26 to 48 of 48 SIEM Jobs in the South East

security policies, procedures, and guidelines.- Conduct regular security audits and assessments to identify vulnerabilities and ensure compliance with industry standards (e.g., ISO 27001).- SIEM & Vulnerability Management.- Monitor and respond to security incidents, conducting investigations and implementing corrective actions.- Collaborate with IT and other departments to ensure the security … and interpersonal skills.**Preferred Qualifications:**- Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX.- Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA/CISSP/CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert; MCITP-Microsoft Certified IT Professional; VMware Certified ...

Required experience and skills Active DV security clearance held on day oneProven experience in a SOC or cybersecurity operations roleStrong hands-on capability with SIEM tools and security incident managementExperience in monitoring and responding to cyber threats in live environmentsSolid understanding of networking, cloud technologies, and threat intelligenceComfortable working within ...

and driving continuous improvement. Key Responsibilities Lead the design and implementation of Azure security best practices, policies, and controls. Manage and optimise Microsoft Sentinel SIEM, including rule creation, use-case development, automation, and threat hunting. Oversee vulnerability management activities using Tenable, ensuring timely identification, prioritisation, and remediation of risks. Support … Experience Required Strong hands-on experience with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io/Tenable.sc). Knowledge of industry security frameworks ...

operation of security systems and tools, including firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus, anti-malware, SIEM (Security Information and Event Management), vulnerability scanners, and data encryption solutions. Manage vulnerability management programs, including regular scanning, penetration testing, and remediation of identified weaknesses. Lead and manage security incident … understanding of information security principles, frameworks (e.g., ISO 27001, NIST, Cyber Essentials), and best practices. Hands-on experience with security technologies such as firewalls, SIEM, IDS/IPS, vulnerability scanners, endpoint detection and response (EDR), and identity management solutions. Experience with cloud security (e.g., Azure Security). Proven experience ...

Delivery Qualifications: CISMP, CompTIA Security+ or other technical certifications desired Experience: 3+ years experience in SOC, or related technical field Understanding of the following: SIEM Cloud Computing Security Incident Management Networking Threat Intelligence Information Security Phishing, Ransomware and other key threats IDAM (Identity and Access Mgmt) JML (Joiners, Movers and ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

responsible for monitoring systems, identifying potential threats, and ensuring rapid incident response to safeguard critical services. Responsibilities Keep a close watch on SIEM platforms and other monitoring tools to spot unusual activity. Evaluate and triage alerts to separate genuine incidents from false positives. Take immediate containment steps and escalate confirmed ...

incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. Oversee operational security processes with tools like SIEM, EDR, and Vulnerability Management, continuously enhancing capabilities. Network and System Security Manage advanced security tools such as firewalls and IDS/IPS to protect network … qualifications. Good underpinning knowledge of the Microsoft technology stack, cloud, on-premises and End user Compute. Understanding and experience of web filtering, email security, SIEM, EDR/XDR. Experience of managing investigations in SOC (L2 or above ...

accounts and delivering value to strategic accounts in the cybersecurity industry Extensive platform selling experience in complex sales with multiple buying centers Experience selling SIEM, EDR, or CNAPP (DevSecOps, CloudOps) solutions is highly preferred Established trusted relationships with CIOs and CISOs with the ability to influence and drive strategic conversations ...

responsible for monitoring systems, identifying potential threats, and ensuring rapid incident response to safeguard critical services. Responsibilities Keep a close watch on SIEM platforms and other monitoring tools to spot unusual activity click apply for full job details ...

Experience Strong background in security architecture & engineering Deep technical infrastructure knowledge (network, OS, cloud, IAM) Financial Services cyber security experience Zero Trust, NDR, EDR, SIEM, IAM exposure Strong stakeholder and governance skills ...

similar certification are a significant bonus to the role Key Responsibilities Continuous Monitoring: You will monitor security tools, including Security Information and Event Management (SIEM) systems, to detect suspicious activity. You will be the first to see potential threats and will need to be efficient and professional response against defined ...

Common cyber attack techniques Any Cyber security certifications would be desirable. Responsibilities include: You will monitor security tools, including Security Information and Event Management (SIEM) systems, to detect suspicious activity. Analyse alerts and logs to determine if an event is a genuine security incident or a false positive. You will ...

senior security leaders, with the ability to diagnose challenges and deliver strategic recommendations 10+ years of hands-on experience in deploying and integrating SIEM/security analytics solutions within large enterprise environments 8+ years of experience with Security Operations Center (SOC) tooling, processes, and workflows Hands-on technical mastery across … SIEM, SOAR, EDR, cloud security, and threat intelligence Ability to conceive, architect, and develop effective correlation and detection rules Familiarity with a range of SIEM technologies, such as Splunk and IBM QRadar, is a plus. Strong expertise in Regular Expressions (Regex) Relevant bachelor's degree or industry-recognized qualifications (CISSP ...

technical work and mentoring others. Senior SOC Analyst essential skills Proven experience working within a SOC environment, ideally 3+ years Strong knowledge of SIEM, incident management and threat intelligence Experience with cloud security, networking and information security principles Understanding of IDAM, RBAC and joiners, movers and leavers processes Ability … consent for your application to be processed and submitted to the client in conjunction with this vacancy only. Key skills: Senior SOC Analyst, SOC, SIEM, Incident Response, Cloud Security, Threat Intelligence, IDAM, ISO 27001, Team Leadership ...

malware, ransomware, data breaches, and APT activity Take ownership of escalations from SOC L1 and drive incidents through to resolution Perform detailed analysis using SIEM and EDR tools such as Splunk and Microsoft Defender Conduct forensic analysis to determine root cause, scope, and impact Support containment, eradication, and recovery activities … Strong experience operating as a SOC L2 or equivalent CERT role Proven incident response capability in enterprise or MSSP environments Hands-on experience with SIEM platforms, ideally Splunk Experience with EDR technologies, preferably Microsoft Defender Solid understanding of network, endpoint, and cloud security fundamentals Experience investigating complex threats including ransomware ...

Security Manager to evolve SOC capability Senior SOC Analyst essential skills Proven experience in a SOC or similar security operations environment Strong knowledge of SIEM, incident management and threat intelligence Understanding of cloud technologies and modern networking Experience with IDAM, JML processes and ITSM frameworks Ability to lead, support and … develop junior analysts Strong communication and stakeholder engagement skills Key skills: Senior SOC Analyst, SOC, SIEM, Security Incident Management, Threat Intelligence, Cloud Security, IDAM, ISO 27001, Team Leadership ...

incidents, you'll guide junior analysts, ensure smooth shift transitions, and help refine the tools and processes that keep the operation resilient. Responsibilities Oversee SIEM platforms and other monitoring tools to detect suspicious activity. Review and triage alerts, analysing logs to prioritise incidents effectively. Carry out containment measures and escalate … Contribute to the ongoing improvement and optimisation of security monitoring systems. What you'll need to succeed Hands-on experience with SPLUNK or similar SIEM tools in a SOC environment. Strong analytical mindset with the ability to solve problems under pressure. Excellent communication skills-both written and verbal-and ...

technology and career development. Skills required: Microsoft Certified: Security Operations Analyst Associate Certification (SC200) is a mandatory requirement for role fulfilment Experience working with SIEM technologies and security tooling An understanding of IT Infrastructure and Networking An understanding of vulnerability and threat management An understanding of the incident response lifecycle … responsible for providing Protective Monitoring Services across a range of Secure Customers. They will be responsible for the day to day monitoring using various SIEM Tools (Qradar, Sentinel & LogRhythm). Some of the responsibilities that come along with this role include the following: Security Analytics Incident investigation, triage and escalation ...

Location: Hampshire Package: Competitive rate + benefits Industry: Defence & Security Technology What You’ll Be Doing Configure, deploy and maintain advanced security tools, including SIEM and vulnerability scanners. Develop alerts, dashboards and playbooks to detect and respond to incidents quickly. Manage and mitigate technical vulnerabilities across secure environments. Implement and … operations team. Work closely with technical teams to embed security best practices throughout CI/CD pipelines. Main Skills Needed Hands-on experience with SIEM configuration and management. Solid understanding of vulnerability management and threat frameworks (e.g. MITRE ATT&CK). Familiarity with securing CI/CD pipelines and modern ...

teams to secure the solution. Key Responsibilities and Tasks Documenting security configuration Proactive management of technical vulnerabilities Deployment of security tooling (vulnerability scanning/SIEM/etc). Development of alerts and dashboards in SIEM configuration. Deploying secure lockdowns to information systems. Assist 2nd line Security Analysts in triaging critical … incidents. Experience (Essential) Knowledge of configuring SIEM tooling. Basic understanding of threat frameworks, such as ATT&CK. Understanding of CI/CD tools required to secure a pipeline. High standards in written report and/or design documentation. Experience (Nice to have) Experience of supporting information systems in a government ...