101 to 125 of 152 SIEM Jobs in the UK excluding London

operation of security systems and tools, including firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus, anti-malware, SIEM (Security Information and Event Management), vulnerability scanners, and data encryption solutions. Manage vulnerability management programs, including regular scanning, penetration testing, and remediation of identified weaknesses. Lead and manage security incident … understanding of information security principles, frameworks (e.g., ISO 27001, NIST, Cyber Essentials), and best practices. Hands-on experience with security technologies such as firewalls, SIEM, IDS/IPS, vulnerability scanners, endpoint detection and response (EDR), and identity management solutions. Experience with cloud security (e.g., Azure Security). Proven experience ...

Delivery Qualifications: CISMP, CompTIA Security+ or other technical certifications desired Experience: 3+ years experience in SOC, or related technical field Understanding of the following: SIEM Cloud Computing Security Incident Management Networking Threat Intelligence Information Security Phishing, Ransomware and other key threats IDAM (Identity and Access Mgmt) JML (Joiners, Movers and ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

platforms (Microsoft 365/Azure). You will demonstrate experience handling escalations, ideally within an MSP environment and have an understanding of security tooling, SIEM, EDR, vulnerability/incident management, as well good written and verbal communication and being used to working to SLA’s Holding CompTIA Security, Microsoft Azure ...

including their TTPs Experience in utilising open-source intelligence and the development of tools to assist with this Experience in conducting malware, phishing, and SIEM log analysis Knowledge of relevant cyber threat intelligence sources Demonstrated ability to manage customer relationships Proven ability to translate cyber threats to the relevant audience ...

responsible for monitoring systems, identifying potential threats, and ensuring rapid incident response to safeguard critical services. Responsibilities Keep a close watch on SIEM platforms and other monitoring tools to spot unusual activity. Evaluate and triage alerts to separate genuine incidents from false positives. Take immediate containment steps and escalate confirmed ...

will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best standard … cause analysis and leading T2 incident investigations Process/Playbook/Runbook development Working knowledge of detection engineering, false positive improvements Capability to tune SIEM rules or create custom detections Scripted automation experience e.g. Python, SOAR, PowerShell Threat modelling and Hunting methodologies ...

team, providing frontline defence and hands-on technical support across a modern IT environment. What you'll do Monitor and triage security alerts from SIEM and endpoint protection tools click apply for full job details ...

/CD pipelines Driving ISO 27000 implementation and supporting ongoing compliance initiatives Introducing and managing cybersecurity tools such as vulnerability scanners, endpoint protection, SIEM, and cloud security monitoring solutions Requirements: Extensive experience in a DevOps team lead role using AWS, (IAM, S3, EKS). Experience with IaC such as Terraform.. ...

incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. Oversee operational security processes with tools like SIEM, EDR, and Vulnerability Management, continuously enhancing capabilities. Network and System Security Manage advanced security tools such as firewalls and IDS/IPS to protect network … qualifications. Good underpinning knowledge of the Microsoft technology stack, cloud, on-premises and End user Compute. Understanding and experience of web filtering, email security, SIEM, EDR/XDR. Experience of managing investigations in SOC (L2 or above ...

Role: We are working with a global enterprise who has an opening for a SIEM Engineer/Cyber Security Engineer with experience of building rules to detect threats. The successful team will be working with an established team of engineers to build a new SIEM platform. SIEM Solution Development: Collaborate … with security analysts and architects to design and implement SIEM solutions using Elasticsearch. Optimize SIEM rules, alerts, and dashboards for efficient threat detection. Collaboration: Collaborate effectively with others to drive forward key security objectives Query Optimization and Performance Tuning: Write efficient Elasticsearch queries to retrieve relevant security events. Monitor and ...

ensure solutions are cost-efficient, scalable and compliant Working across Linux environments (primarily Ubuntu) while collaborating with Windows teams where needed Supporting vulnerability management, SIEM engineering and wider security initiatives Reading documentation, troubleshooting independently and quickly becoming productive in complex systems Working closely with a team of juniors, mid-level … Ability to troubleshoot independently, read documentation and identify efficient solutions Strong consulting skills - calm, pragmatic communication, and ability to challenge when required Exposure to SIEM (Splunk/Elastic), vulnerability tools, or cloud security platforms A problem-solving mindset and willingness to learn new tools and languages quickly Experience in fast ...

accounts and delivering value to strategic accounts in the cybersecurity industry Extensive platform selling experience in complex sales with multiple buying centers Experience selling SIEM, EDR, or CNAPP (DevSecOps, CloudOps) solutions is highly preferred Established trusted relationships with CIOs and CISOs with the ability to influence and drive strategic conversations ...

responsible for monitoring systems, identifying potential threats, and ensuring rapid incident response to safeguard critical services. Responsibilities Keep a close watch on SIEM platforms and other monitoring tools to spot unusual activity click apply for full job details ...

They're keen to move quickly for the right person. What you'll be doing As SOC Analyst, you will: Operate, tune and configure SIEM tools Monitor and triage security alerts, applying custom queries (e.g. KQL) and correlation rules to detect suspicious activity. Investigate security incidents across endpoints, networks, and … security operations/incident-response role. Strong working knowledge of Microsoft security stack (e.g. Sentinel, Defender) and hands-on experience with SIEM tooling, alerts triage, detection logic, and security incident workflows. Ability to write and optimise detection queries (e.g. in KQL), review firewall and security logs, manage email/ ...

rules, dashboards, and reports for our Security Information and Event Management (SIEM) systems. This role requires a strong understanding of security procedures and experience working with SIEM platforms and within an MSSP environments where you may be working across multiple operational customers and projects. Hybrid Variable: Working in Hemel Hempstead … Clearance. What you'll be doing: Develop, deploy, and uphold security content (including rules, dashboards, and reports) for our SIEM system. Continuously monitor and analyse SIEM data to identify and respond to potential security threats. Collaborate with SOC Analysts, Architects, Project Managers & Engineers to improve the precision and efficiency ...

rules, dashboards, and reports for our Security Information and Event Management (SIEM) systems. This role requires a strong understanding of security procedures and experience working with SIEM platforms and within an MSSP environments where you may be working across multiple operational customers and projects. Hybrid Variable: Working in Hemel Hempstead … Clearance. What you'll be doing: Develop, deploy, and uphold security content (including rules, dashboards, and reports) for our SIEM system. Continuously monitor and analyse SIEM data to identify and respond to potential security threats. Collaborate with SOC Analysts, Architects, Project Managers & Engineers to improve the precision and efficiency ...

audits, and ensure compliance with GDPR and ISO 27001. Oversee security operations, including monitoring, threat detection, and incident response. Manage security tools and processes: SIEM (Azure Sentinel), firewalls, endpoint protection, and identity management. Ensure secure configuration, patch management, and vulnerability remediation. Lead incident response and recovery, including investigations and post … cybersecurity, IT security, or risk management. Strong knowledge of cybersecurity frameworks (Cyber Essentials, ISO 27001). Hands-on experience with: Azure Sentinel and other SIEM tools Microsoft 365 security Azure-hosted environments Proven ability in incident response, compliance programs, and risk management. ...

Experience Strong background in security architecture & engineering Deep technical infrastructure knowledge (network, OS, cloud, IAM) Financial Services cyber security experience Zero Trust, NDR, EDR, SIEM, IAM exposure Strong stakeholder and governance skills ...

similar certification are a significant bonus to the role Key Responsibilities Continuous Monitoring: You will monitor security tools, including Security Information and Event Management (SIEM) systems, to detect suspicious activity. You will be the first to see potential threats and will need to be efficient and professional response against defined ...

similar certification are a significant bonus to the role Key Responsibilities Continuous Monitoring: You will monitor security tools, including Security Information and Event Management (SIEM) systems, to detect suspicious activity. You will be the first to see potential threats and will need to be efficient and professional response against defined ...

Common cyber attack techniques Any Cyber security certifications would be desirable. Responsibilities include: You will monitor security tools, including Security Information and Event Management (SIEM) systems, to detect suspicious activity. Analyse alerts and logs to determine if an event is a genuine security incident or a false positive. You will ...

understand and proactively manage risk across the technology estate at both the national and force level. Key Responsibilities Development, maintenance, and deployment of SIEM detection rules for complex technical environments. Working alongside wider NMC functions, maintain knowledge of the threat landscape and TTPs employed by threat actors. Work across wider … Optimization of log collection to align with detection requirements. Maintain documentation for detection rules to be used by analysts. Scoping, testing and implementing new SIEM data connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Support with the creation of automation and analyst playbooks What ...

role will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best … cause analysis and leading T2 incident investigations Process/Playbook/Runbook development Working knowledge of detection engineering, false positive improvements Capability to tune SIEM rules or create custom detections Scripted automation experience e.g. Python, SOAR, PowerShell Threat modelling and Hunting methodologies Note, shift patterns applicable. (The shift pattern rotates ...