1 to 25 of 97 Remote/Hybrid SIEM Jobs in the UK

remote access/VPN configurations where required and ensure changes follow change control. Enable and review network security logging/alerting (e.g., syslog/SIEM integrations where applicable). Monitoring, Detection & Incident Response (Sophos MDR) Act as the internal technical point of contact for Sophos MDR and ensure smooth collaboration ...

standards, reference architectures, and policy controls based on industry frameworks (e.g., NIST, ISO/IEC 27001, CIS) Evaluate and integrate security technologies, including IAM, SIEM, EDR, DLP, WAF, and encryption solutions Collaborate with engineering, DevOps, and IT teams to embed security by design and ensure secure software development lifecycles (SSDLC ...

security pipelines Advanced security testing techniques and real‐world threat scenarios Security tooling such as Burp Suite, Nmap, Nessus, Metasploit Enterprise security platforms (WAF, SIEM, IDS/IPS) Agile delivery environments and collaborative engineering teams Additional Requirements Must be a UK citizen Must be eligible for UK Security Clearance ...

Risk in financial services. Experience with frameworks such as NIST, ISO27001, COBIT, SOX, and FFIEC. Good understanding of cloud security, GDPR, IAM/PAM, SIEM, vulnerability management, and network security. CISSP, CISM, CRISC, or similar certifications preferred. Skills & Experience: Strong strategic and analytical thinking Excellent communication and stakeholder management Strong ...

audits, risk assessments and maturity reviews. Engineer and embed technical controls supporting NIST CSF and ISO/IEC 27001 objectives. Support security tooling integration (SIEM log sources, EDR/XDR dependencies, vulnerability tooling). Enable and validate security telemetry coverage audit policy configuration, log forwarding/collection, event quality (normalisation ...

client environments Perform threat detection, triage, analysis, and remediation activities Lead incident response activities and provide technical guidance to junior analysts Analyse alerts from SIEM, EDR, IDS/IPS, and other security tooling Conduct threat hunting and proactive security monitoring Support continuous improvement of SOC processes, playbooks, and operational procedures … development of junior team members Required Experience Proven experience working within an MSSP environment Strong background in Security Operations/SOC environments Experience with SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, or similar Knowledge of EDR technologies and incident response methodologies Strong understanding of network security, firewalls, endpoint security ...

CISO) Need an individual with a strong hands‐on network and security background Cisco networking Cisco firewalls (Firepower/Threat Detection) Palo Alto firewalls SIEM experience (Logarithm desirable) Web proxy (Forcepoint desirable) Governance skills Policy writing/reviewing Reporting KPI monitoring Certifications like CCNP/CISM would be desirable ...

Incident processes. Strong written documentation and stakeholder communication skills. Knowledge, Skills & Experience – Desirable Experience supporting multi-site or operationally sensitive environments. Familiarity with Defender, SIEM, EDR, and vulnerability management tools. Understanding of regulated or PCI-adjacent environments. Relevant security certifications or equivalent experience. Behavioural Competencies Takes ownership from detection through ...

networking, and application hardening for Windows, macOS, and Linux, including virtualization security. Experience deploying, maintaining, and administering security technologies like IDS, DLP, FIM, firewalls, SIEM, MFA, vulnerability assessment tools, web proxies, and WAFs. Experience with cloud providers and Infrastructure as Code (IaC) tools, such as Terraform, Ansible, or CloudFormation. Proficiency ...

environments Technology Skills & Experience Principles of network and boundary protection (firewalls, mail gateways, load balancers, antivirus, IPS/IDS, Diodes) Protective Monitoring systems (SIEM/SOC) and deployment principles Authentication & authorisation technologies (SAML, LDAP, PKI, etc.) Encryption protocols and structures supporting secure deployment Communication & Soft Skills Excellent verbal and written ...

architecture Experience with vulnerability management and security operations within OT environments Understanding of security technologies including: IAM, EDR, Firewalls, PKI, DLP, DAM Experience with SIEM technologies such as: Google Chronicle, Splunk ES & QRadar Experience with log source integration, correlation rules and parser development Strong stakeholder engagement and communication skills Desirable ...

CREST, or equivalent • Experience with tools such as Burp Suite, Nmap, Nessus, Metasploit, or similar • Exposure to enterprise security tooling (WAF, IDS/IPS, SIEM, etc.) • Active participation in the security community or knowledge sharing activities • Experience working in Agile delivery environments Eligibility Requirements • Must be a UK citizen • Must ...

systems remain at the required security posture against baseline requirements Work with the Security Monitoring engineering team to ensure logs are forward to the SIEM capability Work with the customer and appropriate agencies to develop new policies, design processes, and procedures, and develop technical designs Assess system vulnerabilities, implement risk ...

stakeholders. Desirable: Experience within financial services, FinTech, or other regulated environments. Familiarity with cloud security, operational resilience, or third-party risk management. Exposure to SIEM, vulnerability management, or security monitoring tools. Relevant certifications such as Security+, CISSP, CISM, CRISC, or ISO 27001. Cyber Risk & Compliance Analyst | £60,000 | London Hybrid ...

this technical role is on threat prevention, detection and response for Marshall, including the configuration and monitoring of a security information and event management (SIEM) system, operating next generation antivirus, intrusion detection/prevention systems (IDS/IPS), vulnerability management tools and Firewall, DLP, Web and Email Security Gateways.This … and help coordinate, routine security event monitoring and investigations using available toolsUse, configure and develop the use of a security information and event management (SIEM) and EDR toolMonitor and configure network intrusion detection and prevention systemsAnalyse and create reports for security incidents, to determine root cause and lessons learntCreate and ...

Proven experience as a Security/Cyber Security Architect Strong cloud security knowledge (Azure, AWS, M365) Broad security control experience (IAM, PAM, DLP, SIEM, endpoint, network) Experience in regulated or critical environments desirable Certifications such as CISSP, CISM or ISO 27001 beneficial If you're looking for a role with ...

from colleagues and service delivery teams Support and coordinate patch management activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor external threat intelligence sources and assess relevance to the organisation Produce and report on security metrics … operational performance Technical expertise Good understanding of information security principles, risk management and the threat landscape Experience of operating and monitoring security tooling, including SIEM, endpoint protection, and email/web security solutions Ability to proactively conduct threat hunting activities and develop or enhance detection analytics to improve identification ...

Investigation skills (case handling, fact-finding). Security tooling familiarity-for example, insider risk or data protection controls such as Microsoft Purview, DLP, SIEM/EDR dashboards. Risk management know-how-exposure to frameworks such as ISO 27001/27005, NIST CSF or similar, and how control effectiveness is assessed. ...

and their integration.Experience with DevOps practices, CI/CD pipelines (Jenkins, Azure DevOps) and automation tools.Deep understanding of security frameworks, firewalls, endpoint protection, and SIEM tools.Strong knowledge of data management platforms, databases, data lakes, Fabric and ETL processes.Experience with observability tools and practices, including monitoring, logging, tracing, and metrics collection ...

Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials ...

modern network platforms (experience with Arista would be advantageous). Practical understanding of cyber security principles, threat monitoring and operational security controls. Experience using SIEM or monitoring platforms (experience with Splunk would be highly advantageous) Knowledge of secure network segmentation, filtering and access control models. Experience investigating and responding ...

Agile methods such as SCRUM; Enterprise security packages, security enforcing software and devices, such as identity management and federation, cryptography, public key infrastructure, firewalls, SIEM, vulnerability scanning, etc. Additional Requirements: Must be eligible and willing to obtain UK Government Security Clearance. Key Attributes for Success: Ability to engage effectively with ...

skills Experience working within public sector, regulated, or enterprise environments Solid understanding of cyber security domains, including: Identity & Access Management Vulnerability Management Incident Response SIEM/Monitoring & Logging Resilience and business continuity Supply chain security Ability to manage multiple priorities and deliver under tight deadlines Experience working in remote, blended ...

Management. Identifying, addressing current and emerging security threats and vulnerabilities. Researching, evaluating, and recommending security technologies, tools (eg, Firewalls, VPNs, IDS/IPS, EDR, SIEM, SOAR), and solutions to mitigate identified threats and address security needs. Key experience required Deep understanding of computer systems, networking, and cybersecurity principles. Hands ...

security concepts into clear recommendations for senior stakeholders Skills & Experience Strong experience in enterprise security architecture within large-scale environments Expertise across: SOC/SIEM/SIAM Network Security Architecture Cloud Security (Azure, AWS, Hybrid environments) Strong understanding of modern security operations and tooling Familiarity with frameworks such as TOGAF ...