1 to 25 of 38 Remote/Hybrid SIEM Jobs in the UK excluding London

configuring and working directly with security tooling in live environments Cloud security (Microsoft 365, Azure, AWS) Strong technical exposure to security tooling, such as: SIEM/SOAR, EDR/XDR, vulnerability scanners, patch management, CASB, DLP Desirable experience: Microsoft Defender, Purview and M365 E5 security capabilities Privileged Access Management ...

systems remain at the required security posture against baseline requirements Work with the Security Monitoring engineering team to ensure logs are forward to the SIEM capability Work with the customer and appropriate agencies to develop new policies, design processes, and procedures, and develop technical designs Assess system vulnerabilities, implement risk ...

Experience working in a SOC, NOC, or equivalent security operations environment, with well-developed investigation, triage, and incident handling skills. Demonstrable practical knowledge of SIEM, EDR, firewalls, and major security technologies (Splunk, Sentinel, QRadar, CrowdStrike, etc.). Strong grasp of networking concepts (TCP/IP, DNS, protocols), Windows and Linux ...

information security role within a UK-based organisation, ideally supporting public sector or critical services. Practical experience with security monitoring and incident response tooling (SIEM/XDR) Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS. Practical experience with Cyber Essentials/Cyber Essentials Plus certification. ...

Operations, Privilege Access Management, Encryption, Operation System Security, Cloud & Container Security Cloud/AWS/Azure Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI The permanent position for Cloud Security Solution Engineer (Home Based), will pay a competitive salary and benefits with a home working model. ...

Operations, Privilege Access Management, Encryption, Operation System Security, Cloud & Container Security Cloud/AWS/Azure Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI The permanent position for Cloud Security Solution Egineer (Home Based), will pay a competitive salary and benefits with a home working model. ...

environments Technology Skills & Experience Principles of network and boundary protection (firewalls, mail gateways, load balancers, antivirus, IPS/IDS, Diodes) Protective Monitoring systems (SIEM/SOC) and deployment principles Authentication & authorisation technologies (SAML, LDAP, PKI, etc.) Encryption protocols and structures supporting secure deployment Communication & Soft Skills Excellent verbal and written ...

from colleagues and service delivery teams Support and coordinate patch management activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor external threat intelligence sources and assess relevance to the organisation Produce and report on security metrics … operational performance Technical expertise Good understanding of information security principles, risk management and the threat landscape Experience of operating and monitoring security tooling, including SIEM, endpoint protection, and email/web security solutions Ability to proactively conduct threat hunting activities and develop or enhance detection analytics to improve identification ...

first culture across the organisation through awareness initiatives, training programmes, and targeted education efforts. Requirements: Strong technical understanding across various security toolings, IAM, DLP, SIEM, EDR, and vulnerability management. Deep understanding of compliance frameworks including, ISO27001, NIST, GDPR, and industry best practice Collaborative leadership style with ability to influence and ...

first culture across the organisation through awareness initiatives, training programmes, and targeted education efforts. Requirements: Strong technical understanding across various security toolings, IAM, DLP, SIEM, EDR, and vulnerability management. Deep understanding of compliance frameworks including, ISO27001, NIST, GDPR, and industry best practice Collaborative leadership style with ability to influence and ...

security concepts into clear recommendations for senior stakeholders Skills & Experience Strong experience in enterprise security architecture within large-scale environments Expertise across: SOC/SIEM/SIAM Network Security Architecture Cloud Security (Azure, AWS, Hybrid environments) Strong understanding of modern security operations and tooling Familiarity with frameworks such as TOGAF ...

Ability to oversee third-party vendors and managed security services Strong documentation and stakeholder communication skills Desirable Experience Experience in solution architecture Familiarity with SIEM/SOC integration in OT environments Experience with OT asset discovery and monitoring tools Knowledge of regulatory frameworks within critical infrastructure (e.g. NIS) Experience contributing ...

issues independently Desirable: Relevant certifications (Microsoft, cybersecurity, or networking qualifications) Experience with virtualisation technologies (VMware, Citrix, or similar) Exposure to security tools and practices (SIEM, threat monitoring, vulnerability management) Experience supporting multi-site or international environments Ability to train or support non-technical users Why choose VANRATH? Partnering with VANRATH ...

CloudFormation, AWS Step Functions, AWS SSM, AWS IAM, AWS Security, AWS Backup, AWS ACM, KMS Experience with monitoring tools (Datadog, PagerDuty, CloudWatch, CloudTrail, SIEM integration) Scripting experience (Terraform, Ansible, Python, AWS CLI) Strong knowledge of Service Management, Release and Change management processes and tools Tooling experience (Jenkins CI/ ...

and infrastructure standpoint. Strong networking background, including understanding of network security principles, firewalls, VPNs, routing, and segmentation. Experience with a range of security tools (SIEM, monitoring, detection, and response platforms). Proven experience delivering and supporting certificate automation. Experience operating in enterprise or regulated environments. Comfortable working across project delivery ...

understanding of; Networking (TCP/IP, firewalls, segmentation), Operating systems (Windows/Linux), Identity and access management concepts, Cloud Fundamentals. Exposure to security tooling (SIEM, IDS/IPS, EDR) Strong understanding of core security principles such as: Defence in depth, Least privilege, Zero trust concepts An understanding of designing and ...

concepts. Experience with Terraform and scripting (Python, Bash, or PowerShell). Nice to have: Knowledge of cloud security (Azure or GCP) Experience integrating SIEM platforms Understanding of Zero Trust architecture and SD-WAN optimization If you're interested in this role, click 'apply now' to forward an up-to-date ...

proactively hunting for threats and evolving our security posture within a complex, high-scale environment. What You Will Do Monitor and Analyse: Use SIEM and EDR tools to identify and mitigate potential threats and vulnerabilities. Incident Response: Lead IR activities, following established procedures for investigation and resolution. Proactive Hunting: Initiate ...

Collaborate with the SOC partner to design and enhance Splunk dashboards Act as a senior escalation point for high-priority incidents, leveraging EDR and SIEM tools for rapid investigation and containment Develop and implement automation workflows to reduce manual intervention and improve response times About you: You will have ...

understanding of Information Security solutions e.g. email/web gateways, Privileged Account Management (PAM), Identity Governance and Administration (IGA), Security Information and Event Management (SIEM), Endpoint protection etc. Knowledge/experience working with firewalls is highly advantageous Experience of Cloud security solutions and standards is highly advantageous Competence, knowledge and ...

Security Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection … assessments, and customer assurance activities About you: Requirements: Experience managing a SOC or security operations function within a complex enterprise environment. Strong understanding of SIEM, SOAR, EDR, IDS/IPS, firewalls, and cloud-native security tooling. Knowledge of cyber security frameworks such as NIST CSF, MITRE ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for UK SC Clearance. Key Responsibilities … Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. Conduct ...

role for you. As our Cyber Security Engineer, youll play a key part in supporting and evolving our security tooling, especially our SIEM platform. Youll work directly with both internal teams and customers to ensure strong security outcomes across the board. You will: Take ownership of SOC tooling, with … primary focus on our SIEM platform. Implement SIEM solutions into customer environments and tune data feeds effectively. Work closely with the SOC to maintain and continuously improve SIEM rulesets and use cases. Provide expert cyber guidance and technical leadership to customers. Support major security incidents and play a hands ...

services Design and implement enterprise grade logging and monitoring solutions using OCI Logging, OCI Monitoring, Events and Alarms. Integrate OCI monitoring with third party SIEM, ITSM and APM tools (e.g. Splunk, BMC etc.) Demonstrable experience with Oracle Cloud Infrastructure (OCI), including proficiency in the design and build of services such ...

support when required. This is a hands-on technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development … automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting activities Act as an escalation point for Tier 1 analysts, providing ...