101 to 125 of 381 SIEM Jobs in the UK excluding London

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

Cisco: Wireless Management, VLANs, Routing Protocols, Server Management, and Port Security Microsoft Azure: IaaS & PaaS deployment, Storage Management, Virtual Networks, Security, and IoT solutions SIEM Technologies (Splunk) for security monitoring and analysis Vulnerability Management using Tenable What You’ll Get: 100+ hours of live, instructor-led online training Direct experience ...

complex solutions Strong communication and stakeholder engagement skills Commercially aware and target-driven (Desirable) Experience with cyber security technologies such as firewalls, XDR, SIEM/SOC, SASE, or consultancy services Exposure to enterprise, public sector, or regulated industries Experience working with vendor-led opportunities What’s on Offer Competitive salary ...

function and be a key technical resource across the business, covering: Day-to-day 2nd line support and incident resolution Security operations: working with SIEM platforms, monitoring alerts, and contributing to policy and process improvements Infrastructure management: Windows Server, virtualisation (VMware), and core business systems Network support: firewalls, VPN configuration ...

meet business, compliance, and risk mitigation requirements; ensuring controls are effective, measurable, and operationally sustainable. Implement and maintain detection and response capabilities through SIEM integration with security controls and IT systems, with a focus on reducing time-to-detect and time-to-remediate through improved pre-incident engineering. Participation … 24x7 on-call support rota, responding to SIEM health alerts and restoring log ingestion where required. Manage use cases, perform data enrichment, and define standardized and automated containment workflows. Develop and manage operational procedures and reporting methodology. Manage and oversee security technology platforms (e.g. SIEM, SOAR, EDR, and email security ...

and recommending remediation actions Provide technical and procedural guidance to junior SOC analysts Develop and enhance detection use cases, correlation rules, and playbooks within SIEM and EDR platforms Conduct proactive threat hunting activities across client environments Collaborate with engineering teams to improve visibility, telemetry, and automation Support major incident response … CSIRT, or cyber defence environment Strong understanding of attack frameworks (e.g. MITRE ATT&CK, Cyber Kill Chain) Hands-on experience with SIEM and EDR tools (e.g. Microsoft Sentinel, Splunk, CrowdStrike, Defender) Experience in incident triage, containment, and response Good knowledge of network protocols, Windows/Linux systems, and cloud environments ...

analysts in hunting methodologies and investigative techniques Review and improve alert fidelity, detection coverage, and response effectiveness Provide technical oversight for tooling such as SIEM, EDR/XDR, NDR, SOAR, and cloud-native security platforms Detection Engineering & Improvement Collaborate with detection engineers to convert hunt findings into new or improved … Operations, Threat Hunting, or Incident Response Proven experience leading investigations involving advanced persistent threats, insider threats, or targeted attacks Strong hands-on expertise with: SIEM platforms (e.g. Sentinel, Splunk, Elastic) EDR/XDR solutions (e.g. Defender, CrowdStrike, SentinelOne) Network and cloud security telemetry Strong understanding of: MITRE ATT&CK Windows ...

resilience. You will sit at the heart of our cyber defence operations, working daily with technologies including Microsoft O365 Defender, Entra ID, Intune, Rapid7 SIEM, and Sophos Antivirus. Youll be responsible for monitoring security events, investigating suspicious activity, responding to incidents, and continuously improving our security posture. This … cyber security What you will do: Security Monitoring & Incident Response Actively monitor alerts and telemetry across endpoints, identities, email, and cloud services using Rapid7 SIEM, Microsoft Defender, and Sophos AV. Investigate suspected cyber attacks including malware infections, phishing campaigns, identity compromise, and unauthorised access attempts. Perform triage, root cause analysis ...

A leading cybersecurity firm in the UK is seeking a Senior Security Engineer to join their Managed Security Service Provider team. The role involves driving Sentinel adoption, leading client onboarding, and developing custom data connectors. ...

Microsoft security tooling , Defender suite, Purview, Compliance Centre, Entra ID, Conditional Access & Intune. VMware vSphere virtualisation will be part of your skill set, SIEM platforms, IDS/IPS intrusion detection/prevention systems. Applicants should also be familiar with DevSecOps , security compliance frameworks ( ISO27001, Cyber Essentials + GDPR). … Centre, Entra ID, Conditional Access, and Intune. Previous exposure to virtualisation platforms, particularly VMware vSphere and/or virtual desktop infrastructure. A user of SIEM platforms and Intrusion Detection/Prevention Systems (IDS/IPS) — including configuration, tuning, alerting, and using these tools to maintain visibility and respond to threats ...

Microsoft security tooling , Defender suite, Purview, Compliance Centre, Entra ID, Conditional Access & Intune. VMware vSphere virtualisation will be part of your skill set, SIEM platforms, IDS/IPS intrusion detection/prevention systems. Applicants should also be familiar with DevSecOps , security compliance frameworks ( ISO27001, Cyber Essentials + GDPR). … Centre, Entra ID, Conditional Access, and Intune. Previous exposure to virtualisation platforms, particularly VMware vSphere and/or virtual desktop infrastructure. A user of SIEM platforms and Intrusion Detection/Prevention Systems (IDS/IPS) — including configuration, tuning, alerting, and using these tools to maintain visibility and respond to threats ...

Troubleshoot any Remote Password Changing (RPC) failures from the previous 24 hours to prevent account lockouts or "stale" credentials. Correlate server alerts with your SIEM to investigate suspicious activity, such as multiple failed login attempts or large-scale secret exports. Key Skills Required Deploying and managing security tooling (vulnerability scanning ...

A leading cybersecurity firm in the UK is looking for a Senior Security Engineer to join their Managed Security Service Provider team. The successful candidate will manage Microsoft Sentinel implementations, focusing on client onboarding and ...

and development background and proven experience with Gateway technologies. Your technical knowledge should include: Infrastructure & Platforms VMware/vSphere RHEL and Windows Server Trellix SIEM platforms Identity & Directory Services Active Directory DNS LDAP LDIF Gateway & Security Technologies Gateway appliances and associated software Email, Chat and File standards Web and Chat ...

partysupplierstoprogressinvestigationandremediation. Participateinout-of-hoursresponseasrequired. Knowledge,Skills&ExperienceEssential ProvenexperienceinaLevel3orSeniorSecurityAnalystorIncidentResponserole. Hands-onexperienceinvestigatingandresolvingincidentsacrossendpoints,identityplatforms,networks,andcloudservices. Strongunderstandingofmalwareandransomwareresponse,identitycompromise,andvulnerabilityremediation. ExperienceworkingwithinformalSecurityIncidentandMajorIncidentprocesses. Strongwrittendocumentationandstakeholdercommunicationskills. Knowledge,Skills&ExperienceDesirable Experiencesupportingmulti-siteoroperationallysensitiveenvironments. FamiliaritywithDefender,SIEM,EDR,andvulnerabilitymanagementtools. UnderstandingofregulatedorPCI-adjacentenvironments. Relevantsecuritycertificationsorequivalentexperience. BehaviouralCompetencies Takesownershipfromdetectionthroughtoresolution. Investigatesthoroughlyandchallengesincompletefixes. Calm,methodical,anddecisiveduringliveincidents. Understandsoperationalandbusinessimpact. Professionalandconfidentwhenengagingcustomersandsuppliers. DecisionMaking&Authority Makestechnicaldecisionsrelatingtoinvestigation,containment,andremediationofsecurityincidents. EscalatesriskanddecisionpointsappropriatelytoIncidentManagementandServiceDeliveryleadership. KeyInterfaces IncidentManagement SecurityOperations InfrastructureandNetworkServices Third-partysuppliers ...

real-world project work that doubles as hands-on experience. 100+ hours of live training Practical skills in troubleshooting, networking (Cisco), Azure cloud, Splunk SIEM & Tenable vulnerability management Job guarantee with our hiring partners Get certified, get experience, get hired. Apply today and start your journey into cyber security. Course ...