176 to 200 of 234 SIEM Jobs in the Thames Valley

various client systems. Assessing security incidents and collaborating with clients or internal teams for resolution. Determining if events are security incidents from sources like SIEM, Firewall, IDS/IPS, Antivirus, Directory Servers, NAC, etc. Escalating tickets according to SLAs. Recommending tuning for SIEM rules to reduce false positives. Raising major … various tasks and environments. Ability to work under guidance, use discretion, and escalate issues appropriately. Effective teamwork and task management skills. Desirable: Experience with SIEM or EDR tools like IBM QRadar, Sentinel, Rapid7, Defender for Endpoint, SentinelOne, Carbon Black, Sophos. Industry certifications such as Security+, CySA+, SC-200, SBT L1. More ❯

department to do the relative jobs, reports, support internal and external networks, including VPN setup, DNS management, AP management, firewall configuration, WAF (e.g. Akaimai),SIEM(e.g. IBM QRada),etc. (4) Familiar with IP network, familiar with Cisco and Juniper, etc. equipment’s maintenance and configuration. (5) Experience with the Linux … of IP network protocols, maintenance and configuration, firewall management, and data security practices. Experience with VOIP telephony systems, VPN technologies, DNS management, WAF administration, SIEM management. Familiarity with automated deployment tools, disaster recovery practices, and endpoint protection solutions. Excellent troubleshooting skills and the ability to resolve complex technical issues efficiently. More ❯

related role. Strong knowledge of incident response frameworks and methodologies. Proficiency in forensic analysis tools and techniques. Experience with security information and event management (SIEM) systems. Excellent problem-solving and analytical skills. Effective communication and people skills. Relevant certifications such as CISSP, CISM, or GIAC are a plus. Responsibilities: Leading More ❯

Social network you want to login/join with: Senior Microsoft Sentinel/SIEM Engineer, Slough Client: Cloud Decisions Location: Slough, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 31.05.2025 Expiry Date: 15.07.2025 Job Description: Job Title: Senior Microsoft Sentinel/SIEM Engineer Salary … You'll own and optimise enterprise-wide log onboarding into Microsoft Sentinel – deploying standard and custom connectors, Function Apps, and parsers to build tailored SIEM solutions that enhance threat detection and response. Log ingestion at scale across hybrid and multi-cloud environments Enhance custom Function Apps and ingestion pipelines Parse … and integrating complex Microsoft Sentinel solutions at SMC and enterprise levels Understanding of security telemetry across identity, endpoint, cloud, and network layers Experience in SIEM content development, including KQL, analytics rules, and custom data connectors Scripting and engineering skills: Python, PowerShell, APIs, Function Apps Background in cyber threat detection, incident More ❯

Social network you want to login/join with: Senior Microsoft Sentinel/SIEM Engineer, Oxford district Client: Cloud Decisions Location: Oxford district, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 5 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: Job Title: Senior Microsoft Sentinel/SIEM … detection capabilities. Requirements: Experience with Microsoft Sentinel at SMC and enterprise levels Knowledge of security telemetry across identity, endpoint, cloud, and network Skills in SIEM content development, KQL, analytics rules, and custom connectors Scripting skills in Python, PowerShell, APIs, Function Apps Background in cyber threat detection, incident response, or DFIR More ❯

L3 SOC/Cyber Security Engineer - Threat Hunter/SIEM Sentinel – £55-65K – Home/Office 2x per month My client is one of the most recognisable names in IT and have some of the best people in the industry working for them. They’re top partners with all … Key Skills required: 4+ years’ experience working in a SOC environment – ideally MSSP. Experience in a technical security role are also considered. Experience with SIEM tools, such as MS Sentinel, Alien Vault or Splunk A cyber security qualifications, certification or degree e.g. CySA+, CompTIA SEC+, or similar experience. Microsoft SC … 3rd line analysis for ongoing investigations. Carrying out proactive threat hunts, RCAs, creation of detection capabilities Monitor/hunt security alerts from security platforms (SIEM platforms, such as MS Sentinel, Alien Vault or Splunk 4 days on - 4 days off - Days and Nights Act on Second Line security alerts, incidents More ❯

and compliance responsibilities. Role Highlights Monitor, detect, and respond to security incidents and vulnerabilities Own and manage key elements of the security stack, including SIEM and DLP tools Lead audits, penetration testing, and remediation actions to uphold ISO27001 & SOC2 compliance Collaborate with product teams to embed security into the development … KPI-driven security reports and dashboards for internal stakeholders Experience needed: 1+ year in a SOC or similar cybersecurity role Hands-on experience with SIEM, IDS/IPS, and vulnerability scanning tools Knowledge of AWS, Linux, Windows, IAM (e.g. Okta), and firewalls Understanding of ISO27001, SOC2, GDPR, and third-party More ❯

toolsets, to prevent security breaches and to respond to incidents as they arise. Day to day your role will involve: Performing advanced real-time SIEM analysis and correlation of logs/alerts from a multitude of client devices. Determining if events escalated by the SOC analyst team constitute security incidents … and escalate with the customer when further investigation or a resolution is needed. You’ll work with our security engineers to develop and tune SIEM rules. You will identify and implement parsing configuration as required to optimise log source configuration, aiding investigation efforts. Analysing and assessing security incidents, performing in … issues Effective communication, teamwork and task-time management skills Bonus Points if you have Prior experience working with one or more of the following SIEM or EDR tools – E.g. IBM QRadar, Sentinel, Rapid7, Defender for Endpoint, SentinelOne, Carbon Black, Sophos Possess one or more of the following Industry recognized certifications More ❯

Social network you want to login/join with: An exciting opportunity has arisen at an award-winning Microsoft Partner for a SIEM Engineer. The business is a fast-growing, industry-leading managed service and managed security service provider, delivering to mid-sized and large enterprise clients. This is a … fantastic opportunity for a SIEM Engineer to continue developing their expertise in security platforms at an established Microsoft Partner. The company places strong emphasis on staff development, offering support for training and professional certifications. You’ll also gain exposure to cutting-edge technologies, working across security operations and cyberspace. This More ❯

Social network you want to login/join with: An exciting opportunity has arisen at an award-winning Microsoft Partner for a SIEM Engineer. The business is a fast-growing, industry-leading managed service and managed security service provider, delivering to mid-sized and large enterprise clients. This is a … fantastic opportunity for a SIEM Engineer to continue developing their expertise in security platforms at an established Microsoft Partner. The company places strong emphasis on staff development, offering support for training and professional certifications. You’ll also gain exposure to cutting-edge technologies, working across security operations and cyberspace. This More ❯

Social network you want to login/join with: An exciting opportunity has arisen at an award-winning Microsoft Partner for a SIEM Engineer. The business is a fast-growing, industry-leading managed service and managed security service provider, delivering to mid-sized and large enterprise clients. This is a … fantastic opportunity for a SIEM Engineer to continue developing their expertise in security platforms at an established Microsoft Partner. The company places strong emphasis on staff development, offering support for training and professional certifications. You’ll also gain exposure to cutting-edge technologies, working across security operations and cyberspace. This More ❯

L3 SOC/Cyber Security Engineer - Threat Hunter/SIEM Sentinel – £55-65K – Home/Office 2x per month My client is a well-known leader in IT, employing some of the top professionals in the industry. They are top partners with major vendors, providing access to the latest … upon hire. Key Skills Required: At least 4 years’ experience in a SOC environment, preferably MSSP, or in a technical security role. Experience with SIEM tools such as MS Sentinel, AlienVault, or Splunk. Cyber security qualifications or certifications like CySA+, CompTIA SEC+, or similar; Microsoft SC-200 certifications are a More ❯

contract XSIAM Engineer with deep expertise in Palo Alto Networks technologies , ideally coming from an XSOAR background , and possessing strong experience across XDR and SIEM environments. This is a key role within our security operations function, focused on enhancing detection, automation, and response capabilities. *For this role you must be … and manage security automation workflows , drawing from previous XSOAR experience Integrate and optimize XDR capabilities to support proactive threat detection Set up and maintain SIEM-style log ingestion , correlation rules, and enrichment pipelines Build custom dashboards and reporting tools for real-time security insights Troubleshoot complex issues related to XSIAM … XSIAM in real-world environments but will consider strong XSOAR Consultants who want to evolve into XSIAM. Strong understanding of Security Operations, XDR , and SIEM principles Proficient in scripting and automation (e.g., Python, PowerShell) Solid experience with log analysis , event correlation, and alert tuning Needs to be eligible for SC More ❯

contract XSIAM Engineer with deep expertise in Palo Alto Networks technologies , ideally coming from an XSOAR background , and possessing strong experience across XDR and SIEM environments. This is a key role within our security operations function, focused on enhancing detection, automation, and response capabilities. *For this role you must be … and manage security automation workflows , drawing from previous XSOAR experience Integrate and optimize XDR capabilities to support proactive threat detection Set up and maintain SIEM-style log ingestion , correlation rules, and enrichment pipelines Build custom dashboards and reporting tools for real-time security insights Troubleshoot complex issues related to XSIAM … XSIAM in real-world environments but will consider strong XSOAR Consultants who want to evolve into XSIAM. Strong understanding of Security Operations, XDR , and SIEM principles Proficient in scripting and automation (e.g., Python, PowerShell) Solid experience with log analysis , event correlation, and alert tuning Needs to be eligible for SC More ❯

best practice, including frameworks such as Mitre ATT&CK and NIST. What else you could bring (Desirable Skills): Proficiency in working with or developing SIEM tooling and SIEM detections/alerts. Proficiency in Google SecOps (Google Chronicle) would be particularly beneficial. In-depth knowledge of network security, including principles such More ❯

up to £75,000 per annum Languages: Mandarin Chinese and English Key Responsibilities: Security Monitoring & Incident Response: Monitor security tools (firewalls, IDS/IPS, SIEM) to detect threats, investigate security alerts, logs, and incidents, and assist in incident response and remediation. Vulnerability Management: Conduct vulnerability assessments, support penetration testing, and … in IT support (network/security/IP telephony). Technical Skills: Experience with OSPF, BGP, STP, NAC, IPT (Cisco), network monitoring tools, NDR, SIEM, vulnerability assessment tools, and patch management. Soft Skills: Ability to work under pressure, strong communication, and collaboration skills. Working Conditions: Flexibility for after-hours/ More ❯

up to £75000 Per annum Languages: Mandarin Chinese and English Key Responsibilities: 1. Security Monitoring & Incident Response Monitor security tools (firewalls, IDS/IPS, SIEM) to detect and analyze potential threats. Investigate security alerts, logs, and incidents (e.g., malware, unauthorized access, breaches). Assist in incident response and remediation efforts. … IP telephony). Technical Skills: Hands-on experience with OSPF, BGP, STP, NAC, and IPT (Cisco). Proficiency in network monitoring tools, NDR, and SIEM systems. Knowledge of vulnerability assessment tools and patch management. Soft Skills: Ability to work under pressure and handle emergencies. Strong communication and collaboration skills. Working More ❯

up to £75000 Per annum Languages: Mandarin Chinese and English Key Responsibilities: 1. Security Monitoring & Incident Response Monitor security tools (firewalls, IDS/IPS, SIEM) to detect and analyze potential threats. Investigate security alerts, logs, and incidents (e.g., malware, unauthorized access, breaches). Assist in incident response and remediation efforts. … IP telephony). Technical Skills: Hands-on experience with OSPF, BGP, STP, NAC, and IPT (Cisco). Proficiency in network monitoring tools, NDR, and SIEM systems. Knowledge of vulnerability assessment tools and patch management. Soft Skills: Ability to work under pressure and handle emergencies. Strong communication and collaboration skills. Working More ❯

up to £75000 Per annum Languages: Mandarin Chinese and English Key Responsibilities: 1. Security Monitoring & Incident Response Monitor security tools (firewalls, IDS/IPS, SIEM) to detect and analyze potential threats. Investigate security alerts, logs, and incidents (e.g., malware, unauthorized access, breaches). Assist in incident response and remediation efforts. … IP telephony). Technical Skills: Hands-on experience with OSPF, BGP, STP, NAC, and IPT (Cisco). Proficiency in network monitoring tools, NDR, and SIEM systems. Knowledge of vulnerability assessment tools and patch management. Soft Skills: Ability to work under pressure and handle emergencies. Strong communication and collaboration skills. Working More ❯

up to £75000 Per annum Languages: Mandarin Chinese and English Key Responsibilities: 1. Security Monitoring & Incident Response Monitor security tools (firewalls, IDS/IPS, SIEM) to detect and analyze potential threats. Investigate security alerts, logs, and incidents (e.g., malware, unauthorized access, breaches). Assist in incident response and remediation efforts. … IP telephony). Technical Skills: Hands-on experience with OSPF, BGP, STP, NAC, and IPT (Cisco). Proficiency in network monitoring tools, NDR, and SIEM systems. Knowledge of vulnerability assessment tools and patch management. Soft Skills: Ability to work under pressure and handle emergencies. Strong communication and collaboration skills. Working More ❯

developing and maintaining the infrastructure that powers our cutting-edge cybersecurity services. Your focus will be on enhancing and managing our: SIEM (Security Information and Event Management) systems SOAR (Security Orchestration, Automation, and Response) platforms Threat Intelligence tools and integrations You'll work closely with our threat intelligence teams to … users across the UK. Your work will directly contribute to the safety and resilience of this network. What We're Looking For: Experience with SIEM and SOAR platforms (e.g., Splunk, Sentinel, Cortex XSOAR). A solid understanding of threat intelligence frameworks and feeds. A collaborative mindset and a passion for More ❯

month contract . You'll be leading on the architecture and configuration of Splunk SaaS, designing both high - and low-level documentation, and driving SIEM maturity within the CSOC. This is a hands-on, senior-level role where you'll work closely with AWS infrastructure and represent the project at … Act as the technical lead across all Splunk-related discussions including SOAR and Attack Analyzer Essential Skills & Experience: Active SC Clearance Proven expertise in SIEM engineering and architecture, specifically in Splunk SaaS Full life cycle experience of delivering improvements to Splunk SaaS platforms Demonstrable experience improving SIEM maturity within Cyber … Strong documentation, communication, and presentation skills Experience with AWS infrastructure, particularly EC2, S3 buckets, and SQS Desirable: Previous public sector experience Familiarity with wider SIEM solutions Exposure to a range of cyber security technologies If you're a Splunk expert with strong AWS knowledge and ready to hit the ground More ❯

Social network you want to login/join with: Senior Microsoft Sentinel/SIEM Engineer, High Wycombe Client: Cloud Decisions Location: High Wycombe, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 6 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: Job Title: To £85,000 + Benefits … You'll own and optimise enterprise-wide log onboarding into Microsoft Sentinel – deploying standard and custom connectors, Function Apps, and parsers to build tailored SIEM solutions that drive real-world threat detection and response. Log ingestion at scale across numerous hybrid and multi-cloud environments Enhance custom Function Apps and … building and integrating complex Microsoft Sentinel at SMC and enterprise levels Understanding of security telemetry across identity, endpoint, cloud, and network layers Experience in SIEM content development, including KQL, analytics rules, and custom data connectors Scripting and engineering skills – Python, PowerShell, APIs, Function Apps A background in cyber threat detection More ❯

Social network you want to login/join with: Senior Microsoft Sentinel/SIEM Engineer, reading col-narrow-left Client: Cloud Decisions Location: reading, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 31.05.2025 Expiry Date: 15.07.2025 col-wide Job Description: Job … You'll own and optimize enterprise-wide log onboarding into Microsoft Sentinel – deploying standard and custom connectors, Function Apps, and parsers to build tailored SIEM solutions that drive real-world threat detection and response. Log ingestion at scale across numerous hybrid and multi-cloud environments Enhance custom Function Apps and … building and integrating complex Microsoft Sentinel at SMC and enterprise levels Understanding of security telemetry across identity, endpoint, cloud, and network layers Experience in SIEM content development, including KQL, analytics rules, and custom data connectors Scripting and engineering skills – Python, PowerShell, APIs, Function Apps A background in cyber threat detection More ❯

the implementation and management of various security technologies. Main responsibilities: Analysing security events and incidents relating to internal and customer assets. Designing and developing SIEM security use cases. Designing and implementing security controls and secure configurations. Maintaining proactive vulnerability scanning ensuring that all known vulnerabilities are addressed in line with … internal stakeholders to discuss security related matters. Skills Required: Proven hands-on experience as a Security Engineer or similar working with tools such as SIEM, vulnerability management, endpoint detection & response (EDR), applications security, identity, and access management, etc. Ability to work in a small high performing team, collaborating with other … with experience of learning, adapting and utilising different security technologies, including but not limited to private and cloud infrastructure. Technical knowledge and experience with SIEM, SOAR, IDPS, DDoS, Malware Protection, Vulnerability Management, and Application Security tooling, etc. Knowledge of Information Security frameworks (CIS, NIST, NCSC CAF), supporting processes and toolsets. More ❯