76 to 100 of 1,427 SIEM Jobs in the UK

programs for staff and ensure technical progress of their abilities * Performs other duties as assigned Skills/Abilities * Proficient with industry standard security technologies, including firewalls, IDS/IPS, SIEM tools, endpoint monitoring, etc. * Knowledge of incident response procedures and best practices * Familiarity with threat intelligence process and integration * Highly developed communication skills * Excellent organizational skills Education Bachelor's Degree More ❯

and represent the project at key meetings such as ADF and TDAs. Represent the project in all technical discussions related to Splunk, onboarding, SOAR, Attack Analyzer, etc. Essential Skills: SIEM engineering and architecture skills, specifically in Splunk SaaS. Experience with delivery lifecycle improvements for Splunk SaaS. Experience in defining SIEM improvements within Cyber Security Operations Centre (CSOC) functions. Strong communication … reporting, documentation, and presentation skills. AWS infrastructure skills, including configuration of EC2, S3, etc. Desirable Skills: Public Sector experience. Experience with other SIEM solutions. Experience with multiple cybersecurity technologies. Essential Qualifications: Cloud Security Architecture (CSA) Splunk Cloud Administrator Splunk Enterprise Security Splunk SOAR Administrator Splunk Certified Cybersecurity Defence Analyst Implementing Microsoft Azure Infrastructure Solutions Developing Windows Azure and Web Services … Security Information & Event Management (SIEM) JIRA, Confluence, Git Desirable Qualifications: CISSP Ethical Hacking and Intrusion Prevention Information Security Management Systems (ISMS) Access and Management (IDAM) Public Key Infrastructure (PKI) We support Armed Forces Covenant and guarantee interviews for veterans or military spouses/partners meeting all essential criteria. If interested, please notify us, and we will arrange a guaranteed interview. More ❯

by detecting, analyzing, and responding to cybersecurity threats. The job description for a SOC Analyst typically includes the following elements: Key Responsibilities: Continuously monitor security alerts from various sources (SIEM, IDS/IPS, firewalls, antivirus, etc.). Analyze security incidents and events to identify potential threats and vulnerabilities. Use threat intelligence to understand and anticipate cyber threats. Respond to security … security metrics, trends, and incidents to management. Stay up to date with the latest cybersecurity threats, trends, and technologies. Skills and Qualifications: Proficiency with security information and event management (SIEM) systems. Experience with intrusion detection/prevention systems (IDS/IPS), firewalls, and antivirus software. Familiarity with network protocols, operating systems, and security architectures. Strong analytical and problem-solving skills More ❯

months (192 working days) Active SC clearance required Role Overview We are seeking an experienced Splunk Engineer/Security Architect to lead strategic and tactical improvements to the SIEM and associated components across a large-scale hybrid security environment. You'll play a pivotal role in enhancing monitoring capabilities, driving SIEM convergence, and supporting the maturity of security operations. This … role is aligned to a national programme improving the government's ability to detect and respond to cyber threats across multiple portfolios. You'll work alongside the SIEM Product Owner and CSOC teams to define and deliver architectural and engineering enhancements using Splunk SaaS and related technologies. Key Responsibilities Produce and maintain architecture diagrams, high- and low-level design documentation … SQS, etc.) Drive use case development aligned with CSOC and MITRE ATT&CK framework Attend and represent the project at key technical forums (ADF, TDA, workshops) Deliver improvements to SIEM architecture, use cases, automation, and data enrichment Improve onboarding processes for directorates and manage onboarding QA Lead integration of SOAR, Attack Analyzer, and other tooling into operational use Standardise collection More ❯

managing complex IAM scenarios, such as multi-cloud environments or hybrid identities. Knowledge of hybrid cloud environments and securing multi-cloud architectures. Familiarity with Security Information and Event Management (SIEM) systems. Experience in securing serverless computing models and microservices. Benefits We think you'll enjoy working at Mozn. Here's why: We selectively choose to undertake projects with impact; our More ❯

preferred. Familiarity with security and compliance frameworks (ISO 27001, NIST CSF/800-53/800-171, HIPAA, etc.). Understanding and experience with computer networking fundamentals, operating systems, SIEM, vulnerability scanning, EDR, email and cloud security platforms. Experience with platforms such as CrowdStrike and Splunk is a plus. Experience in penetration testing, threat/vulnerability assessments, and operational technology More ❯

back 3 continuous years, and unspent criminal record check (known as Disclosure and Barring Service) Your role Monitor security alerts and events using Splunk and other SIEM (Security Information and Event Management) tools. Analyse security incidents to determine their impact and severity and conduct thorough investigations of security breaches and incidents. Develop and implement incident response plans and procedures. Collaborate … Your skills and experience Proven experience as a SOC Analyst in a similar cybersecurity role. Experience with Flexera for vulnerability management Strong knowledge of Splunk or other industry standard SIEM tool for security monitoring and analysis. Familiarity with security technologies and understanding of network protocols, firewalls, and intrusion detection/prevention systems. Knowledge of Threat Intelligence, Digital Forensics and Data More ❯

dependent on experience) Responsibilities As a MAF Security Operations Specialist you will play a critical role in protecting our digital infrastructure. You'll lead the implementation and management of SIEM systems, Fortinet security tools, and endpoint detection & response (EDR) while conducting vulnerability assessments and penetration testing to stay ahead of cyber threats. You'll enhance identity and access management (IAM … IT security roles with focus on infrastructure security Strong experience with Fortinet security products and solutions Advanced knowledge of Microsoft Active Directory and Entra ID administration Demonstrated experience with SIEM implementation and management Strong background in network security and infrastructure protection Experience with IDS/IPS systems and security monitoring tools Proven incident response and threat hunting experience Programming/ More ❯

condition of employment. Responsibilities As a MAF Security Operations Specialist you will play a critical role in protecting our digital infrastructure. You'll lead the implementation and management of SIEM systems, Fortinet security tools, and endpoint detection & response (EDR) while conducting vulnerability assessments and penetration testing to stay ahead of cyber threats. You'll enhance identity and access management (IAM … IT security roles with focus on infrastructure security Strong experience with Fortinet security products and solutions Advanced knowledge of Microsoft Active Directory and Entra ID administration Demonstrated experience with SIEM implementation and management Strong background in network security and infrastructure protection Experience with IDS/IPS systems and security monitoring tools Proven incident response and threat hunting experience Programming/ More ❯

condition of employment. Responsibilities As a MAF Security Operations Specialist you will play a critical role in protecting our digital infrastructure. You'll lead the implementation and management of SIEM systems, Fortinet security tools, and endpoint detection & response (EDR) while conducting vulnerability assessments and penetration testing to stay ahead of cyber threats. You'll enhance identity and access management (IAM … IT security roles with focus on infrastructure security Strong experience with Fortinet security products and solutions Advanced knowledge of Microsoft Active Directory and Entra ID administration Demonstrated experience with SIEM implementation and management Strong background in network security and infrastructure protection Experience with IDS/IPS systems and security monitoring tools Proven incident response and threat hunting experience Programming/ More ❯

solid working knowledge of cloud security (AWS, Azure, GCP). Apply risk-based and threat-based approaches to evaluate and recommend appropriate and proportionate security technologies and solutions (e.g., SIEM, IAM, CASB, container security). Outline key security components, interfaces, and dependencies. Develop architectural diagrams and overviews. Document security design principles and provide rationale. Ensure designs align with business objectives … England, United Kingdom 1 week ago London, England, United Kingdom 1 month ago London, England, United Kingdom 2 days ago London, England, United Kingdom 2 days ago Security Consultant, SIEM/SOAR, Mandiant London, England, United Kingdom 6 days ago Principal Security Consultant - Cloud Security Greater London, England, United Kingdom 2 days ago We’re unlocking community knowledge in a More ❯

awareness and compliance. Skills & Qualifications: Minimum 3 years' experience in cybersecurity. Strong knowledge of security frameworks (NIST 800, ISO 27001) and GDPR regulations. Experience with network security infrastructure and SIEM tools (Splunk, SolarWinds). Proficiency in Windows/Linux system administration and virtualization technologies (VMware, Hyper-V). Previous experience within the finance or banking sector is highly advantageous. Certifications More ❯

investigations and root cause analysis * Develop and enhance our SOAR (Security Orchestration, Automation and Response) capabilities to streamline security operations * Monitor and analyze security logs, alerts, and events using SIEM tools to identify and respond to potential threats * Implement and manage cloud security controls in AWS and other cloud environments * Conduct security risk assessments and vulnerability management activities * Ensure compliance … posture Which skills are required: Bachelor's degree in Computer Science, Cybersecurity, or related field * 6+ years of experience in information security roles with progressive responsibility * Strong experience with SIEM platforms, EDR solutions, and security automation tools * Demonstrated expertise in cloud security, particularly with AWS security controls and architecture * Experience with and access management solutions such as Okta, SailPoint, or More ❯

training. Experience in cybersecurity within higher education or a similar sector. Familiarity with business continuity planning and disaster recovery. Proficiency in a range of security tools and technologies, including SIEM, firewalls, and VPNs. This role offers a dynamic working environment with opportunities for professional growth and the chance to shape the cybersecurity strategy of a major institution. To apply, please More ❯

the Microsoft Defender suite. The ideal candidate will take a lead role in advanced threat detection, incident response, detection engineering, and security monitoring, while also optimizing license consumption and SIEM integration efforts. 5+ years in cybersecurity with 2+ years in a Level 3 SOC role Key Responsibilities: Advanced Threat Detection & Incident Response - Investigate and analyze complex security incidents escalated from … L1/L2 SOC analysts. - Leverage Microsoft Sentinel (SIEM) and Microsoft Defender XDR to conduct in-depth incident response. - Correlate multi-source telemetry (network, endpoint, identity, cloud) to identify and contain threats. Threat Hunting & Detection Engineering - Perform proactive threat hunting using KQL within Microsoft Sentinel. - Develop and fine-tune custom analytics rules, workbooks, and hunting queries. - Apply the MITRE ATT More ❯

Staying updated on the latest cyber threats and trends to anticipate potential risks. Qualifications Technical Knowledge: Familiarity with operating systems (Windows, Mac, Linux), firewalls, VPNs, proxies, and security information and event management systems (SIEMs). Analytical Skills: Ability to analyse complex data and identify potential security threats. Problem-Solving: Strong problem-solving skills to address and mitigate security issues. Communication More ❯

accelerating growth, and disrupting entire industries. This is what it means to #BeAProactivist. What you’ll do As a SOC Analyst you will be trained in all aspects of SIEM, using your studies, and possibly any work experience you may have, as a good foundation of knowledge to build upon. This is an entry level position and does not require … in: Network protocols including TCP/IP fundamental Operating systems (Windows and Linux) Hosting platforms, enterprise systems and infrastructure Virtual environments Security products such as anti-virus, IDS, IPS, SIEM, APT detection, VA systems Vulnerability management (network scanning, ethical hacking, penetration testing) Malware, virus, botnet, MITRE ATT&CK framework techniques, etc. Security standards, including ISO-27001, PCI/DSS, NHS More ❯

in security tools such as Burp Suite, Kali Linux, Metasploit, Wireshark, Nessus, or equivalent . Good knowledge of network security, firewalls, managed switches, and server configurations . Familiarity with SIEM tools, vulnerability scanning, and incident response . Strong analytical and problem-solving skills. Excellent communication and documentation abilities. Preferred Qualifications Relevant certifications such as OSCP, CEH, CISSP, CISM, or ISO27001 More ❯

in security tools such as Burp Suite, Kali Linux, Metasploit, Wireshark, Nessus, or equivalent . Good knowledge of network security, firewalls, managed switches, and server configurations . Familiarity with SIEM tools, vulnerability scanning, and incident response . Strong analytical and problem-solving skills. Excellent communication and documentation abilities. Preferred Qualifications Relevant certifications such as OSCP, CEH, CISSP, CISM, or ISO27001 More ❯

in security tools such as Burp Suite, Kali Linux, Metasploit, Wireshark, Nessus, or equivalent . Good knowledge of network security, firewalls, managed switches, and server configurations . Familiarity with SIEM tools, vulnerability scanning, and incident response . Strong analytical and problem-solving skills. Excellent communication and documentation abilities. Preferred Qualifications Relevant certifications such as OSCP, CEH, CISSP, CISM, or ISO27001 More ❯

practices (, ISO 27001, NIST, CIS). Strong understanding of network security, application security, cryptography, and cloud security. Experience with security tools and technologies such as firewalls, IDS/IPS, SIEM, and endpoint protection. Excellent analytical, problem-solving, and communication skills. Ability to work independently and manage multiple projects simultaneously. SC (Security Clearance) or DV (Developed Vetting) clearance is preferred, or More ❯

knowledge of the threat landscape relevant to SaaS products, preferably in a data-heavy environment. Hands-on experience with security technologies such as firewalls, intrusion detection/prevention systems, SIEM, antivirus, encryption, and vulnerability assessment tools. You own relevant certifications (Security+, IAT II/III level or similar). You excel in risk assessments, vulnerability management, and data-driven decision More ❯

knowledge of the threat landscape relevant to SaaS products, preferably in a data-heavy environment. Hands-on experience with security technologies such as firewalls, intrusion detection/prevention systems, SIEM, antivirus, encryption, and vulnerability assessment tools. You own relevant certifications (Security+, IAT II/III level or similar). You excel in risk assessments, vulnerability management, and data-driven decision More ❯

to share information, coordinate responses, and improve inter-team relationships. Previous experience within a Security Operations role. Exposure to key security technologies, such as IDS, Web content filters, AV, SIEM, Vulnerability Management, Firewalls, and awareness of their purpose in a layered security approach alongside analysing their outputs for security anomaly detection. In-depth understanding of the cyber threat landscape, advanced More ❯

similar role, with deep understanding of the threat landscape, ideally in fintech environments. Hands-on expertise with security technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM, antivirus solutions, encryption mechanisms, and vulnerability assessment tools. Hands-on experience in security tools (e.g., SAST, DAST, OWASP ZAP). Relevant security certifications, such as Security+, IAT II/III More ❯