51 to 75 of 273 SIEM Jobs in the UK

scripting such as Python, Perl, Bash, PowerShell, C++. CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar. If you are interested in this role but not sure if your skills and experience ...

services, healthcare, government, critical infrastructure). * Prior participation in or leadership of real-world cyber incident response activities. * Familiarity with identity governance, EDR platforms, SIEM tooling, and cloud security architecture. Why This Engagement Matters The Cyber Incident Response Preparation Consultant plays a crucial role in elevating the organisation's cyber ...

risk, not just control statements or policies Confidence working with non-security teams to challenge assumptions and improve outcomes What You’ll Work With SIEM tooling including Microsoft Sentinel and Log360 Cyber risk assessments across infrastructure, networks, systems and a wide variety of software applications Network architecture, firewall rules, segmentation ...

Security Engineer - SIEM, KQL- sought by investment bank based in London. *Inside IR35 - 3 days a week on-site** Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and ...

Microsoft 365 Security Stack, including: Microsoft Entra ID (Identity & Access Management) Microsoft Defender XDR (Email, Devices, Apps) Microsoft Purview (Data Governance & Compliance) Microsoft Sentinel (SIEM & Threat Response) This is a hands‐on role covering both project work and BAU, giving you the chance to contribute to key security initiatives while ...

and OWASP principles. Expert in executing cloud security solutions, particularly for identity management, networking, and encryption. Possesses solid knowledge of system logging, monitoring, SIEM technologies, threat detection, and public key infrastructures (PKI). Understands cyber risk management, threat intelligence, and emerging governance practices. Experienced in driving security transformation initiatives and ...

Azure and O365 Familiarity with DLP incident handling, remediation, and reporting Familiarity with security tools such as Microsoft Defender for Endpoint, Thales, CrowdStrike Falcon, SIEM, CyberArk, Rapid7, and Palo Alto is a plus Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates ...

regulated or highly secure enterprise environments Security or architecture certifications (e.g. CISSP, CCSP, TOGAF, AWS/Azure Security Specialty) Familiarity with security monitoring, logging, SIEM, and observability tools Experience embedding security controls into DevOps and SRE practices Reasonable Adjustments: Respect and equality are core values to us. We are proud ...

Engineer (ACE) Experience with cloud platforms (Azure, AWS, GCP) Exposure to DevSecOps tools, CI/CD pipelines, or Infrastructure-as-Code (IaC) Experience with SIEM or monitoring tools ...

Expert knowledge of at least one DSPM platform: Varonis, Cyera, BigID, or similar Strong hands-on experience across DLP, Data Privacy, DSPM/CSPM, SIEM, and vulnerability management Proficiency with Helm, Kubernetes/OpenShift, Docker, and multi-environment deployments Experience scanning structured/unstructured data sources (SMB, Confluence, Jira) Strong ...

solutions (MSP environment highly desirable). Deep product expertise in at least one area: Microsoft 365/Azure, cloud migration, cyber security (firewalls, EDR, SIEM), backup/DR, network infrastructure, or managed services. Proven ability to translate technical capabilities into business value for non-technical audiences. Understanding of the competitive ...

solutions (MSP environment highly desirable). Deep product expertise in at least one area: Microsoft 365/Azure, cloud migration, cyber security (firewalls, EDR, SIEM), backup/DR, network infrastructure, or managed services. Proven ability to translate technical capabilities into business value for non-technical audiences. Understanding of the competitive ...

Your Technical Background You'll bring solid hands-on experience across infrastructure and gateway environments, including: Infrastructure VMware/vSphere RHEL & Windows Server Trellix SIEM platforms Microsoft Stack Active Directory DNS RDS Networking Citrix NetScaler Wireshark Storage NetApp SAN NAS Backup technologies Security & Gateway Gateway appliances and software PKI management ...

strengthen observability. Collaboration & Integration Work with cloud, security, application, and operations teams to align monitoring with business needs. Integrate logging and monitoring with SIEM/SOAR and security tools for detection and response. Participate in incident reviews and help improve platform reliability. Documentation & Governance Create runbooks, onboarding guides, data dictionaries ...

Indicators of Compromise (IOCs) and adversary TTPs Leverage threat intelligence feeds, OSINT, and commercial platforms to enrich detection Develop and maintain detection rules across SIEM and EDR platforms Threat Intelligence Management Collect, validate, and analyse threat data from multiple sources Monitor emerging threats, vulnerabilities, and attack trends Produce high-quality ...

their vision for the future. Location: Hybrid, London office 2x a week, 3 days from home. Key Responsibilities Monitor and analyse alerts from SIEM, EDR, firewalls, and other security platforms Lead and coordinate incident response activities Manage security projects including DPIAs, supplier assurance, penetration testing, and remediation Support evaluation and … Essential Experience & Knowledge Experience in Security Operations, Incident Response, or similar role Strong understanding of networking, Windows/Linux, and cybersecurity fundamentals Experience with SIEM (e.g., Sentinel, Splunk), EDR tools, and vulnerability platforms Understanding of security frameworks (ISO 27001, NIST, CIS) Working knowledge of Microsoft InTune Familiarity with GDPR and ...

intelligence Responsible for providing security expertise to escalated incidents Act as the incident handler for P1/P2 incidents Provide and support In-depth SIEM and Incident notification toolset administration and configuration Fully utilise threat intelligence capabilities for proactive threat hunting Responsible for providing communication directly with CyberClans’ customers regarding … lines including threat hunting, incident response and incident investigation. Contribute to the design and development of defense and response strategies, knowledgebase and playbooks. Monitoring SIEM alerts effectively to minimize downtime and restore services. Ensure investigation steps are clearly documented and accurately escalated when needed. Responsible for producing and maintaining documentation ...

and resilient technology estate. You will also contribute to enhancing identity security, infrastructure protection, awareness initiatives, and the onboarding of systems to SOC/SIEM tooling. This role is ideal for someone with strong technical knowledge, excellent communication skills and a passion for defending large-scale environments from emerging threats. … gaps and recommending mitigating actions. Support cyber incident response processes and manage related tickets (ServiceNow). Onboard systems and log sources to SOC/SIEM; validate SIEM-generated alerts. Implement vulnerability scanning and coordinate corrective actions. Produce clear reports on emerging risks and security posture. Support governance, compliance, training and ...

Microsoft 365, Azure), and oversee patch management, disaster recovery, and business continuity testing Manage and oversee a Cyber Security Analyst Provide technical oversight across SIEM, firewalls, endpoint protection, and IAM Monitor systems for risks, including data breaches and gaps in security mechanisms, and implement corrective measures Develop and apply ...

logs and incident investigations. Desirable Experience Experience with Cloud Security Posture Management (CSPM) or SaaS Security Posture Management (SSPM) tools. Familiarity with CrowdStrike or SIEM platforms. Experience improving enterprise security posture within cloud or SSE environments. ...

loud Security Engineer (Zscaler SSE) . Experience with Cloud Security Posture Management (CSPM) or SaaS Security Posture Management (SSPM) tools. Familiarity with CrowdStrike or SIEM platforms. Experience improving enterprise security posture within cloud or SSE environments. ...

integration, LDAP directory structures, and directory management/maintenance Resource management of server platforms and optimisation of system performance Trellix/McAfee security platforms SIEM integration , including syslog creation, forwarding and reporting pipelines Email security standards and protocols Linux & Platform Engineering Experience working within Red Hat Enterprise Linux environments Ability ...

ISO27001, GRC) and technical cloud implementation. Key Responsibilities: Design & Strategy: Define security architectures, infrastructure cost models, and roadmaps. Technical Leadership: Oversee requirements for Firewalls, SIEM, DLP, PKI, and Cloud Controls (Azure/AWS). Stakeholder Management: Work directly with clients to negotiate SLAs and present technical proposals to executives. Requirements ...

environments Strong documentation capability (HLD/LLD + operational artefacts) Nice to Have: NSX PowerShell Policy modules Terraform/Ansible automation exposure VMware certifications SIEM/logging integrations ...

1.4m revenue/£580k gross profit (with realistic ramp-up) 🧠 What You'll Bring Proven experience selling Microsoft Security solutions , such as: Microsoft Sentinel (SIEM) Microsoft Defender XDR (Endpoint, Email, Identity) Microsoft Intune/M365 Defender suite Entra ID/Azure AD (Identity & Access Management) Deep understanding of IAM , conditional ...