76 to 100 of 106 SIEM Jobs in the South East

designs comply with Baseline Security Requirements and security policy. Ensure that projects integrate with security baseline controls such as IPS/IDS, WAF, Firewall Change Management, Identity & Access Management, SIEM and Vulnerability Management. Ensure internal customers, external suppliers and delivery partners are aware of security standards and future strategy to influence development roadmaps. Identify security risks, manage them with key More ❯

GDPR, HIPAA, PCI) Strong communication and stakeholder engagement skills Technical knowledge across .NET, Java, scripting (Python, PowerShell), APIs, and cryptography Nice to have: Certifications (CISSP, CEH, CCSP), experience with SIEM/SOAR tools, business analysis, and working with agile delivery teams. More ❯

that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending More ❯

high availability, and monitor replication. Implement periodic patching schedules for all client PCs and Windows Servers. Deploy and configure antivirus solutions for servers and workstations. Deploy, configure, and maintain SIEM solutions. Document procedures and provide knowledge transfer across teams. Assist customers with hardware and software upgrades. Coordinate the introduction of new infrastructure. Help with equipment configuration and provide training on … of network and IT security Excellent customer service and communication skills Ability to travel Desirable: Knowledge of UNIX/Linux systems Experience with NAS (NetApp or Dell) Experience with SIEM solutions Experience with Atlassian Confluence Knowledge of regulatory compliance Experience with Kubernetes and containerized deployments Experience and Education: BA/BS in a technology-related field (preferred) 5+ years in More ❯

SOC Analyst on a contract basis. The successful candidate will be working with a Telecoms end client across various projects. Key Responsibilities: Detect and respond to security incidents using SIEM tools. Analyse threats like malware, phishing, and network intrusions. Investigate and escalate security events. Strengthen security measures and report incidents. Stay updated on cybersecurity trends. Key Requirements: Experience in SOC … cybersecurity, or related roles. Proficiency in SIEM, IDS/IPS, firewalls, and endpoint security. Understanding of network protocols and threat intelligence. Telecoms background (Essential). Strong analytical and communication skills. Further job details available upon application. More ❯

Security assessments and automation Implementing monitoring and alerts Required skills: Understanding of AWS infrastructure - IAM, S3, ECS, EC2, Lambda IaC with Terraform Strong Python skills Implementing incident response and SIEM Experience working within large enterprise and financial services space. London - Onsite 2 days per week No visa sponsorship available More ❯

Cyber Security Lead to join their organization. The Information Security Officer & Cyber Security Lead will have knowledge of ISO27001 & Cyber Essentials as well as hands-on technical knowledge of SIEM and incident response. Key Responsibilities for the Information Security Officer & Cyber Security Serve as a subject matter expert for information security, advising stakeholders on risks, controls, and security best practices. … and technology initiatives. Partner with the Risk & Compliance team to develop and evolve policies, procedures, and working practices to improve the firm's security posture. Manage cybersecurity tooling including SIEM, EDR, and mail filtering systems to ensure effective threat detection and response. Monitor, investigate, and respond to alerts and incidents, coordinating with internal teams and third-party providers. Maintain the More ❯

Cyber Security Lead to join their organization. The Information Security Officer & Cyber Security Lead will have knowledge of ISO27001 & Cyber Essentials as well as hands-on technical knowledge of SIEM and incident response. Key Responsibilities for the Information Security Officer & Cyber Security Serve as a subject matter expert for information security, advising stakeholders on risks, controls, and security best practices. … and technology initiatives. Partner with the Risk & Compliance team to develop and evolve policies, procedures, and working practices to improve the firm's security posture. Manage cybersecurity tooling including SIEM, EDR, and mail filtering systems to ensure effective threat detection and response. Monitor, investigate, and respond to alerts and incidents, coordinating with internal teams and third-party providers. Maintain the More ❯

incidents, and ensure robust protection against cyberattacks. Key Responsibilities: Design and implement secure network architectures (firewalls, VPNs, IDS/IPS, etc.) Monitor network activity for threats and vulnerabilities using SIEM tools Perform regular security audits, risk assessments, and penetration tests Respond to and investigate security breaches and incidents Stay current with the latest security threats, technologies, and trends Experience required More ❯

incidents, and ensure robust protection against cyberattacks. Key Responsibilities: Design and implement secure network architectures (firewalls, VPNs, IDS/IPS, etc.) Monitor network activity for threats and vulnerabilities using SIEM tools Perform regular security audits, risk assessments, and penetration tests Respond to and investigate security breaches and incidents Stay current with the latest security threats, technologies, and trends Experience required More ❯

risks, and compliance status About You 3-5 years of experience in cyber security roles, with hands-on involvement in implementing frameworks like NIST, eCAF, or ISO27001 Experience in SIEM, Vulnerability Management, Threat Intelligence, and IAM tools Background in supporting enterprise-level security initiatives aligned with regulatory or certification standards If you're interested in hearing more about the role More ❯

end to end network infrastructure automation capabilities Proficiency in configuring, managing, and troubleshooting firewalls. Cisco, Palo Alto etc, Experience with intrusion detection/prevention systems, as well as with SIEM tools and security incident response. Design and implement secure network architectures, including firewalls, intrusion detection/prevention systems, and encryption technologies. Must have very strong communication skills to manager senior More ❯

heart of our security operations, developing and maintaining the infrastructure that powers our cutting-edge cybersecurity services. Your focus will be on enhancing and managing our: SIEM (Security Information and Event Management) systems SOAR (Security Orchestration, Automation, and Response) platforms Threat Intelligence tools and integrations You'll work closely with our threat intelligence teams to design and implement smart, automated … of institutions and millions of users across the UK. Your work will directly contribute to the safety and resilience of this network. What We're Looking For: Experience with SIEM and SOAR platforms (e.g., Splunk, Sentinel, Cortex XSOAR). A solid understanding of threat intelligence frameworks and feeds. A collaborative mindset and a passion for automation and innovation. Operational experience More ❯

in a Tier 1 Cyber Security SOC Support Analyst role Prior experience in a Managed Service Provider (MSP) environment preferred Working knowledge of Microsoft Defender XDR and Microsoft Sentinel (SIEM) Hands-on experience with the Microsoft Defender suite , including Endpoint Detection and Response Solid understanding of Microsoft 365 Cloud Technologies , particularly from a threat landscape perspective Certifications: SC-200 Microsoft More ❯

incidents, performing in-depth analysis and coordinating containment and mitigation strategies. Conduct proactive threat hunting using network traffic, behavioural patterns, threat intelligence, and security telemetry. Utilise and fine-tune SIEM tools such as Splunk, leveraging advanced queries and dashboards to identify anomalies. Collaborate closely with global security teams, threat intelligence units, and stakeholders to improve detection and response playbooks Senior … Cyber Operations Analyst – Requirements: Strong proficiency with SIEM platforms, ideally Splunk, including custom query writing and dashboard development. Deep understanding of incident response, including network traffic analysis, PCAP investigation, and forensic techniques. Familiarity with attack frameworks such as MITRE ATT&CK, and ability to recognise TTPs in real-world data. Demonstrated experience analysing logs and alerts across varied data sources More ❯

response activities and containment strategies. Perform deep forensic analysis across endpoints, logs, and network traffic to uncover advanced threats. Develop and fine-tune detection rules and correlation logic in SIEM platforms (e.g., Splunk). Collaborate with engineering and threat intelligence teams to improve detection coverage and SOC workflows. Mentor and guide L1/L2 analysts, providing training, quality reviews, and More ❯

and access control • Identity and Access Management (including RBAC and A/PBAC, permissions management), ZTA • Cryptographic techniques and implementations • IT asset management and tracking • Vulnerability Management and Patching • SIEM principles, products and supporting logging infrastructure • Containerisation and virtual machine security • Delivering secure solutions against project expectations • Strong awareness of and commitment to industry best practice • Driving change in a More ❯

hoc travel to other sites/data centres. The Role The Cyber Security Engineer will be joining the internal security team, monitoring and analysing real-time security events using SIEM tools to detect and respond to potential threats. The Cyber Security Engineer will conduct regular vulnerability assessments and penetration tests to identify and mitigate security risks and breaches, and will … sized organisation Hands-on experience in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as More ❯

hoc travel to other sites/data centres. The Role The Cyber Security Engineer will be joining the internal security team, monitoring and analysing real-time security events using SIEM tools to detect and respond to potential threats. The Cyber Security Engineer will conduct regular vulnerability assessments and penetration tests to identify and mitigate security risks and breaches, and will … sized organisation Hands-on experience in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as More ❯

dashboards in Elastic SIEM. 1st/2nd line Security Monitoring to triage incidents and carry out investigations Holds current DV clearance. Key Qualifications, Experience, and Skills Knowledge of configuring SIEM tooling. Experience in developing use cases and playbooks for Security Operations Centre. Experience in SIEM configuration. What’s In It For You? Amazing company to work for! Exciting and interesting More ❯

that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending More ❯

level BGP , inter-AS, and policy/routing configurations. Apply Linux expertise across PaaS, IaaS, SaaS, and CaaS environments. Work with supporting services such as DNS, ADC, AAA, firewalls, SIEM, protocol inspection , and network visibility tools. Align architecture with 3GPP mobile standards (Rel. 15+), IMS, RAN , and CUPS/WWC models. Contribute to security and compliance requirements, including alignment with More ❯

Microsoft Defender solutions Define target architecture, integration strategy, and rollout plans Lead POCs and manage production deployments Configure advanced security policies (traffic steering, SSL inspection, etc.) Integrate tools with SIEM , identity platforms (e.g., Entra ID) , and endpoint management Produce high-quality documentation (HLDs, LLDs, runbooks, SOPs) Collaborate across security, network, cloud, and endpoint teams Deliver security posture reviews and remediation … focused on security solution design/delivery Strong hands-on experience with Zscaler ZIA, ZPA, Client Connector Deep knowledge of Microsoft Defender (Endpoint, Identity, Cloud, O365) Experience integrating with SIEM/SOAR , conditional access , and zero trust architecture Excellent stakeholder engagement and documentation skills Senior Security Solutions Consultant (Zscaler & Microsoft Defender) Nice to Have: Zscaler Certified Professional (ZCP) Microsoft certifications More ❯

delivering top-tier service in a technically complex space—this could be your next move. ✅ Minimum 3 years SDM experience ✅ Knowledge of ITIL processes and cyber/networking concepts (SIEM, EDR, XDR) ✅ Strong communication & stakeholder management skills ✅ Full UK driving licence – some client site travel required 💡 Why join? Be part of a dynamic, collaborative team Genuine career growth in a More ❯

to lead complex projects and make a tangible impact? We're looking for a Principal Cyber Engineer, with experience in designing and deploying Rapid7 , SentinelOne, (or similar XDR, MDR, SIEM, ) in an AWS environment, for our clients growing team in Crawley. The role wil... More ❯