76 to 98 of 98 Azure Sentinel Jobs in the UK

roles Solid understanding of SIEM, log analytics, data normalization, and detection lifecycle management (rule creation, tuning, suppression, enrichment) Hands-on experience with XSIAM or similar platforms (Splunk, QRadar, Sentinel, etc.) is a strong plus Strong technical writing and communication skills, with the ability to convey complex ideas clearly to both technical and non-technical audiences Skilled in scripting … etc.) for detection development or incident investigation tasks Experience managing multiple projects or programs in dynamic, fast-paced environments with cross-functional visibility Familiarity with cloud infrastructure (AWS, Azure, GCP), especially as it relates to telemetry ingestion, detection engineering, or automated response — a significant advantage Experience with CNAPP solutions (e.g., Prisma Cloud, Wiz, Orca) and integrating cloud posture More ❯

growing digital transformation and cloud consultancy delivering secure, innovative Microsoft solutions across multiple industries. We're seeking a Microsoft Security Consultant with hands-on expertise across Microsoft 365, Azure, and Defender technologies, passionate about helping clients strengthen their security posture while embracing the latest in modern work and AI. This is a great opportunity for someone who thrives … on solving complex security challenges, designing enterprise-grade cloud solutions, and staying ahead of Microsoft's evolving technology landscape. Key Responsibilities: Design and deliver Microsoft 365 and Azure security solutions in line with best practices and industry standards. Implement and configure tools such as Microsoft Defender, Sentinel (SIEM/XDR), Entra, and Purview. Support internal and … ISO-aligned delivery processes. Experience: Minimum 3+ years' experience delivering Microsoft cloud and security solutions for clients across multiple sectors. 3 or more Microsoft certifications in relevant areas - Azure (AZ), Security (SC), Power Platform (PL), Modern Work (MS), or Copilot/AI. Strong consulting experience in the design and implementation of Microsoft Defender solutions and SIEM/XDR. More ❯

growing digital transformation and cloud consultancy delivering secure, innovative Microsoft solutions across multiple industries. We're seeking a Microsoft Security Consultant with hands-on expertise across Microsoft 365, Azure, and Defender technologies, passionate about helping clients strengthen their security posture while embracing the latest in modern work and AI. This is a great opportunity for someone who thrives … on solving complex security challenges, designing enterprise-grade cloud solutions, and staying ahead of Microsoft's evolving technology landscape. Key Responsibilities: Design and deliver Microsoft 365 and Azure security solutions in line with best practices and industry standards. Implement and configure tools such as Microsoft Defender, Sentinel (SIEM/XDR), Entra, and Purview. Support internal and … ISO-aligned delivery processes. Experience: Minimum 3+ years' experience delivering Microsoft cloud and security solutions for clients across multiple sectors. 3 or more Microsoft certifications in relevant areas - Azure (AZ), Security (SC), Power Platform (PL), Modern Work (MS), or Copilot/AI. Strong consulting experience in the design and implementation of Microsoft Defender solutions and SIEM/XDR. More ❯

be responsible for implementing and maintaining robust security measures to protect the organisation's technology infrastructure. Client Details The organisation is a public sector. Description Key Responsibilities Microsoft Sentinel Configure and maintain Sentinel analytics rules, workbooks, and connectors Develop and optimise dashboards and reports for threat visibility Manage Sentinel upgrades and ensure platform stability … Defender platforms Collaborate with IT teams to remediate vulnerabilities and improve endpoint security SOAR Automation Design, build, and deploy automated playbooks using Logic Apps Integrate SOAR workflows with Sentinel and Defender alerts Continuously improve automation to reduce response times and manual effort Strategic & Analytic Duties Analyse security datasets to identify trends and emerging threats Produce actionable plans and … reports for senior stakeholders Drive multiple concurrent initiatives, from tactical fixes to strategic improvements Profile A successful Infrastructure Security Engineer should have: Hands-on experience with Microsoft Sentinel including configuration, reporting, and upgrades Strong understanding of SOAR playbook development and automation Ability to manage multiple simultaneous initiatives effectively Proficiency in KQL, Azure Logic Apps, and Microsoft More ❯

on a fully remote basis and is determined as Inside IR35, offering £500-£525 per day. Key Skills : Microsoft Defender XDR: Endpoint, Identity, Office 365, Cloud Apps Microsoft Sentinel: KQL, playbook development, SIEM optimisation Privileged Identity Management (PIM) and change control workflows Advanced threat detection, incident response, and threat hunting Log collection via Azure Monitoring Agent … and Firewall Management Centre Responsibilities: Configure and fine-tune Microsoft Defender XDR in line with approved designs Participate in Microsoft FastTrack engagements Integrate Defender XDR with Sentinel SIEM for enhanced detection and response Develop Kusto queries and automation playbooks Support PoC setup for Microsoft Copilot for Security Connect syslogs from on-prem Servers and Firewalls to Sentinel More ❯

on a fully remote basis and is determined as Inside IR35, offering £500–£525 per day. Key Skills : Microsoft Defender XDR: Endpoint, Identity, Office 365, Cloud Apps Microsoft Sentinel: KQL, playbook development, SIEM optimisation Privileged Identity Management (PIM) and change control workflows Advanced threat detection, incident response, and threat hunting Log collection via Azure Monitoring Agent … and Firewall Management Centre Responsibilities: Configure and fine-tune Microsoft Defender XDR in line with approved designs Participate in Microsoft FastTrack engagements Integrate Defender XDR with Sentinel SIEM for enhanced detection and response Develop Kusto queries and automation playbooks Support PoC setup for Microsoft Copilot for Security Connect syslogs from on-prem servers and firewalls to Sentinel More ❯

own time and resources to ensure aims are met. Using information effectively - able to develop insights and conclusions following risk events Desirable Knowledge of cloud security particularly Microsoft Azure (E5) including defender for endpoint, sentinel, and purview. A knowledge of ITIL including incident management and problem management including root cause analysis. A knowledge of the data More ❯

own time and resources to ensure aims are met. Using information effectively - able to develop insights and conclusions following risk events Desirable Knowledge of cloud security particularly Microsoft Azure (E5) including defender for endpoint, sentinel, and purview. A knowledge of ITIL including incident management and problem management including root cause analysis. A knowledge of the data More ❯

on a fully remote basis and is determined as Inside IR35, offering £500–£525 per day. Key Skills: Microsoft Defender XDR: Endpoint, Identity, Office 365, Cloud Apps Microsoft Sentinel: KQL, playbook development, SIEM optimisation Privileged Identity Management (PIM) and change control workflows Advanced threat detection, incident response, and threat hunting Log collection via Azure Monitoring Agent … and Firewall Management Centre Responsibilities: Configure and fine-tune Microsoft Defender XDR in line with approved designs Participate in Microsoft FastTrack engagements Integrate Defender XDR with Sentinel SIEM for enhanced detection and response Develop Kusto queries and automation playbooks Support PoC setup for Microsoft Copilot for Security Connect syslogs from on-prem servers and firewalls to Sentinel More ❯

salary of up to £60K and the role is hybrid with 2x days a week on site at their London office. Must have strong hands on experience with Azure Policies Must have strong hands on experience with Defender for Cloud Must have experience with Sentinel Strong understanding of information and cyber security principles and practices. Experience … with security assessment and risk management methodologies. Proficiency in cloud security, particularly with Azure security tools and services. Knowledge of security standards and frameworks (e.g., ISO 27001, NIST, CIS). Familiarity with security technologies such as firewalls, web proxies/remote access solutions. Experience with ZTNA, CTI, threat modelling is beneficial. Bachelor’s degree in information security, Computer More ❯

Security Solution Architect Location: Remote Salary: Paying up to 80k basic + commission (120-130k OTE) A top tier Azure Expert MSP is seeking a Security-Focused Solution Architect to join their high-performing Presales team. This is a strategic opportunity to shape enterprise security solutions using the Microsoft Security Stack, supporting clients across sectors in their … best practices in identity, access, threat protection, and compliance within the Microsoft ecosystem. Key Responsibilities Design and present secure cloud solutions leveraging the Microsoft Security Stack, including Defender, Sentinel, Entra ID, Purview, and Intune. Collaborate with sales and technical teams to translate business needs into scalable, secure architectures. Lead client engagements, workshops, and technical assessments to shape solution … responses, and technical documentation with clarity and precision. Candidate Profile Proven experience in cloud security architecture, ideally within a Microsoft-focused environment. Deep understanding of Microsoft 365 and Azure security capabilities. Strong communication and stakeholder engagement skills, particularly in presales or consultancy settings. Relevant certifications (e.g., SC-100, AZ-500, MS-500) are highly desirable. Ability to work More ❯

and processes Experience of security products, e.g., firewalls, web filtering, anti-virus etc. Some knowledge of specialized security tools would be highly desirable (e.g. Palo Alto, Tenable, Defender, Sentinel tools). would be very beneficial A security professional qualification such as CISSP, CISM, CCSP, CISA, ISO27001 Lead Implementor/Auditor, CEH or equivalent Cloud Computing experience from multiple … vendors (O365, Azure, AWS, Google, etc.) PCI-DSS GRC Cyber Security Analyst Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal More ❯

Analysis; monitoring and responding to incidents whilst also developing new detection rules and enhancing their monitoring infrastructure and tooling. This is a cloud-native SOC capability, based in Azure with a big emphasis on the Microsoft E5 suite of security monitoring and detection tooling. Experience configuring, fine-tuning and managing this tooling will be essential, as well as … years minimum) , dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft E5 Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure preferably. Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering More ❯

Analysis; monitoring and responding to incidents whilst also developing new detection rules and enhancing their monitoring infrastructure and tooling. This is a cloud-native SOC capability, based in Azure with a big emphasis on the Microsoft E5 suite of security monitoring and detection tooling. Experience configuring, fine-tuning and managing this tooling will be essential, as well as … years minimum) , dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft E5 Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure preferably. Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering More ❯

client onboarding and configuration alignment. Mentor junior engineers and analysts. You’ll bring: 3–5 years’ experience in SOC or security engineering. Strong knowledge of platforms such as Sentinel, Splunk, Defender, or Elastic. Scripting/automation ability (PowerShell, KQL, Python, etc.). Understanding of Azure/AWS cloud and network fundamentals. Desirable: Experience with SOAR tools More ❯

public areas. Job Purpose: Provide technical support and maintenance to the business and its customers. Implement and maintain server, network, and software configurations for cloud computing infrastructure (Microsoft Azure) with a focus on DevOps principles. Proactively identify, test, and implement new technologies that enhance business efficiency. Support the communication, assessment, and delivery of changing business requirements. Key Responsibilities … Build and administer PCs and servers; monitor systems, logs, and IT services. Support business continuity, disaster recovery, backups, and restores. Manage Active Directory and M365 (Office 365, OneDrive, Azure, InTune), following best practice. Maintain IT documentation, security systems, and related software including firewalls and endpoint protection. Research and recommend innovative or automated solutions for system administration. Skills, Experience … Behaviours: Strong knowledge of Microsoft 365/Azure and Active Directory administration . Experience with VMware , SAN storage , SQL Server , and ITIL best practices . Proficiency in endpoint security , ideally with SentinelOne or similar tools. Experience managing third-party service providers. Excellent troubleshooting and customer service skills. Experience supporting Momentus (Ungerboeck) or similar event management systems. Knowledge of More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where More ❯

design, delivery, and optimisation of customer security solutions. The consultant will work closely with customers to assess, architect, and deploy modern security technologies including Microsoft Defender XDR, Microsoft Sentinel, and Tenable One, ensuring these platforms are aligned with security best practices and operational readiness standards. The Role: The role requires strong technical expertise across SIEM, EDR, and Vulnerability … post-implementation operations, ensuring customers realise full value from their security investments. Key responsibilities: Solution Design & Architecture Implementation & Configuration Health Checks & Optimisation Consultancy & Customer Engagement Technical Expertise: MS Sentinel Architecture MS Defender XDR Suite Tenable/Azure For full details please apply. More ❯

known for its excellence in cloud transformation, security, and innovation. You’ll be part of a high-performing Microsoft Security team, delivering enterprise-scale projects across Microsoft Defender, Sentinel, and Purview . Expect to collaborate with experienced consultants, shape cloud security strategies, and work directly with customers to secure and modernise their environments. 🔍 What You’ll Do Lead … customer workshops and pre-sales sessions to understand and define requirements Design and implement secure Microsoft Cloud solutions using Defender, Sentinel, Purview & Entra-ID Provide technical consultancy and best-practice guidance across Microsoft security technologies Translate complex customer challenges into effective and scalable security solutions Stay current with Microsoft certifications and share knowledge across the team ⚙️ What You … ll Bring ✅ Strong hands-on experience with Microsoft Purview, Defender, Sentinel, Entra-ID ✅ Proven track record delivering customer-facing security implementations/deployments or consultancy projects ✅ Deep understanding of Microsoft 365 and Azure Security technologies ✅ SC Clearable (must have lived and worked in the UK for 5+ years) 💰 What’s on Offer More ❯

stakeholders. This role blends hands on engineering with ownership of standards and audit readiness. What you will do Own business continuity and disaster recovery for Microsoft 365 and Azure services, with defined RTO and RPO Run backup strategy and restorations, including immutable copies, off site retention and routine recovery tests Support infrastructure and architecture delivery across servers, storage … options to senior stakeholders with clear impact statements and cost benefit Partner with Security, Service Desk and Vendors to resolve incidents and close problems What you will bring Azure and Microsoft 365 certifications or equivalent experience Proven delivery of disaster recovery, backup and restoration in enterprise or public sector settings Strong grasp of infrastructure and architecture fundamentals and … track record of testing plans, learning and improving based on measurable results Nice to have Experience with ISO 22301 or operational resilience frameworks Familiarity with Microsoft Graph, Intune, Sentinel or Defender suite Knowledge of business impact analysis and risk registers Experience with backup platforms such as Veeam and cloud resilience patterns Success in your first year Documented and More ❯

and Managed Service Providers. Take responsibility for technical design documentation, service artefacts, and impact analysis to support seamless solution delivery. Skills & Experience: Extensive experience with Cisco, Avaya telephony, Azure, AWS, zScaler, SolarWinds, and Sentinel in a large, complex organisation. Expertise in network monitoring, SD-WAN, VLANs, Azure vWAN, and static/dynamic routing. Proven More ❯

IaC tools (Terraform, Ansible, CloudFormation), scripting (Python, Bash), and AI-enhanced automation. Build and maintain CI/CD (Jenkins, GitLab CI, GitHub Actions, ArgoCD). Cloud infrastructure (AWS, Azure, GCP), container orchestration (Kubernetes, Docker). Logging, monitoring, and observability (Prometheus, Grafana, ELK/EFK), including AI-driven log analysis and incident prediction. Experience supporting MLOps: deploying ML workflows … ensuring model traceability and compliance. Use of AI assistants and workflow tools to script, manage incidents, and enforce security policies (OPA, Sentinel). Soft Skills: Influential in driving DevOps culture change. Strong communicator across development, security, and business teams. Mentorship and process rigor, open-minded to AI-driven productivity improvements. High accountability, initiative, and a proactive approach to More ❯