101 to 125 of 202 SIEM Jobs in the UK excluding London

Desirable Skills Experience with Azure DevOps and pipelines. Comfortable presenting technical solutions to stakeholders. Exposure to Scaled Agile Framework (SAFe) . Familiarity with or open to learning the ArcSight SIEM toolset (ESM, SmartConnectors, Logger, ArcMC). Tech Stack : Operating Systems : Windows, Linux Tools : VMware, PowerShell, VBScript, Python, Azure DevOps, ArcSight More ❯

Desirable Skills Experience with Azure DevOps and pipelines. Comfortable presenting technical solutions to stakeholders. Exposure to Scaled Agile Framework (SAFe) . Familiarity with or open to learning the ArcSight SIEM toolset (ESM, SmartConnectors, Logger, ArcMC). Tech Stack : Operating Systems : Windows, Linux Tools : VMware, PowerShell, VBScript, Python, Azure DevOps, ArcSight More ❯

Security Engineer - SIEM, KQL- sought by investment bank based in London. *Inside IR35 - 3 days a week on-site** Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot log ingestion and parsing issues Log More ❯

sized organisation Hands-on experience in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as More ❯

segmentation and access control Identity and Access Management (including RBAC and A/PBAC, permissions management), Cryptographic techniques and implementations IT asset management and tracking Vulnerability Management and Patching SIEM principles, products and supporting logging infrastructure Containerisation and virtual machine security Delivering secure solutions against project expectations Strong awareness of and commitment to industry best practice Driving change in a More ❯

controls across OT environments. Contribute to the assessment of OT network architecture , protocols, and change management processes. Lead incident response and remediation for cyber events detected by our OT SIEM systems. Actively support vulnerability management and ensure threat exposure is minimised. Provide hands-on leadership in data and asset management , including backup and removable media deployments. Apply and track security More ❯

controls across OT environments. Contribute to the assessment of OT network architecture , protocols, and change management processes. Lead incident response and remediation for cyber events detected by our OT SIEM systems. Actively support vulnerability management and ensure threat exposure is minimised. Provide hands-on leadership in data and asset management , including backup and removable media deployments. Apply and track security More ❯

TTPs) An understanding of advanced cyber defence concepts such as Continuous Detection/Continuous Response and Cyber Threat Intelligence, and how to apply them Understanding of detection logic (e.g. SIEM use cases) and detection-as-code (DaC) Ability to communicate technical information clearly to non-technical audiences About working for us Our ambition is to be the leading UK business More ❯

that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs), and Managed Security Service Providers (MSSPs) worldwide, defending More ❯

of automating tasks using languages and tools such as Bash, Python, JavaScript, and GitHub Actions. Knowledge of how to effectively use security testing and monitoring tooling, e.g. SAST and SIEM products. Candidates with the following background will be of particular interest: Experience contributing to incident response across a complex microservice-based application Application Security best practice including identifying potential threats More ❯

A strong working knowledge of hardware and networking components The ability to work unsupervised with strong self-motivation Experience with scripting and automation Experience with virtualization platforms Experience using SIEM platforms Experience with EDR and vulnerability scanning Knowledge of Windows Servers and Azure Cloud Desirable: Experience with ITIL, PCI and GDPR Driving Licence Programming experience with PowerShell, C# and\or More ❯

for SC Clearance Rate: £650 per day - PAYE via Umbrella Only Role: Lead the development and delivery of a high-level design for a SOC, including associated tooling (e.g. SIEM solution) to support a multi-vendor cloud based back office implementation. Experience with: Industry best practice for SOC service and solution design. Working with organisations with heightened threat response requirements More ❯

playbooks for security operations Skills and Experience Strong understanding of vulnerability management (Tenable.io) and EDR platforms (CrowdStrike) Experience with ISO 27001 audits, system audits, and compliance validation Knowledge of SIEM platforms (Elastic SIEM) and log analysis Hands-on experience with Windows Server, VMware, Citrix VDI, and Active Directory Practical knowledge of penetration testing tools and methodologies Ability to investigate security More ❯

Experience with vulnerability management tools like Nessus, Qualys, or OpenVAS - Knowledge of endpoint security solutions (antivirus, anti-malware) and incident response procedures - Familiarity with Security Information and Event Management (SIEM) tools, like Splunk or QRadar - Ability to interpret metrics from network, server and application performance monitoring tools - Knowledge of log management tools and techniques for monitoring infrastructure health - Strong problem More ❯

dependent on experience) Responsibilities As a MAF Security Operations Specialist you will play a critical role in protecting our digital infrastructure. You'll lead the implementation and management of SIEM systems, Fortinet security tools, and endpoint detection & response (EDR) while conducting vulnerability assessments and penetration testing to stay ahead of cyber threats. You'll enhance identity and access management (IAM … IT security roles with focus on infrastructure security Strong experience with Fortinet security products and solutions Advanced knowledge of Microsoft Active Directory and Entra ID administration Demonstrated experience with SIEM implementation and management Strong background in network security and infrastructure protection Experience with IDS/IPS systems and security monitoring tools Proven incident response and threat hunting experience Programming/ More ❯

Support and Infrastructure/Information Systems). Responsibilities cover analysis, monitoring, reporting, alerting, and investigation activities using a variety of security platforms, including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture, Anti-Malicious Code, and Threat Detection technologies across the UK Network Perimeter. The SOC Analyst reports to the SOC Manager and conducts a … operating procedures (SOPs), and runbooks to support operational readiness. Strong working knowledge of detection engineering, including tuning detection logic and reducing false positives to enhance alert fidelity. Proficiency in SIEM rule tuning and the creation of custom detection use cases aligned with threat models and operational requirements. Hands-on experience with security automation and orchestration, including scripting in Python, PowerShell More ❯

hands-on' shift-based roles, working as part of a 24/7 operation working in a standard rotation shift pattern. They are responsible for utilising the SOC's SIEM and SOAR toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks. Main Duties Monitor, triage, analyse and investigate alerts, log data and network traffic … skills. Strong analytical skills Must have expertise on TCP/IP network traffic and event log analysis. Must have knowledge and hands-on experience of Microsoft Sentinel (or any SIEM tool). Must have administrative skills in several operating systems, such as Windows, OS X, and Linux Must be proficient in basic shell scripting, creating Snort rules, or other log More ❯

Role Title: SIEM Engineer Duration: contract to run until 26/12/2025 Location: Wokingham, Hybrid 2 days onsite Rate: £460 p/d Via Umbrella inside IR35 Clearance required: Active SC is essential Role purpose/summary SIEM Deployment & Management - Set up, configure, and maintain SIEM tools like ArcSight, Splunk, or QRadar. Threat Detection & Analysis - Monitor security logs … Generate reports on security events, trends, and system performance. Collaboration - Work with IT and security teams to improve overall cybersecurity posture. Required Skills & Qualifications Technical Expertise - Strong knowledge of SIEM platforms, network security, and cybersecurity frameworks. Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications. Programming & Scripting - Familiarity with Python, PowerShell, or other scripting languages. Analytical Thinking - Ability to analyze More ❯

closing meetings. External Audit Coordination: Collaborate with external audit teams to streamline processes and provide requested documentation and evidence. Security Monitoring: Use tools such as Rapid7 InsightIDR or other SIEM solutions to assist with security monitoring and incident detection. Incident Response Support: Participate in incident response efforts, documenting security incidents and assisting in containment and recovery actions. Threat Identification: Contribute … audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus. Familiarity with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience in internal and external audits, compliance assessments, and process improvement. Basic understanding of incident response frameworks and cybersecurity best practices. Exceptional analytical, organizational, and communication skills. More ❯

Building on your current skills the scope of the training will be IBM Power SC for Power 9, 10 and 11, storage defender and Insights and use of a SIEM agent reporting. Key Skills Previous experience as an IBM System i/Power i/IBM i/i Series Operations Technical Consultant with excellence in Power I (IBMi ,System More ❯

Building on your current skills the scope of the training will be IBM Power SC for Power 9, 10 and 11, storage defender and Insights and use of a SIEM agent reporting. Key Skills Previous experience as an IBM System i/Power i/IBM i/i Series Operations Technical Consultant with excellence in Power I (IBMi ,System More ❯

controls across OT environments. Contribute to the assessment of OT network architecture , protocols, and change management processes. Lead incident response and remediation for cyber events detected by our OT SIEM systems. Actively support vulnerability management and ensure threat exposure is minimised. Provide hands-on leadership in data and asset management , including backup and removable media deployments. Apply and track security More ❯

experience preferred). Strong understanding of incident response, SOC operations, and endpoint security. Familiarity with security standards (ISO27002, CIS, NIST, CAF). Experience with technologies such as SSE, SASE, SIEM, MDR/EDR. Confident in customer-facing engagements and solution design. Excellent communication, documentation and stakeholder management skills. Engineer certifications in security platforms - an advantage. At Gleeson Recruitment Group, we More ❯

experience preferred). Strong understanding of incident response, SOC operations, and endpoint security. Familiarity with security standards (ISO27002, CIS, NIST, CAF). Experience with technologies such as SSE, SASE, SIEM, MDR/EDR. Confident in customer-facing engagements and solution design. Excellent communication, documentation and stakeholder management skills. Engineer certifications in security platforms - an advantage. At Gleeson Recruitment Group, we More ❯

Experience working within an OT environment, preferably for a large, regulated utility. An understanding of how cyber security threats may disrupt electricity transmission systems. Previous experience of Security Monitoring & SIEM tooling to configure and tune security monitoring solutions. Experience in a greenfield role where you produced new tools, processes and training to enhance the maturity of a new team. About More ❯