351 to 375 of 1,584 SIEM Jobs in the UK

you work with others. Required Skills and Experience Extensive experience of Security Incident Handling & Security Incident Response (minimum of 5 years). Experience in ruling and tuning Enterprise level SIEM tools. Extensive operations experience (minimum of 3+ years). Extensive knowledge of Security including types and methods of cyber-attack and underlying network protocols. Extensive experience escalating incidents to, and More ❯

for OT infrastructure. Execute Proof of Concepts for OT Security monitoring tools (e.g. OT IDS tools). Design and facilitate the implementation and integration of OT Security tools with SIEM for OT SOC. Translate personas, user journeys, and requirements from client business stakeholders into relevant security solutions. Team Leadership and Development: Assist in the recruitment, training, and development of security More ❯

new capabilities and technologies for identification, prevention, detection and recovery of cyber incidents. What will you bring? At least 12 months experience in a SOC environment (or equivalent) using SIEM/EDR Strong time-management and organizational skills. Able to build and maintain strong relationships with clients, becoming a trusted advisor. Strong understanding of foundational IT and networking concepts Confident … writing SIEM queries and performing threat-hunting Excellent communication skills, both written and oral, to a range of audiences, including senior management. Responsibilities Compiling and presenting high quality monthly reports for our clients, combining data from multiple security platforms and providing expert insight and recommendations. Assisting Level 1 analysts with alert triage and escalation Creating and improving report templates & components … in-line with feedback from clients. Assisting with training and support for our junior analysts Proactively suggesting improvements for existing SIEM alarms and develop new use-cases based on threat intelligence and client threat models. Creating and improving SOC dashboards to give real time visibility for clients and stakeholders Onboarding new clients, including deploying technical resources, liaising with other engineers More ❯

What will you need to do it? Technical background, willingness to learn, and experience within a Security Operations Centre (SOC). Understanding of SOC tools and technologies, such as SIEM, IDS/IPS, EDR and threat intelligence platforms. Proven experience of assessing maturity, managing SOC services and delivering improvements within a SOC environment. Experience bringing a technology perspective to a More ❯

NIST, ISO 27001, ISA/IEC 62443, etc). An understanding of cloud-native infrastructure (e.g. microservices, containerisation, Kubernetes, serverless computing). An understanding and/or experience with SIEM, SOAR and EDR. Knowledge and/or understanding of data and analytics in terms of cybersecurity implications. Missing skills? Let us be the judge! BMT are passionate about people; we More ❯

Engineering Malware Analysis (Static and Dynamic) Threat Hunting and Threat Intelligence (MITRE ATT&CK) Penetration Testing Security Automation (SOAR) It would help if you had experience with the following: SIEM tools (Microsoft Sentinel, Splunk, ELK, Siemplify) Vulnerability Management (Qualys, Nessus, Nexpose) Anti-Malware/EDR Software (Carbon Black, Microsoft Defender ATP, FireEye, CrowdStrike) Programming (Python, or other languages) What you More ❯

teamwork! This role is responsible for continuing to advance the buildout of Addepar’s SOC and incident response functions, interfacing closely with our MDR provider, maintaining and improving our SIEM platform, and acting as incident commander for security-related incidents. What You’ll Do Respond to security alerts and run threat hunting exercises. Help develop security alerts with our existing … incident response and investigation experience. Bachelor’s degree or higher. Computer Science or Engineering related education preferred. Experience with investigating using a wide variety of detective technologies such as SIEM, SOAR, packet capture analysis, host forensics and memory analysis tools. Proficient in one or more programming languages, including at least one scripting language. Ability to build strong relationships and work More ❯

policies. Collaborate with infrastructure, network, cloud, and application teams to embed security by design in the migration process. Oversee security tool integration, including and access management, logging/monitoring (SIEM), encryption, and vulnerability management. Review and Lead Security Tooling modernisation i.e. leveraging Microsoft capabilities Provide guidance on the secure decommissioning of legacy systems and data destruction. Required Skills and Qualifications More ❯

Collaborate with infrastructure, network, cloud, and application teams to embed security by design in the migration process Oversee security tool integration, including identity and access management, logging/monitoring (SIEM), encryption, and vulnerability management Your skillset may include: Proven experience as a Security Architect supporting major infrastructure transformation or datacentre exit programs Strong understanding of enterprise security architecture, cloud security More ❯

features. Direct message the job poster from Wipro Talent Acquisition Lead - Wipro UK & Ireland Job Description: SOC Analyst – OT Security Location: London Skills: Sentinel, Clarity, ICS, SCADA, CNI, SecOps, SIEM The Company: Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients’ most complex digital transformation … OT environments. You will be leading the SOC team to ensure appropriate prioritisation and remediation of OT alerts and incidents. Responsibilities: Monitor, analyse and optimise SecOps tool performance (e.g. SIEM, PAM), identify potential issues, and recommend and implement proactive solutions. Develop and maintain SecOps documentation, policies, and procedures. Implementing security controls that are proportionate to the risk. Investigate security alerts … from our SIEM tool and 3rd party MSSPs, and to provide appropriate incident response actions. Support the Cyber Security Operations Lead for security and privacy incidents, triaging events and performing root cause analysis to understand how incidents arise. Acting as the key contact and escalation point for the SOC and Clients Digital teams. Maintain cyber security solutions with existing systems More ❯

learning analytics and Security Automation Orchestration and Response (SOAR). We are looking for someone who has: Exposure to key security technologies, such as IDS, Web content filters, AV, SIEM, Vulnerability Management, Firewalls, and awareness of their purpose in a layered security approach alongside analysing their outputs for security anomaly detection. In-depth understanding of the cyber threat landscape, advanced More ❯

the SOC in key meetings and internal stakeholder engagements Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment Qualified at SOC Level 2 Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the MITRE ATT&CK Framework for detection and threat analysis Experience of static malware analysis and reverse engineering (desirable) Scripting … or programming with Python, Perl, Bash, PowerShell or C++ (desirable but not essential) SIEM technologies knowledge such as QRadar (desirable but not essential) In-depth understanding of client-server applications and multi-tier web environments Knowledge of relational databases, firewalls, VPNs, enterprise AntiVirus solutions Full details of the Cyber Security SOC Lead role are available upon application. To apply, please More ❯

of networking concepts and how they intersect with modern security architectures Exposure to automation/scripting in PowerShell or Python for infrastructure or policy workflows Experience deploying or integrating SIEM and EDR tools, as well as conducting incident response (Preferred) Familiarity with security frameworks such as NIST 800-53, CIS Benchmarks, or ISO 27001 (Preferred) Industry certifications such as AZ More ❯

of networking concepts and how they intersect with modern security architectures Exposure to automation/scripting in PowerShell or Python for infrastructure or policy workflows Experience deploying or integrating SIEM and EDR tools, as well as conducting incident response (Preferred) Familiarity with security frameworks such as NIST 800-53, CIS Benchmarks, or ISO 27001 (Preferred) Industry certifications such as AZ More ❯

of networking concepts and how they intersect with modern security architectures Exposure to automation/scripting in PowerShell or Python for infrastructure or policy workflows Experience deploying or integrating SIEM and EDR tools, as well as conducting incident response (Preferred) Familiarity with security frameworks such as NIST 800-53, CIS Benchmarks, or ISO 27001 (Preferred) Industry certifications such as AZ More ❯

Identify and design security solutions. Assess potential cyber risks, evaluate their impact, and develop mitigation strategies. Collaborate with Security Architecture to advise on security solution design for SOC/SIEM solutions. Formulate security strategies, applying technical and management principles creatively. What you’ll bring: Proficiency in Splunk is essential. Candidates with either the Splunk Cloud Certified Admin or Splunk Enterprise More ❯

management. Experience with network security technologies, including firewalls (Palo Alto, CheckPoint), IDS/IPS, NDR, switch/router ACLs, NAC solutions, IPSec/TLS VPNs, WAFs, email security, and SIEM logging/alerting. Programming and Automation: Proficiency in a modern programming language (e.g., Python). Experience with IaC practices, GitOps workflows, and cloud automation best practices. Proven ability to integrate More ❯

training. Experience in cybersecurity within higher education or a similar sector. Familiarity with business continuity planning and disaster recovery. Proficiency in a range of security tools and technologies, including SIEM, firewalls, and VPNs. This role offers a dynamic working environment with opportunities for professional growth and the chance to shape the cybersecurity strategy of a major institution. To apply, please More ❯

Experience: Experience in cybersecurity within higher education or a similar sector. Familiarity with business continuity planning and disaster recovery. Proficiency in a range of security tools and technologies, including SIEM, firewalls, and VPNs. This role offers a dynamic working environment with opportunities for professional growth and the chance to shape the cybersecurity strategy of a major institution. To apply, please More ❯

Experience: Experience in cybersecurity within higher education or a similar sector. Familiarity with business continuity planning and disaster recovery. Proficiency in a range of security tools and technologies, including SIEM, firewalls, and VPNs. This role offers a dynamic working environment with opportunities for professional growth and the chance to shape the cybersecurity strategy of a major institution. To apply, please More ❯

and Security Operations leaders at a wide range of organisations, from small think tanks to global banks, and help them assess, enhance, and transform SecOps capabilities. This could include SIEM & SOAR technology change, EDR threat hunting process design, or SOC operating model improvement. Your role will span project delivery, technical leadership, and the opportunity to source and develop new projects. More ❯

direct interaction with senior staff. Ability to convey complex information to non-technical audiences. Self-motivated with a positive mindset and a security-as-an-enabler philosophy. Knowledge of SIEM tools, including writing and developing advanced hunting queries. Experience Needed to Fulfill the Role: Extensive experience managing serious Cyber Incidents as a Digital Forensic Incident Responder. Proven success operating within More ❯

fields or certifications like CISSP, CISM, GIAC Strong analytical, problem-solving, and communication skills Ability to work under pressure and convey technical info to non-technical audiences Knowledge of SIEM tools and advanced hunting queries Experience Needed: Managing serious cyber incidents as a digital forensic incident responder Working within large, complex enterprise environments Understanding of security monitoring, intrusion detection, firewalls More ❯

Security Operations Analyst must be comfortable working as part of a rotating shift pattern. What will you be doing? Perform forensic analysis and gather evidence, correlation monitoring using multiple SIEM technologies. Conduct security assessments regularly to identify vulnerabilities and perform risk analysis, analysing breaches to reach the root cause. Generate reports for IT administrators, business managers, and security leaders to More ❯

decision-making skills. Cultural sensitivity and effective communication skills, including with non-technical audiences. Self-motivated with a positive attitude, committed to security as a business enabler. Knowledge of SIEM tools and advanced hunting queries. Experience Needed: Managing serious cyber incidents as a digital forensic incident responder. Operating within large, complex enterprise environments. Understanding of security monitoring, intrusion detection, firewalls More ❯