126 to 150 of 519 SIEM Jobs in the UK

collaborating with other teams to ensure a secure environment. To be successful as a Security Engineer, you should have the following skills/experience: SIEM experience - Azure Sentinel or Splunk (proficiency in writing KQL and SPL; log sources, ingestion patterns, and correlation rules). DevOps knowledge (Git/BitBucket/ More ❯

improve threat detection capabilities. - Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. - Maintain and optimize security information and event management systems and other security tools used in the SOC. - Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide More ❯

do it? Technical background, willingness to learn, and experience within a Security Operations Centre (SOC). Understanding of SOC tools and technologies, such as SIEM, IDS/IPS, EDR and threat intelligence platforms. Proven experience of assessing maturity, managing SOC services and delivering improvements within a SOC environment. Experience bringing More ❯

do it? Technical background, willingness to learn, and experience within a Security Operations Centre (SOC). Understanding of SOC tools and technologies, such as SIEM, IDS/IPS, EDR and threat intelligence platforms. Proven experience of assessing maturity, managing SOC services and delivering improvements within a SOC environment. Experience bringing More ❯

across areas like threat detection, vulnerability management, identity and access control, and incident response. Familiarity with a range of security tools and platformssuch as SIEM, EDR, firewalls, and cloud security solutions. A clear understanding of security frameworks and best practices (e.g., NIST, ISO 27001, PCI). The ability to translate More ❯

efforts, including investigation, resolution, and post-incident reviews. Monitor, analyse, and respond to threats across global IT environments. Manage security tools and technologies including SIEM, firewalls, antivirus, IAM, etc. Collaborate with IT teams and business units to embed security into projects and operations. Conduct regular training and awareness programs across More ❯

systems, with experience in tools such as Kafka, Kubernetes, Zookeeper, and HDFS. oProficiency in Linux, specifically Red Hat Enterprise Linux (RHEL). oFamiliarity with SIEM platforms (especially ArcSight) or legacy Java-based applications is a plus. • DevOps Mindset: An understanding of DevOps principles, with hands-on experience automating releases using More ❯

include a degree in Cyber Security, Computer Science, Networks, etc. Professional qualifications from organizations like CompTIA, ISACA, etc. Technical qualifications such as cloud computing, SIEM, vulnerability management, etc. Experience (Nice to have) Understanding of concepts like cloud computing, incident management, risk management, information security (CIA), phishing, ransomware, IDAM, JML processes More ❯

etc. Professional Qualifications from organisations such as CompTIA, ISACA etc. Technical qualifications in security and technology such as (but not limited to) cloud computing, SIEM, Vulnerability Scanning/Management etc. Understanding of some (or all) of the following: Key Concepts of Cloud Computing Security Incident Management Risk Management Information Security More ❯

of security governance frameworks (ISO 27001, NIST, FFIEC, FCA regulations). Proficiency in SQL, PowerShell, and automation scripting for security operations. Experience working with SIEM solutions (e.g., Splunk) and incident response processes. Strong knowledge of REST/SOAP web services, Java/JSP, and secure development best practices. Hands-on More ❯

of security governance frameworks (ISO 27001, NIST, FFIEC, FCA regulations). Proficiency in SQL, PowerShell, and automation scripting for security operations. Experience working with SIEM solutions (e.g., Splunk) and incident response processes. Strong knowledge of REST/SOAP web services, Java/JSP, and secure development best practices. Hands-on More ❯

Security Operations team where needed, helping to deliver security services related to Microsoft 365 such as analysis of Microsoft Secure Score, integration with customer SIEM solutions, and O365 audit logs. Support engineering deliverables and other activities, in accordance with the platform roadmap and project timelines. Innovate and drive automation of More ❯

defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security More ❯

Security Service. Lead the improvement of services offered to customers and the capability used to deliver those services. About you: Experience designing and deploying SIEM solutions, along with an in-depth understanding of the security controls that feed them, such as IDS/IPS, EDR, WAF, etc. Industry recognised qualifications More ❯

Security Service. Lead the improvement of services offered to customers and the capability used to deliver those services. About you: Experience designing and deploying SIEM solutions, along with an in-depth understanding of the security controls that feed them, such as IDS/IPS, EDR, WAF, etc. Industry recognised qualifications More ❯

Security Service. Lead the improvement of services offered to customers and the capability used to deliver those services. About you: Experience designing and deploying SIEM solutions, along with an in-depth understanding of the security controls that feed them, such as IDS/IPS, EDR, WAF, etc. Industry recognised qualifications More ❯

very detail-oriented and organized. Comprehensive understanding of customer/server technologies. Understanding of cyber security concepts (e.g. phishing tests, penetration testing, vulnerability scanning, SIEM, email security, endpoint Protection, MDM, etc.). Some technical proficiency in the following areas are required: Understanding public vs hybrid infrastructure models (i.e. Azure/ More ❯

standards and regulations to support the organisational objectives The experience and skills you need Proficiency in security domains, tools and technologies such as DLP, SIEM, SOAR and Vulnerability Management Good working knowledge of network security, firewalls, threat management, endpoint detection and response Ability to identify, assess, and mitigate security risks More ❯

improvements WHAT YOU'LL BRING: 5+ years of experience working within a security operations environment At least 1 year of experience in writing detections, SIEM rules, or EDR Significant experience with standard incident response processes Expertise in a broad range of information technologies, such as public cloud infrastructure (AWS, GCP More ❯

response, ensuring the protection of BCG's global network. You will work closely with the Security Operations Center (SOC), Security Information and Event Management (SIEM), and Managed Security Service Provider (MSSP) to enhance detection and response capabilities. Your expertise will contribute to strengthening our security posture and minimizing business risks … Tier 3 Incident Responder, supporting complex investigations into cyber security incidents. Conduct proactive threat hunting to detect and neutralize emerging threats. Monitor and analyze logs via SIEM, EDR, and network traffic analysis tools for potential attack indicators. Investigate security incidents, including malware infections, phishing attacks, and unauthorized access attempts. Develop … mindset to identify security threats. Experience with malware analysis, including static and dynamic analysis techniques. Ability to develop and refine threat-hunting methodologies and define SIEM use cases. Familiarity with global cybersecurity regulations and compliance frameworks (GDPR, NIST, ISO 27001, etc.). Ability to work under pressure in a fast More ❯

Role: SIEM Security Engineer - Cyber Defence Rate: Outside IR35 Location: Remote with occasional travel to Gloucester Duration: 3-6 initially SC clearance required Position Summary: We are seeking a Sentinel SIEM & Cloud Security Engineer to join our team and play a critical role in designing, managing, and optimizing Microsoft Sentinel … and Defender for Cloud. This role will focus on SIEM architecture, cloud security posture management, security analytics, and automation to enhance security visibility and resilience. You will have the opportunity to work with cutting-edge security tools and continuously evolve your expertise in cloud security. Key Responsibilities * SIEM Architecture & Management … to enhance threat detection and response capabilities. * Cloud Threat Protection: Monitor, analyse, and strengthen security postures across cloud platforms, utilising Defender for Cloud and SIEM insights. * Compliance & Governance: Ensure alignment with industry best practices, regulatory frameworks, and internal security policies for cloud security. * Threat Intelligence & Enrichment: Integrate threat intelligence feeds More ❯

Security risk management Information and security operational incident management Direct management and development of 24 7 SOC Team Incident investigation including root cause analysis, SIEM, SOAR, EDR Act as security incident manager for major security incidents (internal and external) Security assurance activities Quality & Compliance Maintain Cyber Essentials accreditations Maintain internal More ❯

security br solutions. br br This role also requires experience of key cybersecurity controls such as br Anti-malware, EDR/XDR/NDR, SIEM, Email and Web Security, Vulnerability br Management, SOAR/automation . Additionally, you’ll have an understanding of br common cybersecurity threats and mitigation techniques More ❯

security br solutions. br br This role also requires experience of key cybersecurity controls such as br Anti-malware, EDR/XDR/NDR, SIEM, Email and Web Security, Vulnerability br Management, SOAR/automation . Additionally, you’ll have an understanding of br common cybersecurity threats and mitigation techniques More ❯

security br solutions. br br This role also requires experience of key cybersecurity controls such as br Anti-malware, EDR/XDR/NDR, SIEM, Email and Web Security, Vulnerability br Management, SOAR/automation . Additionally, you’ll have an understanding of br common cybersecurity threats and mitigation techniques More ❯