51 to 75 of 206 SIEM Jobs in the UK

owning or implementing a strategy * Strong communication skills * A technical IT background with a good understanding of networking, communication protocols and cloud technologies. * A technical security foundation of utilising SIEM, EDR and vulnerability management tools to facilitate your engagements with the organisation's MSSP What's on Offer * Up to £76,000 per annum * Flexible and hybrid working - 40% of More ❯

owning or implementing a strategy * Strong communication skills* A technical IT background with a good understanding of networking, communication protocols and cloud technologies.* A technical security foundation of utilising SIEM, EDR and vulnerability management tools to facilitate your engagements with the organisation's MSSP What's on Offer * Up to £76,000 per annum* Flexible and hybrid working - 40% of More ❯

in collaboration with technology teams. Respond to incidents alongside the Head of Information Security Work with the MSSP across incident response and proactive monitoring. Maintain and optimise Microsoft Sentinel SIEM, XDR/MDR/EDR solutions, and supporting tools. Track deployment and health of all security products across the business. Stay ahead of emerging threats and evolving technologies. What We More ❯

in collaboration with technology teams. Respond to incidents alongside the Head of Information Security Work with the MSSP across incident response and proactive monitoring. Maintain and optimise Microsoft Sentinel SIEM, XDR/MDR/EDR solutions, and supporting tools. Track deployment and health of all security products across the business. Stay ahead of emerging threats and evolving technologies. What We More ❯

internal and external security assessments and audits - Update and maintain incident response plans, playbooks, and procedures - Provide 3rd-line support to IT colleagues and the wider business Technical Skills: - SIEM and SOAR platforms - Log analytics, rule creation, tuning, and threat hunting - Familiarity with security frameworks - Azure and M365 security configuration and alert investigation - Dashboards and visualisation tools - Firewalls (CheckPoint, VMware More ❯

with internal and external security assessments and audits- Update and maintain incident response plans, playbooks, and procedures- Provide 3rd-line support to IT colleagues and the wider businessTechnical Skills:- SIEM and SOAR platforms- Log analytics, rule creation, tuning, and threat hunting- Familiarity with security frameworks- Azure and M365 security configuration and alert investigation- Dashboards and visualisation tools- Firewalls (CheckPoint, VMware More ❯

DDoS protection, and encryption. Mentor junior engineers, elevate best practices, and help us on our journey to ISO 27001 certification. What You Bring Deep hands-on expertise across EDR, SIEM, NAC, MFA, PAM, and cloud security environments. Proven experience with security frameworks such as ISO 27001, NIST, CIS, and PCI-DSS. Certifications like CISSP, CPSA, or Palo Alto Certified Security More ❯

certifications such as CISSP, TOGAF, CCSP, GCIH or equivalent Strong experience securing Microsoft cloud environments (Azure) design, deployment, configuration and management Broad knowledge of infrastructure and security solutions, including SIEM/SOAR Proven track record designing end-to-end solutions with security embedded across network, infrastructure, access, cloud services, controls and SecOps Experience addressing cloud-specific security challenges, patterns and More ❯

certifications such as CISSP, TOGAF, CCSP, GCIH or equivalent Strong experience securing Microsoft cloud environments (Azure) - design, deployment, configuration and management Broad knowledge of infrastructure and security solutions, including SIEM/SOAR Proven track record designing end-to-end solutions with security Embedded across network, infrastructure, access, cloud services, controls and SecOps Experience addressing cloud-specific security challenges, patterns and More ❯

day-to-day operations of the Counter Threat Unit, ensuring security controls are effectively implemented across infrastructure and cloud environments. Configure, maintain, and optimise security tools and solutions (e.g., SIEM, EDR )to protect enterprise systems. Monitor systems and networks for anomalies, gather and analyse threat intelligence, and contribute to situational awareness. Skills and experience: Minimum 4 years’ experience within IT More ❯

Years Must Have/Mandatory Skills Palo Alto Networks – Firewalls (MUST) Network Security Architecture IAM, MFA, AAA, RBAC, Privilege Access Cloud Security (OCI/Azure/AWS) SIEM/Vulnerability Management/PKI/Cryptography LAN/WAN/DMZ/Routing/Switching/Subnetting Key Responsibilities Design/Architect network security infra solutions like Firewalls, IDPS, Proxy, Load More ❯

technical guidance and training to end users and internal teams on security best practices. Support the installation and configuration of security software and hardware, including firewalls, endpoint protection, and SIEM tools. Ensure compliance with relevant standards and frameworks (e.g., ISO 27001, Cyber Essentials). Mentor and support the growth of aspiring cyber security professionals within the team. Work with 3rdparty More ❯

Incident Response: Oversee the day-to-day operation of security systems and tools, including firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus, anti-malware, SIEM (Security Information and Event Management), vulnerability scanners, and data encryption solutions. Manage vulnerability management programs, including regular scanning, penetration testing, and remediation of identified weaknesses. Lead and manage security incident response, including detection … creating Cyber Security roadmaps. Strong understanding of information security principles, frameworks (e.g., ISO 27001, NIST, Cyber Essentials), and best practices. Hands-on experience with security technologies such as firewalls, SIEM, IDS/IPS, vulnerability scanners, endpoint detection and response (EDR), and identity management solutions. Experience with cloud security (e.g., Azure Security). Proven experience in managing security incidents and conducting More ❯

standard incident response frameworks (e.g., NIST, SANS) Experience with both network-based and host-based threat detection and analysis Proficiency in writing detection queries (Splunk preferred) and working with SIEM/EDR/SOAR tools At least 5 years of experience in Information Security within the financial services sector Strong analytical and communication skills, with the ability to present complex More ❯

malware analysis and reverse engineering. Scripting/programming skills (Python, Bash, PowerShell, etc.). Relevant certifications (e.g., CREST Practitioner Intrusion Analyst, Blue Team Level 1). Exposure to other SIEM platforms like QRadar. Additional Info: Permanent role with a generous benefits package including 25 days annual leave (plus buy/sell options), pension, life assurance, health cash plan, and a More ❯

defence capability. Please note the on-call rota is every 1 in 6 weeks. Responsibilities Cyber Defence authority for real-time monitoring of Element's security platforms such as SIEM and Extended Detection and Response (XDR) Prompt analysis and triage of alerts and security events. Support the Incident Response (IR) team to report potential or actual incidents Conduct proactive Threat More ❯

Design and own the architecture for ServiceNow SecOps modules - including Security Incident Response , Vulnerability Response , Threat Intelligence , and Configuration Compliance . Lead integration of ServiceNow with key cybersecurity tools - SIEM , SOAR , EDR , CMDB , Threat Intelligence platforms , and OT/ICS systems . Collaborate across cybersecurity, IT, engineering, and energy operations to define secure workflows and automation for vulnerability and incident More ❯

prem infrastructure on virtualized platform , networking, and storage. * Ability to produce HLDs and LLDs with clarity and precision. * Excellent communication and stakeholder engagement skills. * Involved with integrating SentinelOne with SIEM/SOAR platforms (e.g., Splunk) and deployment to Windows and RHEL endpoints. Preferred Qualifications: * SentinelOne certifications (e.g., SentinelOne Certified Architect or equivalent). * Scripting knowledge (e.g., PowerShell, Python) for automation More ❯

in Security Architecture. Cloud security architecture experience (AWS, Azure, GCP), multi-cloud preferred. Deep financial services security knowledge and regulatory experience. Expertise in IAM, network, data, application, container security, SIEM, and Zero Trust. DevSecOps and CI/CD security implementation experience. Relevant certifications desirable (CISSP, CCSP, AWS Security Specialty, Azure Security, GCP Security). Desirable Skills Strong communication, leadership, and More ❯

Azure and Microsoft 365 security tooling and cloud security principles. ** Strong understanding of frameworks such as ISO 27001, NIST, and the Well Architected Framework. ** Experience with technologies such as SIEM, DLP, IAM, EDR, WAF, and SASE. ** Ability to communicate complex technical concepts to both technical and non technical audiences. ** Relevant certifications (CISA, CISM, SABSA, TOGAF or similar) are advantageous. Why More ❯

to security by design principles. Implement proactive security measures and controls to prevent security breaches and minimize potential impact, including managing and implementing various security technologies and tools (e.g., SIEM, IDS/IPS, vulnerability scanners). Lead the cloud security strategy, ensuring robust configuration, monitoring, and protection of our client's cloud infrastructure and services. Financial Management and Justification: Develop More ❯

Infrastructure-as-Code (e.g., ARM, Bicep, Terraform). • Experience implementing zero-trust architectures and identity-driven security models. • Knowledge of monitoring platforms such as Azure Monitor, Sentinel, or enterprise SIEM/SOAR tools. • Experience with backup, DR, and business continuity solutions. • Certification in Microsoft, Azure, or ITIL. Personal Attributes • Clear communicator with the ability to translate technical issues into business More ❯

or incident response. Strong problem-solving skills and willingness to learn. Nice to Have Exposure to containerization (Docker, Kubernetes). Knowledge of monitoring tools (Grafana, Datadog). Experience with SIEM/SOC tools or security automation. Cloud certifications or security training (AWS, GCP, Azure, or similar). To find out more about Computer Futures please visit www.computerfutures.com Computer Futures, a More ❯

Lead Implementer. * Endpoint Security: EDR solutions and endpoint management platforms. * Microsoft 365/Entra ID: Identity protection, Conditional Access, MFA, and Privileged Identity Management (PIM). * Security Monitoring & Operations: SIEM platforms and SOC processes. * Network Security: Firewalls, web application firewalls, and VPN technologies. * Encryption: PKI and data encryption for both data at rest and in transit. * Email Security: Mimecast and More ❯

handling, remediation, and reporting * Proficiency in Microsoft Office products * Experience in securing AI-driven systems and leveraging AI tools. * Familiar with Microsoft Defender for Endpoint, Thales, CrowdStrike Falcon and SIEM, CyberArk, Rapid7, and Palo Alto products is a plus Lead Information Security Engineer In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon More ❯