1 to 25 of 508 SIEM Jobs in the UK

SIEM Detection Engineer | Cyber Security Farnborough (Hybrid – 2 days onsite) Up to £65,000 + Excellent Benefits SC Clearance (or eligibility required) Ready to engineer the frontline of cyber defence? We’re working with a highly respected cyber security operation supporting critical defence environments, seeking a SIEM Detection Engineer … threat detection capability across secure enterprise environments. This is a hands-on technical role where you’ll design, build and optimise detection logic across SIEM platforms, working directly against real-world attacker techniques in a mature, high-performing SOC. You’ll have the autonomy to shape detection strategy, influence capability ...

platforms, and fixed wireless network environments Experience managing security operations, incident response, threat management and vulnerability remediation activities. Strong knowledge of security technologies including SIEM, EDR, IAM, DLP, firewalls, IDS/IPS, and vulnerability management platforms. Experience working with third-party security monitoring and managed security service providers. Strong analytical ...

Windows, Linux and Cloud environments Encryption – Familiarity with encryption protocols and technologies Penetration Testing – Ability to assess and interpret penetration test results Security Tools – SIEM, SOAR, EDR, UTM Cloud Security – Understanding of AWS, Azure, etc. Security Frameworks – Knowledge of MITRE ATT&CK, NIST, etc. Consulting Skills Risk management, strategic planning ...

Analyst Information Security Analyst Essential Skills Experience monitoring and investigating security events Understanding of cyber security threats, attack techniques and security controls Exposure to SIEM technologies Strong analytical and problem-solving skills Experience working within a security operations environment Excellent communication and documentation skills Desirable Skills Microsoft Sentinel experience ...

Analyst Information Security Analyst Essential Skills Experience monitoring and investigating security events Understanding of cyber security threats, attack techniques and security controls Exposure to SIEM technologies Strong analytical and problem-solving skills Experience working within a security operations environment Excellent communication and documentation skills Desirable Skills Microsoft Sentinel experience ...

relevant certifications preferred. Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management. Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS. Strong knowledge of Microsoft Azure cloud security technologies and concepts. Familiar with cybersecurity frameworks such ...

and enhance the incident response plan and playbooks. Security Operations Center (SOC): Monitor and analyse security alerts and logs from various tools such as SIEM, IDS/IPS, and endpoint detection systems. Identify and escalate potential security threats or vulnerabilities in real-time. Continuously optimize SOC workflows, tools, and processes ...

analysis, threat detection, and handling security incidents end to end. Experience with security tooling such as Security Hub, GuardDuty, Detective, CloudTrail, CloudWatch, Inspector, SIEM (Elastic, Sentinel) and related cloud native controls. Practical experience with scripting (Python preferred) and Infrastructure as Code tooling such as Terraform. Solid understanding ...

certifications (CISSP, CISM, CEH, CCSP, etc.) are highly desirable. Technical Skills: Strong knowledge of security frameworks (NIST, ISO 27001) and experience with security technologies (SIEM, endpoint protection, data loss prevention). Cloud Platforms: Extensive experience in securing cloud platforms such as AWS, Azure, or Google Cloud. Communication Skills: Exceptional verbal ...

Security Operations Center (MSSP) to ensure high‐fidelity alerting and low Mean Time to Resolve (MTTR). Tooling Optimization : Own the security stack (SIEM, EDR, XDR, SOAR). Ensure tools are integrated, automated, and providing maximum ROI rather than just generating “noise.” Automation : Drive a “Detection as Code” philosophy ...

security management, covering risk management, incident response, threat intelligence, and cyber security solutions. Strong knowledge of security technologies and controls (e.g., firewalls/WAF, SIEM, anti-malware, mobile application security, IAM/PAM) with exposure to cloud security (AWS). Experience conducting vulnerability assessments, penetration testing, and security evaluations, with ...

remote access/VPN configurations where required and ensure changes follow change control. Enable and review network security logging/alerting (e.g., syslog/SIEM integrations where applicable). Monitoring, Detection & Incident Response (Sophos MDR) Act as the internal technical point of contact for Sophos MDR and ensure smooth collaboration ...

eligible for SC Clearance Proven ability to lead complex cyber investigations and incident response engagements during live events. Experience with forensic tools, SIEM platforms, and threat detection methodologies. Knowledge of Windows and cloud environments. Excellent analytical, problem-solving, and communication skills. Customer-focused with the ability to remain calm under ...

security with leadership or ownership of security functions. Strong knowledge of network, application, cloud (AWS/Azure), and endpoint security. Hands-on experience with SIEM (e.g., Arctic Wolf), Fortinet firewalls, Nessus, and vulnerability remediation. Experience working with SOC teams and supplier security assessments. Familiarity with CAF, CE+, NIST, CIS Controls ...

and ESXi • Cisco Meraki, VLANs, VPNs, firewall rules and network segmentation • Security monitoring, incident response and vulnerability management • Sophos MDR or similar MDR/SIEM tooling • Windows/Linux hardening and secure configuration • Disaster Recovery and Business Continuity testing • PowerShell, KQL or Python desirable • Microsoft Defender, Sentinel or CIS exposure ...

cyber threats and AI-enabled attack techniques.Core Skills Strong foundation in modern cyber security engineering and detection engineering principles. Experience with security monitoring platforms, SIEM systems, and alerting/detection pipelines. Strong understanding of identity and access management, endpoint security, logging, network security, and vulnerability management. Knowledge of security architecture ...

threats and AI-enabled attack techniques. Core Skills Strong foundation in modern cyber security engineering and detection engineering principles. Experience with security monitoring platforms, SIEM systems, and alerting/detection pipelines. Strong understanding of identity and access management, endpoint security, logging, network security, and vulnerability management. Knowledge of security architecture ...

Experience developing and delivering information security strategy, roadmaps, policies and controls. Practical knowledge of security technologies and business systems, including identity and access management, SIEM, endpoint security, cloud security, vulnerability management and remote working technologies. Experience using technology, automation or AI to improve security outcomes or operational efficiency. Experience managing ...

solutions at enterprise scale DLP & DSPM Automation/Security Orchestration Automation & Response (SOAR) Scripting (python, PowerShell , bash etc.) Security Information & Event Management (SIEM) content creation, data source on-boarding Strong verbal and written communication skills with the ability to adapt information delivery based on the target audience. Ability to work ...

incident response. Experience monitoring and investigating security alerts and events. Understanding of network, endpoint and cloud security concepts. Familiarity with security tools such as SIEM, endpoint protection and vulnerability scanning solutions. Experience supporting security controls and maintaining secure system configurations. Knowledge of information security frameworks and standards such ...

WebAuthn, SAML, OAuth 2.0, OpenID Connect). Practical experience securing macOS, Windows and Linux endpoints using MDM and EDR/XDR tooling. Experience operating SIEM and/or SOAR platforms and tuning detection logic. Experience with vulnerability management and patch governance. Ability to write production-quality automation scripts. Demonstrated experience ...

hunts. Key Skills: * Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management. * Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS. * Strong knowledge of Microsoft Azure cloud security technologies and concepts. * Familiar with cybersecurity frameworks such ...

cyber security with leadership or ownership of security functions. Strong knowledge of network, application, cloud (AWS/Azure), and endpoint security. Handson experience with SIEM (e.g., Arctic Wolf), Fortinet firewalls, Nessus, and vulnerability remediation. Experience working with SOC teams and supplier security assessments. Familiarity with CAF, CE+, NIST, CIS Controls ...

junior analysts + share your expertise • Turn insights into real security improvements 🧠 What you’ll bring: • SOC/security environment experience • Strong knowledge of SIEM, EDR, networking & OS (Windows/Linux) • Incident response experience end-to-end • Analytical mindset + clear communication skills ✨ Bonus points for: Microsoft Security (Sentinel, Defender ...

Security Operations, including incident management Proven ability to lead a SOC team, including scheduling and performance management Strong knowledge of threat detection tools, SIEM and ticketing systems Deep understanding of security fundamentals and SOC operations Excellent analytical and problem-solving skills Exceptional communication and coordination abilities Proven experience with enterprise ...