1 to 25 of 48 Azure Sentinel Jobs in the UK

looking for a Network & Security Engineer to support and secure a modern, cloud-connected environment. The focus is on Cisco Meraki networking and Microsoft Azure Sentinel for security monitoring, incident response, and continuous improvement of the security posture. This is a hands-on role. … users and office-based environments in London. Required Experience: Strong hands-on experience with Cisco Meraki (switching, wireless, security appliances.) Practical experience using Microsoft Azure Sentinel for monitoring and incident response. Solid understanding of networking fundamentals (TCP/IP, DNS, VPNs, Firewalls.) Experience operating ...

discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including … Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security ...

design" solutions are woven into the fabric of the entire ecosystem. Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra … overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows ...

including network redesign, platform hardening, and workload migration. Design, implement, and optimise Identity & Access Management (IAM) solutions (e.g., Okta, Microsoft Entra ID/Azure AD, Ping Identity). Implement and support secure remote access and VPN solutions (e.g., Palo Alto Global Protect, Cisco AnyConnect, Zscaler ZPA). Implement ...

secure-by-design" solutions are woven into the fabric of the entire ecosystem.Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra … overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows ...

workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics. Desirable Skills Experience with Microsoft Sentinel. Understanding of MITRE ATT and CK. Exposure ...

ownership and variety across the full defensive lifecycle. What You’ll Be Doing Lead investigations, triage and containment using SIEM/EDR (Microsoft Sentinel preferred) Harden IAM, PIM/PAM , Windows/Linux, endpoint baselines and identity services Strengthen M365 security : Defender for Endpoint/O365/Identity … Windows + Linux) Network security concepts (firewalls, IDS/IPS) Incident Response & Detection Hands-on IR: triage investigation containment recovery Experience with SIEM (Sentinel strongly preferred) Experience with EDR/XDR tools: Defender/CrowdStrike/SentinelOne Log analysis, packet captures, forensic investigation fundamentals Microsoft Security Defender suite ...

passion for cybersecurity Willingness to learn Familiarity with security monitoring in cloud environments, especially Microsoft Azure. Experience with SIEM platforms, such as Microsoft Sentinel or Rapid7. Comfortable working in a collaborative, 24/7 shift-based SOC environments Desireable: Role: SOC AnalystLocation: Birmingham & LeedsWork Pattern: Hybrid ...

effective manner. Specifically you will: Support the rest of the security operations team to monitor, triage and investigate alerts and incidents within Sentinel Conduct initial incident triage, determining scope, urgency and appropriate actions to mitigate threats. Participate in the incident response process, assisting with investigation and remediation. Support … appreciation of how new security solutions can impact delivery. Experience with general security technologies and capabilities including Microsoft E5 technologies such as Azure Sentinel and the various Defender products would be a distinct advantage, as would exposure to automation and familiarity with Python to help streamline ...

will positively shape our future. What are the day-to-day tasks? Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead the design and deployment of conditional access, Defender for Cloud, Purview DLP, Azure … related services. Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container workflows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust. ...

PRTG). Microsoft Technologies Strong Windows Server (Apply online only)), AD, Group Policy, and systems admin. Working knowledge of Exchange Online. Experience with Azure AD and hybrid identity. Familiar with Intune and JAMF for device management. Solid Office 365 and Windows 10/11 admin skills. Virtualisation & Cloud … Skilled in Hyper-V and VMware (resource management, backups, failover). Exposure to Azure, AWS, GCP for migrations and optimisation. Communication Systems Experience with enterprise VoIP systems. Knowledge of IP CCTV setup, storage, and network integration. Backup & DR Proficient with Veeam for backup/replication. Experience ...

nature of the clients supported, candidates must be eligible for SC and NPPV3 security clearance . Key Responsibilities Create, maintain, and optimise Microsoft Sentinel analytics rules, Logic Apps, and playbooks to support incident detection and response. Support and enhance integrations between Microsoft Sentinel and other security … MSSP environment, responding to security incidents for public sector customers in line with agreed SLAs. Essential Experience Hands-on experience with Microsoft Sentinel within a SOC or MSSP environment. Experience building and maintaining automation using Azure Logic Apps and Sentinel playbooks. Working knowledge ...

customer inquiries and support issues, spanning a variety of industries and technologies. This includes, but is not limited to, Public Cloud environments (Microsoft Azure and AWS), Microsoft 365, on-premise servers, and networks. Role Network infrastructure development: We've laid the groundwork for new leisure developments, ensuring seamless … Microsoft Fabric to build robust, scalable applications that set new standards in performance and usability Advanced security solutions: Our work with tools like Azure Sentinel places us at the vanguard of cybersecurity, safeguarding our clients' digital assets against evolving threats Training Why choose our Network Engineer ...

customer inquiries and support issues, spanning a variety of industries and technologies. This includes, but is not limited to, Public Cloud environments (Microsoft Azure and AWS), Microsoft 365, on-premise servers, and networks. As an Ofcom-registered ISP, we also offer a spectrum of connectivity solutions, including broadband … Microsoft Fabric to build robust, scalable applications that set new standards in performance and usability Advanced security solutions: Our work with tools like Azure Sentinel places us at the vanguard of cybersecurity, safeguarding our clients' digital assets against evolving threats Who we’re looking ...

security standards, baselines, and hardening guidance Support architectural governance and provide security input into projects Own and enhance key security tools (Microsoft Defender, Sentinel, Tenable, CASB) Track control effectiveness through KPIs, dashboards, and reporting Lead security initiatives and produce technical documentation and evidence packs Support deployment … practical security guidance What We’re Looking For Strong experience in cyber security operations, engineering, or incident response Hands-on expertise with Defender, Sentinel (SIEM/SOAR), Tenable, CASB, and cloud security (AWS/Azure) Experience delivering security improvements and technical control implementation PowerShell or automation ...

reviews, and digital assurance. Maintain the technical security roadmap and drive improvements across tooling and capabilities. Operate and optimise core security tools (Defender, Sentinel, Tenable, CASB) and track control adoption through KPIs and dashboards. Lead and document security initiatives, including hardening guides, architecture diagrams, and evidence packs. Chair … certifications (Security+, CEH, CySA+, Cloud Security Engineer). Significant experience in cyber security operations or incident response. Hands-on expertise with Microsoft Defender, Sentinel, Tenable, CASB, and cloud security (AWS/Azure). Proven security project delivery, PowerShell automation skills, and familiarity with IR frameworks. Consulting ...

skills, the ability to engage with both technical and executive stakeholders, and a strong understanding of cloud-native security solutions-particularly within the Azure ecosystem. Key Responsibilities Design and develop end-to-end enterprise security architectures, including infrastructure, data ingestion pipelines, and cloud security posture components. Lead … implementation and optimization of Microsoft security technologies such as Sentinel , Defender XDR , SOAR , and integrations involving DevOps (IDE/CI/CD) and Cribl . Develop advanced security analytics, threat intelligence models, and monitoring capabilities for cloud and hybrid environments. Work closely with engineering, DevOps, and security operations ...

best practices Previous experience working for a consultancy Nice to Have Certifications (AZ-500, SC-200, CySA+, BTL1/2) Microsoft 365 & Azure security tooling (Sentinel, Defender) PowerShell and KQL experience Working Pattern & Package 37.5 hours per week, shift-based with on-call escalation 90% remote ...

experience Windows Server installation & configuration Virtualisation Vulnerability Scanning tools such as Qualys Cloud Platforms Experience with private & public cloud such as AWS & Azure Security Experience with MDM, MFA, Email filtering, Next generation firewalls & Anti-Virus solutions, SIEM Solutions such as Sentinel Skills An ability to work ...

security operations roles. Hands-on SIEM engineering and detection tuning experience. Proven ownership of complex incident response and investigations. Cloud security experience across Azure and AWS. Experience automating SOC workflows and response processes. Threat hunting experience beyond basic log review. Comfortable engaging directly with technical stakeholders. Able … prioritise and operate effectively under pressure. Useful but not essential Microsoft Sentinel experience. Container or Kubernetes environments. CI/CD security tooling exposure. Red or purple team experience. Why this opportunity Senior ownership and autonomy. Modern cloud-first environment. Strong investment in tooling and automation. Opportunity to genuinely ...

environment, focused on practical remediation and customer outcomes. The ideal candidate will have strong experience across Windows Server, Microsoft 365/Azure, and modern security technologies, and will be comfortable switching between customer meetings, technical design sessions, and hands-on engineering work when required. Key responsibilities and accountabilities … vulnerabilities and configuration weaknesses through practical changes and clear technical guidance. Assist with the deployment and improvement of security controls across Microsoft 365, Azure, and on-premises infrastructure. Work with Consulting and Security Operations teams to prioritise remediation activity based on risk and customer impact. Contribute to improving ...

environment, focused on practical remediation and customer outcomes. The ideal candidate will have strong experience across Windows Server, Microsoft 365/Azure, and modern security technologies, and will be comfortable switching between customer meetings, technical design sessions, and hands-on engineering work when required. Key responsibilities and accountabilities … vulnerabilities and configuration weaknesses through practical changes and clear technical guidance. Assist with the deployment and improvement of security controls across Microsoft 365, Azure, and on-premises infrastructure. Work with Consulting and Security Operations teams to prioritise remediation activity based on risk and customer impact. Contribute to improving ...

prem LDAP applications, and outdated protocols like Kerberos and NTLM. Automation: Streamline operations by automating identity tasks using PowerShell, Microsoft Graph API, and Azure CLI. Governance & Compliance: Ensure all platforms meet hardening standards and assist with audit readiness for frameworks such as ISO 27001, GDPR, or PCI DSS. … What We’re Looking For Essential Experience: Expertise in Microsoft Identity: Proven track record with Azure Entra ID, Active Directory, and managing hybrid-to-cloud transitions. Device Management: Strong proficiency in Microsoft Intune/Endpoint Manager and modern Windows device transformation. Security Tooling: Hands-on experience deploying ...

structured support environment with familiarity with the ITIL framework Microsoft & Endpoint Technologies Expert knowledge of Windows 10/11 Microsoft 365, Intune, Autopilot, Azure AD Group Policy, Intune Configuration Policies, Microsoft Sentinel Server & Virtualisation Microsoft Windows Server 2012–2022 Virtualisation technologies, particularly Proxmox or Microsoft Hyper … Cloud Technologies Public cloud solutions with hands-on experience in Azure or AWS Solution implementation, migration, and ongoing support Networking & Security LAN/WLAN/WAN technologies Strong understanding of DNS, DHCP, VPNs, and security best practices Firewall exposure including Sophos, Cisco, Fortinet, and PF Sense Automation & Virtualisation ...

detection strategy and roadmap, aligning initiatives with KPIs and contractual requirements. Develop, optimise, and maintain high-fidelity detections using Splunk , Microsoft Sentinel , KQL , SPL , and Python for automation and Detection as Code. Work closely with cloud platforms ( AWS and Azure ) to enhance detection capabilities in hybrid … with day-to-day responsibilities. Essential Skills and Experience: SC clearance required to start; DV sponsorship available. Proven expertise with Splunk and Microsoft Sentinel SIEM platforms. Strong programming skills in Python , with experience developing automation and Detection as Code pipelines. Proficiency in KQL and SPL for creating efficient ...