76 to 100 of 115 SIEM Jobs in the South East

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into networking. Course cost ...

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into networking. Course cost ...

Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS/PaaS, Windows/Linux/Unix. Strong knowledge of security tooling such as SIEM, endpoint detection (EDR/XDR), and vulnerability management platforms. Hands-on experience with policy development, access control models and logging standards. Experience supporting assurance activities … government-mandated reviews (e.g. GovAssure, Secure by Design). Knowledge of Incident Management, Vulnerability Assessments, SIEM & SOC Systems. Familiarity with ITSM workflows and change control procedures Experience designing or reviewing secure software supply chain and CI/CD security . Ability to interpret CVEs, CVSS scores, and threat intelligence feeds. ...

including Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS/PaaS, and Windows/Linux/Unix systems. Utilise security tooling such as SIEM, EDR/XDR, and vulnerability management platforms to monitor and improve security posture. Develop and implement security policies, access control models (RBAC, ABAC), and logging … Cyber Essentials. Experience conducting security audits and implementing remediation strategies. Technical expertise across cloud and enterprise platforms (Azure, M365, operating systems). Familiarity with SIEM, SOC operations, endpoint detection, and vulnerability management tools. Knowledge of ITSM processes, change control, and governance frameworks. Experience with CI/CD security and software ...

threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks, and automation Improve SOC tooling (SIEM, EDR/XDR, SOAR) and operational processes Design and maintain advanced detection use cases and correlation logic Client Engagement & Consulting Act as a trusted advisor … Skills & Experience Essential 7+ years in Security Operations, including 3-4 years in a senior/lead SOC role Strong hands-on experience with: SIEM (e.g. Microsoft Sentinel, CrowdStrike) EDR/XDR (e.g. CrowdStrike, Microsoft Defender, Carbon Black) SOAR and threat intelligence platforms Proven expertise in threat hunting and incident ...

threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks, and automation Improve SOC tooling (SIEM, EDR/XDR, SOAR) and operational processes Design and maintain advanced detection use cases and correlation logic Client Engagement & Consulting Act as a trusted advisor … Skills & Experience Essential 7+ years in Security Operations, including 3-4 years in a senior/lead SOC role Strong hands-on experience with: SIEM (e.g. Microsoft Sentinel, CrowdStrike) EDR/XDR (e.g. CrowdStrike, Microsoft Defender, Carbon Black) SOAR and threat intelligence platforms Proven expertise in threat hunting and incident ...

threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks, and automation Improve SOC tooling (SIEM, EDR/XDR, SOAR) and operational processes Design and maintain advanced detection use cases and correlation logic Client Engagement & Consulting Act as a trusted advisor … Skills & Experience Essential 7+ years in Security Operations, including 3-4 years in a senior/lead SOC role Strong hands-on experience with: SIEM (e.g. Microsoft Sentinel, CrowdStrike) EDR/XDR (e.g. CrowdStrike, Microsoft Defender, Carbon Black) SOAR and threat intelligence platforms Proven expertise in threat hunting and incident ...

threat hunting Lead escalations for complex or high-severity incidents across client environments Develop and optimise detection rules, playbooks, and automation Improve SOC tooling (SIEM, EDR/XDR, SOAR) and operational processes Design and maintain advanced detection use cases and correlation logic Client Engagement & Consulting Act as a trusted advisor … Skills & Experience Essential 7+ years in Security Operations, including 3-4 years in a senior/lead SOC role Strong hands-on experience with: SIEM (e.g. Microsoft Sentinel, CrowdStrike) EDR/XDR (e.g. CrowdStrike, Microsoft Defender, Carbon Black) SOAR and threat intelligence platforms Proven expertise in threat hunting and incident ...

and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats … hunting, cyber threat detection, SOC, blue team, or cyber defence environments, with ideally around five years hands on experience. Strong hands-on experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary ...

scope to evolve the position based on their strengths and expertise. The successful candidate will play a key role in strengthening security posture through SIEM ownership, incident response, and system hardening, directly contributing to Europe's technological sovereignty. The Role The IT Security Specialist will: Design, build, and operate … centralised SIEM platform to aggregate and analyse security logs across infrastructure, networks, and applications Own security log analysis, vulnerability management, and incident investigation, including defining baselines and developing alerting rules for critical events Lead incident response efforts, using log correlation and analysis to investigate and resolve security issues quickly and ...

technical work and mentoring others. Senior SOC Analyst essential skills Proven experience working within a SOC environment, ideally 3+ years Strong knowledge of SIEM, incident management and threat intelligence Experience with cloud security, networking and information security principles Understanding of IDAM, RBAC and joiners, movers and leavers processes Ability … consent for your application to be processed and submitted to the client in conjunction with this vacancy only. Key skills: Senior SOC Analyst, SOC, SIEM, Incident Response, Cloud Security, Threat Intelligence, IDAM, ISO 27001, Team Leadership ...

technical work and mentoring others. Senior SOC Analyst essential skills Proven experience working within a SOC environment, ideally 2+ years Strong knowledge of SIEM, incident management and threat intelligence Experience with cloud security, networking and information security principles Understanding of IDAM, RBAC and joiners, movers and leavers processes Ability … consent for your application to be processed and submitted to the client in conjunction with this vacancy only. Key skills: Senior SOC Analyst, SOC, SIEM, Incident Response, Cloud Security, Threat Intelligence, IDAM, ISO 27001, Team Leadership ...

tooling is operating effectively to protect client environments. Work with teams to assess risks, design controls and define testing requirements. Support senior engineers with SIEM, threat intelligence and malware analysis platforms. Apply patches/updates, raise changes and follow agreed processes. Keep up to date with threats and recommend improvements. … busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experienceespecially Sentinel or Splunk. If you are interested in this role but not sure if your skills and experience are exactly what were looking for, please ...

Oversee end-to-end incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage security … performance targets are met. Essential Experience Active SC Clearance Proven experience leading cyber security operations teams Strong incident management and response background Experience with SIEM and security monitoring tools Threat intelligence analysis and reporting experience Strong stakeholder and vendor management skills Desirable CISSP, CISM or equivalent certification Experience with ...

Oversee end-to-end incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage security … performance targets are met. Essential Experience Active SC Clearance Proven experience leading cyber security operations teams Strong incident management and response background Experience with SIEM and security monitoring tools Threat intelligence analysis and reporting experience Strong stakeholder and vendor management skills Desirable CISSP, CISM or equivalent certification Experience with ...

Oversee end-to-end incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage security … performance targets are met. Essential Experience Active SC Clearance Proven experience leading cyber security operations teams Strong incident management and response background Experience with SIEM and security monitoring tools Threat intelligence analysis and reporting experience Strong stakeholder and vendor management skills Desirable CISSP, CISM or equivalent certification Experience with ...

Oversee end-to-end incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage security … performance targets are met. Essential Experience Active SC Clearance Proven experience leading cyber security operations teams Strong incident management and response background Experience with SIEM and security monitoring tools Threat intelligence analysis and reporting experience Strong stakeholder and vendor management skills Desirable CISSP, CISM or equivalent certification Experience with ...

Oversee end-to-end incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage security … performance targets are met. Essential Experience Active SC Clearance Proven experience leading cyber security operations teams Strong incident management and response background Experience with SIEM and security monitoring tools Threat intelligence analysis and reporting experience Strong stakeholder and vendor management skills Desirable CISSP, CISM or equivalent certification Experience with ...

Oversee end-to-end incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage security … performance targets are met. Essential Experience Active SC Clearance Proven experience leading cyber security operations teams Strong incident management and response background Experience with SIEM and security monitoring tools Threat intelligence analysis and reporting experience Strong stakeholder and vendor management skills Desirable CISSP, CISM or equivalent certification Experience with ...

Oversee end-to-end incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage security … performance targets are met. Essential Experience Active SC Clearance Proven experience leading cyber security operations teams Strong incident management and response background Experience with SIEM and security monitoring tools Threat intelligence analysis and reporting experience Strong stakeholder and vendor management skills Desirable CISSP, CISM or equivalent certification Experience with ...

Oversee end-to-end incident response, ensuring processes are maintained and critical incidents are effectively managed. Security Monitoring: Deliver and improve security monitoring, including SIEM management, threat hunting, and intrusion detection. Threat Intelligence: Collect and analyse OSINT and commercial threat intelligence, providing actionable insight to stakeholders. Cyber Operations: Manage security … performance targets are met. Essential Experience Active SC Clearance Proven experience leading cyber security operations teams Strong incident management and response background Experience with SIEM and security monitoring tools Threat intelligence analysis and reporting experience Strong stakeholder and vendor management skills Desirable CISSP, CISM or equivalent certification Experience with ...

potential cyber risks, assess their impact and develop technical mitigation strategies. Working with Security Architecture to inform focused security solution design for SOC/SIEM solutions. Formulate security strategy, creatively applying a wide range of technical and/or management principles. Stay up to date with the latest cybersecurity threats … and evaluate risk and understand the implications of new technologies. Good project management skills, with the ability to balance multiple initiatives and priorities simultaneously. SIEM experience with Azure Sentinel and or Splunk. Experience of running simulated or reacting to actual incidents, following procedures and good practice to limit, reduce and ...

your expertise genuinely matters. In this hands-on technical role, youll own the end-to-end design, development and maturity of detection logic across SIEM platformsengineering effective responses to real-world attacker techniques. Youll operate with a high degree of autonomy, acting as a trusted SME across multiple secure environments … Farnborough office. Security: You must hold or be eligible for SC Clearance. What you'll be doing: Design, build, test and continuously refine advanced SIEM detection logic, including rules, correlations and analytics. Research emerging threats, vulnerabilities and adversary TTPs, mapping them to MITRE ATT&CK to close detection and visibility ...

expertise genuinely matters. In this hands-on technical role, you’ll own the end-to-end design, development and maturity of detection logic across SIEM platforms—engineering effective responses to real-world attacker techniques. You’ll operate with a high degree of autonomy, acting as a trusted SME across multiple … Farnborough office. Security: You must hold or be eligible for SC Clearance. What you'll be doing: Design, build, test and continuously refine advanced SIEM detection logic, including rules, correlations and analytics. Research emerging threats, vulnerabilities and adversary TTPs, mapping them to MITRE ATT&CK to close detection and visibility ...

doing: Overseeing Security Operators during shifts, ensuring continuous security monitoring Performing initial investigations of potential threats using Security Incident and Event Management (SIEM) tools Monitoring SIEM systems for faults and anomalies Contributing to routine security incident management by identifying, prioritising, and escalating threats Supporting the confidentiality, integrity, and availability ...