1 to 25 of 255 Remote SIEM Jobs

/DevOps). Knowledge of security frameworks and regulatory compliance standards (NIST CSF, SOX ITGC, GDPR, MITRE ATT&CK, etc.) Experience with common industry SIEM and vulnerability management platforms. Experience maintaining the Microsoft Defender platform and other Microsoft security products. Ability to rank and prioritize vulnerabilities and security recommendations appropriately More ❯

and incident management. Possess a working knowledge of Cisco network switches, routers, firewalls and VPN, network security, administration of DLP, antivirusantimalware, IDS/IPS, SIEM, SMTP, Email security, AD, Group Policy, DNS, DHCP, and VLANs. Experience with identity access management solutions, such as SAMLOATH Experience with HIDS and NIDS The More ❯

Jira or MS Project. Proficient in one or more programming languages including but not limited to C, C++, Java, Python, or Rust. Experience with SIEM tools, EDR/XDR tools, SOAR tools, scanning and reconnaissance, penetration testing, integration of software products and/or data sources. Experience using containerization technology More ❯

and common Internet protocols. Knowledge of system administration and security architecture. Knowledge of the main security monitoring tools (FW, IDS/IPS, HIDS, WAF, SIEM). Experience or proven knowledge of at least one IDS technology. Scripting in Bash, Python or PowerShell. Fluent in English (written and spoken). Self More ❯

relevant to SaaS products, preferably in a data-heavy environment. Hands-on experience with security technologies such as firewalls, intrusion detection/prevention systems, SIEM, antivirus, encryption, and vulnerability assessment tools. You own relevant certifications (Security+, IAT II/III level or similar). You excel in risk assessments, vulnerability More ❯

direction, mentor and supervise team members. Qualifications: 5+ years of experience with Cybersecurity in Network Security, Infrastructure Security, Applications or Systems Security, Security Operations, SIEM, Incident Response, or Threat Intelligence 2+ years of experience in medium to large enterprise network environments with change board, documentation, and reporting requirements Experience in More ❯

and response, and supporting the implementation of security controls and policies across cloud, on-premise, and hybrid environments. This role also involves working with SIEM solutions, automating security workflows, and contributing to the company's compliance with Cyber Essentials Plus and ISO 27001 standards. Key Responsibilities: Design, implement, and manage … and threat management. Leverage Infrastructure as Code (IaC) principles using Terraform to automate security policies and infrastructure deployment. Utilize Security Information and Event Management (SIEM) solutions (preferably Microsoft Sentinel SIEM ) to monitor, detect, and respond to security incidents. Create and maintain runbooks for security incident response, including automating workflows to … cloud infrastructure, managing security controls). SIEM Solutions: First-hand experience working with SIEM solutions , particularly Microsoft Sentinel SIEM . Experience in designing and managing SIEM rule sets, creating dashboards, and correlating data for threat detection. Familiarity with security event log analysis, alerts management, and incident response workflows. Cybersecurity Frameworks More ❯

and response, and supporting the implementation of security controls and policies across cloud, on-premise, and hybrid environments. This role also involves working with SIEM solutions, automating security workflows, and contributing to the company's compliance with Cyber Essentials Plus and ISO 27001 standards. Key Responsibilities: Design, implement, and manage … and threat management. Leverage Infrastructure as Code (IaC) principles using Terraform to automate security policies and infrastructure deployment. Utilize Security Information and Event Management (SIEM) solutions (preferably Microsoft Sentinel SIEM ) to monitor, detect, and respond to security incidents. Create and maintain runbooks for security incident response, including automating workflows to … cloud infrastructure, managing security controls). SIEM Solutions: First-hand experience working with SIEM solutions , particularly Microsoft Sentinel SIEM . Experience in designing and managing SIEM rule sets, creating dashboards, and correlating data for threat detection. Familiarity with security event log analysis, alerts management, and incident response workflows. Cybersecurity Frameworks More ❯

systems, and cloud technologies. Strong understanding of security principles, practices, and frameworks (e.g., PCI, NIST, ISO 27001). Experience with security tools such as SIEM, IDS/IPS, endpoint protection, and penetration testing tools. Experience with public cloud security, specifically AWS, Azure, and Google Cloud Platform (GCP). You will More ❯

on Python and security automation. Familiarity with operating system scripting languages such as PowerShell and Bash. Experience with security tools and technologies such as SIEM, IDS/IPS, firewalls, and vulnerability scanners. Knowledge of cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Experience with API development and More ❯

Agile Tester Extension (CTFL-AT) . Experience with forensics and incident response in government systems. Strong understanding of cloud security posture management (CSPM) and SIEM tools (Splunk, ELK, Microsoft Sentinel) . Experience with security validation techniques for microservices and containerized applications (Kubernetes, Docker security hardening) . Certifications & Security Clearance ISTQB More ❯

operation with four shift teams working in a standard rotation. They are responsible for utilising the SOC's Security Incident and Event Management (SIEM) toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks. These roles require a minimum of SC clearance and be prepared More ❯

cause analysis, and provide incident response support Conduct regular vulnerability assessments and penetration testing; assist in remediation efforts Maintain and manage SIEM (Security Information and Event Management) tools and log analysis Develop and enforce security policies, standards, and procedures Work with IT and development teams to implement secure system designs … experience in an information security or cybersecurity role Strong understanding of security principles, frameworks, and practices (e.g., CIA triad, defense in depth) Experience with SIEM tools, intrusion detection/prevention systems (IDS/IPS), firewalls, and endpoint protection Familiarity with vulnerability scanning tools (e.g., Nessus, Qualys) and remediation processes Knowledge More ❯

Skills •Experience with the following technologies: Cisco Routing & Switching (LAN/WAN), Cisco Firepower IPS/Firewall and Web Security Appliance (WSA) •Familiarity with SIEM tools, data lakes and the design, development of security analytics. •Motivation and desire to learn advanced concepts in cyber and ability to work within a More ❯

data protection, and cyber law Strong troubleshooting abilities in systems, networking, and cloud environments Proven hands-on experience with tools like PAM, EDR, CASB, SIEM, DLP, email filtering , and vulnerability management Proficient in cloud services , especially in environments using virtual machines, identity management, web apps , and networking components (e.g., virtual More ❯

. Expertise in threat/risk modelling, network security, encryption, authentication, and access control. Skilled in configuring security technologies like firewalls, IDS/IPS, SIEM, and vulnerability tools. Knowledge of cloud security (AWS, Azure, and Google) and DevSecOps practices. Experienced in researching emerging tech trends, securing solutions, and using CI More ❯

. Expertise in threat/risk modelling, network security, encryption, authentication, and access control. Skilled in configuring security technologies like firewalls, IDS/IPS, SIEM, and vulnerability tools. Knowledge of cloud security (AWS, Azure, and Google) and DevSecOps practices. Experienced in researching emerging tech trends, securing solutions, and using CI More ❯

strategies What You’ll Bring: 5+ years in cybersecurity operations, with at least 2 years in a leadership role Strong hands-on knowledge of SIEM, EDR, SOAR, IDS/IPS, firewalls, and cloud security Deep understanding of MITRE ATT&CK, NIST, ISO 27001, CIS frameworks Proven experience in incident response More ❯

strategies What You'll Bring 5+ years in cybersecurity operations, with at least 2 years in a leadership role Strong hands-on knowledge of SIEM, EDR, SOAR, IDS/IPS, Firewalls, and cloud security Deep understanding of MITRE ATT&CK, NIST, ISO 27001, CIS frameworks Proven experience in incident response More ❯

monitoring, querying, playbook development, and integration with other solutions Proven experience with the Microsoft Defender security stack and Microsoft Online ecosystem Knowledge of other SIEM and SOAR solutions is a plus (Q-radar, Palo Alto, Splunk ) Proven professional experience in a SOC or security-related role Understanding of the MITRE More ❯

experience of building out functions of a Cyber Defence Team e.g. insider risk, threat intelligence, breach attack simulation You have a strong knowledge of SIEM and deep Splunk experience You have a good understanding of various security infrastructure tools such as firewalls, intrusion prevention/detection systems, proxy servers, email More ❯

experience of building out functions of a Cyber Defence Team e.g. insider risk, threat intelligence, breach attack simulation You have a strong knowledge of SIEM and deep Splunk experience You have a good understanding of various security infrastructure tools such as firewalls, intrusion prevention/detection systems, proxy servers, email More ❯

Management, or related field Certifications such as CISM, CISSP, NIS2, GDPR, ISO 27001 Lead Implementer Experience: Technical Skills: Strong hands-on expertise with firewalls, SIEM, IDS/IPS, encryption, and cloud security. Risk Expertise: Skilled in risk and vulnerability management, third-party risk oversight. Regulatory Knowledge: Solid understanding of frameworks More ❯

lbs. Perform tasks requiring prolonged sitting, standing, and walking in a secure environment. Top Secret/SCI with Poly Desired: Experience with Splunk, SIEM tools, or endpoint detection and response (EDR) platforms. Prior experience in classified or SCIF environments. Prior experience leading a team. More ❯

helpdesk/IT Service role. Experience in information security or related field Experience with computer network penetration testing and techniques Understanding of firewalls, proxies, SIEM, antivirus and IDPS concepts Ability to identify and mitigate network vulnerabilities and explain how to avoid them Ability to train and share knowledge with others More ❯