101 to 125 of 138 Remote SIEM Jobs

in the managed IT or telecoms sector. Solid knowledge of network principles (TCP/IP, routing protocols like OSPF & BGP, VRRP). Understanding of security concepts: firewalls, UTM, IPSec, SIEM, etc. Hands-on experience with at least two of the following: Networks, Cloud, Unified Communications, Cyber Security. Desirable: SD-WAN & SASE experience. Understanding of public/private cloud architecture. Technical More ❯

in the managed IT or telecoms sector. Solid knowledge of network principles (TCP/IP, routing protocols like OSPF & BGP, VRRP). Understanding of security concepts: firewalls, UTM, IPSec, SIEM, etc. Hands-on experience with at least two of the following: Networks, Cloud, Unified Communications, Cyber Security. Desirable: SD-WAN & SASE experience. Understanding of public/private cloud architecture. Technical More ❯

a Cyber Security Lead: Mentor and support colleagues across Technology and Data, helping to build strong cyber security awareness. Oversee day-to-day security operations, using tools like MDR, SIEM, endpoint protection, and firewalls to keep us protected. Lead incident response, creating and maintaining playbooks and ensuring quick, effective action during any breaches. Stay ahead of threats by managing vulnerabilities … 5+ years of experience in a hands-on cyber security role, with a proven track record of leading and mentoring a team. Extensive experience with security technologies such as SIEM, firewalls, intrusion detection/prevention systems, and vulnerability scanning tools. In-depth knowledge of incident response procedures, threat hunting, and forensic investigation techniques. Strong understanding of networking protocols, operating systems More ❯

combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to analyse and … and ISO 27001 alignment. Act as an escalation point within the SOC and mentor junior engineers. What We Are Looking For 3+ years’ experience as a Microsoft Sentinel or SIEM Engineer. Strong technical background across Microsoft 365, Azure, networking, and cybersecurity. Hands-on experience with KQL, PowerShell, and ideally Python. Proven experience automating processes using Logic Apps, Playbooks, or Terraform. More ❯

combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to analyse and … and ISO 27001 alignment. Act as an escalation point within the SOC and mentor junior engineers. What We Are Looking For 3+ years experience as a Microsoft Sentinel or SIEM Engineer. Strong technical background across Microsoft 365, Azure, networking, and cybersecurity. Hands-on experience with KQL, PowerShell, and ideally Python. Proven experience automating processes using Logic Apps, Playbooks, or Terraform. More ❯

combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to analyse and … and ISO 27001 alignment. Act as an escalation point within the SOC and mentor junior engineers. What We Are Looking For 3+ years’ experience as a Microsoft Sentinel or SIEM Engineer. Strong technical background across Microsoft 365, Azure, networking, and cybersecurity. Hands-on experience with KQL, PowerShell, and ideally Python. Proven experience automating processes using Logic Apps, Playbooks, or Terraform. More ❯

security risks Support secure software development lifecycle (SDLC) processes and promote secure coding standards Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks and systems for threats; lead incident response efforts Perform … experience in cyber security or information security roles Familiarity with frameworks such as MITRE ATT&CK, NIST, ISO 27001, Cyber Essentials+ Hands-on experience with tools like Nessus, Qualys, SIEM, EDR, DLP, VPNs, and firewalls Strong understanding of network protocols (TCP/IP, DNS, HTTP, SSH) and segmentation Knowledge of Zero Trust architecture and cloud-native security practices Proficiency in More ❯

The ability to analyzs large amounts of data to identify anomalies and potential risks. Technical Proficiency: Knowledge of operating systems, firewalls, encryption, VPNs and security information and event management (SIEM) systems. Attention to Detail: Meticulous in reviewing data and systems to catch even minor security flaws. Strong Communication: Ability to clearly communicate findings and recommendations to both technical and non More ❯

The ability to analyzs large amounts of data to identify anomalies and potential risks. Technical Proficiency: Knowledge of operating systems, firewalls, encryption, VPNs and security information and event management (SIEM) systems. Attention to Detail: Meticulous in reviewing data and systems to catch even minor security flaws. Strong Communication: Ability to clearly communicate findings and recommendations to both technical and non More ❯

In 2022 we built out an exciting SIEM/SOAR and ManagedDetection and Response service called SEP2.security, built upon Google CloudSecurity's Chronicle stack. Due to customer demand, we are now looking to hire aPrincipal Cyber Security Engineer to join this every growing team. The Security Intelligence Services team, that this role issituated in, provides security monitoring and use case … quickly with colleagues and customers. Competentand confident in customer facing situations. Qualifications and Experience Experienceas a Cyber SOC Analyst/or similar role. Provenexperience in deploying SIEM (Security Information and Event Management)and SOAR (Security orchestration, automation, and response) solutions toachieve positive outcomes. Our tools include Google ChronicleSIEM/Siemplify SOAR and LogRhythm, but experience with other platformssuch as Microsoft More ❯

clearance and have a solid background in Cyber Security working within a high-threat government environment, with the following skills and experience: Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Experience in SOC operations, incident response, and forensic More ❯

Security Engineer who enjoys building, optimising, and automating SOC infrastructure. This role sits within a growing Cyber Defence operation where you’ll help design and maintain the platforms behind SIEM, EDR, SOAR, and threat intelligence tooling, improving detection coverage and enabling analysts to respond faster. Key responsibilities: Engineer and maintain SIEM, EDR, SOAR, and logging platforms. Develop automation and integrations More ❯

the Cyber Security Engineering Manager, you will be responsible for designing, implementing and maintaining our next-generation detection and log management platforms. This role sits at the intersection of SIEM engineering, cloud security, and advanced log pipeline management, ensuring that our enterprise maintains world-class detection fidelity, threat visibility and compliance across diverse environments.You will help us deliver improvements across … Detection. Additionally, you will work closely with our Cyber Security Operation Centre, wider security functions, specialist 3rd party security suppliers and our global IT and business teams. Key Responsibilities: SIEM engineering & Operations: Development of advanced detection rules, correlation searches, and playbooks to improve threat detection and response Perform log source onboarding, parsing, and data normalisation on various data types Experience … with design, development, configuration and maintenance of SIEM alerts to support our SOC Operations Log Management & Data Engineering: Engineer and maintain log pipelines using Cribl to optimise ingestion, filtering, routing and replay Ability to work confidently on intelligent log transformation, data enrichment and routing strategies Architect scalable solutions for log archival, data rehydration and compliance-driven retention Cloud Security: Leverage More ❯

API integrations to designing full automation frameworks - your work will directly shape how customers run their SOCs. Serious Tech Exposure: Get hands-on with SOAR (XSOAR, Logic Apps, Siemplify), SIEM (Sentinel, Chronicle), Python/PowerShell scripting, and cloud security tooling across Azure, AWS, and GCP. High Performance Environment: Join a 9-person team that's currently the most profitable division … threat engineering. What You'll Be Doing Deliver hands-on security engineering and automation projects for enterprise clients. Build custom integrations, playbooks, and scripts to streamline SOC operations. Optimise SIEM detection logic and vulnerability management workflows. Collaborate with technical teams on innovation, labs, and roadmap projects. Act as a trusted consultant - parachuting in, solving problems fast, and moving on to … next challenge. What We're Looking For Background in SOC, Security Engineering, or Automation - ideally customer-facing. Python/PowerShell/REST API scripting ability. Experience with SOAR or SIEM platforms (any modern stack). Someone who's hands-on, curious, and solutions-driven. Not a corporate consultant, we want builders, problem solvers, and innovators. The Package £85,000 total More ❯

its Cyber Security team View job & apply Location: Frankfurt Salary: 125,000 + Benefits Job type: Permanent Join our second-line Information Security function as a Senior Manager for SIEM & Security Mo View job & apply Location: Frankfurt Salary: 80,000 + Benefits Job type: Permanent Sector: Banking Join a critical function managing access governance and identity lifecycle processes in a … preferably in Investigations, Analysis, Security Operations, Incident Response, or Threat Intelligence. 3+ years' experience specifically in Insider Threat or equivalent roles. Proficiency with insider threat detection tools (UEBA, DLP, SIEM) and knowledge of advanced threat intelligence techniques. Understanding of threat actor tactics, techniques, and procedures (TTPs) and the MITRE ATT&CK Framework. Familiarity with security frameworks, incident response, and risk … s degree in Cybersecurity, Information Systems, Computer Science, Business Analytics, Intelligence Studies, Criminology, or a related discipline. Hands-on experience with security monitoring and analytical tools (eg, UEBA, DLP, SIEM). Demonstrated ability to manage complex investigations and coordinate across departments. Relevant security certifications (eg, SANS, CERT ITPM, CISA) preferred. Experience with threat intelligence and SOC/CIRT operations. Ability More ❯

successful individual will provide world class incident response functions to detect, protect, respond, and sustain operations within cyberspace. What you will do: Support SOC Manager to deliver the following SIEM, IR tools platform management including all design, implementation and administration activities , Use cases preparation and implementation, connector deployment, maintenance & health checks Responsible for operational activities, Technology escalation support, Security Solution … Scripting experience (python, powershell, Unix shell) Demonstrated experience working in all phases of the SDLC Deep understanding and experience using cyber security operations, security monitoring, endpoint (EDR), Network, and SIEM Tools. Prior SOC experience a plus Extensive knowledge of network and server security protocols, technologies, and products. Industry recognized certifications (CISSP, GCIH, GCFA, OSCP, etc) preferred Strong oral and written … to detail Ability to learn quickly and leverage prior experiences to effectively solve current security challenges. Refusing to accept the status quo Degree in Information Technology, Engineering or similar SIEM management - Desirable to have some advanced Certification from SIEM vendor on products such as ArcSight , MS Sentinel or Logrhythem What We Offer You Looking to make a mark? At Colt More ❯

Scripting experience (python, powershell, Unix shell) Demonstrated experience working in all phases of the SDLC Deep understanding and experience using cyber security operations, security monitoring, endpoint (EDR), Network, and SIEM Tools. Prior SOC experience a plus Extensive knowledge of network and server security protocols, technologies, and products. Industry recognized certifications (CISSP, GCIH, GCFA, OSCP, etc) preferred Strong oral and written … quickly and leverage prior experiences to effectively solve current security challenges. Refusing to accept the status quo Qualifications Combination of the following: Degree in Information Technology, Engineering or similar SIEM management - Desirable to have some advanced Certification from SIEM vendor on products such as ArcSight , MS Sentinel or Logrhythem Skills Network Protocols Cyber Security Tools/Products Cyber Security Policy More ❯

DHCW sites to support operational and team activities. Main duties of the job Lead and manage cyber security operations, ensuring the effective use of Security Information and Event Management (SIEM) systems, access controls, and incident response tools. Oversee the monitoring, investigation, and resolution of security incidents and vulnerabilities. Support delivery of national cyber initiatives, policies, and reporting requirements. Provide expert … manage, coordinate and improve the security activities and resources for the IT systems and applications within a large complex organisation. Previous experience in managing Security Information and Event Management (SIEM) systems Skills and Attributes Essential Technical Adaptability skills to learn and assess new methodologies or technologies quickly, understanding their wider implications and where appropriate implement them. Able to work flexibly More ❯

Management: Plan and execute major database upgrades and periodic patching to maintain system stability. Database Logging & Monitoring: Configure and manage database logs for integration into a SIEM (Security information and event management) solution for monitoring and security compliance. High Availability & Failover Management: Monitor, maintain and orchestrate manual failover and failback procedures to maintain uptime. Automation & Scripting: Develop scripts using SQL More ❯

is operational and hands-on, maintaining and enhancing existing tools and controls, monitoring vulnerabilities and ensuring systems are patched and secure. Responsibilities: * Managing and optimising security tools and platforms (SIEM, XDR, IDAM policies etc.) * Monitoring vulnerabilities, investigating incidents and implementing corrective actions * Supporting patching compliance and vulnerability remediation * Ensuring security best practices are applied across networks, applications and systems * Participating … network engineering * Some exposure to, or a growing focus on, cybersecurity and vulnerability management * Understanding of network devices, configurations and security principles * Familiarity with common tools and concepts (e.g. SIEM, DLP, endpoint protection, firewalls, Cisco Secure Connect, etc.) * Confidence to identify issues, suggest improvements and work collaboratively across teams * A genuine passion for cyber security * Certifications such as CISSP, SC More ❯

of greenfield Identity and Access Management and Privileged Access Management solutions. You'll provide hands-on technical leadership, ensure secure-by-design implementation, and contribute to the development of SIEM/SOC capabilities. Key Responsibilities Lead end-to-end IAM/PAM design and delivery. Integrate IAM/PAM telemetry into SIEM tooling. Provide technical oversight for MSPs and vendors. … OpenID Connect . Familiarity with ISO 27001, NIST CSF, CAF & GDPR . Experience leading or overseeing MSPs. Current SC clearance . Desirable: Knowledge of Microsoft Sentinel, Splunk, or Elastic SIEM . Experience in SOC build or cyber transformation projects. Degree/HND in a relevant STEM field. More ❯

practices for threat detection, incident response, and monitoring are applied. What You Will Ideally Bring: Deep, hands-on experience with Microsoft Sentinel and Azure security services. Strong understanding of SIEM concepts, log ingestion, and security operations workflows. Proven ability to design and deliver scalable and resilient security monitoring solutions. Experience acting as a trusted advisor/SME for security operations … and SIEM tools. Excellent communication skills with the ability to work closely with customers remotely. Strong problem-solving, analytical, and threat-hunting abilities. Contract Details: Duration: 6 months Initially Location: Remote Day Rate: Up to £500 per day (Outside IR35) Sentinel SME - 6 months - Remote - Outside IR35 More ❯

technologies in a dynamic and collaborative environment. Key Responsibilities: Monitor and respond to security alerts and incidents across cloud and on-prem environments. Perform threat hunting and analysis using SIEM, EDR, and other security tools. Collaborate with internal teams to improve detection and response capabilities. Support incident response activities and contribute to post-incident reviews. Maintain and tune security monitoring … re Looking For: 3+ years of experience in a SOC or similar security operations role. Strong understanding of security principles, threat landscapes, and incident response. Hands-on experience with SIEM platforms (e.g., Splunk, SentinelOne, Chronicle, etc.). Familiarity with cloud environments (AWS, Azure, GCP) and container security. Excellent analytical and communication skills. Why Join? Work with a globally recognised cyber More ❯

no sponsorship can be offered) SC Cleared or eligible for SC Clearance Key Responsibilities: Lead the design, implementation, and management of Microsoft 365 security technologies , including Microsoft Defender suite, SIEM/XDR, and related tools. Configure and deploy Microsoft Azure, Entra, and Purview to meet enterprise security requirements. Provide strategic guidance on Microsoft security solutions, including Azure, Security, Power Platform … to strengthen client security posture. Collaborate with clients and internal teams to deliver scalable, secure, and compliant solutions. Required Skills & Experience: Strong experience with Microsoft security solutions , including Defender, SIEM/XDR, and M365 security technologies. Proven experience configuring and implementing Azure, Entra, and Purview solutions. Microsoft certifications in Azure (AZ), Security (SC), Power Platform (PL), Modern Work (MS), and More ❯

Technology/Cyber Security What You’ll Be Doing: Actively monitor, detect, and respond to security threats across IT and operational systems. Manage and optimise key security platforms, including SIEM, XDR, and identity management tools. Implement and review security controls across networks, cloud, and infrastructure. Lead vulnerability and patch management activities, ensuring risks are mitigated and compliance maintained. Support internal … colleagues and promote a culture of continual security improvement. Main Skills Needed: Strong background in IT infrastructure, cloud environments, and cybersecurity operations. Hands-on experience with tools such as SIEM, DLP, endpoint protection, and network monitoring. Knowledge of frameworks including ISO27001, GDPR, NIS2, and MITRE ATT&CK. Skilled in networking fundamentals — firewalls, VPNs, routers, LANs, and intrusion detection. Relevant certifications More ❯