26 to 50 of 139 SIEM Jobs in the South East

infrastructure is defined and provisioned. Proficiency in deploying and administering enterprise security platforms, ideally with direct experience managing tools spanning CNAPP, EDR, SIEM, and zero-trust networking. A heavy and active user of AI in both professional and personal contexts, including agentic AI tools and coding assistants, with a grounded ...

with Terraform and Infrastructure as Code Experience building or supporting CI/CD pipelines, ideally using GitHub Actions Knowledge of security tooling such as SIEM, EDR, DLP, IDS/IPS, or vulnerability management platforms Scripting experience using Python, Shell, or similar languages Experience with monitoring and observability tools such ...

. A strong, hands-on technical background in operational cyber security spanning endpoint & EDR, identity & Active Directory, Microsoft 365 & Azure, network/ZTNA, and SIEM/log management — able to act as a senior technical authority within the team. Demonstrable experience leading cyber security incident response (incident command), from detection ...

improving, developing and maintaining IT/OT vulnerability management programs and processes. This role performs and leads important tasks specialized at threat hunting, SIEM/SOAR, Network Security and other operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security event reporting, and … and/or Security Operation centers required. Experience in a Data Center environment an added plus. Advanced expertise in architecting, implementing, and optimizing SIEM and security platforms across hybrid environments. Demonstrated leadership in ICS and SCADA security integration and monitoring within critical infrastructure. Deep knowledge on security architecture, with hands ...

identify and respond to threats effectively. This is not a generalist cyber security role. Key Responsibilities Administer and optimise Microsoft Sentinel (or equivalent SIEM), including log ingestion, parsing, normalisation, and retention. Develop and maintain SOAR workflows and automation using Azure Logic Apps, Python, PowerShell, Bash, and KQL. Onboard and manage … range of data sources. Design, implement, and tune detection rules to improve alert quality and reduce false positives. Conduct proactive threat hunting using SIEM, EDR, and threat intelligence sources. Support incident investigations, containment, and response activities. Monitor and maintain the health of SOC tooling, sensors, agents, and log pipelines. Produce ...

Knowledge of GDPR and data protection legislation Strong communicator; able to translate security requirements for developers Desirable: Development background with security focus Familiarity with SIEM platforms (Snowbit, Splunk, Sentinel) Experience with CSPM tooling (Wiz, Prisma Cloud, or similar) Penetration testing or bug bounty experience Experience in regulated environments (healthcare, financial ...

cyber security and network infrastructure, ensuring systems remain secure, resilient, and aligned to business needs Manage day-to-day security operations, including monitoring SIEM platforms, Firewalls, endpoint protection, and threat detection tools Investigate security incidents and vulnerabilities, recommending and implementing corrective actions where required Maintain and support network technologies including ...

cyber security operations environment Good understanding of threats such as phishing, malware, ransomware, and account compromise Experience using security tools such as SIEM, EDR, firewalls, or detection platforms A calm, methodical approach to investigation and problem solving under pressure This is a hybrid role (3 days per week at their ...

decisions bring to the overall deployment process. Infrastructure Defense & Monitoring: Oversee next-generation Palo Alto firewalls, intrusion prevention systems, and data encryption protocols. Monitor SIEM platforms and threat feeds to isolate, investigate, and remediate digital vulnerabilities. Collaboration & Mentorship: Partner closely with internal technical squads and coordinate with external vendor partners. ...

security services (GuardDuty, Security Hub, WAF, Shield)Design hybrid connectivity using VPN and Direct Connect with high availabilityIntegrate AWS logs and telemetry into SIEM platforms (e.g. Splunk, Sentinel)Deliver automation using Terraform, CloudFormation, and LambdaEnsure secure, compliant, and observable cloud environments Required Skillset: Strong AWS networking experience: VPC, routing, segmentation ...

workflows or automation. Strong stakeholder communication skills. Comfortable operating in a fast paced environment with autonomy. Tech environment: CrowdStrike Microsoft Defender Splunk or similar SIEM platforms Qualys Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and ...

security standards. Desirable Active SC Clearance CISSP, CCSP, CISM, CISA, or equivalent security qualifications. Experience working with NCSC CAF. Knowledge of identity management, PKI, SIEM platforms, vulnerability management, cryptography, and wider enterprise security technologies. This is an opportunity to play a key role in shaping and assuring security delivery across ...

configuration management and automation. Exposure to SailPoint Identity Security Cloud or other Identity Governance and Administration (IGA) platforms. Experience integrating identity solutions with SIEM, PAM, and other security technologies. Working knowledge of Power BI for dashboard development and data visualisation. Exposure to Microsoft Power Apps. Ability to read and interpret ...

software development methodologies and practices Ability to Rapid Risk Assessment and Threat Modeling Other technical skills required: Azure Security Monitoring including Application Insights, and SIEM Excellent communication skills to guarantee stakeholder alignment and successful outcomes at all stages of Product delivery and ongoing support. This is a great opportunity and ...

detection engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities including alerting, tuning, and integrations Build intelligent detection and response workflows Develop automation solutions using scripting and AI-assisted … best practices Monitor emerging threats and recommend improvements to security posture Technical EnvironmentThe team works across a modern cloud-first stack with exposure to: SIEM/SOAR platforms EDR/XDR tooling AWS cloud environments Identity & Access Management Vulnerability Management Security Automation & Scripting CSPM tooling AI-assisted security operations What ...

+DV cleared role - current active DV clearance is essential +Inside IR35 +£575 - £630 a day +Corsham/Portsmouth Key Skills: ISO27001 DV Cleareance SIEM/SOAR - Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber … scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs ...

subject to required skills) your application to our client in conjunction with this vacancy only. KEY SKILLSSecurity Engineer, Cyber Security, IAM, PAM, RBAC, DevSecOps, SIEM, Vulnerability Management, Active Directory ...

integration, LDAP directory structures, and directory management/maintenance Resource management of server platforms and optimisation of system performance Trellix/McAfee security platforms SIEM integration , including syslog creation, forwarding and reporting pipelines Email security standards and protocols Linux & Platform Engineering Experience working within Red Hat Enterprise Linux environments Ability ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...