101 to 125 of 524 SIEM Jobs in the UK

experience Sound judgment when working with sensitive information Experience with application/device security monitoring (i.e., Firewalls, IDS/IPS, Anti-Virus) Experience with SIEM tools & Vulnerability Management (AlienVault, Nessus, Qualys) Demonstrated ability to work as part of a team to deliver project outcomes within specified parameters including timeframes and More ❯

have experience of vulnerability management, cyber security or in a related field · Tools with a strong experience level include MS Defender, Tenable, Qualys, Rapid7 · SIEM, EDR and security orchestration tools (MS Sentinel/defender, Splunk, Palo Alto XSOAR…) · Solid Security framework knowledge ie. NIST, CIS, ISO 27001 & MITRE ATT&CK More ❯

have experience of vulnerability management, cyber security or in a related field · Tools with a strong experience level include MS Defender, Tenable, Qualys, Rapid7 · SIEM, EDR and security orchestration tools (MS Sentinel/defender, Splunk, Palo Alto XSOAR…) · Solid Security framework knowledge ie. NIST, CIS, ISO 27001 & MITRE ATT&CK More ❯

Lead threat detection and incident response across modern security platforms. Monitor and analyse alerts from EDR/XDR platforms, cloud services (M365, AWS, Azure), SIEM systems and more. Manage and optimise security tools and detection rules. Create and deliver comprehensive client security reports. Respond to and analyse cyber incidents at More ❯

or other Public Cloud Solutions) Analysis and Incident Response experience with Cloud systems such as AWS or GCP Experience working and supporting analytics/SIEM platforms. Experience working in CSIRT/SOC functions. Experience supporting and conducting Incident Response engagements. Experience in endpoint based investigations. Experience in cloud based investigations. More ❯

4+ years of experience in a SOC environment, with at least 1 year in a leadership role Strong technical knowledge of security tools, including SIEM, SOAR, EDR, Firewalls, and Threat Intelligence platforms Hands-on experience with security incident handling, threat hunting, and forensic analysis Excellent understanding of attack tactics, techniques More ❯

RADIUS, FreeRADIUS, or nuRADIUS Database Management: Basic knowledge of MS SQL Security Appliances: Experience with filtering solutions, RSA authentication, and Data Leakage Prevention (DLP) SIEM solution exposure What Will Make You Shine at Mobius Strong multitasking with capability to manage and prioritise workloads effectively and efficiently. Excellent communication skills, especially More ❯

defence, or enterprise environment Proven Splunk experience required , with a Splunk Certification (e.g. Core Certified Power User, Enterprise Security Admin) being desirable Familiarity with SIEM rule tuning, alert triage workflows, and common log sources (e.g. Windows, Linux, firewalls, proxies, cloud logs) Strong verbal and written communication skills, with ability to More ❯

defence, or enterprise environment Proven Splunk experience required , with a Splunk Certification (e.g. Core Certified Power User, Enterprise Security Admin) being desirable Familiarity with SIEM rule tuning, alert triage workflows, and common log sources (e.g. Windows, Linux, firewalls, proxies, cloud logs) Strong verbal and written communication skills, with ability to More ❯

including IP addressing, basic network protocols, and how traffic flows within a network. - Advanced knowledge of Windows and Linux operating environments - Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis. - University Degree/Diploma in Cyber Security or Equivalent experience - Other IT certifications or experience More ❯

and industry best practices For the SOC role you will have: Hands-on experience working in a Security Operations Centre (SOC) Solid knowledge of SIEM tools such as Microsoft Sentinel or Splunk Familiarity with the MITRE ATT&CK framework and threat detection methodologies Strong analytical skills with a keen eye More ❯

our scope. Lead and manage on the information security management framework and supporting risk framework In-depth knowledge of security operations areas such as SIEM/SOC, Firewall Change, End Point Protection, and Forensic Investigation. Experience in business or information security management, with a background in ISO27001, CISM, CISSP, and More ❯

response, ensuring the protection of BCG’s global network. You will work closely with the Security Operations Center (SOC), Security Information and Event Management (SIEM), and Managed Security Service Provider (MSSP) to enhance detection and response capabilities. Your expertise will contribute to strengthening our security posture and minimizing business risks … Tier 3 Incident Responder, supporting complex investigations into cyber security incidents. * Conduct proactive threat hunting to detect and neutralize emerging threats. * Monitor and analyze logs via SIEM, EDR, and network traffic analysis tools for potential attack indicators. * Investigate security incidents, including malware infections, phishing attacks, and unauthorized access attempts. * Develop … mindset to identify security threats. * Experience with malware analysis, including static and dynamic analysis techniques. * Ability to develop and refine threat-hunting methodologies and define SIEM use cases. * Familiarity with global cybersecurity regulations and compliance frameworks (GDPR, NIST, ISO 27001, etc.). * Ability to work under pressure in a fast More ❯

ten, SANS and NCSC Guidance) Technical knowledge of information systems, infrastructure, and networks Security monitoring and testing technologies such as vulnerability scanning, penetration testing, SIEM, IDS Experience with vulnerability management tools and processes (Rapid 7, Wiz etc.) Experience of operating with and to the ISO27001 standard Cloud computing cyber security More ❯

to deliver secure solutions with proportionate controls to enable business outcomes. . Knowledge of industry security solutions including network detection and response, security information and event management, extended detection and response, threat intelligence and vulnerability management. Please be aware that this role can only be worked within the UK and More ❯

Develop & maintain documentation for systems, procedures, processes and more What skills do you need to be a Security Analyst? Rapid7 IDR (open to other SIEM tools) CrowdStrike Microsoft Defender Understanding of networking (Cisco Umbrella & Fortinet, IDS/IPS, etc) Experience with Vulnerability Management tools Experience with Password Management tools Experience More ❯

Develop & maintain documentation for systems, procedures, processes and more What skills do you need to be a Security Analyst? Rapid7 IDR (open to other SIEM tools) CrowdStrike Microsoft Defender Understanding of networking (Cisco Umbrella & Fortinet, IDS/IPS, etc) Experience with Vulnerability Management tools Experience with Password Management tools Experience More ❯

improve threat detection capabilities. Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. Maintain and optimize security information and event management systems and other security tools used in the SOC. Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide More ❯

collaborating with other teams to ensure a secure environment. To be successful as a Security Engineer, you should have the following skills/experience: SIEM experience - Azure Sentinel or Splunk (proficiency in writing KQL and SPL; log sources, ingestion patterns, and correlation rules). DevOps knowledge (Git/BitBucket/ More ❯

security principles, protocols, and standards. Proficiency with DevOps and DevSecOps tools (e.g. GitLab CI/CD, Ansible, Terraform). Experience with security tools like SIEM/SOAR (preferably Rapid7), IDS/IPS, vulnerability scanners, and code analysis tools (SonarCloud, Snyk, Chekov) Strong knowledge of network security, encryption, identity and access More ❯

relevant industry certifications (e.g. CySA+, Security+) and risk management knowledge (essential) Knowledge and experience working across a diverse range of cyber security tools, including SIEM technologies, EDR, NIDS etc. (essential) Self-motivated with a willingness to go the extra mile to achieve important goals (essential) Excellent verbal and written communication More ❯

relevant industry certifications (e.g. CySA+, Security+) and risk management knowledge (essential) Knowledge and experience working across a diverse range of cyber security tools, including SIEM technologies, EDR, NIDS etc. (essential) Self-motivated with a willingness to go the extra mile to achieve important goals (essential) Excellent verbal and written communication More ❯

improve threat detection capabilities. Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. Maintain and optimize security information and event management systems and other security tools used in the SOC. Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide More ❯

collaborating with other teams to ensure a secure environment. To be successful as a Security Engineer, you should have the following skills/experience: SIEM experience - Azure Sentinel or Splunk (proficiency in writing KQL and SPL; log sources, ingestion patterns, and correlation rules). DevOps knowledge (Git/BitBucket/ More ❯

improve threat detection capabilities. - Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. - Maintain and optimize security information and event management systems and other security tools used in the SOC. - Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide More ❯