26 to 50 of 138 Remote SIEM Jobs

Working closely with Infrastructure teams, you’ll ensure endpoint configurations meet organisational standards. You’ll also enhance threat-hunting capabilities by integrating threat intelligence and correlating EDR data with SIEM and XDR platforms for deeper insights. Data Loss Prevention (DLP) In this part of the role, you’ll implement and configure DLP solutions, define classification policies, and monitor for potential More ❯

of Security Operations working within or alongside Security Operations Centre(s). Experience working in all hyperscaler environments, preferably holding Professional Cloud Architect or equivalent Certification. Experience with multiple SIEM & SOAR Tooling, preferably Google SecOps (formerly Chronicle/Simplify). Strong written, verbal and presentation skills. Excellent communication and interpersonal skills, with the ability to build strong relationships with clients More ❯

date defences across both on-prem and cloud environments (cloud being a key area of focus) Implementing, configuring, and regularly updating a wide range of security toolsets including EDR, SIEM, vulnerability management, IAM, and cloud security solutions Collaborating closely with IT, Development, and third-party teams to embed security into all aspects of our operations Conducting regular risk assessments, vulnerability More ❯

Burp Suite, etc.) Experience with varied network environments and critical infrastructure solutions (i.e., FortiGate firewalls, Cisco switches, Palo Alto, Microsoft servers, VMware, Hyper-V, Azure, Microsoft 365, AWS, Duo, SIEM solutions, backup solutions, etc.) US citizenship and residence What Else? Trustworthiness and the ability to maintain strict confidentiality Strong attention to detail and accuracy Excellent critical thinking skills Proficiency interpreting More ❯

and automation. Consulting experience across IT and digital teams. Flexibility for occasional travel and out-of-hours support. Desirable: Exposure to MxDR/SOC environments and advanced security protocols (SIEM, IDS/IPS, firewalls). Knowledge of GDPR, Cyber Essentials+, PCI-DSS, and other compliance standards. Strong grasp of data protection legislation (e.g., GDPR, Data Protection Act). Why Join More ❯

effectiveness, and support compliance with ISO 27001, GDPR, and Cyber Essentials Plus Technology NIST, CIS, NCSC, Mitre Att&ck, Security Scorecard, M365/Azure Security Center Azure Security Center, SIEM, Defender ATP, M365 Security, Data Compliance and Governance, PIM & PAM Zscaler (ZTNA), Darktrace, Firewalls, NAC, Network segregation, remote access & wireless technologies Windows & KQL (MS Sentinel) scripting Cloud computing (IaaS, PaaS More ❯

Responsibilities Design, deploy, and manage PAM solutions (e.g. CyberArk, BeyondTrust, Delinea). Configure and administer PAM tools to enforce least privilege and secure credential management. Integrate PAM systems with SIEM, IAM, and other security platforms. Monitor, audit, and analyse privileged access activities. Develop and maintain PAM-related policies, documentation, and operational processes. Conduct access reviews, privilege audits, and risk assessments. More ❯

3+ years in threat intelligence, SOC operations, malware analysis, or cybersecurity research. Certifications (Preferred): CTIA, GCTI, CISSP, CEH, OSCP, or equivalent. Technical Proficiency: Experience with Threat Intelligence Platforms (TIPs), SIEM (Splunk, QRadar), and EDR solutions. Proficiency in OSINT tools (Shodan, VirusTotal, Threat Intelligence Feeds, MISP, Maltego). Strong understanding of MITRE ATT&CK, cyber kill chain, and adversary tactics. Familiarity More ❯

incident response Strong background in forensic analysis across Windows, MacOS, and Unix systems Experience in large-scale corporate environments, ideally with Microsoft Azure Proficiency in tools like EDR, SOAR, SIEM, and scripting languages (Python, PowerShell) Calm, analytical mindset with the ability to lead technical investigations under pressure Bonus: Experience with static and dynamic file/malware triage Why Tesco? At More ❯

incident response Strong background in forensic analysis across Windows, MacOS, and Unix systems Experience in large-scale corporate environments, ideally with Microsoft Azure Proficiency in tools like EDR, SOAR, SIEM, and scripting languages (Python, PowerShell) Calm, analytical mindset with the ability to lead technical investigations under pressure Bonus: Experience with static and dynamic file/malware triage Why Tesco? At More ❯

auditors, vendors, and external security service providers What we’re looking for 5+ years’ experience in information security engineering or a similar role expertise in Microsoft Azure security services, SIEM tools (MS Sentinel), and cloud security architectures knowledge of security frameworks such as ISO 27001, NIST, or CIS Controls strong understanding of network, system, and application security, cryptography, and identity More ❯

Proven experience leading and managing technical teams. Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO/IEC 27001, IAM). Proficiency with cybersecurity tools and platforms (e.g., SIEM, SOAR, SAS, Sandboxes, EDR solutions and cloud technologies). Working of knowledge of access control principles, cloud technologies (CNAPP, CSPM), data retention, and encryption methodologies. Excellent problem-solving, investigative mindset More ❯

of Microsoft technologies (Windows Server/Desktop, Active Directory, Group Policies, WSUS, Certification Authority). Hands-on experience with MFA solutions, virtualisation platforms, and network security appliances. Understanding of SIEM operations, vulnerability management, and endpoint protection. Familiarity with recognised security frameworks (ISO 27001, NIST, CIS, Cyber Essentials). Excellent problem-solving skills and ability to work under pressure. Strong communication More ❯

cyber security controls and accreditation frameworks Experience across the systems engineering lifecycle Desirable: Cloud expertise (AWS, Azure) & Infrastructure as Code (Terraform, CloudFormation) Experience with enterprise integrations (Active Directory, PKI, SIEM, monitoring) Familiarity with DevSecOps tools and CI/CD pipelines Relevant industry certifications (VMware, AWS, Microsoft, Kubernetes, etc. More ❯

accreditation requirements • Experience across the systems engineering lifecycle Desirable: • Expertise with cloud platforms (AWS, Azure) and Infrastructure as Code (CloudFormation, Terraform) • Experience integrating enterprise services (Active Directory, PKI, monitoring, SIEM) • Hands-on use of DevSecOps tools and CI/CD pipelines • Industry certifications (VMware VCP, AWS Solutions Architect, Microsoft, Kubernetes, or equivalent) • Experience presenting at technical forums or contributing to More ❯

initiatives. About You Minimum 5 years' experience in information security within a global enterprise environment . Strong knowledge of cloud and network security (Azure, O365). Experienced in DLP, SIEM, and incident response processes. Familiar with ISO 27001/27002 and governance frameworks. CISSP or CEH certification preferred. Excellent communication, stakeholder management, and documentation skills. Why Join? You'll be More ❯

initiatives. About You Minimum 5 years’ experience in information security within a global enterprise environment . Strong knowledge of cloud and network security (Azure, O365). Experienced in DLP, SIEM, and incident response processes. Familiar with ISO 27001/27002 and governance frameworks. CISSP or CEH certification preferred. Excellent communication, stakeholder management, and documentation skills. Why Join? You’ll be More ❯

implementing & managing Microsoft 365 productivity solutions Design and implementation of Information & Cyber Security controls Use of standard security solutions and tooling including mail flow, endpoint security, web application firewalls & SIEM Experience of Jira & Confluence for agile work management & documentation Experience managing penetration tests and subsequent remediation Technical background in infrastructure technologies, including Microsoft Server, Active Directory/Entra ID, DNS More ❯

DDoS protection, and encryption. Mentor junior engineers, elevate best practices, and help us on our journey to ISO 27001 certification. What You Bring Deep hands-on expertise across EDR, SIEM, NAC, MFA, PAM, and cloud security environments. Proven experience with security frameworks such as ISO 27001, NIST, CIS, and PCI-DSS. Certifications like CISSP, CPSA, or Palo Alto Certified Security More ❯

DDoS protection, and encryption. Mentor junior engineers, elevate best practices, and help us on our journey to ISO 27001 certification. What You Bring Deep hands-on expertise across EDR, SIEM, NAC, MFA, PAM, and cloud security environments. Proven experience with security frameworks such as ISO 27001, NIST, CIS, and PCI-DSS. Certifications like CISSP, CPSA, or Palo Alto Certified Security More ❯

DDoS protection, and encryption. Mentor junior engineers, elevate best practices, and help us on our journey to ISO 27001 certification. What You Bring Deep hands-on expertise across EDR, SIEM, NAC, MFA, PAM, and cloud security environments. Proven experience with security frameworks such as ISO 27001, NIST, CIS, and PCI-DSS. Certifications like CISSP, CPSA, or Palo Alto Certified Security More ❯

and vulnerability assessment Ability to interpret logs and alerts to assess threat response Clear communicator with the ability to explain risk to non-technical teams Desirable Skills Familiarity with SIEM tools (e.g. Sentinel, Splunk) Scripting/automation knowledge (e.g. PowerShell, Python) Understanding of data protection and privacy frameworks (e.g. UK GDPR) In return the successful candidate and expect hybrid working More ❯

in the storm, guiding teams through complex challenges with clarity and confidence. What you'll need to succeed You're a seasoned security professional with hands-on experience across SIEM, SOC, Azure, Microsoft 365 and enterprise network environments. You've led incident response, managed third-party suppliers and implemented threat detection strategies in hybrid organisations. Certifications such as CISSP, CEH More ❯

Years Must Have/Mandatory Skills Palo Alto Networks – Firewalls (MUST) Network Security Architecture IAM, MFA, AAA, RBAC, Privilege Access Cloud Security (OCI/Azure/AWS) SIEM/Vulnerability Management/PKI/Cryptography LAN/WAN/DMZ/Routing/Switching/Subnetting Key Responsibilities Design/Architect network security infra solutions like Firewalls, IDPS, Proxy, Load More ❯

making under pressure. Confident communicator who can explain findings clearly to technical and non-technical audiences. Track record of driving continuous improvement and developing others. Comfortable with any major SIEM or EDR platform (e.g. Splunk, QRadar, Sentinel, etc.). Package & Benefits Salary: Up to £90,000 (DOE) Bonus: 10–15% + 5% SiS Bonus Car Allowance: £6,000 Clearance: No More ❯