1 to 25 of 88 Remote/Hybrid SIEM Jobs

many of the following areas: Security architect/design, planning and deployment. Vulnerability management. VPS, IPS, URL/content filtering, email security, encryption, SIEM, WAF. Windows, Linux OS. Server hardening/security baseline standards. PKI/certificate management. Security Operations and Incident Response. NIST, FISMA and RMA security policies and ...

service follows and complies with IT and Information Security policies and regulatory standards. Help configure and keep current the integration of IAM technologies with SIEM, SOAR, Service Desk and other tools. Work closely with relevant vendors to ensure optimised use of the supplied technologies and professional services. Serve ...

Implement least privilege access models and enforce secure credential management Monitor and audit privileged access activities across systems and applications Integrate PAM tools with SIEM, IAM, and other security platforms Develop and maintain policies, procedures, and documentation for PAM operations Conduct regular access reviews, privilege audits, and risk assessments Collaborate ...

Implement least privilege access models and enforce secure credential management - Monitor and audit privileged access activities across systems and applications - Integrate PAM tools with SIEM, IAM, and other security platforms - Develop and maintain policies, procedures, and documentation for PAM operations - Conduct regular access reviews, privilege audits, and risk assessments - Collaborate ...

and wants to contribute to a mission-driven cyber defence team. Key Responsibilities You will: Develop, maintain and enhance detection content (primarily for Splunk SIEM ) across cloud, endpoint and network platforms Identify detection gaps, log ingestion issues and alert improvements Review and uplift existing SecOps standards, logging maturity, BAU monitoring ...

. Scripting skills in Python for automation and threat analysis. Strong AWS security expertise (IAM, GuardDuty, Security Hub, CloudTrail, VPC design). Experience with SIEM, MDR, and vulnerability management tools. Familiarity with financial regulatory frameworks: DORA, FCA (SYSC/PS21/3), NIS2/UK NIS. Working knowledge ...

enterprise risk management Knowledge of frameworks: ISO 27001, Gov Assure, NIST, Cyber Essentials Security audit support and remediation Experience with Azure AD, Microsoft 365, SIEM, EDR/XDR, vulnerability management Policy development, access control, and logging standards Stakeholder engagement and technical reporting Desirable: Degree in Cybersecurity or related field Relevant ...

configuring and working directly with security tooling in live environments Cloud security (Microsoft 365, Azure, AWS) Strong technical exposure to security tooling, such as: SIEM/SOAR, EDR/XDR, vulnerability scanners, patch management, CASB, DLP Desirable experience: Microsoft Defender, Purview and M365 E5 security capabilities Privileged Access Management ...

Experience working in a SOC, NOC, or equivalent security operations environment, with well-developed investigation, triage, and incident handling skills. Demonstrable practical knowledge of SIEM, EDR, firewalls, and major security technologies (Splunk, Sentinel, QRadar, CrowdStrike, etc.). Strong grasp of networking concepts (TCP/IP, DNS, protocols), Windows and Linux ...

knowledge of Palo Alto firewalls and Panorama Proficiency in Python scripting for automation Strong understanding of network protocols , SSL decryption , and inspection Experience with SIEM/log aggregation tools (e.g., Splunk , Cortex ) Excellent communication and documentation skills Preferred Qualifications Cloud security experience (Azure, AWS, GCP) Infrastructure as Code (IaC) tools ...

mediocrity. Strive for excellence and consider joining our growing team today! Please Note: This position is contingent upon award JOB OVERVIEW Job Summary: The SIEM Engineer is responsible for designing, implementing, and managing SIEM solutions to collect, analyze, and visualize data from various sources within government agencies. This role involves … configuring SIEM environments, creating dashboards, and ensuring the effective use of SIEM's capabilities to monitor, detect, and respond to security threats and operational insights. The SIEM Engineer collaborates closely with IT teams, security analysts, and stakeholders to optimize data intelligence and drive informed decision-making. Essential Functions: SIEM Deployment ...

Operations, Privilege Access Management, Encryption, Operation System Security, Cloud & Container Security Cloud/AWS/Azure Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI The permanent position for Cloud Security Solution Engineer (Home Based), will pay a competitive salary and benefits with a home working model. ...

Operations, Privilege Access Management, Encryption, Operation System Security, Cloud & Container Security Cloud/AWS/Azure Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI The permanent position for Cloud Security Solution Egineer (Home Based), will pay a competitive salary and benefits with a home working model. ...

environments Technology Skills & Experience Principles of network and boundary protection (firewalls, mail gateways, load balancers, antivirus, IPS/IDS, Diodes) Protective Monitoring systems (SIEM/SOC) and deployment principles Authentication & authorisation technologies (SAML, LDAP, PKI, etc.) Encryption protocols and structures supporting secure deployment Communication & Soft Skills Excellent verbal and written ...

and infrastructure standpoint. Strong networking background, including understanding of network security principles, firewalls, VPNs, routing, and segmentation. Experience with a range of security tools (SIEM, monitoring, detection, and response platforms). Proven experience delivering and supporting certificate automation. Experience operating in enterprise or regulated environments. Comfortable working across project delivery ...

systems remain at the required security posture against baseline requirements Work with the Security Monitoring engineering team to ensure logs are forward to the SIEM capability Work with the customer and appropriate agencies to develop new policies, design processes, and procedures, and develop technical designs Assess system vulnerabilities, implement risk ...

prem Experience with monitoring, logging, and backup tools Knowledge of networking and security principles Familiarity with vulnerability management and VPNs Desirable ITIL processes SIEM/EDR tools (eg Microsoft Sentinel/Defender) Scripting (PowerShell, Bash, Python) Due to the volume of applications received for positions, it will not be possible ...

cyber security incidents in a mid to large enterprise or MSSP environment. Strong understanding of attack methodologies, malware behaviour, and adversary TTPs. Experience with SIEM, EDR, SOAR, threat intel platforms, and forensic tools. Deep knowledge of IR frameworks: Ability to make clear decisions under pressure and command multi disciplinary response ...

security concepts into clear recommendations for senior stakeholders Skills & Experience Strong experience in enterprise security architecture within large-scale environments Expertise across: SOC/SIEM/SIAM Network Security Architecture Cloud Security (Azure, AWS, Hybrid environments) Strong understanding of modern security operations and tooling Familiarity with frameworks such as TOGAF ...

Engineer - SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100, Our leading global law firm client are currently looking to take on a new SOC Engineer (SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100) to join their team on a contractual … healthy hybrid working solution 2-3 days per week in London and offer a great deal of autonomy and technical exposure. This SOC Engineer (SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100) role, will be responsible for the enhancement of existing SIEM platform and improve ...

from colleagues and service delivery teams Support and coordinate patch management activities, validating effectiveness through vulnerability scanning Oversee and operate key security technologies, including SIEM, email and web gateways, and endpoint protection tools Monitor external threat intelligence sources and assess relevance to the organisation Produce and report on security metrics … operational performance Technical expertise Good understanding of information security principles, risk management and the threat landscape Experience of operating and monitoring security tooling, including SIEM, endpoint protection, and email/web security solutions Ability to proactively conduct threat hunting activities and develop or enhance detection analytics to improve identification ...

Ability to oversee third-party vendors and managed security services Strong documentation and stakeholder communication skills Desirable Experience Experience in solution architecture Familiarity with SIEM/SOC integration in OT environments Experience with OT asset discovery and monitoring tools Knowledge of regulatory frameworks within critical infrastructure (e.g. NIS) Experience contributing ...

prem, hybrid). Assess solutions' applicability and viability against federal requirements; validate architectures and design patterns across identity, data, endpoint, network, cloud, application, SIEM/SOAR, threat intel, AI/ML security, ICS/OT, and zero-trust pillars. Validate claims via documentation reviews, labs/POCs, and references with ...

issues independently Desirable: Relevant certifications (Microsoft, cybersecurity, or networking qualifications) Experience with virtualisation technologies (VMware, Citrix, or similar) Exposure to security tools and practices (SIEM, threat monitoring, vulnerability management) Experience supporting multi-site or international environments Ability to train or support non-technical users Why choose VANRATH? Partnering with VANRATH ...

CloudFormation, AWS Step Functions, AWS SSM, AWS IAM, AWS Security, AWS Backup, AWS ACM, KMS Experience with monitoring tools (Datadog, PagerDuty, CloudWatch, CloudTrail, SIEM integration) Scripting experience (Terraform, Ansible, Python, AWS CLI) Strong knowledge of Service Management, Release and Change management processes and tools Tooling experience (Jenkins CI/ ...