126 to 146 of 146 SIEM Jobs in the UK excluding London

Candidate MUST BE SECURITY CLEARED As a Security Information & Event Monitoring (SIEM) Engineer, you are responsible for maintaining the SIEM platform. This includes onboarding log sources, creating custom parsers, developing analytic rules, creating automation for triage and remediation, and integrating with other Information Technology and Operational Technology SSE platforms at pace. You will: Develop the security monitoring platform, ensuring optimal … in infrastructure projects to develop, plan, and implement solutions for security monitoring. Design, implement, and maintain detection rulesets. Scope, plan, and track log integrations. Guide, develop, and grow the SIEM Engineering team. Collaborate with the wider Threat Detection & Response team to ensure the SIEM platform meets their day-to-day needs and support incidents as necessary. You have Proven hands … on SIEM Engineering background. Extensive experience working with security logs across multiple domains identity and access, network, system, data, application, cloud and multiple product types. Proficiency in data analysis and scripting languages (e.g., PowerShell, Python). Strong Security Orchestration, Automation and Response (SOAR) knowledge. Team leadership experience with great collaboration and stakeholder management skills JBRP1_UKTJ More ❯

Candidate MUST BE SECURITY CLEARED As a Security Information & Event Monitoring (SIEM) Engineer, you are responsible for maintaining the SIEM platform. This includes onboarding log sources, creating custom parsers, developing analytic rules, creating automation for triage and remediation, and integrating with other Information Technology and Operational Technology SSE platforms at pace. You will: Develop the security monitoring platform, ensuring optimal … in infrastructure projects to develop, plan, and implement solutions for security monitoring. Design, implement, and maintain detection rulesets. Scope, plan, and track log integrations. Guide, develop, and grow the SIEM Engineering team. Collaborate with the wider Threat Detection & Response team to ensure the SIEM platform meets their day-to-day needs and support incidents as necessary. You have Proven hands … on SIEM Engineering background. Extensive experience working with security logs across multiple domains identity and access, network, system, data, application, cloud and multiple product types. Proficiency in data analysis and scripting languages (e.g., PowerShell, Python). Strong Security Orchestration, Automation and Response (SOAR) knowledge. Team leadership experience with great collaboration and stakeholder management skills More ❯

information security strategy. Lead and mentor a small team of IT security professionals. Own ISO 27001 implementation and Cyber Essentials Plus certification. Manage operational security: endpoint protection, M365 security, SIEM/SOC, vulnerability management, and incident response. Lead security projects. Build strong relationships with stakeholders and deliver security awareness training. What We’re Looking For: Proven experience in information security … management, ideally in professional services. Hands-on experience with ISO 27001 and Cyber Essentials Plus. Strong technical knowledge: endpoint security, M365/Entra ID, SIEM, network security, encryption, backup/recovery. Certifications highly desirable: CISM, CISSP, ISO 27001 Lead Implementer . Excellent communicator, strategic thinker, and supportive team leader. Why Apply: This is your chance to shape the security strategy More ❯

Month Initial | Inside IR35 | Fully Remote Opus are working with a key client on a Security Engineer contract to support the implementation of Defender XDR including hands on configuration, SIEM integration and related security solutions. This initial 3-month contract can be completed on a fully remote basis and is determined as Inside IR35, offering £500–£525 per day. Key … Skills : Microsoft Defender XDR: Endpoint, Identity, Office 365, Cloud Apps Microsoft Sentinel: KQL, playbook development, SIEM optimisation Privileged Identity Management (PIM) and change control workflows Advanced threat detection, incident response, and threat hunting Log collection via Azure Monitoring Agent and Firewall Management Centre Responsibilities: Configure and fine-tune Microsoft Defender XDR in line with approved designs Participate in Microsoft FastTrack … engagements Integrate Defender XDR with Sentinel SIEM for enhanced detection and response Develop Kusto queries and automation playbooks Support PoC setup for Microsoft Copilot for Security Connect syslogs from on-prem servers and firewalls to Sentinel If this Security Engineer role sounds like a good fit, please apply with your most up to date CV and I’ll be in More ❯

controls supporting risk mitigation and contributing to the continual improvement of the business's security composure. Responsibilities: * Provide expertise on application, network and infrastructure security * Monitor security solutions including SIEM, threat detection and data security, endpoint protection, network analytics for alerts * Provide documentation for technical standards to meet corporate security policies/industry best practice * Perform security reviews, identify gaps … root cause of security issues and design appropriate solutions Required Experience: * Prior experience working within the security industry, with a strong background in M365 infrastructure. * Experience of working with SIEM tools * Exposure to email security tools (Sophos, O365 etc) * Excellent patch management skills (Intune SCCM, MECM Endpoint Manager and WSUS) * Experience with vulnerability scanning and management (Insight VM) * Experience with More ❯

landscape. Key Responsibilities: Design and deliver Microsoft 365 and Azure security solutions in line with best practices and industry standards. Implement and configure tools such as Microsoft Defender, Sentinel (SIEM/XDR), Entra, and Purview. Support internal and client environments post-deployment through troubleshooting, optimisation, and user training. Contribute to pre-sales engagements, including solution design, scoping, and client presentations. … relevant areas - Azure (AZ), Security (SC), Power Platform (PL), Modern Work (MS), or Copilot/AI. Strong consulting experience in the design and implementation of Microsoft Defender solutions and SIEM/XDR. Technical, hands-on expertise configuring and deploying Azure, Entra, and Purview. Proven ability to independently design and implement Microsoft 365 security technologies. Excellent communication, presentation, and documentation skills More ❯

and policy enforcement. Define and measure KPIs, SLAs, and success metrics (e.g., threat coverage, latency impact, policy adherence). Ensure integration of SSE tools with identity providers (Azure AD), SIEM platforms (e.g., Splunk), and DevSecOps pipelines. Support change, readiness, and adoption across business and technical teams. Manage security vendor relationships and roadmap alignment during evaluation and rollout. Drive delivery in … Gatekeeper, Apigee, etc. a plus. Nice to Have Cloud certifications (Azure, AWS, GCP) Experience working in regulated environments (e.g., finance, government) SAFe Agile or Scrum certifications Prior experience with SIEM/SOAR integration, API security, or Identity Governance Why Join Us Play a key role in shaping enterprise-wide secure access architecture Work with a forward-thinking, cross-functional security More ❯

day-to-day SOC operations, ensuring adherence to SLAs, KPIs, and compliance requirements Drive continuous improvement in security monitoring, detection, and response processes Ensure effective use and optimisation of SIEM, SOAR, EDR, and other security technologies Produce and deliver regular reporting on SOC performance, incident trends, and risk exposure to senior management Collaborate with threat intelligence teams to enhance detection … are integrated into processes and training Support compliance with industry standards, frameworks, and regulations Requirements Here are the key skills and experience relevant to this role: Strong knowledge of SIEM, SOAR, EDR, IDS/IPS, firewalls, and endpoint protection solutions Strong Knowledge in Incident response Familiarity with cloud security and hybrid environments Understanding of network protocols, operating systems (Windows/ More ❯

hoc travel to other sites/data centres. The Role The Cyber Security Engineer will be joining the internal security team, monitoring and analysing real-time security events using SIEM tools to detect and respond to potential threats. The Cyber Security Engineer will conduct regular vulnerability assessments and penetration tests to identify and mitigate security risks and breaches, and will … virtualisation, etc. Hands-on experience in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as More ❯

incident response Designing and evolving secure architectures using defence in depth and threat modelling principles across cloud, networks and endpoints Driving vulnerability management and scaling tooling such as CSPM, SIEM, IAM and endpoint protection to manage risk effectively Contributing to compliance efforts including ISO27001, supplier security and data privacy, helping ensure we remain audit ready Building lightweight processes that make … and delivery Keeping pace with emerging threats and contributing to strategic conversations about how we evolve our approach Experience with vulnerability management Experience with scaling tools such as CSPM, SIEM, IAM and Endpoint protection You're hands on, curious and motivated by solving real problems You enjoy working closely with others to figure things out collaboratively You bring structure to More ❯

act as a senior analyst within the team while also providing direction, coordination, and mentorship to colleagues. You must have experience across the core Cyber Security domains, including TVM, SIEM, EDR, Incident Response, DLP, EASM, Cloud Security, Application Security, WAF, and User Access Management, along with a strong understanding of industry frameworks such as NIST and CIS . This role … DXC security models where feasible, or by designing and deploying new approaches within Luxoft. Support and contribute to the wider Cyber Security services delivered by the team, including TVM, SIEM, EDR, Incident Handling, DLP, EASM, Cloud Security, and WAF. Provide cover and support for team members during absence or workload peaks. Build strong working relationships across both DXC and Luxoft More ❯

Consultant, Configure & ensure availability of required logs into Sentinel (such as EDR, Qualys, Firewalls etc), crowd strike and dark trace. Sentinel platform admin Execution of the use cases on SIEM, SOAR & Threat Intelligence. Well versed in Design & Architecture, Cribl (Newly added by client) Deploy down selected(Nozomi) OT Security/IDS platform in the lab infra. Handle OEM communication Test … Consultant, Configure & ensure availability of required logs into Sentinel (such as EDR, Qualys, Firewalls etc), crowd strike and dark trace. Sentinel platform admin Execution of the use cases on SIEM, SOAR & Threat Intelligence. Well versed in Design & Architecture, Cribl (Newly added by client) Deploy down selected(Nozomi) OT Security/IDS platform in the lab infra. Handle OEM communication Test More ❯

MonthsInside IR35 My Client a leading telecoms company is looking for a Devops Engineer to join their Security Engineering team. This role is pivotal in delivering a strategic SIEM platform that supports client's infrastructure security and compliance requirements. You'll lead the implementation of automation strategies, manage Kubernetes-based infrastructure, and drive DevOps excellence across CI/CD pipelines. … Key Responsibilities Lead technical delivery of SIEM platform automation and infrastructure. Manage Kubernetes clusters and Elastic Stack deployments (ECK). Own CI/CD pipeline design, implementation, and troubleshooting. Collaborate with cross-functional teams to streamline software delivery. Act as product owner for sprint planning and backlog management. Mentor engineers and promote DevOps best practices. Essential Skills Strong experience with … GitLab CI, GitHub Actions). Proficient in Python, JavaScript, Golang. Experience with monitoring tools (Grafana, ELK). Agile delivery and JIRA proficiency. Excellent communication and documentation skills. Desirable Skills SIEM experience, particularly with Elastic Stack. Knowledge of ArgoCD, Terraform, Ansible, Jenkins. Familiarity with Kafka, RabbitMQ, and cloud platforms (OpenStack, Azure, AWS). Understanding of Telecoms Security Act (TSA) and regulatory More ❯

using Postfix. Interpret and implement Low-Level Design documentation. Ensure secure mail routing and compliance with enterprise security standards. Integrate Postfix with core enterprise solutions such as VCF, HPE, SIEM, and LDAP/AD. Troubleshoot mail delivery and server performance issues. Automate and monitor processes using scripting (e.g., Bash, Python). Produce comprehensive technical documentation. Required Skills & Experience: Extensive hands … Proficiency in Linux system administration (RHEL, CentOS, Ubuntu). Experience with TLS, SPF/DKIM/DMARC, and SASL protocols. Ability to integrate Postfix into enterprise systems (VCF, HPE, SIEM, LDAP/AD). Strong troubleshooting and problem-solving skills. Scripting experience for automation and monitoring (Bash, Python). Excellent technical documentation skills. Preferred Qualifications: Knowledge of high availability, load More ❯

using Postfix. Interpret and implement Low-Level Design documentation. Ensure secure mail routing and compliance with enterprise security standards. Integrate Postfix with core enterprise solutions such as VCF, HPE, SIEM, and LDAP/AD. Troubleshoot mail delivery and server performance issues. Automate and monitor processes using scripting (e.g., Bash, Python). Produce comprehensive technical documentation. Required Skills & Experience: Extensive hands … Proficiency in Linux system administration (RHEL, CentOS, Ubuntu). Experience with TLS, SPF/DKIM/DMARC, and SASL protocols. Ability to integrate Postfix into enterprise systems (VCF, HPE, SIEM, LDAP/AD). Strong troubleshooting and problem-solving skills. Scripting experience for automation and monitoring (Bash, Python). Excellent technical documentation skills. Preferred Qualifications: Knowledge of high availability, load More ❯

with the Cybersecurity Operations Centre (CSOC) and senior stakeholders to transition tools, operations, and people into a new operating model . Familiarity with security processes and tools such as SIEM and Microsoft Sentinel is essential.Location: London ( Hybrid - 1 day/week) Contract Length: Initial 3 months Rate: TBC (inside IR35) Start: ASAP Key Responsibilities Manage the transition of security tools … governance. Skills & Experience A strong understanding of security operations, frameworks and terminology is essential. Experience with CSOC is essential. Proven track record in operating model transitions . Familiarity with SIEM tools and Microsoft Sentinel . Excellent stakeholder management skills at senior levels. Telco industry experience. Experience in large-scale security programs. If you're interested in this role, click 'apply More ❯

methods and practice. Assist in the design of a strategy to create a custom automated methodology for identifying potential security principles violations and providing increased early detection capabilities using SIEM & CSPM tools. About you In-depth knowledge of tools and technologies being used in cloud environments to provide security controls and assessments of the applications. 2 years experience working with … AWS native security services (inc. Lambda, Kenisis Firehose). 1 year experience using SIEM platforms. Interview process This will be a two-stage interview process consisting of a 30-minute introductory conversation and a technical assessment. Working Schedule This role is permanent, full time, 37.5 hours per week, Monday to Friday. For this role, we offer a hybrid flexible working More ❯

month contract Based in Newport Offering £90ph Inside IR35 Do you have experience in scripting and programming? Do you have experience with SOC tooling such as IDPS, Firewalls, SIEM, Splunk, etc.? Do you want to work with an industry-leading company? If your answer to these is yes, then this could be the role for you! As the Cyber Engineer … Engagement with the R&D Cyber Defence Centre for company Cyber Solutions/Products Your skillset may include: Good knowledge of multiple SOC tooling including IDPS/Firewalls/SIEM/Splunk/Email & Web Protection etc. Experience implementing and fault-finding Firewall technologies including Cisco ASR/Palo Alto/Fortinet Excellent understanding of network technologies Experience in Scripting More ❯

month contract Based in Newport Offering 90ph Inside IR35 Do you have experience in scripting and programming? Do you have experience with SOC tooling such as IDPS, Firewalls, SIEM, Splunk, etc.? Do you want to work with an industry-leading company? If your answer to these is yes, then this could be the role for you! As the Cyber Engineer … Engagement with the R&D Cyber Defence Centre for company Cyber Solutions/Products Your skillset may include: Good knowledge of multiple SOC tooling including IDPS/Firewalls/SIEM/Splunk/Email & Web Protection etc. Experience implementing and fault-finding Firewall technologies including Cisco ASR/Palo Alto/Fortinet Excellent understanding of network technologies Experience in Scripting More ❯

Candidate MUST BE SECURITY CLEARED As a Security Information & Event Monitoring (SIEM) Engineer, you are responsible for maintaining the SIEM platform. This includes onboarding log sources, creating custom parsers, developing analytic rules, creating automation for triage and remediation, and integrating with other Information Technology and Operational Technology SSE platforms at pace. You will: ... More ❯

Candidate MUST BE SECURITY CLEARED As a Security Information & Event Monitoring (SIEM) Engineer, you are responsible for maintaining the SIEM platform. This includes onboarding log sources, creating custom parsers, developing analytic rules, creating automation for triage and remediation, and integrating with other Information Technology and Operational Technology SSE platforms at pace click apply for full job details More ❯