26 to 50 of 63 SIEM Jobs in the South East

sized organisation Hands-on experience in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as More ❯

Role Title: SIEM Engineer Duration: contract to run until 26/12/2025 Location: Wokingham, Hybrid 2 days onsite Rate: £460 p/d Via Umbrella inside IR35 Clearance required: Active SC is essential Role purpose/summary SIEM Deployment & Management - Set up, configure, and maintain SIEM tools like Sentinel, Elastic, ArcSight, Splunk, or QRadar. DR deployment, configuration & management … events, trends, and system performance. Collaboration - Work with IT and security teams to improve overall cybersecurity posture. Required Skills & Qualifications Technical Expertise - Strong knowledge & experience in security engineering with SIEM & EDR platforms, network security, and understanding of cybersecurity frameworks. Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications. Programming & Scripting - Familiarity with Python, PowerShell, KQL (Kusto query language), KQL (Kibana More ❯

TTPs), with expertise in the MITRE ATT&CK Framework. Hands-on technical knowledge in cyber detection engineering, security tools, and infrastructure. Skilled in Detection-as-Code and experienced with SIEM query languages. Confident communicator with experience working alongside global technical teams and senior stakeholders. Proactive, collaborative, and driven by curiosity and continuous improvement. Why QBE? At My Best At QBE More ❯

ensure clear documentation A solid understanding of the OSI reference model and common network protocols (DNS, HTTP/S, SSL, SMTP, FTP/S, LDAP/S) Experience with SIEM platforms and/or network packet capture tools It would be beneficial to have experience working within highly regulated or complex technical environments, such as defence, aerospace, or critical national More ❯

Role Title: SIEM Engineer Duration: contract to run until 26/12/2025 Location: Wokingham, Hybrid 2 days onsite Rate: £460 p/d Via Umbrella inside IR35 Clearance required: Active SC is essential Role purpose/summary SIEM Deployment & Management - Set up, configure, and maintain SIEM tools like ArcSight, Splunk, or QRadar. Threat Detection & Analysis - Monitor security logs … Generate reports on security events, trends, and system performance. Collaboration - Work with IT and security teams to improve overall cybersecurity posture. Required Skills & Qualifications Technical Expertise - Strong knowledge of SIEM platforms, network security, and cybersecurity frameworks. Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications. Programming & Scripting - Familiarity with Python, PowerShell, or other scripting languages. Analytical Thinking - Ability to analyze More ❯

Building on your current skills the scope of the training will be IBM Power SC for Power 9, 10 and 11, storage defender and Insights and use of a SIEM agent reporting. Key Skills Previous experience as an IBM System i/Power i/IBM i/i Series Operations Technical Consultant with excellence in Power I (IBMi ,System More ❯

Building on your current skills the scope of the training will be IBM Power SC for Power 9, 10 and 11, storage defender and Insights and use of a SIEM agent reporting. Key Skills Previous experience as an IBM System i/Power i/IBM i/i Series Operations Technical Consultant with excellence in Power I (IBMi ,System More ❯

that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending More ❯

that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending More ❯

that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending More ❯

support and reduce service incidents Manage and develop a specialist engineering team What we're looking for: Strong experience with Microsoft Azure (IaaS, RBAC, Defender for Cloud) Knowledge of SIEM tools (e.g., LogRhythm) and security best practices Hands-on experience with VMware vSphere and Nutanix Previous leadership experience (team of 4+) ITIL knowledge and strong communication skills If you're More ❯

background in Managing IR Cases/Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient More ❯

be considered Experience supporting bids, tenders, or large change requests Familiarity with secure infrastructure solutions and protocols Strong understanding of routing, switching, and network management technologies Exposure to Fortinet, SIEM solutions, or secure network tooling is advantageous Certifications (e.g. CCNA/CCNP, JNCIS/JNCIP) are desirable but not essential What's on Offer Salary up to More ❯

LLDs) • Familiarity with estimating BOMs, licensing, and resource efforts • Previous experience working on bids or large-scale technical projects Bonus points if you have experience with Network Management or SIEM tools. If you enjoy solving problems, thrive in a fast-moving environment, and want to contribute to meaningful projects, we'd love to hear from you. Immediate interviews and start More ❯

experience as a Pre-Sales Network Architect , with strong design documentation skills. Knowledge of routing protocols and secure infrastructure standards. Experience with Cisco, Juniper, and Fortinet technologies. Exposure to SIEM or Network Management tooling is advantageous. Must hold SC clearance and be eligible for higher-level UK security vetting. A Pre-Sales Network Architect with a passion for secure, scalable More ❯

architectural documentation Vendor experience with Juniper, Cisco, or Fortinet is strongly desired Familiarity with pre-sales processes or working on bids/change projects Exposure to Network Management or SIEM tools is beneficial Certifications (e.g. CCNP, JNCIP) are a plus, but not essential Clearance Requirements: Must be eligible for SC clearance and willing to undergo DV clearance Once DV is More ❯

ll work alongside world-class security engineers, hone your skills on cutting-edge tools, and shape the future of digital payments security. Your Day-to-Day Alert Triage: Analyze SIEM and threat-intelligence feeds to spot anomalies. Threat Hunting: Use forensic tools to track indicators of compromise across networks. Vulnerability Management: Run scans, prioritize remediation tasks, and validate fixes. Incident … insights, and contribute to our internal threat library. What You Bring Must-Haves Bachelor’s degree in Cybersecurity, Computer Science, or related field. Practical experience with at least one SIEM platform (e.g., Splunk, QRadar). Understanding of networking fundamentals, TCP/IP, and common protocols. Strong investigative mindset and attention to detail. Clear, concise communication skills for both technical and More ❯

Senior Sentinel SIEM Engineer Havant or Reading - (Hybrid - 1 day a week in the office) Duration: 6 months Contract - Inside IR35 Are you a seasoned SIEM (Security Information and Event Monitoring) Engineer looking to take your career to new heights? This company is seeking a talented and driven individual to join their dynamic team as a Senior Sentinel SIEM Engineer. … As the Senior Sentinel SIEM Engineer, you will be responsible for maintaining and enhancing the company's SIEM platform. This includes on boarding log sources, developing analytical rules, creating automation for triage and remediation, and integrating with other IT and Operational Technology platforms. You will be a key player in ensuring the security monitoring platform operates at optimal performance, scalability … plan and implement solutions for security monitoring. Design, implement, and maintain detection rules set to identify potential security threats. Scope, plan, and track log integration's to expand the SIEM platform's capabilities. Guide, develop, and grow the SIEM Engineering team, fostering a collaborative and innovative environment. Collaborate with the Threat Detection & Response team to ensure the SIEM platform supports More ❯

to Azure. You'll lead threat modelling and threat hunting activities to proactively discover potential compromises, work with external teams on penetration tests and red team engagements and manage SIEM and XDR tooling, establish processes and workflows to support incident response SOC. Location/WFH: You'll join colleagues in the Central London office for two days a week with … have experience of securing web applications, Windows, Active Directory and M365 environments You have a good knowledge of cloud security, GCP or Azure preferred, AWS also considered You have SIEM and EDR/XDR systems including Splunk and CrowdStrike You have a good knowledge of networking principles You are degree educated in Computer Science or closely related discipline You're More ❯

role for you. Key Responsibilities Lead security incident response and threat detection efforts, prioritising the protection of customer data and experience Build automated detection and remediation workflows using SOAR, SIEM, and scripting (Python, SQL) Apply deep cloud security knowledge (AWS, Azure) to secure ecommerce, mobile apps, APIs, and in-store systems Collaborate with Fraud and Customer Experience teams to mitigate … response during critical events Key requirements: Proven Experience: 4+ years in Security Operations or Incident Response, ideally in ecommerce, retail, or fintech environments Technical Depth: Hands-on expertise with SIEM, SOAR, EDR, automation tools, Python, SQL, and cloud-native security tooling Cloud Security: Strong knowledge of AWS and Azure, especially services like WAF, Shield, IAM, and API Gateway Forensic Skills … Exciting Purpose-Driven Impact: Your work directly protects customer data, accounts, and transactions—making every wellness journey safer. Cutting-Edge Tools: Leverage a modern stack including AWS, Azure, SOAR, SIEM, EDR, and cloud-native security solutions. Cross-Team Collaboration: Partner with Fraud, Customer Experience, Engineering, and Digital to stop threats before they start. Automation-Led Security: Drive rapid detection and More ❯

management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned with business and regulatory requirements. Oversee technical security controls including firewalls, IDS/IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incident response, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence tools, and network … threat detection, incident response, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM, IDS/IPS, and cloud security. Strong understanding of networking, infrastructure, and application security. Experience in OT security or within a data centre environment is advantageous. Why Join Us More ❯

management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned with business and regulatory requirements. Oversee technical security controls including firewalls, IDS/IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incident response, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence tools, and network … threat detection, incident response, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM, IDS/IPS, and cloud security. Strong understanding of networking, infrastructure, and application security. Experience in OT security or within a data centre environment is advantageous. Why Join Us More ❯

management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned with business and regulatory requirements. Oversee technical security controls including firewalls, IDS/IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incident response, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence tools, and network … threat detection, incident response, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM, IDS/IPS, and cloud security. Strong understanding of networking, infrastructure, and application security. Experience in OT security or within a data centre environment is advantageous. Why Join Us More ❯

and responding to security incidents. Your responsibilities will include: Controlling communications at external and internal system boundaries using firewalls, Intrusion Protection Systems (IPS), and Security Information and Event Management (SIEM) tools. Updating and maintaining network access control (NAC) and antivirus solutions. Monitoring and reviewing logs to detect unauthorized access attempts and ensure compliance with security policies. Maintaining accurate records of More ❯

and responding to security incidents. Your responsibilities will include: Controlling communications at external and internal system boundaries using firewalls, Intrusion Protection Systems (IPS), and Security Information and Event Management (SIEM) tools. Updating and maintaining network access control (NAC) and antivirus solutions. Monitoring and reviewing logs to detect unauthorized access attempts and ensure compliance with security policies. Maintaining accurate records of More ❯