26 to 50 of 61 Azure Sentinel Jobs in the UK excluding London

Rate: Outside IR35 Location: Remote with occasional travel to Gloucester Duration: 3-6 initially SC clearance required Position Summary: We are seeking a Sentinel SIEM & Cloud Security Engineer to join our team and play a critical role in designing, managing, and optimizing Microsoft Sentinel and Defender … cutting-edge security tools and continuously evolve your expertise in cloud security. Key Responsibilities * SIEM Architecture & Management: Design, deploy, configure, and maintain Microsoft Sentinel, ensuring optimal performance, scalability, and integration with security tools. * Cloud Security Design & Integration: Implement and optimize Microsoft Defender for Cloud to enhance cloud security … posture, detect misconfigurations, and enforce compliance. * Log Management & Analysis: Oversee the ingestion, parsing, and normalization of security logs from Azure, AWS, M365, and hybrid environments to improve threat visibility. * Security Event Correlation & Automation: Develop advanced correlation rules, alerts, playbooks, and automation workflows using Sentinel, KQL, and More ❯

Rate: Outside IR35 Location: Remote with occasional travel to Gloucester Duration: 3-6 initially SC clearance required Position Summary: We are seeking a Sentinel SIEM & Cloud Security Engineer to join our team and play a critical role in designing, managing, and optimizing Microsoft Sentinel and Defender … cutting-edge security tools and continuously evolve your expertise in cloud security. Key Responsibilities * SIEM Architecture & Management: Design, deploy, configure, and maintain Microsoft Sentinel, ensuring optimal performance, scalability, and integration with security tools. * Cloud Security Design & Integration: Implement and optimize Microsoft Defender for Cloud to enhance cloud security … posture, detect misconfigurations, and enforce compliance. * Log Management & Analysis: Oversee the ingestion, parsing, and normalization of security logs from Azure, AWS, M365, and hybrid environments to improve threat visibility. * Security Event Correlation & Automation: Develop advanced correlation rules, alerts, playbooks, and automation workflows using Sentinel, KQL, and More ❯

Rate: Outside IR35 Location: Remote with occasional travel to Gloucester Duration: 3-6 initially SC clearance required Position Summary: We are seeking a Sentinel SIEM & Cloud Security Engineer to join our team and play a critical role in designing, managing, and optimizing Microsoft Sentinel and Defender … cutting-edge security tools and continuously evolve your expertise in cloud security. Key Responsibilities * SIEM Architecture & Management: Design, deploy, configure, and maintain Microsoft Sentinel, ensuring optimal performance, scalability, and integration with security tools. * Cloud Security Design & Integration: Implement and optimize Microsoft Defender for Cloud to enhance cloud security … posture, detect misconfigurations, and enforce compliance. * Log Management & Analysis: Oversee the ingestion, parsing, and normalization of security logs from Azure, AWS, M365, and hybrid environments to improve threat visibility. * Security Event Correlation & Automation: Develop advanced correlation rules, alerts, playbooks, and automation workflows using Sentinel, KQL, and More ❯

knowledge of Windows and Linux operating environments, including standard commands, file systems, and user authentication mechanisms. Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms. Able to demonstrate proficient knowledge More ❯

teams to ensure a secure environment. To be successful as a Security Engineer, you should have the following skills/experience: SIEM experience - Azure Sentinel or Splunk (proficiency in writing KQL and SPL; log sources, ingestion patterns, and correlation rules). DevOps knowledge (Git/BitBucket More ❯

teams to ensure a secure environment. To be successful as a Security Engineer, you should have the following skills/experience: SIEM experience - Azure Sentinel or Splunk (proficiency in writing KQL and SPL; log sources, ingestion patterns, and correlation rules). DevOps knowledge (Git/BitBucket More ❯

Role Lead the design, deployment and tuning of enterprise-grade SIEM platforms (e.g. Splunk, Azure Sentinel etc.) Collaborate with stakeholders to define logging requirements, use cases, detection rules and dashboards Oversee integration of data sources from cloud, on-prem, endpoint, network and application layers Create and … and capacity planning Skills Expertise in SIEM design, deployment and optimisation Hands-on expertise with one or more major SIEM platforms (e.g. Splunk, Sentinel etc.) Deep understanding of log ingestion, parsing, normalisation and enrichment Strong grasp of MITRE ATT&CK framework, threat detection and alert logic Solid scripting …/automation skills (e.g., Python, PowerShell, Bash) Experience with cloud logging and monitoring (AWS CloudTrail, Azure Monitor, GCP etc.) Experience with threat modelling, cloud security or Identity and Access Management is desirable More ❯

Service Management system (Ivanti) to monitor performance against SLAs and KPIs. Key Responsibilities Implement a variety of cybersecurity tools for clients, such as: Sentinel One EDR FortiEDR FortiSIEM FortiSOAR Qualys (including network scanners and cloud agents) Mimecast Microsoft Sentinel, Azure, and Entra CybSafe cybersecurity More ❯

in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining … secure, scalable Azure DevOps pipelines and Infrastructure as Code (IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring … an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure More ❯

Security policy, compliance, and user awareness in relation to the OT\ SCADA systems Incident investigation and documentation Utilisation of the Microsoft Security Stack – Azure Sentinel, Defender, Purview In order to be suitable you will need the following background: 3+ years’ experience within a technical security role More ❯

engineers. Maintain and update IT documentation. Experience The successful candidate will have support experience of:- Windows 10/11, Microsoft 365, Intune, Autopilot, Azure AD, Group Policy, Intune configuration policies and Sentinel. Server technologies. Firewall and VPN's management. LAN/LWAN/WAN, DNS, DHCP. Hands-on More ❯

Inside IR35 Hybrid, travel to various sites around England 3 months, scope to extend Active SC would be advantageous We are seeking a Sentinel SIEM & Cloud Security Engineer to join our clients team and play a critical role in designing, managing, and optimizing Microsoft Sentinel and … cutting-edge security tools and continuously evolve your expertise in cloud security. Key Responsibilities SIEM Architecture & Management: Design, deploy, configure, and maintain Microsoft Sentinel, ensuring optimal performance, scalability, and integration with security tools. Cloud Security Design & Integration: Implement and optimize Microsoft Defender for Cloud to enhance cloud security … posture, detect misconfigurations, and enforce compliance. Log Management & Analysis: Oversee the ingestion, parsing, and normalization of security logs from Azure, AWS, M365, and hybrid environments to improve threat visibility. Security Event Correlation & Automation: Develop advanced correlation rules, alerts, playbooks, and automation workflows using Sentinel, KQL, and More ❯

deploy, and manage Cisco Meraki solutions for network security and monitoring. Implement and manage security controls in cloud environments, with expertise in Microsoft Azure security best practices. Work with Palo Alto Networks or Panorama solutions for enterprise-wide network security and threat management. Leverage Infrastructure as Code (IaC … principles using Terraform to automate security policies and infrastructure deployment. Utilize Security Information and Event Management (SIEM) solutions (preferably Microsoft Sentinel SIEM ) to monitor, detect, and respond to security incidents. Create and maintain runbooks for security incident response, including automating workflows to improve incident response times. Lead threat … DHCP, and routing. Experience with firewalls, VPNs, IDS/IPS systems, and network traffic analysis. Cloud Security: Deep experience securing cloud environments, especially Azure . Familiarity with cloud-native security tools, including Azure Security Center, and identity management solutions like Azure Active Directory. Cisco More ❯

Outside IR35, Hybrid, SOC Manager, Senior SOC Analyst, SOC Implementation Consultant, SOC Engineer, Azure, SOC Procedures, Azure, Defender, Sentinel, Best practice, Strong 3rd party management My leading consultancy client is looking for a Senior SOC Analyst/SOC Implementation Consultant with solid Azure More ❯

ensuring best practices in solution delivery. Qualifications and Skills: Proficiency in SQL Server Business Intelligence Development Studio, SSRS, SSIS, SQL Server, Visual Studio, Azure Data Factory, Azure Databricks, Azure Synapse Analytics, Microsoft Fabric, and PySpark. Experience in developing reusable and dynamic ADF/Fabric … Fabric Tenant Settings, Workspace Templates, and network configurations including VNET, Private Link, and Private DNS. Knowledge of logging and SIEM integrations with Microsoft Sentinel and ServiceNow. Understanding of deployment methodologies such as Waterfall, Agile, Scrum. More ❯

you to have all those here, so don’t be put off. Training is available to develop these skills. Public Cloud Security Tooling - Azure & AWS Microsoft 365: Intune, Entra ID, Defender suite of tools inc. Sentinel, Purview suite of tools, Exchange Online, SharePoint, Teams VMware Server More ❯

you to have all those here, so don’t be put off. Training is available to develop these skills. Public Cloud Security Tooling - Azure & AWS Microsoft 365: Intune, Entra ID, Defender suite of tools inc. Sentinel, Purview suite of tools, Exchange Online, SharePoint, Teams VMware Server More ❯

an agile environment. This role will support the Banks Security, Digital and Cloud strategies. Duties and responsibilities Commercial experience with SIEM tools (MS Sentinel would be advantageous) Good understanding of Web technologies and Web application firewalls (WAF) Good understanding of Windows server infrastructure (2012, 2016, 2019), active directory … and azure AD Is capable of understanding and articulating the interoperability between technologies and taking a pragmatic approach to designing security solutions for the bank Can work effectively and efficiently with internal and external SME's/Partner organisations Experience with frameworks such as ISO 27001/… SOC, NIST, or COBIT About You Skills Has a formally recognised leading Security qualification or is working towards - i.e. CiSP, CompTIA Ideally Microsoft Azure accreditation such as; Microsoft Azure Security Technologies (AZ-500) Microsoft 365 Security Administration (MS-500) Has worked in a hybrid cloud environment More ❯

You will also provide technical support to other security team professionals and partners. Dimensions: UK Power Networks is expanding its presence in Microsoft Azure and is enhancing its on-prem OT Mission Critical Systems. It is important that a secure environment is developed for the hosting and management … respond to them quickly. Certifications : Relevant certifications in cyber security, such as CISSP, CISM, CEH, SSCP, or CCSP. Further technical certifications in Microsoft Azure, Networking, Firewall, SIEM, PAM or VM Products are beneficial. Technical Capabilities : Technical competence in one or more of the following areas IPSec VPN's … Networking, Network Security, MFA, AIX/Microsoft/Linux Operating Systems, Virtualization Platforms such as (VMware, Hyper-V, OpenShift), Cloud Security in Azure, End Point Security, Email Gateways, Enterprise Web Gateways, PKI and Certificates. Technology Experience : Good working know of the following products, Proofpoint Email/TAP/ More ❯

/IP protocols, and intrusion detection. Proficiency in Python and scripting for automation and security tooling. Experience with Splunk (ES) and/or Sentinel for log analysis and threat detection. Familiarity with cloud security (AWS/Azure) and modern security architectures. Detailed knowledge of threat intelligence More ❯

teams. Familiarity with ITIL framework and experience in a structured support environment. Expert knowledge of Windows 10/11, Microsoft 365, Intune, Autopilot, Azure AD, Group Policy, Intune Configuration policies and Sentinel. Server Technologies: Virtualisation, particularly Proxmox or Microsoft Hyper-V, Microsoft Windows Server 2012 through to 2022. … Public Cloud Solutions: Azure or AWS solution implementation, migration, and support. Exposure to Firewalls - Sophos, Cisco, Fortinet and PF Sense. Network Technologies: LAN/WLAN/WAN. Solid understanding of networking principles (DNS, DHCP, VPNs) and security best practices. Hands-on expertise in PowerShell scripting for automation and More ❯

Eligible for SC clearance Additionally, any experience of working with customers/stakeholders would be advantageous, as would exposure to any of Splunk, Sentinel, AWS, Azure, networking, system administration, data analytics tools. Please send CV for job description and an informal chat. Excellent opportunity to kick More ❯

who is looking to take on a Senior role whilst still being very hands on. Experience required Familiar with NIST, ISO 27001, ITIL Azure - 5 years experience Info Sec (Azure AD, Defender, Sentinel) Audits and report writing Assessments Vulnerability Management and Pen Testing Zero More ❯

Threat Detection - Specializing in SIEM tools to identify anomalies across cloud and data center environments, while developing and maintaining security monitoring during the Azure transition. Incident Response & Threat Hunting - Assisting in containment, eradication, and recovery of incidents, proactively hunting for threats, and mitigating operational risks. Risk & Threat Management … of IT domains like OS, databases, networks, or applications It's a bonus if you have: Qualifications in Cyber Security Knowledge of Microsoft Sentinel and Microsoft Azure (including certifications such as AZ-900, SC-900, SC-200 or AZ-500) If this role is of interest More ❯

a dedicated Security Operations Centre (SOC) to support the defence of a major UK CNI organisation. The networks protected are predominantly hosted in Azure and AWS cloud platforms, with many hundred systems within these environments that must be protected. The customer is committed to development of this improved … groups or targeted ransomware attacks). Understand TCP/IP component layers to identify normal and abnormal traffic Understanding of AWS &/or Azure cloud services Experience of Splunk (with ES) &/or Sentinel, content development experience desirable Non-technical Client side consulting, including stakeholder engagement More ❯