376 to 385 of 385 SIEM Jobs in the UK excluding London

Responsibilities: • Perform triage of security events and incidents • Determine scope, impact and remediation priorities • Real-time incident management from detection to resolution • Support SIEM engineering and tool configuration within an enterprise SOC • Develop use cases, analytics and playbooks • Work within a fast-paced, highly secure operational environment Essential Experience: ✔ Proven … Tier 2/3 SOC Analyst experience (2+ years) ✔ Hands-on SIEM experience (ArcSight preferred) ✔ SOC certifications such as SANS, ISC2 or equivalent ✔ Strong incident response and threat analysis capability ✔ Understanding of cloud technologies. Desirable: ➕ Defence/MOD experience ➕ Team lead exposure ➕ Degree in Computing, Engineering or related discipline. Please ...

/Unix servers, network devices and applications to the PAM platform Configure Just-in-Time (JIT) access workflows and approval processes Integrate PAM with SIEM tools for monitoring and alerting Manage platform upgrades, patching and ongoing health monitoring Troubleshoot connector issues and session failures Maintain technical documentation and support audit … credential vaulting, password rotation and privileged access workflows Experience onboarding systems into PAM platforms Strong understanding of Active Directory privileged account management Experience with SIEM integration Ability to obtain SC level security clearance If this sounds like a role for you please apply with an up to date version ...

support issues Supporting and mentoring Tier 1 Engineers Troubleshooting Microsoft 365, Azure and infrastructure issues Investigating and responding to security alerts from SOC/SIEM platforms Supporting Cisco Meraki networking environments Managing issues through to resolution with clear customer communication throughout Identifying recurring technical or service trends and helping improve … teams where required Technical Environment Microsoft 365 Azure Windows Server/Active Directory Cisco Meraki Endpoint Manager/Intune MFA/Security tooling SIEM/EDR platforms Hyper-V Windows, Mac, iPhone and Android device support What They're Looking For Previous experience in a 2nd Line Support or Escalation ...

their entire fleet. This hire will design and build partner API integrations across the cybersecurity stack — endpoint protection, network security, user awareness training, and SIEM/SOC tooling — and set the standard for test-driven development across the codebase. This is a hands-on, permanent role. You will not just … day. Responsibilities Integration Development Design and build partner API integrations across GT Maritime's cybersecurity stack — endpoint protection, network security, user awareness training, and SIEM/SOC tooling. Write clean, modular, well-tested code following object-oriented design principles. Participate in code reviews and hold a high bar for what ...

determine scope, priority and impact, and recommend rapid remediation actions. Conduct real-time management of security incidents from detection through to resolution. Work with SIEM technologies and SIEM engineering, including tool configuration (e.g. ArcSight). Create and maintain use cases, analytics and playbooks. Contribute to security monitoring across on-prem … Industry-standard SOC security qualifications (e.g. SANS, ISC2). Proven Tier 2/3 SOC Analyst experience (2+ years). Hands-on experience with SIEM technologies and engineering (ideally including ArcSight). Experience creating SOC use cases, analytics and playbooks. Desirable Degree in a technical, engineering or computing discipline. Defence ...

and development opportunities THE MANAGING SECURITY ENGINEER ROLE: You will lead the design, implementation and optimisation of security monitoring platforms, with a focus on SIEM technologies. Working closely with cross-functional teams, you will assess risk, define controls and deliver scalable, high-performance security solutions. You will … and risk-based alerting Experience building and maintaining data pipelines, log ingestion and schema standardisation Advanced knowledge of SPL, KQL or EQL Experience with SIEM operations, including scalability, high availability and performance Automation experience using CI/CD, Infrastructure as Code or scripting tools Strong problem-solving skills and ...

Experience with OPA (Open Policy Agent) policy authoring in Rego and sidecar deployment patterns Hands-on with OpenTelemetry (traces, metrics, logs), Dynatrace, and Splunk SIEM integration Working knowledge of CDN/WAF platforms (Akamai Ion, Kona, Cloudflare) and WAF-as-code automation Experience with PostgreSQL (HA, connection pooling, PITR) and … maintain OPA policy bundles for coarse-grained authorization at the gateway layer Build and extend OpenTelemetry instrumentation pipelines (OTel Collector, Dynatrace OTLP ingest, Splunk SIEM forwarding) Manage GitOps-driven deployments via ArgoCD and Helm across multi-cluster Kubernetes environments Automate WAF rule management across Akamai and Cloudflare using ...

supporting a portfolio of customers across multiple sectors. You’ll act as an escalation point for Tier 1, owning investigations end-to-end — triaging SIEM and EDR alerts, leading incident response, hunting threats using MITRE ATT&CK, and tuning detections to cut noise. You’ll also mentor junior analysts and … help mature playbooks and runbooks. We’re looking for 3+ years in a SOC or MSSP, hands-on with SIEM, EDR, and Microsoft 365/Entra ID security. KQL or PowerShell scripting, phishing and malware triage experience, and clear written communication are essential. Security+, SC-200, BTL1 or similar certs ...

SIEM Engineer – Watford, UK Up to £85,000 salary depending on experience Full time onsite role in Watford DV clearance required ABOUT THE CLIENT Our client is a highly respected technology and security services provider supporting organisations operating in complex and security critical environments. Their teams design and deliver advanced … ensure the right controls, tooling and processes are in place to protect critical systems and data. You will take ownership of detection engineering, SIEM platform performance and the full lifecycle of security detection content, ensuring security monitoring remains effective, scalable and reliable. Key responsibilities include: Acting SME on Splunk Enterprise ...

team. In this hybrid role, the successful candidate will deliver engaging pre-sales demonstrations and provide tailored solution designs. A deep understanding of MDR, SIEM, and EDR is essential, along with skills in project management and client communication. The position offers cutting-edge technology engagement and a supportive team environment. ...