1 to 25 of 47 SIEM Jobs in South Wales

environments (e.g., Azure) and end-user devices. Hands-on expertise with security tools and technologies, such as Defender for Cloud, Defender for Endpoint, and SIEM solutions. Solid background in implementing and managing security policies via Microsoft Intune and Group Policy (GPO) to secure endpoints and applications. Proven ability to monitor More ❯

environments (e.g., Azure) and end-user devices. Hands-on expertise with security tools and technologies, such as Defender for Cloud, Defender for Endpoint, and SIEM solutions. Solid background in implementing and managing security policies via Microsoft Intune and Group Policy (GPO) to secure endpoints and applications. Proven ability to monitor More ❯

cause analysis, and provide incident response support Conduct regular vulnerability assessments and penetration testing; assist in remediation efforts Maintain and manage SIEM (Security Information and Event Management) tools and log analysis Develop and enforce security policies, standards, and procedures Work with IT and development teams to implement secure system designs … experience in an information security or cybersecurity role Strong understanding of security principles, frameworks, and practices (e.g., CIA triad, defense in depth) Experience with SIEM tools, intrusion detection/prevention systems (IDS/IPS), firewalls, and endpoint protection Familiarity with vulnerability scanning tools (e.g., Nessus, Qualys) and remediation processes Knowledge More ❯

and effective communication skills, including with non-technical audiences. Self-motivated with a positive attitude, committed to security as a business enabler. Knowledge of SIEM tools and advanced hunting queries. Experience Needed: Managing serious cyber incidents as a digital forensic incident responder. Operating within large, complex enterprise environments. Understanding of More ❯

or other Public Cloud Solutions) Analysis and Incident Response experience with Cloud systems such as AWS or GCP Experience working and supporting analytics/SIEM platforms Experience working in CSIRT/SOC functions Experience supporting and conducting Incident Response engagements Experience in endpoint based investigations Experience in cloud based investigations More ❯

SOC staff based on industry best practice. Experience in business growth and bid development is desirable. What We’re Looking for: Experience in operating SIEM tools and vulnerability management software and being able to interpret and prioritise alerts, incidents and threat intelligence. Security Blue Team 1 or higher CompTIA Cyber More ❯

SOC staff based on industry best practice. Experience in business growth and bid development is desirable. What We’re Looking for: Experience in operating SIEM tools and vulnerability management software and being able to interpret and prioritise alerts, incidents and threat intelligence. Security Blue Team 1 or higher CompTIA Cyber More ❯

evaluating and enhancing our security infrastructure Collaborate with IT, DevOps and SecOps teams to architect, configure and implement security monitoring and defense tools (is. SIEM, IDS/IPS, ASM, WAF) to safeguard against security breaches, cyber threats and unauthorized access Report on and assist with all security events and incidents. More ❯

communication skills, capable of conveying technical info to non-technical audiences. Self-motivated with a positive attitude, supporting business growth through security. Knowledge of SIEM tools and advanced hunting queries. Experience Needed: Managing serious cyber incidents as a digital forensic responder. Working successfully within large, federated enterprise environments. Understanding security More ❯

improvements. Prepare comprehensive reports for clients. Technical skills: Demonstrated experience in responding to and investigating incidents whilst utilizing various monitoring, detection and investigation tooling – SIEM, SOAR, EDR etc. Proficiency in log analysis of Networking, Windows, Mac and Linux and Cloud. Understanding of evidence collection process based on priority. Strong understanding More ❯

will require active SC-Clearance and prior experience with a broad range of cybersecurity tools. Key Responsibilities: Working closely with the SOC to implement SIEM technology Automating security workflows to streamline incident response Utilising cloud environments across both Azure and AWS. Assisting with Incident Management Contributing to platform automation and More ❯

do it? Technical background, willingness to learn, and experience within a Security Operations Centre (SOC). Understanding of SOC tools and technologies, such as SIEM, IDS/IPS, EDR and threat intelligence platforms. Proven experience of assessing maturity, managing SOC services and delivering improvements within a SOC environment. Experience bringing More ❯

do it? Technical background, willingness to learn, and experience within a Security Operations Centre (SOC). Understanding of SOC tools and technologies, such as SIEM, IDS/IPS, EDR and threat intelligence platforms. Proven experience of assessing maturity, managing SOC services and delivering improvements within a SOC environment. Experience bringing More ❯

Act as a point of contact, managing ongoing communications and ensuring technical needs are met Threat Detection & Analysis: Triage and analyse alerts across multiple SIEM platforms (e.g., Microsoft Sentinel, custom ELK stacks). Log & Threat Intelligence Analysis: Perform detailed log analysis and threat intelligence research to uncover root causes and More ❯

directory services (e.g. Active Directory, Azure AD), identity federation, and identity lifecycle orchestration Familiarity with logging and monitoring practices, including event correlation, identity-related SIEM alerts, or IAM health dashboards Understanding of identity governance within regulatory frameworks such as ISO 27001, NIST, GDPR, or SOX Experience in platform resilience, fault More ❯

Log Analytics). Proficiency in KQL (Kusto Query Language) for log analysis. Experience with automation scripting (PowerShell, Python, or Azure Functions). Familiarity with SIEM tools (Splunk, ELK, Azure Sentinel) Microsoft Certified: Azure Solutions Architect Expert (AZ-305) Microsoft Certified: Azure Security Engineer Associate (AZ-500) Your Personal Skills and More ❯

Log Analytics). Proficiency in KQL (Kusto Query Language) for log analysis. Experience with automation scripting (PowerShell, Python, or Azure Functions). Familiarity with SIEM tools (Splunk, ELK, Azure Sentinel) Microsoft Certified: Azure Solutions Architect Expert (AZ-305) Microsoft Certified: Azure Security Engineer Associate (AZ-500) Your Personal Skills and More ❯

Security Operations related roles Solid understanding of SOC best practices and relevant regulations Experience deploying, configuring, and managing security tools within SOC environments (e.g., SIEM, IDS/IPS, EDR, etc.). Excellent communication skills, verbally and written #J-18808-Ljbffr More ❯

Security Operations related roles Solid understanding of SOC best practices and relevant regulations Experience deploying, configuring, and managing security tools within SOC environments (e.g., SIEM, IDS/IPS, EDR, etc.). Excellent communication skills, verbally and written #J-18808-Ljbffr More ❯

cyber incidents, offering reassurance and expert guidance Produce detailed incident reports with root cause analysis and actionable recommendations Perform forensic and log analysis using SIEM, EDR, SOAR, and other security tools Collaborate across teams to enhance response playbooks and internal processes Stay informed on emerging threats and tactics to strengthen More ❯

cyber incidents, offering reassurance and expert guidance Produce detailed incident reports with root cause analysis and actionable recommendations Perform forensic and log analysis using SIEM, EDR, SOAR, and other security tools Collaborate across teams to enhance response playbooks and internal processes Stay informed on emerging threats and tactics to strengthen More ❯

security protocols. CISCO CCNA or equivalent. You may also have/work with: VMware Certified Professional (VCP). Microsoft Certified Professional (MCP). SOC, SIEM, SNMP. Interest in IOT/OT/ICS. Experience with network monitoring and management tools. If this sounds like something you want to be involved More ❯

security protocols. CISCO CCNA or equivalent. You may also have/work with: VMware Certified Professional (VCP). Microsoft Certified Professional (MCP). SOC, SIEM, SNMP. Interest in IOT/OT/ICS. Experience with network monitoring and management tools. If this sounds like something you want to be involved More ❯

to understand technical capabilities to ensure solutions align with security challenges and business objectives. Technical Requirements: Hands-on experience with security technologies such as SIEM, EDR, SOAR, vulnerability, threat intelligence etc. Experience in pre-sales, solution consulting, or technical advisory roles Proactive mindset and strong customer engagement skills Please apply More ❯

to understand technical capabilities to ensure solutions align with security challenges and business objectives. Technical Requirements: Hands-on experience with security technologies such as SIEM, EDR, SOAR, vulnerability, threat intelligence etc. Experience in pre-sales, solution consulting, or technical advisory roles Proactive mindset and strong customer engagement skills Please apply More ❯