151 to 175 of 222 SIEM Jobs in the UK excluding London

Leading and Managing IR Cases/Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient More ❯

Leading and Managing IR Cases/Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient More ❯

Leading and Managing IR Cases/Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient More ❯

Leading and Managing IR Cases/Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient More ❯

background in managing IR Cases/Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient More ❯

background in managing IR Cases/Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient More ❯

Leading and Managing IR Cases/Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient More ❯

Leading and Managing IR Cases/Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient More ❯

be considered Experience supporting bids, tenders, or large change requests Familiarity with secure infrastructure solutions and protocols Strong understanding of routing, switching, and network management technologies Exposure to Fortinet, SIEM solutions, or secure network tooling is advantageous Certifications (e.g. CCNA/CCNP, JNCIS/JNCIP) are desirable but not essential What's on Offer Salary up to More ❯

LLDs) • Familiarity with estimating BOMs, licensing, and resource efforts • Previous experience working on bids or large-scale technical projects Bonus points if you have experience with Network Management or SIEM tools. If you enjoy solving problems, thrive in a fast-moving environment, and want to contribute to meaningful projects, we'd love to hear from you. Immediate interviews and start More ❯

experience as a Pre-Sales Network Architect , with strong design documentation skills. Knowledge of routing protocols and secure infrastructure standards. Experience with Cisco, Juniper, and Fortinet technologies. Exposure to SIEM or Network Management tooling is advantageous. Must hold SC clearance and be eligible for higher-level UK security vetting. A Pre-Sales Network Architect with a passion for secure, scalable More ❯

architectural documentation Vendor experience with Juniper, Cisco, or Fortinet is strongly desired Familiarity with pre-sales processes or working on bids/change projects Exposure to Network Management or SIEM tools is beneficial Certifications (e.g. CCNP, JNCIP) are a plus, but not essential Clearance Requirements: Must be eligible for SC clearance and willing to undergo DV clearance Once DV is More ❯

from a variety of industry leaders Experienced at working on bids and large or complex changes Excellent understanding of a variety of networks and routing protocols Network management or SIEM designs, tooling or support This contract is based on-site in Baskingstoke, some travel may be required. This is a great opportunity for an experienced Pre-Sales Network Architect. Due More ❯

Firewall, VPN, IDS/IPS, and segmentation principles in industrial or utility systems Familiarity with power-system applications and the unique security challenges of electric-utility infrastructure Experience with SIEM, network-monitoring platforms, and remote diagnostics solutions Duration: 6 months (View for Extension) Salary: Up to £500 per day (Inside IR35 More ❯

and maintain incident response plans. Improve outsourced monitoring value through better use cases and data. Lead regular incident response exercises across teams. Threat Hunting Use tools like EDR and SIEM to identify threats and indicators of compromise. Analyse attacker tactics and recommend security improvements. Security Reporting Define and report security metrics. Evaluate control effectiveness and identify improvements. Communicate emerging risks … for key technologies. Promote secure practices within IT operations. Skills & Experience Strong incident triage and investigation experience. Skilled in endpoint security tools and vulnerability management. Solid understanding of EDR, SIEM, IDS/IPS, Firewalls, and cloud security. Ability to write KQL queries and develop SIEM use cases. Good grasp of security best practices and patching standards. Experience managing third-party More ❯

Senior Sentinel SIEM Engineer Havant or Reading - (Hybrid - 1 day a week in the office) Duration: 6 months Contract - Inside IR35 Are you a seasoned SIEM (Security Information and Event Monitoring) Engineer looking to take your career to new heights? This company is seeking a talented and driven individual to join their dynamic team as a Senior Sentinel SIEM Engineer. … As the Senior Sentinel SIEM Engineer, you will be responsible for maintaining and enhancing the company's SIEM platform. This includes on boarding log sources, developing analytical rules, creating automation for triage and remediation, and integrating with other IT and Operational Technology platforms. You will be a key player in ensuring the security monitoring platform operates at optimal performance, scalability … plan and implement solutions for security monitoring. Design, implement, and maintain detection rules set to identify potential security threats. Scope, plan, and track log integration's to expand the SIEM platform's capabilities. Guide, develop, and grow the SIEM Engineering team, fostering a collaborative and innovative environment. Collaborate with the Threat Detection & Response team to ensure the SIEM platform supports More ❯

detailed records of incidents, access violations, and remediation actions. • Perform risk assessments, policy reviews and development, and continuous improvement of security operations. Cybersecurity Management: • Supervise technological security measures including SIEM, DLP, IDS/IPS, Firewall, WAF, cryptological mechanisms, EDR • Analyse security alerts and conduct technical incident investigations. • Run and monitor vulnerability tests and periodic scans of key assets • Collaborate on … developing and implementing security policies and procedures to meet ISO and other standards. Experience in protecting confidential and sensitive information. Working knowledge of networks, operating systems, firewalls, proxies, EDR, SIEM, Cryptology and AI. Experience in crisis management and incident response. Up-to-date knowledge of emerging security trends and technologies. Ability to develop and integrate contingency plans. Experience in Cybersecurity More ❯

or Account Management in tech, SaaS, or managed services Strong communicator with executive and technical stakeholders Track record with renewals and structured success plans Bonus: knowledge of cybersecurity including SIEM, EDR, and MSS This is your chance to shape Customer Success from day one. 🌍 👉 Apply now More ❯

or Account Management in tech, SaaS, or managed services Strong communicator with executive and technical stakeholders Track record with renewals and structured success plans Bonus: knowledge of cybersecurity including SIEM, EDR, and MSS This is your chance to shape Customer Success from day one. 🌍 👉 Apply now More ❯

or Account Management in tech, SaaS, or managed services Strong communicator with executive and technical stakeholders Track record with renewals and structured success plans Bonus: knowledge of cybersecurity including SIEM, EDR, and MSS This is your chance to shape Customer Success from day one. 🌍 👉 Apply now More ❯

to Azure. You'll lead threat modelling and threat hunting activities to proactively discover potential compromises, work with external teams on penetration tests and red team engagements and manage SIEM and XDR tooling, establish processes and workflows to support incident response SOC. Location/WFH: You'll join colleagues in the Central London office for two days a week with … have experience of securing web applications, Windows, Active Directory and M365 environments You have a good knowledge of cloud security, GCP or Azure preferred, AWS also considered You have SIEM and EDR/XDR systems including Splunk and CrowdStrike You have a good knowledge of networking principles You are degree educated in Computer Science or closely related discipline You're More ❯

Cyber Security Analyst - SOC - SIEM - 12 month contract (inside IR35) - DV Clearance I am working with a public sector client who are looking for an experienced Cyber Security Analyst to support their front line cyber defence services. Due to the urgency and the nature of the role, candidates with active DV clearance are preferred. This role requires a high level … pressure within a client-facing capacity. Key responsibilities: Provide front line cyber security monitoring and analysis within a Security Operations Centre (SOC) Perform threat detection and incident response using SIEM tools such as Splunk and Microsoft Defender Conduct in-depth investigations into security alerts, escalating where appropriate and providing remediation advice Carry out threat analysis to improve detection capability and … matters Apply up-to-date knowledge of the cyber threat landscape and defence best practices Essential skills and experience: Proven experience in SOC environments, with a strong background in SIEM monitoring and incident response Hands-on experience with tools such as Splunk and Microsoft Defender Strong analytical and troubleshooting skills Excellent verbal and written communication skills, particularly in client-facing More ❯

role for you. Key Responsibilities Lead security incident response and threat detection efforts, prioritising the protection of customer data and experience Build automated detection and remediation workflows using SOAR, SIEM, and scripting (Python, SQL) Apply deep cloud security knowledge (AWS, Azure) to secure ecommerce, mobile apps, APIs, and in-store systems Collaborate with Fraud and Customer Experience teams to mitigate … response during critical events Key requirements: Proven Experience: 4+ years in Security Operations or Incident Response, ideally in ecommerce, retail, or fintech environments Technical Depth: Hands-on expertise with SIEM, SOAR, EDR, automation tools, Python, SQL, and cloud-native security tooling Cloud Security: Strong knowledge of AWS and Azure, especially services like WAF, Shield, IAM, and API Gateway Forensic Skills … Exciting Purpose-Driven Impact: Your work directly protects customer data, accounts, and transactions—making every wellness journey safer. Cutting-Edge Tools: Leverage a modern stack including AWS, Azure, SOAR, SIEM, EDR, and cloud-native security solutions. Cross-Team Collaboration: Partner with Fraud, Customer Experience, Engineering, and Digital to stop threats before they start. Automation-Led Security: Drive rapid detection and More ❯

My client, a leading IT Security focused Managed Services Provider is looking to hire a new SIEM focused SOC Engineer for a 6 month project based in Birmingham. The primary function of the Senior SOC Engineer is to enhance our security operations capabilities. This role requires deep expertise in SIEM platforms, including Splunk, IBM QRadar, Microsoft Defender, Microsoft Sentinel, and … Chronicle, with a strong focus on playbook development, analytical rule creation, and threat modelling. You will be instrumental in building and optimizing our detection and response strategies. Job Duties SIEM Engineering & Management Deploy, configure, and maintain SIEM platforms (Splunk, QRadar, Sentinel, Defender, Chronicle). Onboard and normalize log sources across cloud and on-prem environments. Develop and optimize analytical rules … for threat detection, anomaly detection, and behavioural analysis. Skills Must be able to obtain SC Clearance or already hold SC clearance. SIEM Expertise: Hands-on experience with at least two of the following: Splunk IBM QRadar Microsoft Defender for Endpoint Microsoft Sentinel Google Chronicle Technical Skills: Strong knowledge of log formats, parsing, and normalization. Experience with KQL, SPL, AQL, or More ❯

ensuring patches and fixes are applied in a timely manner. Learn and implement security monitoring and automation solutions to detect and respond to threats. Help manage security tooling, including SIEM, IDS/IPS, and vulnerability scanning solutions. Work closely with engineers to support secure coding practices and help embed security considerations early in the development process. Assist in securing infrastructure … frameworks Familiarity with compliance automation tools such as Secureframe, Drata, or Vanta Experience working with pen testing and bug bounties a plus Basic understanding of security tools such as SIEM, IDS/IPS, and vulnerability management solutions Experience or knowledge of cloud security (AWS, GCP, or Azure) Awareness of security best practices in application and infrastructure security Some exposure to More ❯