ISO 27001, Cyber Essentials, etc.) Tech Environment: Microsoft 365 Defender, Intune, Azure Security Center Firewalls: Palo Alto, Fortinet, SonicWall SIEM: Sentinel, Splunk, or equivalent EDR/XDR solutions (Sophos, CrowdStrike, Defender) Scripting knowledge (PowerShell preferred) What We’re Looking For: 5 years’ experience in a cyber security role (ideally within an MSP or multi-client setting) Security certifications like More ❯
City of London, London, United Kingdom Hybrid / WFH Options
ZenTech Talent
ISO 27001, Cyber Essentials, etc.) Tech Environment: Microsoft 365 Defender, Intune, Azure Security Center Firewalls: Palo Alto, Fortinet, SonicWall SIEM: Sentinel, Splunk, or equivalent EDR/XDR solutions (Sophos, CrowdStrike, Defender) Scripting knowledge (PowerShell preferred) What We’re Looking For: 5 years’ experience in a cyber security role (ideally within an MSP or multi-client setting) Security certifications like More ❯
South East London, England, United Kingdom Hybrid / WFH Options
ZenTech Talent
ISO 27001, Cyber Essentials, etc.) Tech Environment: Microsoft 365 Defender, Intune, Azure Security Center Firewalls: Palo Alto, Fortinet, SonicWall SIEM: Sentinel, Splunk, or equivalent EDR/XDR solutions (Sophos, CrowdStrike, Defender) Scripting knowledge (PowerShell preferred) What We’re Looking For: 5 years’ experience in a cyber security role (ideally within an MSP or multi-client setting) Security certifications like More ❯
Nottingham, Nottinghamshire, East Midlands, United Kingdom Hybrid / WFH Options
Experian Ltd
Anti-Virus, Intrusion Prevention, Web Application Firewalls) Interest in developing knowledge across common Incident Response and Security Monitoring applications such as SIEM (e.g., Qradar, Splunk), EDR (e.g., FireEye HX, CrowdStrike Falcon, Microsoft Defender), and SOAR (Palo Alto XSOAR, Google Secops/Chronicle) Desire to build technical skills and hands-on knowledge in the following areas of security operations and More ❯
Maidenhead, Berkshire, United Kingdom Hybrid / WFH Options
APM Terminals
collaborate with other teams, and build streamlined cross-departmental processes. Automation Development Identify repetitive tasks and develop automation ideas. Collaborate with automation teams to build capabilities using platforms like CrowdStrike Fusion, AWS Lambda, Azure Logic Apps, XSOAR, and Python scripts. Languages Good experience in query languages like KQL and Logscale for investigations and log analysis is highly desirable Managing More ❯
and Response (EDR), Security Orchestration, Automation, and Response (SOAR), Security Information and Event Management (SIEM, particularly Splunk and/or Splunk Cloud), firewalls, and other core security products. (e.g. Crowdstrike, Carbon Black, Splunk, and/or the Microsoft security technologies) A solid working knowledge of Windows Azure Active Directory, Windows OS, Mac OS, Virtualization, SQL Server, networking protocols, certificates More ❯
and Response (EDR), Security Orchestration, Automation, and Response (SOAR), Security Information and Event Management (SIEM, particularly Splunk and/or Splunk Cloud), firewalls, and other core security products. (e.g. Crowdstrike, Carbon Black, Splunk, and/or the Microsoft security technologies) A solid working knowledge of Windows Azure Active Directory, Windows OS, Mac OS, Virtualization, SQL Server, networking protocols, certificates More ❯
Exeter, Devon, South West, United Kingdom Hybrid / WFH Options
Bowerford Associates
SIEM/FERPA/HIPAA etc. Knowledge of and experience in virtual network technologies, specifically ESXi and VMware configuration and administration is preferred. Knowledge of and experience in Veaam, CrowdStrike and Cortex XDR configuration and administration would be advantageous. Knowledge of IP telephony systems would be advantageous. Experience of Office 365, Teams, OneDrive, SharePoint - any MS E3 subscription services. … VPN Configuration, Enterprise Wireless Networking, Dell Switches, Fibre, CCNA, CCNP, Firewalls, FortiGate, Cat6, TCP/IP, DNS, DHCP, Active Directory, SSL, 2FA, Windows Server, SCCM, MECM, ESXi, VMware, Veaam, CrowdStrike, Cortex XDR, IP Telephony Systems, Office 365, Teams, OneDrive, SharePoint, Driving Licence. Please note that due to a high level of applications, we can only respond to applicants whose More ❯
SIEM/FERPA/HIPAA etc. Knowledge of and experience in virtual network technologies, specifically ESXi and VMware configuration and administration is preferred. Knowledge of and experience in Veaam, CrowdStrike and Cortex XDR configuration and administration would be advantageous. Knowledge of IP telephony systems would be advantageous. Experience of Office 365, Teams, OneDrive, SharePoint - any MS E3 subscription services. More ❯
analysts and assess them using a variety of data sources. Apply threat intelligence, including indicators of compromise (IOCs) and TTPs, to analyse alerts and incidents. Utilise SIEM tools (particularly Crowdstrike SIEM) to monitor and assess host, network, and identity data. Tune and reduce false positives, improving SIEM efficiency and alerting accuracy. Lead incident investigations across Windows, macOS, and Linux … 5+ years' recent experience in a Tier 2 or Tier 3 SOC analyst role, ideally within a government or critical infrastructure organisation. Deep experience with SIEM tools such as Crowdstrike, Splunk, and Microsoft Defender. Proven track record designing and implementing SOC use cases and incident response plans. Strong capability in data correlation across disparate sources. Demonstrated ability to develop More ❯
security projects Support and resolve issues identified during penetration testing Ideal Experience We’re looking for someone with strong hands-on experience in most of the following technologies: Essential: CrowdStrike EDR Mimecast Duo, Okta Rapid7 IVM, Tenable IO or Nessus Palo Alto Firewalls, InTune, Entra ID, Active Directory Desirable: Imperva WAF, Menlo Security, Cisco Secure Access/Umbrella, KnowBe4 More ❯
security projects Support and resolve issues identified during penetration testing Ideal Experience We’re looking for someone with strong hands-on experience in most of the following technologies: Essential: CrowdStrike EDR Mimecast Duo, Okta Rapid7 IVM, Tenable IO or Nessus Palo Alto Firewalls, InTune, Entra ID, Active Directory Desirable: Imperva WAF, Menlo Security, Cisco Secure Access/Umbrella, KnowBe4 More ❯
security projects Support and resolve issues identified during penetration testing Ideal Experience We're looking for someone with strong hands-on experience in most of the following technologies: Essential: CrowdStrike EDR Mimecast Duo, Okta Rapid7 IVM, Tenable IO or Nessus Palo Alto Firewalls, InTune, Entra ID, Active Directory Desirable: Imperva WAF, Menlo Security, Cisco Secure Access/Umbrella, KnowBe4 More ❯
security projects Support and resolve issues identified during penetration testing Ideal Experience We're looking for someone with strong hands-on experience in most of the following technologies: Essential: CrowdStrike EDR Mimecast Duo, Okta Rapid7 IVM, Tenable IO or Nessus Palo Alto Firewalls, InTune, Entra ID, Active Directory Desirable: Imperva WAF, Menlo Security, Cisco Secure Access/Umbrella, KnowBe4 More ❯
you had experience with the following: SIEM tools (Microsoft Sentinel, Splunk, ELK, Siemplify) Vulnerability Management (Qualys, Nessus, Nexpose) Anti-Malware/EDR Software (Carbon Black, Microsoft Defender ATP, FireEye, CrowdStrike) Programming (Python, or other languages) What you can expect from us We won't just meet your expectations. We'll defy them. So you'll enjoy the comprehensive rewards More ❯
Security Tools and Technologies: CSPM, CWPP, ASPM, Cloud Native Security, Cloud-based vulnerability scanning tools like Falcon Spotlight or Amazon Inspector, Container Security, Cloud WAFs, Endpoint Protection such as CrowdStrike Falcon or Microsoft Defender, GitHub, Infrastructure as a code, Secrets Management Requirements And Qualifications: A bachelor's or master's degree in computer science, information technology, cybersecurity or a More ❯
Nottingham, Nottinghamshire, East Midlands, United Kingdom Hybrid / WFH Options
Experian Ltd
common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs). Exhibit skills using common Incident Response and Security Monitoring?applications such as SIEM (Splunk), EDR (FireEye HX, CrowdStrike Falcon, McAfee mVision EDR.), WAF, IPS Additional Information Benefits package includes: Flexible work environment, working hybrid or in the office if you prefer. Great compensation package and discretionary bonus More ❯
common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs). Exhibit skills using common Incident Response and Security Monitoring?applications such as SIEM (Splunk), EDR (FireEye HX, CrowdStrike Falcon, McAfee mVision EDR.), WAF, IPS Additional Information Benefits package includes: Flexible work environment, working hybrid or in the office if you prefer. Great compensation package and discretionary bonus More ❯
the heart of their SecOps function, helping to shape and improve their cyber capabilities. What they are looking for : Someone comfortable with SIEM, EDR, and vulnerability management tooling (Rapid7, CrowdStrike, Qualys etc.) Scripting and automation Strong foundational IT and networking knowledge Familiarity with patching solutions and email security tools A proactive mindset and good communication skills A genuine passion More ❯
within their large, mostly on-premises financial environment. Key Responsibilities: Lifecycle management of security, covering tools and technology platforms Supporting and managing security tools e.g. EDR, Anti-Virus, SentinelOne, Crowdstrike, Defender Azure, M365, Windows Strong Knowledge with routing and switching technologies (WAN), Network Access Control, Cisco, and Palo Alto Implementation & integration of security technologies (MFA Gateway) Use case development More ❯
within their large, mostly on-premises financial environment. Key Responsibilities: Lifecycle management of security, covering tools and technology platforms Supporting and managing security tools e.g. EDR, Anti-Virus, SentinelOne, Crowdstrike, Defender Azure, M365, Windows Strong Knowledge with routing and switching technologies (WAN), Network Access Control, Cisco, and Palo Alto Implementation & integration of security technologies (MFA Gateway) Use case development More ❯
Manchester, North West, United Kingdom Hybrid / WFH Options
Hays
following skills, then LETS TALK! Expertise in an operational Security Operations Centre Previous experience as a Cyber Security Operations Engineer Hands-on experience in an incident response role utilising CrowdStrike Experience developing and delivering on incident and program status Familiar with threat hunting, leveraging intelligence data to proactively find and iteratively investigate suspicious behaviour across networks and systems Experience More ❯
a related Cyber Security field. Proficiency in query languages such as SPL (Splunk), KQL (Microsoft), Sigma, or similar. Experience with SIEM platforms (e.g. Splunk, Sentinel, Elastic), EDR tools (e.g. CrowdStrike, SentinelOne), and/or cloud-native security services (e.g. AWS GuardDuty, GCP Chronicle). Ability to create and iterate on detection content (e.g. SIEM rules, correlation searches and detection More ❯
