3 of 3 SIEM Jobs in Stevenage

phishing attacks. Familiarity with network and endpoint investigation techniques, and security alert validation. Knowledge of threat scenarios and advanced testing of detection platforms like SIEM, EDR, and XDR. Experience in managing incident cases and developing mitigation strategies. Effective communication skills, with ability to advise leadership and produce technical and executive ...

root cause analysis Understanding of OSI model principles and common protocols (DNS, HTTP/S, SMTP, FTP/S, LDAP/S) Experience with SIEM tools and/or network packet capture solutions The ideal candidate must have: Solid understanding of networking principles (TCP/IP, DNS, routing, switching, VLANs ...

will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best standard … cause analysis and leading T2 incident investigations Process/Playbook/Runbook development Working knowledge of detection engineering, false positive improvements Capability to tune SIEM rules or create custom detections Scripted automation experience e.g. Python, SOAR, PowerShell Threat modelling and Hunting methodologies ...