21 of 21 Remote/Hybrid Azure Sentinel Jobs in the UK

Responsibilities: Security Operations: Lead monitoring, detection, and incident response for internal and client-facing systems. SIEM/SOAR Ownership: Enhance and automate our Azure Sentinel capabilities. Incident Response: Investigate real-world threats (malware, phishing, cloud misconfigurations) and ensure rapid remediation. Vulnerability Management: Conduct regular assessments, penetration … about people and processes as it is about code. Experience: 4-5 years in cybersecurity with at least 2-3 years specifically in Microsoft Azure cloud security. Technical Depth: Deep expertise in Azure AD, Sentinel, and Microsoft Defender. SIEM Mastery: Proven experience tuning SIEM ...

Azure DevSecOps Consultant – Information Security Location: Ipswich, Suffolk Onsite/Hybrid (UK – 3 days per week in office). Candidates must live a commutable distance from Ipswich. We are partnered with a major enterprise undergoing significant cloud-security transformation, and we're seeking an experienced Azure … their Information Security function. This is a pivotal, hands-on role focused on designing, implementing, and automating secure-by-design cloud practices across Azure environments and CI/CD pipelines. You’ll work closely with cloud architects, engineering teams and security governance stakeholders to embed security from code ...

influence decisions and deliver real value. You will bring: Strong understanding of SIEM tools and attacker behaviours. Handson experience with O365, M365 and Azure security administration. PowerShell scripting capability. Experience working with firewalls, IDS, WAF, network segmentation and wider security controls. Broad technical knowledge spanning Windows, networking … into meaningful technical solutions. Experience writing technical design documents. And it would be great (but not essential) if you also have experience with: Azure Sentinel, AlienVault, AWS or GCP security controls. Linux, data storage, or scripting in Python or Bash. What can we offer you? Through ...

Experience Proven experience working within an MSSP environment Strong background in Security Operations/SOC environments Experience with SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, or similar Knowledge of EDR technologies and incident response methodologies Strong understanding of network security, firewalls, endpoint security, and threat intelligence Experience … communication and stakeholder management abilities Desirable Skills Relevant certifications such as Security+, SC-200, CySA+, CISSP, or similar Experience with cloud security technologies (Azure, AWS, Microsoft 365) Knowledge of MITRE ATT&CK framework and threat hunting methodologies Scripting or automation experience (PowerShell, Python, etc.) What’s on Offer ...

ambitions, to build the future. What you’ll be doing Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead the design and deployment of conditional access, Defender for Cloud, Purview DLP, Azure Firewall … related services. Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container workflows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust. ...

objectives. Providing support to police forces for the onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional … development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creating and maintaining technical design documentation. Working with the PDS design team and wider ...

environment Strong understanding of attack frameworks (e.g. MITRE ATT&CK, Cyber Kill Chain) Hands-on experience with SIEM and EDR tools (e.g. Microsoft Sentinel, Splunk, CrowdStrike, Defender) Experience in incident triage, containment, and response Good knowledge of network protocols, Windows/Linux systems, and cloud environments (e.g. M365 … Azure, AWS) Strong analytical and communication skills, with the ability to explain technical issues to varied audiences Demonstrated commitment to continuous learning Desirable Skills Experience with scripting or automation (e.g. PowerShell, KQL, Python) Exposure to threat hunting or threat intelligence practices Experience mentoring or supporting junior colleagues Familiarity ...

Engineer - SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100, Our leading global law firm client are currently looking to take on a new SOC Engineer (SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100) to join their … London and offer a great deal of autonomy and technical exposure. This SOC Engineer (SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100) role, will be responsible for the enhancement of existing SIEM platform and improve performance, coverage and fidelity by conducting regular assessments ...

analytic techniques for incident detection Collaborate with an MSP SOC to maintain and tune the detection catalogue Build automated reporting dashboards using Microsoft Sentinel workbooks Support security initiatives including ISO 27001 activities and KQL-based tasks Ensure monitoring coverage across cloud platforms, SaaS apps, and internal systems Contribute … Experience: Previously worked as a Threat Detection Engineer or in a similar role. Strong proficiency in KQL and hands-on experience with Microsoft Sentinel Familiarity with Microsoft Defender tools (Endpoint & O365) Exposure to Azure cloud logging and Kubernetes environments Knowledge of attacker TTPs and MITRE ...

analytic techniques for incident detection Collaborate with an MSP SOC to maintain and tune the detection catalogue Build automated reporting dashboards using Microsoft Sentinel workbooks Support security initiatives including ISO 27001 activities and KQL-based tasks Ensure monitoring coverage across cloud platforms, SaaS apps, and internal systems Contribute … Experience: Previously worked as a Threat Detection Engineer or in a similar role. Strong proficiency in KQL and hands-on experience with Microsoft Sentinel Familiarity with Microsoft Defender tools (Endpoint & O365) Exposure to Azure cloud logging and Kubernetes environments Knowledge of attacker TTPs and MITRE ...

technical stakeholders. What youll bring: Deep SIEM expertise, building advanced detection logic, automation and complex queries in Splunk (SPL) and Microsoft Sentinel (KQL). A proven track record delivering complex detection engineering projects within enterprise or MSSP environments. Strong analytical skills, with the ability to break down sophisticated … detections in QRadar and/or conducting EDR-focused threat hunting (e.g. CrowdStrike, Microsoft Defender for Endpoint). Broad infrastructure awareness across Cloud (Azure/AWS), on-prem, and SaaS/PaaS/IaaS environments. If you are interested in this role but not sure if your skills ...

technical stakeholders. What you’ll bring: Deep SIEM expertise, building advanced detection logic, automation and complex queries in Splunk (SPL) and Microsoft Sentinel (KQL). A proven track record delivering complex detection engineering projects within enterprise or MSSP environments. Strong analytical skills, with the ability to break down … detections in QRadar and/or conducting EDR-focused threat hunting (e.g. CrowdStrike, Microsoft Defender for Endpoint). Broad infrastructure awareness across Cloud (Azure/AWS), on-prem, and SaaS/PaaS/IaaS environments. If you are interested in this role but not sure if your skills ...

government organisation to recruit a Principal Cyber Security Engineer on a 2-year FTC. The role requires someone with a strong background in Azure infrastructure, as well as AWS experience and Windows Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls … Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft ...

government organisation to recruit a Principal Cyber Security Engineer on a 2-year FTC. The role requires someone with a strong background in Azure infrastructure, as well as AWS experience and Windows Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls … Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft ...

cloud and on-prem environments. You’ll work across systems, networking, and security, contributing to both operations and design. Responsibilities Manage AWS/Azure infrastructure Support Windows/Linux systems and virtualisation (VMware, Hyper-V, KVM, Proxmox) Maintain networking (firewalls, routing, switching, VPNs) Implement monitoring, logging, and backup … backup tools Knowledge of networking and security principles Familiarity with vulnerability management and VPNs Desirable ITIL processes SIEM/EDR tools (e.g. Microsoft Sentinel/Defender) Scripting (PowerShell, Bash, Python) Due to the volume of applications received for positions, it will not be possible to respond ...

Mindset: Strong understanding of Data Security Platforms (DSPM) or File Integrity Monitoring (FIM) is highly desirable. Technical Stack: Proficiency with modern SIEMs (e.g., Sentinel, Splunk) and EDR tools (e.g., CrowdStrike, SentinelOne). Networking & OS: Deep knowledge of TCP/IP, Active Directory, and Windows/Linux internals. Cloud … Proficiency: Comfortable investigating incidents within AWS, Azure, or M365 environments. Certifications (Bonus): GCIH, GCIA, SC-200, or equivalent industry-recognized credentials. Why Join This Team? Competitive Package: Up to £65k base plus a rewarding bonus structure. Advanced Tooling: You will have access to enterprise-grade, cutting-edge security ...

reports, security metrics, and supporting training Comfortable with internal security audits and refining SOPs and playbooks Knowledge of key security tools: Microsoft Defender, Sentinel One, Mimecast, KnowBe4, Qualys, Nessus Experience working with cross-functional teams to strengthen security posture Familiarity with cloud platforms: Azure ...

security metrics, and supporting awareness training Comfortable with internal security audits and refining SOPs and playbooks Knowledge of key security tools: Microsoft Defender, Sentinel One, Mimecast, KnowBe4, Qualys, Nessus Experience working with cross-functional teams to strengthen security posture Familiarity with cloud platforms: Azure ...

success driving large-scale platform modernisation and cloud-native transformation programmes. Experience leading complex technology functions within a cloud-based Microsoft ecosystem (e.g. Azure, Dynamics 365, Sentinel) or equivalent enterprise platforms. Strong commercial acumen with experience managing technology budgets, vendor relationships and third-party development partnerships. ...

Cisco Nexus Switching, ASA/Firepower Fortinet (ideally certified), Check Point (CCSE/CCSM), Palo Alto Load balancing technologies AWS and/or Azure VMware (ESXi, vSAN) Windows & Linux Servers Network monitoring tools SIEM tooling (Defender/Sentinel) ITIL exposure (incident/change management) Server rack ...

+ on call worth approx. £4k - £6k, excellent benefits) Skills: Cisco, Networking projects, SD-WAN, VLAN, Static & Dynamic Routing, Azure vWAN, Driving Licence We are looking to recruit a Network Engineer for a leading public sector organisation based in Warwick. This is an excellent opportunity for a Network … Required: Proven experience in network project delivery , not just day-to-day support. Strong knowledge of Cisco, SD-WAN, VLAN, Static & Dynamic Routing, Azure vWAN . Experience with Avaya telephony (desirable but not essential). Familiarity with AWS, Zscaler, SolarWinds, Sentinel . Ability to write ...