1 to 25 of 50 SIEM Jobs in the UK with Remote Work Options

routers, firewalls, VPNs and a small number of niche products using remote hands as required Administer DNS and DHCP for internal lab networks Administer SIEM tooling and report/escalate incidents and events as appropriate Administer information protection tooling (e.g., Microsoft Purview) Key Skills: Thorough, diligent, meticulous finisher Strong multi more »

complex technical information in order to provide appropriate advice and guidance to senior management. Deep understanding of security technologies, tools, and systems such as SIEM, SOAR, EDR, DLP, VPN, Encryption techniques, IDS/IPS. Cloud Security - IaaS, PaaS & SaaS. Knowledgeable in key IAM concepts (Lifecycle and governance, Role Based access more »

LENGTH: 6 MONTHS WITH SCOPE TO EXTEND Key responsibilities Alert monitoring, Security Events analysis, Log Management Security Incident response management Manage, tune, and optimise SIEM tool (Sentinel), which includes evaluating existing rules, filters, events and use cases per the business requirement Provide recommendation to optimise security controls such as IDS … Creation and presentation of SLA reports with Customer leadership team Drive continuous improvement and optimisation of services Required skills and knowledge: Strong Expertise in SIEM Tools, 7-10 years , Operating at L3 level for a minimum of 2 years Proven experience as a SOC Lead/Senior Member of the more »

MONTHS WITH SCOPE TO EXTEND Key responsibilities: Alert monitoring, Security Events analysis, Log Management Microsoft Sentinel Security Incident response management Manage, tune, and optimise SIEM tool (Sentinel), which includes evaluating existing rules, filters, events and use cases per the business requirement Provide recommendation to optimise security controls such as IDS … rd party teams in the scenario of Data breach/Major incidents Provide Audit and Compliance support Required skills/knowledge: Strong Expertise in SIEM Tools, 5-7 years , Operating at L2 level for a minimum of 2 years Proven experience as a SOC Analyst at L2 level Good Exposure more »

routers, firewalls, VPNs and a small number of niche products using “remote hands” as required Administer DNS and DHCP for internal lab networks Administer SIEM tooling and report/escalate incidents and events as appropriate Administer information protection tooling (e.g., Microsoft Purview) Key Skills: Thorough, diligent, meticulous finisher Strong multi more »

Our client, a leading global consultancy, are looking for a SIEM Engineer to join for an initial 6-month contract based in London on a hybrid basis. ROLE: SIEM ENGINEER LOCATION: LONDON (2 X PER WEEK IN OFFICE) RATE: £550 A DAY INSIDE IR35 LENGTH: 6 MONTHS WITH SCOPE TO … of integrity, result-oriented approach, and composure under pressure Strong communication, influencing, and collaboration skills? Knowledge of detection rule development, covering tools (such as SIEM, EDRs) and industry frameworks (such as MITRE ATT&CK) Expert proficiency in Python, Kusto, or other scripting language Experience working as a security analyst or more »

e.g. Ansible/Puppet/Landscape) Essential skills/experience required for the Senior Infrastructure Engineer: Extensive experience with Windows, Microsoft365, and Linux Implementing SIEM solutions Configuring and monitoring compliance policies within M365 Setting up SSO (specifically SAML) Managing devices via Intune Desirable skills/experience required for theSenior Infrastructure more »

Adherence to Protocols: Ensure all investigative steps follow established protocols. Advanced Threat Detection and Response: Utilize and fine-tune advanced threat detection tools, including SIEM systems, IDS/IPS, and EDR solutions. Customer Interaction: Customer-Facing Expertise: Directly interface with customers during incidents, providing clear and reassuring communication. Technical Queries more »

Espire infolabs is looking forSIEM Onboarding Engineer for London, UK with remote working flexibility, Job Title: SIEM Onboarding Engineer Job Type: FTC-Fixed Term Contract(6 Months + Possible extensions) Job Location: London, UK(Remote) Job Description: The SIEM Onboarding Engineer plays a critical role in enhancing our organizations security … posture by integrating various devices and data sources into our SIEM environment, utilizing OpenSearch. The SIEM Onboarding Engineer will work closely with business units to identify devices for onboarding, manage the data pipeline, and assist other engineers in configuring their data sources to provide a resilient pipeline.The SIEM Onboarding Engineer … tool whenever possible. Responsibilities: Device Integration: Work with various business units to identify devices and data sources that need to be onboarded to our SIEM (OpenSearch with Security Analytics). Data Pipeline Management: Configure and manage data collection agents to ensure data is reliably ingested into the SIEM. Automation: Leverage more »

practical understanding of some of the core security frameworks (NIST, Cyber Essentials +, ISO27001), and a level of understanding of core security analysis tools (SIEM, IAM/PAM, Firewalls, EDR, Vulnerability scanning tools etc). Your new role will involve Assisting with the implementation and enhancement of the security strategy … risk and compliance) background Experience working with 3rd party suppliers and MSSPs on the enhancement of organisational security Some technical cyber experience (utilisation of SIEM/Vulnerability/IAM tools) Excellent communication skills alongside a proactive and business solution-focused mindset Thorough understanding of, and practical application experience of, commonplace more »

design, defence-in-depth principles and network security architecture. Extensive experience and understanding of security analysis tools, defensive technologies and other security technologies (e.g. SIEM, VAS, IDS/IPS, Firewalls, IAM, PAM, NAC, Email Security, Web filtering, Patch management, Anti-malware). Experience in identifying, detecting, applying protection, responding and more »

design, defence-in-depth principles and network security architecture. Extensive experience and understanding of security analysis tools, defensive technologies and other security technologies (eg SIEM, VAS, IDS/IPS, Firewalls, IAM, PAM, NAC, Email Security, Web filtering, Patch management, Anti-malware). Experience in identifying, detecting, applying protection, responding and more »

on Sentinel, IAC, and SecOps. Previous experience working in start-ups or software development companies is highly desirable. Proficiency with Microsoft Sentinel and other SIEM platforms. Strong experience with Infrastructure as Code (IAC) tools such as Terraform, CloudFormation, or ARM. Hands-on experience with security tools and technologies In-depth more »

you will have experience across: Security principles, techniques, and protocols Endpoints, servers, infrastructure and networking technologies Experience in supporting security systems, including vulnerability management, SIEM, DLP,SOAR, EDR solution, Network Firewalls etc The client is based in London, however will consider candidates on a remote basis. Sound interesting? Click apply more »

IT Recruitment specialist that provides support to the clients across UK, Europe and Australia. We have an excellent job opportunity for you. Role Title: SIEM/Incident SME(Need Active DV Clearance) Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or … cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to junior analysts Your … C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications: Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent more »

implementing security by design. Other essentials: Background that covers cyber technology, security operations, incident response, architecture, and training. Experience in implementing technology such as SIEM, XDR, SOAR, etc. Background in Financial Services or other regulated industries (desired) Experience in leading through leaders and developing an internal capability Good soft skills more »

the firm. It would be ideal if your also knowledgeable in AWS, GCP. Security wise you will be knowledgeable in CASB, CSPM and IAM, SIEM etc. Required Skills & experience: Tenure as a Microsoft Security Architect in a blue-chip client Strong Azure experience Experience of a Cloud Adoption project Computer more »

including their TTPs Experience in utilising open-source intelligence and the development of tools to assist with this Experience in conducting malware, phishing, and SIEM log analysis Knowledge of relevant cyber threat intelligence sources Demonstrated ability to manage customer relationships Proven ability to translate cyber threats to the relevant audience more »

Splunk software across the platforms & infrastructure managed by the Engineering & Run & Operate teams. The DevSecOps Engineer will also oversee logging & Security Information & Event Management (SIEM) aspects of infrastructure, collaborating with application development teams to resolve issues & enhance security measures within the CI/CD pipeline. If you have a background … As a DevSecOps Engineer within the Run & Operate chapter, you'll manage & deploy the environment in a secure & optimised manner, including managing the logging & SIEM aspects of the infrastructure & coordinating with application development teams to resolve issues. You'll work with the rest of the squad to incorporate more security … management * DevOps or software development roles, with a focus on security. * Security tools such as vulnerability scanners, intrusion detection systems, & security information & event management (SIEM) solutions. * Multi cloud environments AWS & Azure etc. * Using & managing Splunk including defining data streams, indices & ingests & dashboards * CI/CD pipelines & adding security tooling to more »

security frameworks and benchmarks, such as NIST and CIS. Experience in translating HLD, LLD into infra build requirements. Security Engineering experience. Previous experience with SIEM tools and integrations. Strong experience on public cloud Azure and AWS Cloud platforms This person must have hands-on experience of AppsOmni, SSPM, API and more »

GIAC GSEC, GCIH or other comparable degree or other relevant experience. IT skills Network Security System Administration Malware Analysis Security Information and Event Management (SIEM) Incident Response Tools Professional Competencies Solid grasp of cybersecurity concepts, including threat identification, risk assessment, and incident management, coupled with practical experience in applying security more »

of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and/or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams through the deployment where required more »

of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and/or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams through the deployment where required more »

of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and/or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams through the deployment where required more »

Adherence to Protocols: Ensure all investigative steps follow established protocols. Advanced Threat Detection and Response: Utilize and fine-tune advanced threat detection tools, including SIEM systems, IDS/IPS, and EDR solutions. Customer Interaction: Customer-Facing Expertise: Directly interface with customers during incidents, providing clear and reassuring communication. Technical Queries more »