151 to 175 of 525 Remote SIEM Jobs

cloud) is essential. Proven experience with implementing secure core foundational services in a cloud infrastructure for AD, SecDevOps, Networking Services, at an enterprise level is essential. Proven experience in SIEM & SOAR (security information and event management (SIEM) and security orchestration, automation, and response (SOAR). Experience with Rapid7 SIEM tooling is desirable. Proven experience with the core foundational security services More ❯

Press Tab to Move to Skip to Content Link Select how often (in days) to receive an alert: SIEM Application Engineer Function: Cyber Security Unit: Networks Location: Snowhill, Birmingham, United Kingdom Salary: Competitive with Great Benefits The new Network SIEM is essential to BT's network security, meeting TSA requirements and improving our CAF level. Your role as a SIEM … following offices: Birmingham, Manchester, Ipswich (Ipswich only applicable to existing BT employees) What you'll be doing SIEM Solution Development: Collaborate with security analysts and architects to design and implement SIEM solutions using Elasticsearch. Optimize SIEM rules, alerts, and dashboards for efficient threat detection. Collaborate effectively with others to drive forward key security objectives Presentation and documentation writing (to both … Experience in key cyber technologies such as SIEM technologies (Elastic preferred), vulnerability management, access management and other commonly used Enterprise security controls. Ideally from both a development and operational perspective Advantageous: SIEM implementation and usage Experience of Elastic Stack (ELK) Knowledge of Offensive testing frameworks Knowledge of Linux, Windows and Network Administration Knowledge and experience of cloud services (public or More ❯

Responsibilities: Operational interlock with CSM Security incident ownership Log event guidance Playbook development SIOC process design & implementation Key requirements: Proven experience in security operations, incident response, and SOC/SIEM implementation Hands-on experience with QRadar, Tenable, and AWS cloud security tools Strong understanding of security incident lifecycle, threat intelligence, and playbook development Experience working in UK public sector or More ❯

Policies, TCP/IP, DNS, DHCP, and Exchange Server. Ability to multitask, prioritize, and manage demands effectively. Experience analyzing IT logs and event sources (preferred). Monitoring and administering SIEM systems. Malware analysis and digital forensics research. Understanding intrusion attempts and false positives. Investigation tracking and threat resolution. Familiarity with data storage, backups, and restoration. Knowledge of security tools including More ❯

M&A security assessments and maintain compliance. Requirements: Experience in a Cyber Security leadership-level role Proven experience with the MS Security Stack including Defender (Endpoint, Identity, Cloud), Sentinel (SIEM), Entra ID Security Features, and Purview Knowledge of Azure Security controls, including Azure Firewall, Key Vault, Conditional Access, and Azure Network Security Familiarity with standards such as ISO 27001 Benefits More ❯

Ideal Candidate Profile: Expert in Azure cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or More ❯

Ideal Candidate Profile: Expert in Azure cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or More ❯

Collaborate with third-party suppliers and internal teams. Provide expert advice on security technologies and processes. Requirements: Proven team leadership experience.Strong knowledge of security technologies (firewalls, IDS/IPS, SIEM).Relevant qualifications (CISSP, CISM, etc.). Apply now to make a significant impact on NHS BSA's cyber security strategy! What do we offer?o 27 days leave (increasing with More ❯

technical challenges with risk management and compliance responsibilities. Role Highlights Monitor, detect, and respond to security incidents and vulnerabilities Own and manage key elements of the security stack, including SIEM and DLP tools Lead audits, penetration testing, and remediation actions to uphold ISO27001 & SOC2 compliance Collaborate with product teams to embed security into the development lifecycle Produce detailed KPI-driven … security reports and dashboards for internal stakeholders Experience needed: 1+ year in a SOC or similar cybersecurity role Hands-on experience with SIEM, IDS/IPS, and vulnerability scanning tools Knowledge of AWS, Linux, Windows, IAM (e.g. Okta), and firewalls Understanding of ISO27001, SOC2, GDPR, and third-party risk management Strong communication skills and the ability to influence across teams More ❯

to ensure client requirements and deadlines are met, and that systems have the correct security controls applied. Duties and Responsibilities: Triage and investigate alerts from security systems such as SIEM and EDR Collaborate with both internal and external security teams to conduct cyber threat detection and incident handling Provide timely and accurate communications to customers and other stakeholders on cyber More ❯

CEH, or GIAC. 3-5 years of experience in cybersecurity roles, with hands-on experience in security assessment, monitoring, and incident response. Proficiency in security tools and technologies, including SIEM, IDS/IPS, endpoint protection, and network security appliances. Strong understanding of networking protocols, operating systems, and cloud computing environments. More ❯

Scripting: Proficient in reading code (e.g., Python, Scala) and using Git for version control of code and configuration changes. Familiarity with iOS or Android security. Experience of industry-standard SIEM and vulnerability scanning tools. Nice to have: Experience of supporting audits such as ISO27001. Experience of working with security risk management frameworks such as ISO31000. Knowledge of security control frameworks More ❯

out, managing, and configuring a range of network security tools and appliances. Key Skills: Microsoft 365 and Google Workspace Security admin Cloud, Endpoint Security, Virtualisation Networking (Routers, Switches, Firewalls) SIEM IDS/IPS Security assessments Information Security best practices, policies, and procedures Certification such as: CISA/CISM/CISSP, CCNA/CCNP (R&S/Security) Benefits: 25 days More ❯

We're Hiring: Data Cyber Security Consultant (SIEM Analyst) Location: Belgium (Hybrid - 1 day/week on-site) Start Date: ASAP Sector: Cybersecurity/SOC/Incident Response Are you passionate about cybersecurity and driven by data? We're looking for a Data Cyber Security Consultant to join a dynamic and centralized Cyber Security Incident Response Team (CSIRT) supporting critical More ❯

technical leader in safeguarding sensitive data and systems. Key Responsibilities/Duties Manage WAF and DDoS systems Manage the Web Security Gateway Manage the Email Security Gateway Manage the SIEM, SOAR, Identity Protection and EDR, and respond to alerts and threats. Carry out vulnerability scans, identify risks, and remediation. Manage the perimeter and VPN firewalls. Manage MFA and SSO. Manage … in managing the majority of the following technology stack CrowdStrike EDR Mimecast Mail Security Gateway Duo Okta Rapid7 IVM, Tenable IO or Nessus Rapid7 IDR or CrowdStrike Next Gen SIEM Palo Alto Firewalls and Panorama InTune and Conditional Access Experience using the following technology stack would be advantageous; understanding the principles is required. Imperva WAF and DDoS Menlo Web Security More ❯

new capabilities and technologies for identification, prevention, detection and recovery of cyber incidents. What will you bring? At least 12 months experience in a SOC environment (or equivalent) using SIEM/EDR Close attention to detail Strong time-management and organizational skills. Able to build and maintain strong relationships with clients, becoming a trusted advisor. Strong understanding of foundational IT … and networking concepts Confident writing SIEM queries and performing threat-hunting Excellent communication skills, both written and oral, to a range of audiences, including senior management. Responsibilities Compiling and presenting high quality monthly reports for our clients, combining data from multiple security platforms and providing expert insight and recommendations. Assisting Level 1 analysts with alert triage and escalation Creating and … improving report templates & components in-line with feedback from clients. Assisting with training and support for our junior analysts Proactively suggesting improvements for existing SIEM alarms and develop new use-cases based on threat intelligence and client threat models. Creating and improving SOC dashboards to give real time visibility for clients and stakeholders Onboarding new clients, including deploying technical resources More ❯

very closely and building strong relationships with our Service Providers. Run advanced and predictive analyses and perform assessments based on the Mitre ATT&CK framework. Correlation monitoring using multiple SIEM technologies to ensure that the SOC achieves its objective of being a threat-led organisation. Work independently and provide guidance and training to others on analysing data trends for use More ❯

related certification(s) Demonstrated expertise in Windows/MacOS/Linux/Unix operating systems, IDS/IPS, Network administration, firewall configuration, and strong knowledge of TCP/IP SIEM experience (Splunk required, others a bonus) Scripting in (some of) Zeek, Bash, Python, Perl, Powershell, etc. Strong briefing skills; experience interacting with SES/general officer-level management Fueled by More ❯

Shodan, and Domain tools Experience with using industry-standard digital forensics tools and procedures Experience with computer programming languages, including PhP, Python, SQL, C++, Perl, or Java Experience with SIEM and Endpoint tools, including Splunk, Defender, QRadar, and ArcSight Experience with penetration testing CEH and Security+ or CSA+ Certification GIAC Cyber Threat Intelligence (GCTI) Certification Clearance: Applicants selected will be More ❯

and such Scripting including the use of python, Powershell, bash or Javascript Securing networks, hosts, web applications and cloud native deployments Working with toolsets such as: vulnerability management, firewalls, SIEM, PAM, IDS/IPS, EDR/XDR, WAF Working with code security controls such as SAST/DAST/IAST/RASP You should also: Have some knowledge in securing More ❯

mitigate risks. Design secure network architectures, including firewalls, IDS/IPS, and encryption technologies. Ensure compliance with enterprise governance, review processes, ITSM, and CMDB standards. Monitor security alerts using SIEM tools and respond to incidents promptly. Develop and enforce IAM policies and NAC solutions in collaboration with cross-functional teams. Stay updated on security threats, trends, and best practices to … and standards. Essential Experience: Bachelor’s degree in Computer Science, IT, or related field. Proven experience in network security, including secure network design, encryption, firewalls (Cisco, Palo Alto), and SIEM tools. Experience with intrusion detection/prevention systems and incident response. Strong problem-solving, analytical, and communication skills. Certifications (preferred): Zscaler Zero Trust Certified Associate Cisco CyberOps (Associate/Professional More ❯

occasionally lend a hand across IT when needed - so a generalist IT background is helpful too. The environment is Microsoft-focused (Azure, M365, Defender), with Exabeam as the primary SIEM, and you'll play a key part in their journey toward Cyber Essentials Plus certification. The Role Investigate, respond to, and resolve security incidents Shape and improve SIEM monitoring and … in IT Security Engineering or a related technical field Proven hands-on experience with: Microsoft 365 & Azure Security (Defender, Entra ID, Conditional Access) Networking fundamentals (Cisco Meraki, VPNs, segmentation) SIEM (ideally Exabeam) Endpoint security and EDR/XDR Background in general IT or infrastructure support Excellent communication skills, patient and clear with non-IT users Proactive and self-starting mindset More ❯

occasionally lend a hand across IT when needed - so a generalist IT background is helpful too. The environment is Microsoft-focused (Azure, M365, Defender), with Exabeam as the primary SIEM, and you'll play a key part in their journey toward Cyber Essentials Plus certification. The Role Investigate, respond to, and resolve security incidents Shape and improve SIEM monitoring and … in IT Security Engineering or a related technical field Proven hands-on experience with: Microsoft 365 & Azure Security (Defender, Entra ID, Conditional Access) Networking fundamentals (Cisco Meraki, VPNs, segmentation) SIEM (ideally Exabeam) Endpoint security and EDR/XDR Background in general IT or infrastructure support Excellent communication skills, patient and clear with non-IT users Proactive and self-starting mindset More ❯

occasionally lend a hand across IT when needed - so a generalist IT background is helpful too. The environment is Microsoft-focused (Azure, M365, Defender), with Exabeam as the primary SIEM, and you'll play a key part in their journey toward Cyber Essentials Plus certification. The Role Investigate, respond to, and resolve security incidents Shape and improve SIEM monitoring and … in IT Security Engineering or a related technical field Proven hands-on experience with: Microsoft 365 & Azure Security (Defender, Entra ID, Conditional Access) Networking fundamentals (Cisco Meraki, VPNs, segmentation) SIEM (ideally Exabeam) Endpoint security and EDR/XDR Background in general IT or infrastructure support Excellent communication skills, patient and clear with non-IT users Proactive and self-starting mindset More ❯

IPS, routing/switching, cloud security Relevant certs (CCSA/CCSE, NSE4+, PCNSE, JNCIS-SEC, etc.) Strong communication & client-facing skills Bonus if you have: Experience with SOAR/SIEM, scripting (Python/Bash), or cloud security (AWS/Azure) ITIL, PMP, or cloud security certifications More ❯