiarity with cloud security principles across AWS, Azure, and GCP, ideally within a managed services environment Ideal candidates More ❯

escalated triage and analysis on security events identified by Tier 1 Analysts, determining threat severity and advising on initial response actions. Apply expertise in SIEM solutions utilizing Kusto Query Language (KQL), to perform log analysis, event correlation, and thorough documentation of security incidents. Identify and escalate critical threats to Tier … with Tier 3 Analysts and management to refine detection and response workflows, contributing to continuous SOC maturity. Collaborate with Tier 3 Analysts on tuning SIEM and detection tools to reduce false positives and improve alert fidelity, submitting tuning requests and testing configurations when necessary. Identify gaps in current detection content … flows within a network. Advanced knowledge of Windows and Linux operating environments, including standard commands, file systems, and user authentication mechanisms. Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms. Able to demonstrate proficient More ❯

L2 & L3 SOC/Cyber Security Engineer - Threat Hunter/SIEM Sentinel - £45-65K + 25% Shift - Home/Office 2x per month My client is one of the most recognisable names in IT and have some of the best people in the industry working for them. They're … Key Skills required: 2+ years' experience working in a SOC environment - ideally MSSP. Experience in a technical security role are also considered. Experience with SIEM tools, such as MS Sentinel, Alien Vault or Splunk A cyber security qualifications, certification or degree e.g. CySA+, CompTIA SEC+, or similar experience. Microsoft SC … 3rd line analysis for ongoing investigations. Carrying out proactive threat hunts, RCAs, creation of detection capabilities Monitor/hunt security alerts from security platforms (SIEM platforms, such as MS Sentinel, Alien Vault or Splunk Act on Second Line security alerts, incidents, requests, and events to ensure that threats, vulnerabilities, and More ❯

vulnerability scans, and monitor/respond to security incidents using tools such as Azure Sentinel and other security technologies (XDR, NDR, IDS/IPS, SIEM). Root Cause Analysis and Compliance : Perform root cause analysis for security incidents, implement corrective actions, and ensure compliance with industry regulations (GDPR, HIPAA). … Azure networking, compute, storage, and databases. Security Tools : Hands-on experience with security tools and technologies (e.g., Azure Sentinel, XDR, NDR, IDS/IPS, SIEM). Automation & Scripting : Proficiency in scripting (e.g., PowerShell, Azure CLI) and working with Azure DevOps. Desirable Skills : Experience with containerization, knowledge of Azure Data Lake More ❯

vulnerability scans, and monitor/respond to security incidents using tools such as Azure Sentinel and other security technologies (XDR, NDR, IDS/IPS, SIEM). Root Cause Analysis and Compliance : Perform root cause analysis for security incidents, implement corrective actions, and ensure compliance with industry regulations (GDPR, HIPAA). … Azure networking, compute, storage, and databases. Security Tools : Hands-on experience with security tools and technologies (e.g., Azure Sentinel, XDR, NDR, IDS/IPS, SIEM). Automation & Scripting : Proficiency in scripting (e.g., PowerShell, Azure CLI) and working with Azure DevOps. Desirable Skills : Experience with containerization, knowledge of Azure Data Lake More ❯

Role Lead the design, deployment and tuning of enterprise-grade SIEM platforms (e.g. Splunk, Azure Sentinel etc.) Collaborate with stakeholders to define logging requirements, use cases, detection rules and dashboards Oversee integration of data sources from cloud, on-prem, endpoint, network and application layers Create and maintain detection rules, correlation … logic and alerts tailored to specific threat scenarios Provide technical leadership and mentorship to team members Work closely with SOC teams to align SIEM capabilities with business objectives Conduct SIEM health checks, performance tuning and capacity planning Skills Expertise in SIEM design, deployment and optimisation Hands-on expertise with one … or more major SIEM platforms (e.g. Splunk, Sentinel etc.) Deep understanding of log ingestion, parsing, normalisation and enrichment Strong grasp of MITRE ATT&CK framework, threat detection and alert logic Solid scripting/automation skills (e.g., Python, PowerShell, Bash) Experience with cloud logging and monitoring (AWS CloudTrail, Azure Monitor, GCP More ❯

Job Description: SOC Analyst – OT Security Location: London Skills: Sentinel, Clarity, ICS, SCADA, CNI, SecOps, SIEM The Company: Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients’ most complex digital transformation needs. We are an … leading the SOC team to ensure appropriate prioritisation and remediation of OT alerts and incidents. Responsibilities: Monitor, analyse and optimise SecOps tool performance (e.g. SIEM, PAM), identify potential issues, and recommend and implement proactive solutions. Develop and maintain SecOps documentation, policies, and procedures. Implementing security controls that are proportionate to … the risk. Investigate security alerts from our SIEM tool and 3rd party MSSPs, and to provide appropriate incident response actions. Support the Cyber Security Operations Lead for security and privacy incidents, triaging events and performing root cause analysis to understand how incidents arise. Acting as the key contact and escalation More ❯

. Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client … programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities As a SOC Shift Lead , you will ensure the smooth operation and continual enhancement of SOC processes and personnel. You More ❯

. Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client … programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities As a SOC Shift Lead , you will ensure the smooth operation and continual enhancement of SOC processes and personnel. You More ❯

mainly RHEL) Operating Systems Detailed understanding of Network troubleshooting Experience of Firewall architectures (Palo Alto, Juniper, Cisco) Knowledge of Security Information and Event Management (SIEM) tools More ❯

implement tools (e.g., Microsoft Defender, Nessus), and provide training where needed. Enhance and maintain threat detection and response processes, including the use of Sentinel SIEM and collaboration with an outsourced Security Operations Centre. Perform proactive threat hunting and lead security incident investigations. Conduct vulnerability scans, system hardening, and compliance audits. … best practices. Required Skills & Experience: Strong experience securing infrastructure in both physical and cloud environments (DevOps, Microsoft Cloud). Proficiency in security tooling, including SIEM platforms (e.g., Sentinel), and threat hunting. Experience with IP networks, WAN technologies, virtual servers, and endpoint security. Ability to manage multiple workstreams while ensuring quality More ❯

e.g. NIST, ISO 27001, CIS). Partner with compliance, audit, and internal stakeholders to address regulatory requirements and support evidence gathering for audits. Leverage SIEM and monitoring tools to inform risk posture and ensure control effectiveness. Produce high-quality documentation, dashboards, and risk reports for senior stakeholders. What We’re … CSF, ISO 27001, CIS, etc. Experience with security risk assessments, controls design, and compliance monitoring. Familiarity with vulnerability management practices and tools. Exposure to SIEM platforms and their role in risk and control monitoring. Strong stakeholder management and communication skills—capable of translating technical risk into business impact. Experience within More ❯

/data centres. The Role The Cyber Security Engineer will be joining the internal security team, monitoring and analysing real-time security events using SIEM tools to detect and respond to potential threats. The Cyber Security Engineer will conduct regular vulnerability assessments and penetration tests to identify and mitigate security … in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important More ❯

Administrator, 2nd Line Support, 3rd Line Support, Windows Server, Active Directory, Office 365, Intune, Azure, Microsoft Defender, Security Compliance, Endpoint Manager, Group Policy, ITIL, SIEM, Security Operations, Junior Security Systems Administrator) In 2012 our client launched a social messaging platform that has been taking the US by storm. After an … Manager and exposure to Azure administration and Microsoft Defender security suite is desirable. An understanding of endpoint security, compliance policies and monitoring tools (e.g., SIEM) is useful. All Junior Security Systems Administrator positions come with the following benefits: Stock worth £15,000. The stock would be in their parent company More ❯

Administrator, 2nd Line Support, 3rd Line Support, Windows Server, Active Directory, Office 365, Intune, Azure, Microsoft Defender, Security Compliance, Endpoint Manager, Group Policy, ITIL, SIEM, Security Operations, Junior Security Systems Administrator) In 2012 our client launched a social messaging platform that has been taking the US by storm. After an … Manager and exposure to Azure administration and Microsoft Defender security suite is desirable. An understanding of endpoint security, compliance policies and monitoring tools (e.g., SIEM) is useful. All Junior Security Systems Administrator positions come with the following benefits: Stock worth £15,000. The stock would be in their parent company More ❯