22 of 22 SIEM Jobs in the Thames Valley

Lead investigations and remediation of complex security incidents, including malware infections, data breaches, and advanced persistent threats (APTs). Utilize advanced SIEM (Security Information and Event Management) tools, threat intelligence platforms, and other security technologies to analyze and correlate security alerts. Take ownership of Tier 2-level escalations from Tier … Lead investigations and remediation of complex security incidents, including malware infections, data breaches, and advanced persistent threats (APTs). Utilize advanced SIEM (Security Information and Event Management) tools, threat intelligence platforms, and other security technologies to analyze and correlate security alerts. Take ownership of Tier 2-level escalations from Tier ...

/7 basis . Skills & Experience Required: Working knowledge of Various Operating systems including Windows and Linux. Experience of working with SIEM and IPS products within a SOC Environment. Good Analytical skills with the ability to manipulate, interrogate and analyse large data sets. Relevant cyber security analyst experience within ...

/EDR across endpoints, O365, and Azure servers (P2), with a focus on advanced threat detection and automated response. Skilled in Microsoft Sentinel SIEM/SOAR setup, tuning, and KQL query development for detection engineering and incident investigation. PowerShell/Python scripting for automating Microsoft security tooling, plus experience securing ...

through complex challenges with clarity and confidence. What you'll need to succeed You're a seasoned security professional with hands-on experience across SIEM, SOC, Azure, Microsoft 365 and enterprise network environments. You've led incident response, managed third-party suppliers and implemented threat detection strategies in hybrid organisations. ...

with live incidents, real attackers, and industry-leading tools — not just alert watching. What you'll be doing Monitoring, triaging & investigating alerts across SIEM/EDR/XDR Analysing attacker behaviour & building incident timelines Escalating incidents with clear technical context Using tools such as Microsoft Sentinel, Google SecOps, Defender ...

more consultative, client-facing role. Ideal Background: Proven experience in cyber security design, architecture, or consultancy. Hands-on expertise across domains such as SIEM, SOAR, EDR, Vulnerability Management, WAF, IDAM , and Cloud Security . Strong understanding of vendor technologies (e.g., Fortinet, Palo Alto, Juniper ). Excellent communication and stakeholder engagement ...

solutions (MSP environment highly desirable). Deep product expertise in at least one area: Microsoft 365/Azure, cloud migration, cyber security (firewalls, EDR, SIEM), backup/DR, network infrastructure, or managed services. Proven ability to translate technical capabilities into business value for non-technical audiences. Understanding of the competitive ...

Check Point, Cisco, Fortinet, CrowdStrike, Netskope, F5, Akamai, and CyberArk Familiarity with security frameworks (ISO 27001, NIST, GDPR) and concepts like Zero Trust, SASE, SIEM/SOAR Familiarity with leading vendors and solutions across security, networking, and compliance frameworks Ability to engage confidently with C-level stakeholders and translate technical ...

responsible for a variety of day to day activities including: vulnerability management, patch management, email security and mobile device management assessing cyber threats, using SIEM & SOAR tools penetration testing continuous improvement, ensuring documentation is maintained in line with best-practice/standards support on project work About you Applicants ...

Title: SIEM Engineer Location: Wokingham/Hybrid (3 days per week on site) Duration: 3 months from the start Rate: £430 per day inside ir35 SC security clearance is required for this role We are looking for a highly skilled Security Engineer to support the deployment, configuration, and management … modern SIEM and EDR platforms. This role is ideal for someone with strong hands-on technical security expertise and a passion for threat detection, analysis, and automation. Key Responsibilities: Syslog experience and/or strong Linux skills SIEM Deployment & Management Configure, deploy, and maintain SIEM platforms such as Microsoft Sentinel ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

responsible for monitoring systems, identifying potential threats, and ensuring rapid incident response to safeguard critical services. Responsibilities Keep a close watch on SIEM platforms and other monitoring tools to spot unusual activity. Evaluate and triage alerts to separate genuine incidents from false positives. Take immediate containment steps and escalate confirmed ...

incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. Oversee operational security processes with tools like SIEM, EDR, and Vulnerability Management, continuously enhancing capabilities. Network and System Security Manage advanced security tools such as firewalls and IDS/IPS to protect network … qualifications. Good underpinning knowledge of the Microsoft technology stack, cloud, on-premises and End user Compute. Understanding and experience of web filtering, email security, SIEM, EDR/XDR. Experience of managing investigations in SOC (L2 or above ...

accounts and delivering value to strategic accounts in the cybersecurity industry Extensive platform selling experience in complex sales with multiple buying centers Experience selling SIEM, EDR, or CNAPP (DevSecOps, CloudOps) solutions is highly preferred Established trusted relationships with CIOs and CISOs with the ability to influence and drive strategic conversations ...

responsible for monitoring systems, identifying potential threats, and ensuring rapid incident response to safeguard critical services. Responsibilities Keep a close watch on SIEM platforms and other monitoring tools to spot unusual activity click apply for full job details ...

similar certification are a significant bonus to the role Key Responsibilities Continuous Monitoring: You will monitor security tools, including Security Information and Event Management (SIEM) systems, to detect suspicious activity. You will be the first to see potential threats and will need to be efficient and professional response against defined ...

Common cyber attack techniques Any Cyber security certifications would be desirable. Responsibilities include: You will monitor security tools, including Security Information and Event Management (SIEM) systems, to detect suspicious activity. Analyse alerts and logs to determine if an event is a genuine security incident or a false positive. You will ...

senior security leaders, with the ability to diagnose challenges and deliver strategic recommendations 10+ years of hands-on experience in deploying and integrating SIEM/security analytics solutions within large enterprise environments 8+ years of experience with Security Operations Center (SOC) tooling, processes, and workflows Hands-on technical mastery across … SIEM, SOAR, EDR, cloud security, and threat intelligence Ability to conceive, architect, and develop effective correlation and detection rules Familiarity with a range of SIEM technologies, such as Splunk and IBM QRadar, is a plus. Strong expertise in Regular Expressions (Regex) Relevant bachelor's degree or industry-recognized qualifications (CISSP ...

malware, ransomware, data breaches, and APT activity Take ownership of escalations from SOC L1 and drive incidents through to resolution Perform detailed analysis using SIEM and EDR tools such as Splunk and Microsoft Defender Conduct forensic analysis to determine root cause, scope, and impact Support containment, eradication, and recovery activities … Strong experience operating as a SOC L2 or equivalent CERT role Proven incident response capability in enterprise or MSSP environments Hands-on experience with SIEM platforms, ideally Splunk Experience with EDR technologies, preferably Microsoft Defender Solid understanding of network, endpoint, and cloud security fundamentals Experience investigating complex threats including ransomware ...

incidents, you'll guide junior analysts, ensure smooth shift transitions, and help refine the tools and processes that keep the operation resilient. Responsibilities Oversee SIEM platforms and other monitoring tools to detect suspicious activity. Review and triage alerts, analysing logs to prioritise incidents effectively. Carry out containment measures and escalate … Contribute to the ongoing improvement and optimisation of security monitoring systems. What you'll need to succeed Hands-on experience with SPLUNK or similar SIEM tools in a SOC environment. Strong analytical mindset with the ability to solve problems under pressure. Excellent communication skills-both written and verbal-and ...