Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and stakeholders. Experience with integrating SailPoint solution with other security tools and technologies, including SIEMand PAM solutions is a plus. Experience working with Scrum/Agile Methodologies. Experience working on multi-cultural environment. Office presence according to policies is expected. Demonstrated ability to work More ❯
concepts. Working knowledge of Hyper-V, Veeam, WSUS, certificate services, and endpoint management tools (e.g. ManageEngine). Familiarity with security tools and concepts, such as endpoint protection, email filtering, SIEM/monitoring, or extended AV tools. Understanding of network fundamentals (TCP/IP, VLANs, firewalls) and general troubleshooting. Desirable Experience using collaboration and tracking tools like Jira and Confluence. Experience More ❯
well as support Senior Analysts in closing incidents when called upon. Qualifications and Experience At least 5 years' experience in Incident Management, SecOps or IT Security Experience of reviewing SIEM alerts and responding to them appropriately Experience working through cyber investigations independently Proven experience of Splunk or Sentinel Worked with EDR systems such as Defender or Symantec Knowledge of KQL More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Precise Placements
escalated incidents and mentor junior engineers. Implement and maintain container platforms (Docker, Kubernetes) and automation frameworks (Terraform, Ansible, CI/CD). Apply advanced security practices including zero-trust, SIEM integration and EDR. Prepare and maintain technical documentation, policies, and procedures. Support enterprise backup, disaster recovery and business continuity capabilities. Contribute to change management, incident management, and occasional out-of More ❯
Hemel Hempstead, Hertfordshire, South East, United Kingdom
Sopra Steria
engineering. DV Clearance. Programming and scripting such as Python, Perl, Bash, PowerShell, C++. CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar. If you are interested in this role but not sure if your skills and experience are exactly what were looking More ❯
Employment Type: Permanent
Salary: 25 days holidays, 6% Contributory pension, 4 x life Insurance
Power Automate and CI/CD pipelines. Knowledge of disaster recovery and business continuity planning. Experience with storage solutions and playbook maintenance. Experience with Microsoft Defender, Sentinel or equivalent SIEM tools, RBAC, PIM, and awareness of ISO 27001/Cyber Essentials. Familiarity with IAM, PAM, XDR, and GRC tools. Proficient in Microsoft 365, Azure, Entra, SharePoint, Exchange, Purview, Intune, Teams More ❯
position will be responsible for developing the strategy for the Detection Engineering program and establishing metrics to demonstrate continuous improvement. The ideal candidate will possess expert-level knowledge in SIEM implementation and log ingestion, SOAR, Incident Response, and Threat Intelligence that will be data-driven with strong verbal, written communication, and leadership skills. Cybersecurity Detection Engineering: Define detection engineering strategy … roadmap, and objectives to achieve. Design and implement advanced threat detection techniques using tools such as SIEM, EDR, NDR, and SOAR platforms. Develop innovative custom detection rules and automated remediation, playbooks, and alerts tailored to the organization's threat landscape for enterprise and customer security. Leverage industry standard MITRE frameworks to identify detection coverage and close gaps. Monitor, optimize, and … the most efficient and effective manner. Performs attack simulation testing to validate efficacy of use cases and purple teaming exercises collaborating with the Vulnerability Mgmt team. Manages and maintains SIEM/Data Lake data managementand log ingestion infrastructure in collaboration with Cyber Defense Engineering. Evaluate, validate, tune, and sunset where necessary detection capabilities Maintains operational guidelines, diagrams, and documentation More ❯
for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident managementand demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities Possess a deep technical … knowledge in Security Incident andEventManagement (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) Experience in security operations design, engineering and/or analysis and investigations, ideally in complex environments, with securityevent correlations More ❯
for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident managementand demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities Possess a deep technical … knowledge in Security Incident andEventManagement (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) Experience in security operations design, engineering and/or analysis and investigations, ideally in complex environments, with securityevent correlations More ❯
for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident managementand demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities Possess a deep technical … knowledge in Security Incident andEventManagement (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) Experience in security operations design, engineering and/or analysis and investigations, ideally in complex environments, with securityevent correlations More ❯
designing and delivering UKAEA's greenfield Identity and Access Management (IAM) and Privileged Access Management (PAM) solutions, while contributing to the development of the SecurityInformationandEventManagement (SIEM) andSecurity Operations Centre (SOC) capabilities. You will lead the IAM/PAM workstreams and provide specialist input into SIEM/SOC implementation, ensuring all solutions align with secure-by … PAM telemetry into SIEM tooling for enhanced visibility and detection. Provide technical oversight and assurance when engaging Managed Service Providers (MSPs) or third-party vendors. Support the development and implementation of SIEM/SOC capabilities, assisting in log source onboarding, alert tuning, and incident response improvements. Mentor and train junior team members, building internal capability in identity and access management. … SC-level national security clearance Desirable o At least a HND in InformationSecurity, Computer Science, or a related STEM field, or equivalent experience. Degree Preferred o Understanding of SIEM/SOC integration and the relationship between IAM telemetry andsecurity monitoring. o Familiarity with ITSM workflows and change control procedures. o Experience conducting security risk assessments for third-party More ❯
designing and delivering UKAEA's greenfield Identity and Access Management (IAM) and Privileged Access Management (PAM) solutions, while contributing to the development of the SecurityInformationandEventManagement (SIEM) andSecurity Operations Centre (SOC) capabilities. You will lead the IAM/PAM workstreams and provide specialist input into SIEM/SOC implementation, ensuring all solutions align with secure-by … PAM telemetry into SIEM tooling for enhanced visibility and detection. Provide technical oversight and assurance when engaging Managed Service Providers (MSPs) or third-party vendors. Support the development and implementation of SIEM/SOC capabilities, assisting in log source onboarding, alert tuning, and incident response improvements. Mentor and train junior team members, building internal capability in identity and access management. … SC-level national security clearance Desirable o At least a HND in InformationSecurity, Computer Science, or a related STEM field, or equivalent experience. Degree Preferred o Understanding of SIEM/SOC integration and the relationship between IAM telemetry andsecurity monitoring. o Familiarity with ITSM workflows and change control procedures. o Experience conducting security risk assessments for third-party More ❯
verbal communication, with a positive and “can do” approach to their work. Nice to Have: Working knowledge of hyperscale cloud andsecurity ecosystems (e.g., AWS/Azure/GCP; SIEM/EDR/IAM tooling) and cloud commercials (committed spend, RIs/Savings Plans, unit-based pricing) – willingness to learn the specifics is essential. CIPS or equivalent; experience with FinOps More ❯
Huntingdon, Cambridgeshire, East Anglia, United Kingdom Hybrid / WFH Options
Leidos Innovations UK Limited
AS environments Technology skills/Experience Understanding of principles of network and boundary protection technologies (firewalls, mail gateways, load balancers, antivirus, IPS, IDS, Diodes) Understanding of Protective Monitoring systems (SIEM/SOC) and the principles of their deployment. Understanding of authentication and authorisation technologies (SAML, LDAP, PKI, etc) Understanding of encryption and protocols and structures in support of deployment, e.g. More ❯
South West London, London, England, United Kingdom
Robert Half
legal teams to embed security best practices into all new projects, processes, and technology implementations. Manage the security technology stack and infrastructure, evaluating and implementing new security tools (e.g., SIEM, EDR, vulnerability scanners) to improve efficiency and capability. Manage the Cyber Security budget and all security-related vendor relationships and contracts. Your Profile The ideal candidate will have worked in More ❯
and attention to detail. Service Architecture: Experience in design, implementation and costing of managed security solutions, preferably in the area of Managed Detection and Response (MDR) and/or SIEM/SOAR/SOC. Network: The candidate has an extensive network in the cybersecurity industry. Willingness to travel: The role requires sporadic travel activities for partner as well as internal More ❯
energy, media & entertainment, or manufacturing. Hands-on technical expertise in building security capabilities in code, deploying infrastructure as code, and implementing enterprise security solutions (e.g. WAF, IPS, Anti-DDOS, SIEM) Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status. Our inclusive culture empowers Amazonians to deliver More ❯
SOC initiatives What we’re looking for Strong background in cyber security within a SOC environment Hands-on knowledge across network security, infrastructure, operating systems, and applications Experience with SIEM tools and/or packet capture technologies Clear understanding of the OSI model and key protocols (DNS, HTTP/S, SSL, SMTP, FTP/S, LDAP/S) Strong communication More ❯
Sector. Key Requirements: Proven experience working within SOC management, within Energy/Construction/Utilities Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC/SIEM/XDR). Strong working knowledge of M365 security features. Familiarity with cloud platforms, in particular Azure and/or AWS. Ability to effectively communicate SOC value to stakeholders through More ❯
Employment Type: Contract
Rate: £600.0 - £800.0 per day + up to £800 per day (Inside IR35)
Sector. Key Requirements: Proven experience working within SOC management, within Energy/Construction/Utilities Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC/SIEM/XDR). Strong working knowledge of M365 security features. Familiarity with cloud platforms, in particular Azure and/or AWS. Ability to effectively communicate SOC value to stakeholders through More ❯
modelling, risk assessments, and vulnerability management GCP security tooling (Security Command Center, Cloud Armor, etc.) CI/CD pipeline security integration Infrastructure as Code (Terraform, Deployment Manager) Experience with SIEM tools (Splunk, Chronicle) Desirable: GCP Security Engineer certification, MOD experience, scripting (Python/Bash), container security (GKE, Kubernetes) Why Should a Candidate Apply This is a unique opportunity to work More ❯
Fi, internet, and unified communications. Administer and monitor systems including Windows Server, Azure, Entra ID, Intune, VMWare, VXRail, Rubrik, Commvault , and more. Conduct vulnerability analysis and manage patching using SIEM tools (eg, Rapid7). Collaborate with the security team to ensure proper infrastructure security controls are deployed and maintained. Lead technical troubleshooting and respond to incidents in line with change More ❯
