1 to 25 of 263 Remote SIEM Jobs

/DevOps). Knowledge of security frameworks and regulatory compliance standards (NIST CSF, SOX ITGC, GDPR, MITRE ATT&CK, etc.) Experience with common industry SIEM and vulnerability management platforms. Experience maintaining the Microsoft Defender platform and other Microsoft security products. Ability to rank and prioritize vulnerabilities and security recommendations appropriately More ❯

management. Possess a working knowledge of Cisco network switches, routers, firewalls and VPN, network security, administration of DLP, antivirus/antimalware, IDS/IPS, SIEM, SMTP, Email security, AD, Group Policy, DNS, DHCP, and VLANs. Experience with identity access management solutions, such as SAML/OATH. Experience with HIDS and More ❯

Jira or MS Project. Proficient in one or more programming languages including but not limited to C, C++, Java, Python, or Rust. Experience with SIEM tools, EDR/XDR tools, SOAR tools, scanning and reconnaissance, penetration testing, integration of software products and/or data sources. Experience using containerization technology More ❯

and common Internet protocols. Knowledge of system administration and security architecture. Knowledge of the main security monitoring tools (FW, IDS/IPS, HIDS, WAF, SIEM). Experience or proven knowledge of at least one IDS technology. Scripting in Bash, Python or PowerShell. Fluent in English (written and spoken). Self More ❯

relevant to SaaS products, preferably in a data-heavy environment. Hands-on experience with security technologies such as firewalls, intrusion detection/prevention systems, SIEM, antivirus, encryption, and vulnerability assessment tools. You own relevant certifications (Security+, IAT II/III level or similar). You excel in risk assessments, vulnerability More ❯

direction, mentor and supervise team members. Qualifications: 5+ years of experience with Cybersecurity in Network Security, Infrastructure Security, Applications or Systems Security, Security Operations, SIEM, Incident Response, or Threat Intelligence 2+ years of experience in medium to large enterprise network environments with change board, documentation, and reporting requirements Experience in More ❯

and response, and supporting the implementation of security controls and policies across cloud, on-premise, and hybrid environments. This role also involves working with SIEM solutions, automating security workflows, and contributing to the company's compliance with Cyber Essentials Plus and ISO 27001 standards. Key Responsibilities: Design, implement, and manage … and threat management. Leverage Infrastructure as Code (IaC) principles using Terraform to automate security policies and infrastructure deployment. Utilize Security Information and Event Management (SIEM) solutions (preferably Microsoft Sentinel SIEM ) to monitor, detect, and respond to security incidents. Create and maintain runbooks for security incident response, including automating workflows to … cloud infrastructure, managing security controls). SIEM Solutions: First-hand experience working with SIEM solutions , particularly Microsoft Sentinel SIEM . Experience in designing and managing SIEM rule sets, creating dashboards, and correlating data for threat detection. Familiarity with security event log analysis, alerts management, and incident response workflows. Cybersecurity Frameworks More ❯

and response, and supporting the implementation of security controls and policies across cloud, on-premise, and hybrid environments. This role also involves working with SIEM solutions, automating security workflows, and contributing to the company's compliance with Cyber Essentials Plus and ISO 27001 standards. Key Responsibilities: Design, implement, and manage … and threat management. Leverage Infrastructure as Code (IaC) principles using Terraform to automate security policies and infrastructure deployment. Utilize Security Information and Event Management (SIEM) solutions (preferably Microsoft Sentinel SIEM ) to monitor, detect, and respond to security incidents. Create and maintain runbooks for security incident response, including automating workflows to … cloud infrastructure, managing security controls). SIEM Solutions: First-hand experience working with SIEM solutions , particularly Microsoft Sentinel SIEM . Experience in designing and managing SIEM rule sets, creating dashboards, and correlating data for threat detection. Familiarity with security event log analysis, alerts management, and incident response workflows. Cybersecurity Frameworks More ❯

systems, and cloud technologies. Strong understanding of security principles, practices, and frameworks (e.g., PCI, NIST, ISO 27001). Experience with security tools such as SIEM, IDS/IPS, endpoint protection, and penetration testing tools. Experience with public cloud security, specifically AWS, Azure, and Google Cloud Platform (GCP). You will More ❯

on Python and security automation. Familiarity with operating system scripting languages such as PowerShell and Bash. Experience with security tools and technologies such as SIEM, IDS/IPS, firewalls, and vulnerability scanners. Knowledge of cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Experience with API development and More ❯

Agile Tester Extension (CTFL-AT) . Experience with forensics and incident response in government systems. Strong understanding of cloud security posture management (CSPM) and SIEM tools (Splunk, ELK, Microsoft Sentinel) . Experience with security validation techniques for microservices and containerized applications (Kubernetes, Docker security hardening) . Certifications & Security Clearance ISTQB More ❯

Skills •Experience with the following technologies: Cisco Routing & Switching (LAN/WAN), Cisco Firepower IPS/Firewall and Web Security Appliance (WSA) •Familiarity with SIEM tools, data lakes and the design, development of security analytics. •Motivation and desire to learn advanced concepts in cyber and ability to work within a More ❯

data protection, and cyber law Strong troubleshooting abilities in systems, networking, and cloud environments Proven hands-on experience with tools like PAM, EDR, CASB, SIEM, DLP, email filtering , and vulnerability management Proficient in cloud services , especially in environments using virtual machines, identity management, web apps , and networking components (e.g., virtual More ❯

. Expertise in threat/risk modelling, network security, encryption, authentication, and access control. Skilled in configuring security technologies like firewalls, IDS/IPS, SIEM, and vulnerability tools. Knowledge of cloud security (AWS, Azure, and Google) and DevSecOps practices. Experienced in researching emerging tech trends, securing solutions, and using CI More ❯

. Expertise in threat/risk modelling, network security, encryption, authentication, and access control. Skilled in configuring security technologies like firewalls, IDS/IPS, SIEM, and vulnerability tools. Knowledge of cloud security (AWS, Azure, and Google) and DevSecOps practices. Experienced in researching emerging tech trends, securing solutions, and using CI More ❯

learning and professional development. Flexibility to work on-site in Peterborough two days per week (negotiable). Preferred Skills & Certifications: Experience with KQL, Rapid7 SIEM, SentinelOne EDR, Microsoft Defender XDR, or Microsoft Sentinel. Level 3 Analysts: Additional expertise in threat hunting, digital forensics, and leadership experience. Benefits: Competitive salary package More ❯

monitoring, querying, playbook development, and integration with other solutions Proven experience with the Microsoft Defender security stack and Microsoft Online ecosystem Knowledge of other SIEM and SOAR solutions is a plus (Q-radar, Palo Alto, Splunk ) Proven professional experience in a SOC or security-related role Understanding of the MITRE More ❯

experience of building out functions of a Cyber Defence Team e.g. insider risk, threat intelligence, breach attack simulation You have a strong knowledge of SIEM and deep Splunk experience You have a good understanding of various security infrastructure tools such as firewalls, intrusion prevention/detection systems, proxy servers, email More ❯

experience of building out functions of a Cyber Defence Team e.g. insider risk, threat intelligence, breach attack simulation You have a strong knowledge of SIEM and deep Splunk experience You have a good understanding of various security infrastructure tools such as firewalls, intrusion prevention/detection systems, proxy servers, email More ❯

experience of building out functions of a Cyber Defence Team e.g. insider risk, threat intelligence, breach attack simulation You have a strong knowledge of SIEM and deep Splunk experience You have a good understanding of various security infrastructure tools such as firewalls, intrusion prevention/detection systems, proxy servers, email More ❯

lbs. Perform tasks requiring prolonged sitting, standing, and walking in a secure environment. Top Secret/SCI with Poly Desired: Experience with Splunk, SIEM tools, or endpoint detection and response (EDR) platforms. Prior experience in classified or SCIF environments. Prior experience leading a team. More ❯

helpdesk/IT Service role. Experience in information security or related field Experience with computer network penetration testing and techniques Understanding of firewalls, proxies, SIEM, antivirus and IDPS concepts Ability to identify and mitigate network vulnerabilities and explain how to avoid them Ability to train and share knowledge with others More ❯

operating in classified environments. Bachelor's degree in a related area or at least 8 years of related work experience. Robust understanding of identity, SIEM, cybersecurity, and infrastructure concepts. Strong Linux and scripting (Python, Ansible, Teraform, JSON, others.) experience. Ability to troubleshoot Splunk instances. Create custom Splunk reports, dashboards, and More ❯

system administration Strong background in guiding technicians with varying skill levels and supporting end users remotely Familiarity with security tools and technologies such as SIEM, IDS/IPS, and firewalls Sharp analytical and problem-solving skills, particularly in optimizing security workflows Professional, customer-focused, and poised under pressure Excellent communication More ❯

direction, mentor and supervise team members. Qualifications: 5+ years of experience with Cybersecurity in Network Security, Infrastructure Security, Applications or Systems Security, Security Operations, SIEM, Incident Response, or Threat Intelligence 2+ years of experience with software tool integrations, including REST APIs, SOAP, and APIs 2+ years of experience with Cyber More ❯