4 of 4 Remote/Hybrid SIEM Jobs in the Thames Valley

Experience working in a SOC, NOC, or equivalent security operations environment, with well-developed investigation, triage, and incident handling skills. Demonstrable practical knowledge of SIEM, EDR, firewalls, and major security technologies (Splunk, Sentinel, QRadar, CrowdStrike, etc.). Strong grasp of networking concepts (TCP/IP, DNS, protocols), Windows and Linux ...

processes Onboard systems including Windows, Linux/Unix, and network devices into PAM platforms Support Active Directory privileged account management Integrate PAM solutions with SIEM tools for logging and alerting Troubleshoot technical issues related to connectors, sessions, and integrations Produce clear technical documentation and runbooks Required Skills & Experience Proven hands … and auditing Knowledge of Active Directory and enterprise infrastructure environments Experience onboarding systems (Windows/Linux/network devices) into PAM platforms Familiarity with SIEM integration and security event monitoring Understanding of security frameworks such as ISO 27001 or NIST Strong troubleshooting and problem-solving skills Ability to obtain ...

hands-on experience in monitoring, triaging, and responding to security incidents in a fast-paced, shift-based environment. Key Responsibilities Advanced Security Monitoring: Analyse SIEM alerts, logs, and security events to identify and respond to complex threats. Incident Response: Lead investigations, perform deep analysis, determine impact, and coordinate response activities. … detailed reports on incidents, trends, and overall security posture. Process Improvement & Automation: Enhance SOC processes, playbooks, and automation capabilities. Skills & Experience Strong experience with SIEM platforms (e.g., Microsoft Sentinel, Sumo Logic) Hands-on experience with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Solid understanding of: Incident response lifecycle Threat ...

will be at the front line of defense for a diverse client base. Detection & Analysis: Monitor and investigate sophisticated threats within a Microsoft Sentinel SIEM environment. Proactive Triage: Go beyond the alert—analyze logs, identify patterns, and determine the "root cause" of security incidents. Continuous Improvement: Assist in tuning detection … reporting of live security breaches. Technical Profile What you need: SOC Foundation: 1–2 years of experience in a SOC or security monitoring role. SIEM Exposure: Experience navigating SIEM platforms (if you’ve used Microsoft Sentinel , that’s a major win). Threat Knowledge: A solid grasp of common attacker ...