126 to 150 of 179 SIEM Jobs in the UK excluding London

role for you. As our Cyber Security Engineer, youll play a key part in supporting and evolving our security tooling, especially our SIEM platform. Youll work directly with both internal teams and customers to ensure strong security outcomes across the board. You will: Take ownership of SOC tooling, with … primary focus on our SIEM platform. Implement SIEM solutions into customer environments and tune data feeds effectively. Work closely with the SOC to maintain and continuously improve SIEM rulesets and use cases. Provide expert cyber guidance and technical leadership to customers. Support major security incidents and play a hands ...

Ensure compliance with regulations (e.g., PCI-DSS, GDPR). Skills & Experience Required: Knowledge of PCI-DSS and GDPR An understanding of Security best practices SIEM, Vulnerability scanning and common security frameworks Security management systems and organisational security controls, including standards, best practices, and approaches to risk assessment and mitigation. ...

doing: • Owning and growing strategic customer relationships • Leading QBRs, service reviews, and account planning • Driving adoption across cyber, cloud, and connectivity (XDR, SIEM, SD-WAN, Azure, M365) • Managing renewals, commercials, and multi-year agreements • Collaborating with Pre-Sales and technical teams to close opportunities What they’re looking for: • Proven ...

doing: • Owning and growing strategic customer relationships • Leading QBRs, service reviews, and account planning • Driving adoption across cyber, cloud, and connectivity (XDR, SIEM, SD-WAN, Azure, M365) • Managing renewals, commercials, and multi-year agreements • Collaborating with Pre-Sales and technical teams to close opportunities What they’re looking for: • Proven ...

and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats … hunting, cyber threat detection, SOC, blue team, or cyber defence environments, with ideally around five years hands on experience. Strong hands-on experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary ...

Communicate directly with clients during live security incidents Develop and maintain SOC playbooks and automation workflows Analyse firewall alerts and support configuration troubleshooting Tune SIEM, EDR, XDR, and SOAR tools to reduce false positives Maintain detailed incident documentation and lessons learned Provide mentoring and technical guidance to Tier 1 analysts … Proven experience working in a SOC or security operations environment Strong understanding of cyber threats, attack techniques, and defensive controls Hands-on experience with SIEM, EDR, XDR, and SOAR platforms Solid networking knowledge (TCP/IP, firewalls, common protocols) Strong analytical and problem-solving skills Excellent written and verbal communication ...

services Design and implement enterprise grade logging and monitoring solutions using OCI Logging, OCI Monitoring, Events and Alarms. Integrate OCI monitoring with third party SIEM, ITSM and APM tools (e.g. Splunk, BMC etc.) Demonstrable experience with Oracle Cloud Infrastructure (OCI), including proficiency in the design and build of services such ...

customer accounts • Leading QBRs, service reviews, and account planning • Identifying upsell/cross-sell opportunities across cyber, cloud & connectivity • Driving adoption of solutions (XDR, SIEM, SD-WAN, Azure, M365) • Managing renewals, contracts, and commercials • Working closely with Pre-Sales and technical teams to win business What they’re looking ...

customer accounts • Leading QBRs, service reviews, and account planning • Identifying upsell/cross-sell opportunities across cyber, cloud & connectivity • Driving adoption of solutions (XDR, SIEM, SD-WAN, Azure, M365) • Managing renewals, contracts, and commercials • Working closely with Pre-Sales and technical teams to win business What they’re looking ...

automation. You will have extensive cyber security experience, with strong incident response, detection engineering, andautomation skills with good knowledge of Rapid 7, SOAR/SIEM, Active Directory/Windows detection and Cloud (AWS/GCP/OCI. You will have strong communication skills. The role will involve working as part … week on site near Manchester. As an experience Cyber Security Engineer you will have the following: Cyber Security Engineer Strong hands-on experience with SIEM, SOAR, and EDR technologies SOAR automation experience (playbooks, integrations, workflows) Rapid7 (InsightIDR, InsightConnect, or similar) Solid understanding of incident response processes Active Directory and Windows ...

support when required. This is a hands-on technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development … automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting activities Act as an escalation point for Tier 1 analysts, providing ...

processes Onboard systems including Windows, Linux/Unix, and network devices into PAM platforms Support Active Directory privileged account management Integrate PAM solutions with SIEM tools for logging and alerting Troubleshoot technical issues related to connectors, sessions, and integrations Produce clear technical documentation and runbooks Required Skills & Experience Proven hands … and auditing Knowledge of Active Directory and enterprise infrastructure environments Experience onboarding systems (Windows/Linux/network devices) into PAM platforms Familiarity with SIEM integration and security event monitoring Understanding of security frameworks such as ISO 27001 or NIST Strong troubleshooting and problem-solving skills Ability to obtain ...

service accounts. Onboard Windows, Linux/Unix, and network devices into PAM platforms. Manage privileged account controls within Active Directory. Integrate PAM solutions with SIEM tools for event ingestion, correlation, and alerting. Troubleshoot connector, policy, and session issues. Produce high-quality technical documentation and runbooks. Essential Experience Proven hands … discovery and automated governance. Experience onboarding multi-platform systems (Windows/Linux/network devices). Understanding of AD privileged identity management. Experience with SIEM integrations for PAM audit logging. Working knowledge of ISO 27001 and NIST CSF. Strong troubleshooting and analytical skills. Excellent documentation capability. Eligible for SC clearance. ...

hands-on experience in monitoring, triaging, and responding to security incidents in a fast-paced, shift-based environment. Key Responsibilities Advanced Security Monitoring: Analyse SIEM alerts, logs, and security events to identify and respond to complex threats. Incident Response: Lead investigations, perform deep analysis, determine impact, and coordinate response activities. … detailed reports on incidents, trends, and overall security posture. Process Improvement & Automation: Enhance SOC processes, playbooks, and automation capabilities. Skills & Experience Strong experience with SIEM platforms (e.g., Microsoft Sentinel, Sumo Logic) Hands-on experience with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Solid understanding of: Incident response lifecycle Threat ...

tiered access model, legacy AD decommissioning, secure hybrid environments Microsoft 365 & Cloud Security Microsoft Defender XDR (Endpoint, Identity, Office 365, Cloud Apps) Microsoft Sentinel (SIEM): log ingestion, alert tuning, detection rules, incident workflows Intune & Endpoint Management: device compliance, MDM/MAM, BYOD enforcement Endpoint, Infrastructure & Asset Security Network, DNS & Access … Azure Firewall, VPN security, and network segmentation of azure infrastructure PowerShell scripting for security, identity, and infrastructure tasks Security automation using Logic Apps and SIEM workflows if required The salary on offer for this role is up to £60,000. ...

evolving cyber threats. As the SecOps Lead, you will manage security monitoring and incident response activities while providing strategic direction for security tools including SIEM and Endpoint Detection & Response (EDR) platforms. You will work closely with internal teams and external security partners to strengthen our threat detection capabilities and improve … strengthen the organisation's security posture and defensive controls. Skills & Experience Experience in Cyber Security or Security Operations leadership Proven experience working with SIEM platforms such as Google Chronicle or similar. Strong knowledge of network security, threat detection, and incident response. Experience analysing malware, security alerts, and attack patterns. Understanding ...

technical work and mentoring others. Senior SOC Analyst essential skills Proven experience working within a SOC environment, ideally 2+ years Strong knowledge of SIEM, incident management and threat intelligence Experience with cloud security, networking and information security principles Understanding of IDAM, RBAC and joiners, movers and leavers processes Ability … consent for your application to be processed and submitted to the client in conjunction with this vacancy only. Key skills: Senior SOC Analyst, SOC, SIEM, Incident Response, Cloud Security, Threat Intelligence, IDAM, ISO 27001, Team Leadership ...

detect and respond to threats quickly and efficiently. Install, configure and maintain security monitoring tools Ensure SOC tooling is optimised and operating effectively Support SIEM platforms and threat intelligence tooling Work with teams to assess risk and design security controls Apply updates, patches and follow change processes Stay current with … emerging threats and recommend improvements SOC ENGINEER ESSENTIAL SKILLS Strong understanding of information security fundamentals Experience with SIEM tools such as Sentinel or Splunk Familiarity with security monitoring technologies Analytical mindset with strong problem solving skills Ability to manage multiple priorities and meet deadlines Strong communication and collaboration skills ...

tooling is operating effectively to protect client environments. Work with teams to assess risks, design controls and define testing requirements. Support senior engineers with SIEM, threat intelligence and malware analysis platforms. Apply patches/updates, raise changes and follow agreed processes. Keep up to date with threats and recommend improvements. … busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experienceespecially Sentinel or Splunk. If you are interested in this role but not sure if your skills and experience are exactly what were looking for, please ...

tooling is operating effectively to protect client environments. Work with teams to assess risks, design controls and define testing requirements. Support senior engineers with SIEM, threat intelligence and malware analysis platforms. Apply patches/updates, raise changes and follow agreed processes. Keep up to date with threats and recommend improvements. … busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experience—especially Sentinel or Splunk. If you are interested in this role but not sure if your skills and experience are exactly what we’re looking ...

and assess alerts escalated by the outsourced SOC; validate their accuracy and determine potential impact. Initial Investigation: Perform first-line investigation using available tools (SIEM, Device Logs, firewall logs and SIEM alerts). User Interaction: Engage with affected end users or asset owners to collect additional information, verify events … including malware, phishing, lateral movement and privilege escalation. Working knowledge of network fundamentals, windows/Linux system logs and authentication systems. Working knowledge of SIEM platforms (e.g. Microsoft sentinel, Splunk, Elastic, QRadar). Desirable: Awareness of security frameworks and methodologies (NIST CSF, MITRE ATT&CK, ISO27001). Qualifications: Desirable: CompTIA ...

department, working in security operations. Strong alert triage, incident response, security monitoring, and threat analysis. Experience handling real-world security incidents and working with SIEM, EDR, or vulnerability management tools. Ideally have a strong bachelor’s degree in computer science, Information Security, Cyber Security or related field with any SIEM ...

experience needed. Skills & Experience Required: 3+ years of experience as a SOC/Security Engineer within a cloud environment Experience with a range of SIEM, SOAR and vulnerability management tools Experience advising on security best practices and developing SOC playbooks Networking and infrastructure experience, including with Firewalls and IDS/… vibrant office with some of the most forward-thinking technical people Key Responsibilities: Hands-on detection, investigation, and response to security incidents through SIEM and other security tools, carrying out forensic and root-cause analysis Analyse emerging threats and provide recommendations to mitigate risks, and plans to resolve security threats ...

provide out-of-hours escalation support when required. This is a highly technical, hands-on role where youll lead threat hunting, develop and tune SIEM detections, and help mature SOC processes and response playbooks. Youll also play a key role in mentoring analysts and raising the overall technical capability … and this role will continue to evolve as AI-driven detection, automation, and response capabilities are introduced. You will: Develop, tune, and maintain SIEM detection rules across customer environments Conduct proactive threat hunting and threat intelligence research Act as a senior escalation point for Cyber Security Analysts Coach and mentor ...

and lifecycle management Onboarding Windows Server, Linux/Unix and network devices onto PAM platforms Managing privileged accounts in Active Directory Integrating PAM with SIEM for logging, alerting and monitoring Producing clear documentation, runbooks and technical configuration records Troubleshooting connector and session-related issues What the client is looking … management) Solid knowledge of credential vaulting , password rotation and session monitoring/recording Experience integrating PAM into complex infrastructures (servers, network devices, AD, SIEM) Familiarity with security frameworks such as ISO 27001 and NIST CSF Strong troubleshooting skills and a methodical, security-focused mindset Ability to obtain SC-level national ...