251 to 275 of 286 SIEM Jobs in the UK

shell) Demonstrated experience working in all phases of the SDLC Deep understanding and experience using cyber security operations, security monitoring, endpoint (EDR), Network, and SIEM Tools. Prior SOC experience a plus Extensive knowledge of network and server security protocols, technologies, and products. Industry recognized certifications (CISSP, GCIH, GCFA, OSCP … effectively solve current security challenges. Refusing to accept the status quo Qualifications Combination of the following: Degree in Information Technology, Engineering or similar SIEM management - Desirable to have some advanced Certification from SIEM vendor on products such as ArcSight , MS Sentinel or Logrhythem Skills Network Protocols Cyber Security Tools/ ...

enhancement of security operations across a modern technology estate. Responsibilities for the Cyber Security Analyst * Monitor, investigate and respond to security alerts generated by SIEM and security tooling * Manage incidents through to resolution or escalation into wider IT incident processes * Act as an SME for nominated security tools , ensuring effective … call rota for security incidents Essential Skills - Cyber Security Analyst * Strong experience within SOC/Security Operations environments * Hands-on experience with SIEM platforms and vulnerability management tools * Experience with EDR technologies and knowledge of the MITRE ATT&CK framework * Experience with security use case development and log source onboarding ...

Cyber Security Operations Analyst (Tier 2) Role: Cyber Security Operations Analyst (Tier 2) Specialism(s): Security Operations, Security Alerts, Security Incident Management, SIEM, Defender, Cofense, Azure, Email Security, Conditional Access Policies, User Authentication, EDR, Playbooks Security Assessment, Vulnerability Analysis, Risk Analysis, SOAR Type: Contract, Daily Rate Pay Rate … minimum of 5 years can be considered* Role Requirements * Play an active role in the CSOC Operations team by: o Monitor active SIEM solutions and platforms o Investigate and triage to security alerts and incidents o Be the escalation point for junior analysts, offering knowledge and mentorship where required ...

windows across critical systems Enhancing incident response readiness through improved playbooks, scenario testing, and lessons learned processes Uplifting monitoring coverage and the effectiveness of SIEM/EDR/NDR tooling, including tuning and detection improvements Strengthening supplier assurance processes, especially for cloud and SaaS services Supporting the development of updated … collaboratively with technical and non technical stakeholders Commitment to continuous professional development and staying current with emerging threats High-level proficiency with security tooling (SIEM, EDR, cloud security tools) and modern IT environments Alignment with our values of accountability, teamwork, and inclusive service delivery To apply, we request that ...

CrowdStrike Falcon platform Manage policies across Falcon Prevent, Insight, and Discover Act as the technical authority for endpoint detection and response (EDR) SIEM & Security Monitoring (Splunk) Architect and enhance Splunk dashboards, alerts, and data models Write and maintain complex Splunk SPL queries Optimise Splunk Enterprise Security (ES) for advanced threat … detection Incident Response & Threat Management Act as a Tier 3 escalation point for high-severity cyber security incidents Use EDR and SIEM tooling to investigate, contain, and remediate threats Map detection and response activities to the MITRE ATT&CK framework SOAR & Automation Design and implement SOAR workflows to automate response ...

require a Security Operations Engineer to join the firm in London on a 9 month fixed term contract basis. Key Responsibilities: * Monitor alerts from SIEM, EDR and other security monitoring tools. * Investigate suspicious activity across endpoints, networks and cloud environments. * Support the investigation and resolution of security incidents. * Support … configuration, tuning and ongoing improvement of security monitoring tools such as SIEM and EDR platforms. * Use threat intelligence sources to identify emerging risks relevant to the organisation. Required Skills: * Strong understanding of network protocols and system behaviour including TCP/IP, DNS and HTTP/S. System internals (Windows, Linux ...

detect, and respond to cyber security threats across the organisation Investigate security incidents and support or lead response activities Work with tools such as SIEM, EDR/XDR, and other security technologies Contribute to the development and continuous improvement of security monitoring and threat detection Support vulnerability management and security … working in a cyber security or IT security role Strong understanding of security operations and threat detection Hands-on experience with security tools (e.g. SIEM, EDR/XDR) Ability to analyse and interpret security events and incidents A proactive mindset with a strong interest in learning new technologies Excellent communication ...

lead on threat detection, incident response, and continuous security improvement across the business. What You'll Be Doing Monitoring and analysing security events (SIEM, endpoints, networks) Investigating incidents, performing root cause analysis and remediation Identifying vulnerabilities and driving proactive security improvements Acting as the go-to escalation point for security … teams to embed security across systems What We're Looking For Experience in a cybersecurity/IT security role Strong knowledge of security tools (SIEM (Sentinel), EDR/XDR, firewalls, IDS) Experience working in a SOC/NOC or similar environment Good understanding of security frameworks (ISO 27001, NIST, GDPR ...

Backup infrastructure Network infrastructure, including segmentation Server environments (Hyper-V, Windows, Linux) Cloud services (e.g. identity and productivity platforms) On-premises systems (Active Directory, SIEM, print, access control, CCTV) Perform hardware lifecycle management, including installations, upgrades, patching, and security hardening Manage software licensing and ensure compliance Apply cyber security best … systems engineering or infrastructure roles Strong hands-on experience across networks, servers, cloud, and on-premises environments Practical knowledge of cyber security principles, including: SIEM Identity and access management Encryption protocols (TLS, certificates) Endpoint protection Vulnerability and patch management Understanding of PCI DSS and ISO 27001 frameworks Strong analytical and ...

requirements and translate them into detailed interface specifications and solution designs Oversee integration of key platforms, including Customer ERP, ServiceNow, Amazon Connect, SOC/SIEM, and Enterprise Data Platform, ensuring secure, reliable, and scalable data flows Facilitate and lead solution integration workshops with internal and external stakeholders to confirm requirements … Agile and Waterfall delivery methodologies, with a focus on iterative delivery and continuous improvement as per GDS framework Preferred Qualifications Experience with SOC/SIEM integration and incident management processes. Familiarity with cloud platforms (AWS, Azure) and hybrid integration scenarios. TOGAF or similar architecture certification. Experience supporting GDS service assessments ...

detect, resolve and prevent intrusion behaviours to protect organisational networks. Desirable Working knowledge of concept, procedures and processes of Security Information and Event Management (SIEM); ability to utilise related applications to protect organisational networks from cyber risks. Qualifications Essential Bachelors level degree in Cyber Security or a relevant subject ...

both technical and GRC security experience. Key Responsibilities: Oversee security incident management and response Threat management Configure, implement and maintain security tools such as SIEM, XDR, EDR, vulnerability management Implement and maintain security controls Conduct vendor risk assessments, support internal and external audits Governance, risk and compliance Skills & Experience: Proven … experience in Cyber Security operations, threat management Strong knowledge of SIEM, XDR, EDR, vulnerability management, firewalls and network security Good understanding of risk management, vendor security assessments and compliance Understanding of UK regulations, including Cyber Essentials, ISO27001, NIST On Offer: Salary up to £65,000 Hybrid working - approximately 2 days ...

design, implementation, and optimisation of security monitoring platforms feeding into a central SOC. This is a hands-on leadership role focused on building scalable SIEM solutions and strengthening client security posture. Key Responsibilities Lead design and deployment of security monitoring tools (Elastic & Splunk) Build and optimise large-scale log ingestion … using KQL, EQL, and SPL Drive detection engineering lifecycle aligned to MITRE ATT&CK Implement automation, CI/CD, and Infrastructure as Code for SIEM platforms Ensure platform performance, scalability, and resilience (HA/DR, clustering) Collaborate with stakeholders to assess risk and deliver security improvements Essential Skills & Experience Proven ...

Cyber Security Specialist with some experience spanning technical security operations and GRC. The ideal candidate is someone with fundamental security operations experience (SIEM, EDR, Vulnerability), who has also worked in alignment with any security frameworks. If you've handled audits/accreditations from a technical perspective that'd be ideal. … Your new role will involve Working alongside an MSSP and third-party security auditors on internal SecOps work, gap analyses and audits Working on SIEM, EDR and Vulnerability Management tools. Working in compliance with various security frameworks (ISO27001, Cyber Essentials +, NIST, CAF.) Working alongside the MSSP to ensure that ...

Enterprise Security Architect - Manchester (Hybrid Working) Solid experience - SOC, SIEM, Network Security, Cloud Security Salary - £85,000 - £91,000 + Benefits Our client is looking for an Enterprise Security Architect who wants to apply their skills and experience within an exciting and vibrant Managed Services organisation. You will be responsible … and target-state architecture. Key Skills Broad understanding of enterprise-scale security architecture with deep expertise in at least two areas (e.g., SOC/SIEM, IAM, network security, cloud security, data protection). Strong knowledge of cloud security architectures (Azure/AWS/hybrid), security tooling, and modern security operations. ...

Security Manager to evolve SOC capability Senior SOC Analyst essential skills Proven experience in a SOC or similar security operations environment Strong knowledge of SIEM, incident management and threat intelligence Understanding of cloud technologies and modern networking Experience with IDAM, JML processes and ITSM frameworks Ability to lead, support and … process and submit (subject to required skills) your application to our client in conjunction with this vacancy only. Key skills: Senior SOC Analyst, SOC, SIEM, Security Incident Management, Threat Intelligence, Cloud Security, IDAM, ISO 27001, Team Leadership ...

Engineer +6 months + +DV cleared role + 600 - 700 a day Inside IR35 +On site in Hemel Hempstead Skills: + SIEM/SPLUNK/SOC + DV clearance - must hold current active clearance Join our team as a SOC Engineer and become a critical player in safeguarding organizations through … tangible impact in the field of digital protection. Required Skills: Proven experience leading security engineering teams and managing large client engagements Expertise in SIEM platforms, specifically Splunk Enterprise & Enterprise Security and Elastic Stack/Elastic Security Deep knowledge of detection engineering, threat intelligence frameworks (MITRE ATT&CK), and noise reduction ...

Underground Environment (desirable but not essential) - Experience working with network support tools including network management systems and policy enforcement - Experience working with Microsoft Sentinel SIEM Role Profile: - The role will be to work with the network and security team who focus on - building and maintaining, network and security systems - producing … and security design works for our customer networks - Provide a technical interface to the client as required - Supporting the design and integration of the SIEM platform - Support customer networks and systems to our rail customers - Work with other teams to improve systems security and monitoring Business Operations Skills - Qualifications ...

Proactive, High-Fidelity Detection Powerhouse. You will have the autonomy to set the direction for the practice, architecting how the team utilises SIEM, EDR & IDS Tools. As the business scales, you will also lead the charge in recruiting and developing a Brand-New Security Engineering Division, moving from a Senior … Engineer to a Department Builder. Skills & Experience for SOC Engineer: SIEM & EDR: Strong Experience Deploying & Optimising Enterprise-Grade SIEM Platforms (specifically Microsoft Sentinel) & EDR solutions. You should be comfortable managing these within Complex, Multi-Tenant Environments. The Engineering Edge: Good Background in Detection Engineering, Custom Rule Creation & Log Orchestration. ...

rollout of hardened security baselines. You'll work closely with SOC, security architecture and incident response teams to integrate solutions into a centralised SIEM/SOC capability and fine-tune detection and response.This is a highly technical, electrofocusing role offering real ownership, autonomy and impact.Key Responsibilities Lead the implementation, configuration … and optimisation of OT security technologies (EDR, ITDR, NDR, ICS monitoring) Integrate OT security tooling with a central SOC/SIEM environment (including alerting, detection and response tuning) Take a threat led approach to security configuration, aligned to MITRE ATT&CK, Cyber Kill Chain and relevant threat intelligence Roll ...

Security Analyst - CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender Our leading global law firm client are currently looking to take on a new Security Analyst (CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender) to join their team … days per week in London and offer a great deal of autonomy and technical exposure. This Security Analyst (CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender) role, will be responsible for the day to day operations of existing security solutions and uses tools to identify ...

while contributing to key projects across the business. The Role You'll provide 2nd line support and play a key role across: Security: Supporting SIEM tools, monitoring alerts, and assisting with security policies Infrastructure: Maintaining Windows Server environments, virtualisation (VMware), and core systems Network: Supporting firewalls, VPNs, DNS/DHCP … line IT Support/Infrastructure role Strong knowledge of Windows Server, O365 & Active Directory Exposure to networking, virtualisation, or security tools (SIEM) A proactive mindset with strong problem-solving skills Why Apply? This role offers real variety and progression, with exposure across: Security Infrastructure Networking Cloud technologies Perfect for someone ...

and prospective clients. Acting as the final escalation point for on-call incidents (rota-based, paid on-call). Supporting service improvement initiatives across SIEM, EDR, email security and associated detection and response tooling. Developing and maintaining customer relationships to promote a partnership between Littlefish and the end client. What … Operations. Previous experience leading or mentoring a technical security team. Strong exposure to customer facing security services and contractual delivery. Hands on experience with SIEM, IDP, ITDR, EDR and email security platforms. Proven ability to mentor analysts at varying levels of experience. Strong understanding of modern cyber threats, attack techniques ...

Analyst - CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender Our leading global law firm client are currently looking to take on a new SOC Analyst (CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender) to join their team on a permanent … days per week in London and offer a great deal of autonomy and technical exposure. This SOC Analyst (CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender) role, will be responsible for the day to day operations of existing security solutions and uses tools to identify ...

part of a collaborative SOC team alongside SOC Engineers and Service Managers. Your day-to-day work will focus on continuous security monitoring using SIEM platforms such as QRadar, Microsoft Sentinel and LogRhythm, identifying and responding to threats, investigating and triaging incidents, and escalating where appropriate. You'll contribute … hybrid role A GRC, policy or assurance-focused position A purely advisory or strategic security role Suitable for candidates without prior SOC or SIEM experience Required skills and experience To be considered, your CV must clearly demonstrate strong evidence of the following: Microsoft Certified: Security Operations Analyst Associate ...