126 to 150 of 209 Remote SIEM Jobs

sized organisation Hands-on experience in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as More ❯

Role Title: SIEM Engineer Duration: contract to run until 26/12/2025 Location: Wokingham, Hybrid 2 days onsite Rate: £460 p/d Via Umbrella inside IR35 Clearance required: Active SC is essential Role purpose/summary SIEM Deployment & Management - Set up, configure, and maintain SIEM tools like Sentinel, Elastic, ArcSight, Splunk, or QRadar. DR deployment, configuration & management … events, trends, and system performance. Collaboration - Work with IT and security teams to improve overall cybersecurity posture. Required Skills & Qualifications Technical Expertise - Strong knowledge & experience in security engineering with SIEM & EDR platforms, network security, and understanding of cybersecurity frameworks. Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications. Programming & Scripting - Familiarity with Python, PowerShell, KQL (Kusto query language), KQL (Kibana More ❯

security concepts and how to realise these in an ever-enhancing environment Hands on experience and knowledge of Microsoft Azure IaaS Microsoft Defender for Cloud Microsoft Azure RBAC LogRhythm SIEM technologies VMWare VSphere Nutanix HCI Ability to communicate technical concepts and analytical outputs to a diverse set of stakeholders. Creation of adaptable/horizon-based roadmaps for technology components. Previous More ❯

documentation and communication skills, able to inform at all levels of detail Familiarity with Terraform for IaC change and Azure DevOps pipelines Experience with cloud-native security models and SIEM/SOC integration Knowledge of ITIL and Change Control Processes Skills Cisco zscaler meraki Employee Value Proposition Global Market Leader in-housing their IT. Job Title: Cisco Meraki Network Engineer More ❯

cyber resilience Skills & Experience 3+ years in penetration testing/ethical hacking/red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights to stakeholders Hybrid working More ❯

cyber resilience Skills & Experience 3+ years in penetration testing/ethical hacking/red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights to stakeholders Hybrid working More ❯

cyber resilience Skills & Experience 3+ years in penetration testing/ethical hacking/red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights to stakeholders Hybrid working More ❯

cyber resilience Skills & Experience 3+ years in penetration testing/ethical hacking/red teaming Strong understanding of cyber threats, APTs, threat actor tactics, and exploit development Familiar with SIEM, defensive security monitoring, incident response, and detection engineering Deep knowledge of network, web application, and enterprise architecture security Excellent communication skills to present cyber risk insights to stakeholders Hybrid working More ❯

in the managed IT or telecoms sector. Solid knowledge of network principles (TCP/IP, routing protocols like OSPF & BGP, VRRP). Understanding of security concepts: firewalls, UTM, IPSec, SIEM, etc. Hands-on experience with at least two of the following: Networks, Cloud, Unified Communications, Cyber Security. Strong communication skills - capable of translating complex jargon to any audience. Excellent problem More ❯

in the managed IT or telecoms sector. Solid knowledge of network principles (TCP/IP, routing protocols like OSPF & BGP, VRRP). Understanding of security concepts: firewalls, UTM, IPSec, SIEM, etc. Hands-on experience with at least two of the following: Networks, Cloud, Unified Communications, Cyber Security. Strong communication skills - capable of translating complex jargon to any audience. Excellent problem More ❯

and is comfortable working with both technical and non-technical stakeholders. Key Responsibilities Lead investigations into escalated security incidents, including detailed analysis and root cause identification. Monitor and optimise SIEM tools (Splunk, QRadar, or similar), ensuring accurate detection and effective alerting. Perform malware analysis, reverse engineering, and develop detection signatures. Provide incident response leadership, from containment and eradication to recovery. … solution scoping, and client demonstrations when required. What We’re Looking For 3+ years’ experience in cybersecurity, preferably in a SOC or NOC environment. Strong hands-on experience with SIEM tools, specifically QRadar Solid understanding of incident response methodologies and DFIR principles. Knowledge of network traffic analysis, vulnerability management, penetration testing, and malware reverse engineering. Familiarity with ITIL processes (Incident More ❯

and is comfortable working with both technical and non-technical stakeholders. Key Responsibilities Lead investigations into escalated security incidents, including detailed analysis and root cause identification. Monitor and optimise SIEM tools (Splunk, QRadar, or similar), ensuring accurate detection and effective alerting. Perform malware analysis, reverse engineering, and develop detection signatures. Provide incident response leadership, from containment and eradication to recovery. … solution scoping, and client demonstrations when required. What We’re Looking For 3+ years’ experience in cybersecurity, preferably in a SOC or NOC environment. Strong hands-on experience with SIEM tools, specifically QRadar Solid understanding of incident response methodologies and DFIR principles. Knowledge of network traffic analysis, vulnerability management, penetration testing, and malware reverse engineering. Familiarity with ITIL processes (Incident More ❯

and is comfortable working with both technical and non-technical stakeholders. Key Responsibilities Lead investigations into escalated security incidents, including detailed analysis and root cause identification. Monitor and optimise SIEM tools (Splunk, QRadar, or similar), ensuring accurate detection and effective alerting. Perform malware analysis, reverse engineering, and develop detection signatures. Provide incident response leadership, from containment and eradication to recovery. … solution scoping, and client demonstrations when required. What We’re Looking For 3+ years’ experience in cybersecurity, preferably in a SOC or NOC environment. Strong hands-on experience with SIEM tools, specifically QRadar Solid understanding of incident response methodologies and DFIR principles. Knowledge of network traffic analysis, vulnerability management, penetration testing, and malware reverse engineering. Familiarity with ITIL processes (Incident More ❯

and response processes, and play a key role in stakeholder engagement. Key responsibilities include: Analysing advanced security incidents, determining root cause and attack paths. Leading incident response activities across SIEM, EDR/XDR, networks, and cloud platforms. Producing clear, business-focused incident reports and updates for senior stakeholders. Advising on SOC tooling and ensuring effective integration of incident response requirements. …/or AWS) environments. Strong communication skills with the ability to translate technical threats into business terms. Tools & Technologies - You will work with a modern SOC technology stack, including: SIEM: Microsoft Sentinel EDR/XDR: Microsoft Defender for Endpoint Threat Intel: Recorded Future Network Analysis: Wireshark/tcpdump SOAR & Automation: Palo Alto Cortex XSOAR, ServiceNow SecOps Vulnerability Management: Tenable Nessus More ❯

and response processes, and play a key role in stakeholder engagement. Key responsibilities include: Analysing advanced security incidents, determining root cause and attack paths. Leading incident response activities across SIEM, EDR/XDR, networks, and cloud platforms. Producing clear, business-focused incident reports and updates for senior stakeholders. Advising on SOC tooling and ensuring effective integration of incident response requirements. …/or AWS) environments. Strong communication skills with the ability to translate technical threats into business terms. Tools & Technologies - You will work with a modern SOC technology stack, including: SIEM: Microsoft Sentinel EDR/XDR: Microsoft Defender for Endpoint Threat Intel: Recorded Future Network Analysis: Wireshark/tcpdump SOAR & Automation: Palo Alto Cortex XSOAR, ServiceNow SecOps Vulnerability Management: Tenable Nessus More ❯

teams you'll provide expertise and practical support to implement effective and optimised security controls. Your responsibilities will balance driving proactive security improvements to our preventative controls, managing and optimising our SIEM platform and supporting security architecture reviews. Your role will also include opportunity to influence how we secure our games and back-end infrastructure. The role offers the opportunity … to further develop a career in Cyber Security in an exciting, fast-moving industry. Key Deliverables: SIEM Management and Optimisation Lead the management, administration and support of our SIEM platform and incident response environment, including general infrastructure and system administration. On-board, maintain and manage security log sources for our SIEM platform, including agent and policy deployment and creating ingest … didn't make things harder or less usable) # of Critical or High-risk security vulnerabilities found in penetration tests. Knowledge & Experience: Technical Skills Experience in a hands-on SIEM/SOC Engineering or Security Engineering role or have gained similar experience through other adjacent roles. Capabilities working with Security Information and Event Management (SIEM) or Security Analytics platforms. Specific More ❯

security posture to meet baseline compliance and operational requirements Partner with engineering teams, customers, and government agencies to develop security policies, operational processes, technical designs, and ensure integration with SIEM and monitoring systems. Demonstrated proficiency in network/system security (firewalls, IDS/IPS, micro-segmentation), IAM (RBAC, ABAC, JWT), secure coding practices (OWASP, SANS), and hands-on experience with More ❯

brings both technical knowledge and business acumen. You’ll need: Proven product/vendor management experience in IT distribution or cybersecurity Deep understanding of security solutions (firewalls, endpoint, IAM, SIEM, etc.) Strong forecasting, pricing & commercial skills Exceptional communication & relationship-building ability Confidence with CRM and BI tools About the Company Join a leading tech distributor partnering with world-class vendors More ❯

TTPs), with expertise in the MITRE ATT&CK Framework. Hands-on technical knowledge in cyber detection engineering, security tools, and infrastructure. Skilled in Detection-as-Code and experienced with SIEM query languages. Confident communicator with experience working alongside global technical teams and senior stakeholders. Proactive, collaborative, and driven by curiosity and continuous improvement. Why QBE? At My Best At QBE More ❯

response strategies. This is a hands-on engineering role focused on IBM QRadar, playbook automation, and advanced threat modelling to deliver cutting-edge security solutions. What you'll do: SIEM Engineering & Management: Deploy, configure, and optimise QRadar. Onboard log sources from cloud/on-prem environments. Build detection and anomaly rules. Playbook Development & Automation: Design and implement automated response playbooks … essential). Expertise with IBM QRadar (configuration, rule development, playbooks). 3-5 years+ experience in IT security (SOC/NOC environment preferred). Strong knowledge of log parsing, SIEM query languages (KQL, SPL, AQL), and automation with Python/PowerShell. Deep understanding of incident response, threat detection, and frameworks (MITRE, NIST, CIS). Knowledge of vulnerability scanning, penetration testing More ❯

and is comfortable working with both technical and non-technical stakeholders. Key Responsibilities Lead investigations into escalated security incidents, including detailed analysis and root cause identification. Monitor and optimise SIEM tools (Splunk, QRadar, or similar), ensuring accurate detection and effective alerting. Perform malware analysis, reverse engineering, and develop detection signatures. Provide incident response leadership, from containment and eradication to recovery. … solution scoping, and client demonstrations when required. What We're Looking For 3+ years' experience in cybersecurity, preferably in a SOC or NOC environment. Strong hands-on experience with SIEM tools, specifically QRadar Solid understanding of incident response methodologies and DFIR principles. Knowledge of network traffic analysis, vulnerability management, penetration testing, and malware reverse engineering. Familiarity with ITIL processes (Incident More ❯

for someone who combines technical knowledge with an investigative mindset and strong stakeholder communication skills. Essential skills & experience: Experience working in security operations, SOC, or incident response. Knowledge of SIEM tools, vulnerability management, and log analysis. Understanding of security frameworks such as ISO 27001, NIST, or PCI DSS. Strong communication skills to engage with IT teams, business stakeholders, and non … technical staff. Ability to work independently at Heron Foods while remaining aligned to Group Information Security. Desirable: Hands-on exposure to security tooling (e.g., EDR, SIEM, vulnerability scanners). Experience supporting audits and compliance activities. Scripting/automation skills (e.g., PowerShell, Python) to streamline tasks. Why Join Us? At B&M and Heron Foods, we are on a journey to More ❯

for someone who combines technical knowledge with an investigative mindset and strong stakeholder communication skills. Essential skills & experience: Experience working in security operations, SOC, or incident response. Knowledge of SIEM tools, vulnerability management, and log analysis. Understanding of security frameworks such as ISO 27001, NIST, or PCI DSS. Strong communication skills to engage with IT teams, business stakeholders, and non … technical staff. Ability to work independently at Heron Foods while remaining aligned to Group Information Security. Desirable: Hands-on exposure to security tooling (e.g., EDR, SIEM, vulnerability scanners). Experience supporting audits and compliance activities. Scripting/automation skills (e.g., PowerShell, Python) to streamline tasks. Why Join Us? At B&M and Heron Foods, we are on a journey to More ❯

a Pathway to Senior Leadership. Key Skills & Experience of Cyber Sales Manager will include: 3+ Years Minimum of Successful Cyber Security Sales Experience Technical grounding in SOC, MDR, IR, SIEM, or related Solutions Proven Ability to Influence Senior IT/Security Stakeholders Established Network of UK Private-Sector Contacts advantageous Entrepreneurial, Hunter Mindset; Resilient & Confident Native-Level English; German or More ❯

Clearance and hybrid working in Gloucester with the end client (frequency TBC, but will be at least once per week). Key skills & experience needed: Familiarity with SOC/SIEM/XDR platforms and how they protect enterprise IT services. Experience drawn from working in an enterprise M365 environment. Understand the value of presenting SOC value to management using business More ❯