301 to 325 of 607 SIEM Jobs in the UK

and driving continuous improvement. Key Responsibilities Lead the design and implementation of Azure security best practices, policies, and controls. Manage and optimise Microsoft Sentinel SIEM, including rule creation, use-case development, automation, and threat hunting. Oversee vulnerability management activities using Tenable, ensuring timely identification, prioritisation, and remediation of risks. Support … Experience Required Strong hands-on experience with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io/Tenable.sc). Knowledge of industry security frameworks ...

and driving continuous improvement. Key Responsibilities Lead the design and implementation of Azure security best practices, policies, and controls. Manage and optimise Microsoft Sentinel SIEM, including rule creation, use-case development, automation, and threat hunting. Oversee vulnerability management activities using Tenable, ensuring timely identification, prioritisation, and remediation of risks. Support … Experience Required Strong hands-on experience with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io/Tenable.sc). Knowledge of industry security frameworks ...

strong understanding of how warehouses operate and how security needs to align with operational processes. Key focus areas: Lead senior‐level Incident Response (SIEM/SOAR) Act as escalation point for complex incidents Shape OT‐aligned security controls and playbooks Collaborate closely with warehouse and logistics teams Drive preventative security ...

strong understanding of how warehouses operate and how security needs to align with operational processes. Key focus areas: Lead senior-level Incident Response (SIEM/SOAR) Act as escalation point for complex incidents Shape OT-aligned security controls and playbooks Collaborate closely with warehouse and logistics teams Drive preventative security ...

/Defender, Intune, vuln scanning/patch baselines Engineer network security: firewalls, segmentation, VPN, ZTNA/SASE Configure and integrate Sentinel/SIEM, alerting, and operational runbooks for BAU handover Ideal Background Strong hands-on cybersecurity engineering background (7+ years ideal) Proven delivery across M365 Security (Defender, Intune, Entra ...

/Defender, Intune, vuln scanning/patch baselines Engineer network security: firewalls, segmentation, VPN, ZTNA/SASE Configure and integrate Sentinel/SIEM, alerting, and operational runbooks for BAU handover Ideal Background Strong hands-on cybersecurity engineering background (7+ years ideal) Proven delivery across M365 Security (Defender, Intune, Entra ...

impactful Required Technical Experience Proven experience as a Security SME/Security Architect in complex enterprise environments Deep hands-on expertise with: Microsoft Sentinel (SIEM/SOAR) Microsoft Defender for Endpoint & Servers Microsoft Defender for Identity Microsoft Defender for Cloud Apps (CASB) Microsoft Defender for Office 365 Strong understanding ...

operation of security systems and tools, including firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus, anti-malware, SIEM (Security Information and Event Management), vulnerability scanners, and data encryption solutions. Manage vulnerability management programs, including regular scanning, penetration testing, and remediation of identified weaknesses. Lead and manage security incident … understanding of information security principles, frameworks (e.g., ISO 27001, NIST, Cyber Essentials), and best practices. Hands-on experience with security technologies such as firewalls, SIEM, IDS/IPS, vulnerability scanners, endpoint detection and response (EDR), and identity management solutions. Experience with cloud security (e.g., Azure Security). Proven experience ...

Delivery Qualifications: CISMP, CompTIA Security+ or other technical certifications desired Experience: 3+ years experience in SOC, or related technical field Understanding of the following: SIEM Cloud Computing Security Incident Management Networking Threat Intelligence Information Security Phishing, Ransomware and other key threats IDAM (Identity and Access Mgmt) JML (Joiners, Movers and ...

Delivery Qualifications: CISMP, CompTIA Security+ or other technical certifications desired Experience: 3+ years experience in SOC, or related technical field Understanding of the following: SIEM Cloud Computing Security Incident Management Networking Threat Intelligence Information Security Phishing, Ransomware and other key threats IDAM (Identity and Access Mgmt) JML (Joiners, Movers and ...

round-the-clock SOC service provision Qualifications Current Developed Vetting (DV) clearance is a mandatory requirement Experience needed Use and operation of Security Information and Event Management platforms Familiarity with cloud-based infrastructure and services Handling and coordination of security incidents from detection through resolution Identity and Access Management frameworks ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

Services VMware: vCenter, ESXi, vSAN, Horizon, DRS, vDS, Aria Identity & Security: Entra ID, Okta, AD FS, Conditional Access, Mimecast, CrowdStrike Infrastructure & Monitoring: Veeam, ManageEngine, SIEM, SNMP, Syslog Networking & Email: DNS, DNSSEC, SPF, DKIM, DMARC, PKI Please apply ...

Services VMware: vCenter, ESXi, vSAN, Horizon, DRS, vDS, Aria Identity & Security: Entra ID, Okta, AD FS, Conditional Access, Mimecast, CrowdStrike Infrastructure & Monitoring: Veeam, ManageEngine, SIEM, SNMP, Syslog Networking & Email: DNS, DNSSEC, SPF, DKIM, DMARC, PKI Please apply ...

/asset records. • Lead root‐cause analysis and continuous improvement activities. 4. Security, Compliance & Pharma Requirements • Implement and maintain security controls: hardening, MFA, logging, SIEM, privileged access and patching. • Ensure infrastructure changes comply with GxP, validation, MHRA, audit and data protection requirements. • Own and regularly test backup and disaster recovery ...

/asset records. • Lead root‐cause analysis and continuous improvement activities. 4. Security, Compliance & Pharma Requirements • Implement and maintain security controls: hardening, MFA, logging, SIEM, privileged access and patching. • Ensure infrastructure changes comply with GxP, validation, MHRA, audit and data protection requirements. • Own and regularly test backup and disaster recovery ...

/asset records. • Lead root‐cause analysis and continuous improvement activities. 4. Security, Compliance & Pharma Requirements • Implement and maintain security controls: hardening, MFA, logging, SIEM, privileged access and patching. • Ensure infrastructure changes comply with GxP, validation, MHRA, audit and data protection requirements. • Own and regularly test backup and disaster recovery ...

and closure of security cases, ensuring timely implementation of corrective actions. Develop and maintain threat scenarios to validate detection and response across SOC, EDR, SIEM, and XDR platforms. Translate threat intelligence into testable hypotheses and simulation exercises in collaboration with Threat Intelligence teams. Utilise adversarial emulation tools (Caldera, Atomic ...

and closure of security cases, ensuring timely implementation of corrective actions. Develop and maintain threat scenarios to validate detection and response across SOC, EDR, SIEM, and XDR platforms. Translate threat intelligence into testable hypotheses and simulation exercises in collaboration with Threat Intelligence teams. Utilise adversarial emulation tools (Caldera, Atomic ...

Level 3 Analyst North West/Hybrid CrowdStrike LogScale SIEM Incident Response Threat Hunting The Company A rapidly growing UK-based cyber security provider is expanding its Security Operations Centre following continued demand for advanced MDR, SOC, and Incident Response services click apply for full job details ...

MITRE ATT&CK Framework. Hands-on technical knowledge in cyber detection engineering, security tools, and infrastructure. Skilled in Detection-as-Code and experienced with SIEM query languages. Confident communicator with experience working alongside global technical teams and senior stakeholders. Proactive, collaborative, and driven by curiosity and continuous improvement. ...

Contact Centre o Employee Experience: Endpoint, M365 and Viva Cloud Native Platforms: o Azure, AWS and Private Cloud Security Practice: o M365, Fortinet, SOC, SIEM, etc. Software Engineering: o AppDev and Data & AI This should be combined with experience and high-level understanding of large-scale cloud solutions architecture, novel ...

responsible for monitoring systems, identifying potential threats, and ensuring rapid incident response to safeguard critical services. Responsibilities Keep a close watch on SIEM platforms and other monitoring tools to spot unusual activity. Evaluate and triage alerts to separate genuine incidents from false positives. Take immediate containment steps and escalate confirmed ...

implementation of network security controls following approved designs Document network security configurations and change procedures Security Technology Solution Design Design security technology solutions including SIEM, endpoint protection, and monitoring platforms Create technical specifications for security tool deployments under supervision Support proof of concept activities for security technology evaluations Design integration … tree, port security Security platforms: Palo Alto, Cisco ASA/Firepower, Fortinet, Check Point Virtualization: VMware NSX, network virtualization, micro-segmentation Security Technology Knowledge SIEM platforms: Splunk, QRadar, Azure Sentinel, ELK Stack Endpoint protection: CrowdStrike, Carbon Black, Microsoft Defender Network monitoring: NetFlow, IPFIX, packet capture, network behavior analysis Identity and ...