401 to 425 of 476 Remote SIEM Jobs

heart of our security operations, developing and maintaining the infrastructure that powers our cutting-edge cybersecurity services. Your focus will be on enhancing and managing our: SIEM (Security Information and Event Management) systems SOAR (Security Orchestration, Automation, and Response) platforms Threat Intelligence tools and integrations You’ll work closely with our threat intelligence teams to design and implement smart, automated … of institutions and millions of users across the UK. Your work will directly contribute to the safety and resilience of this network. What We’re Looking For: Experience with SIEM and SOAR platforms (e.g., Splunk, Sentinel, Cortex XSOAR). A solid understanding of threat intelligence frameworks and feeds. A collaborative mindset and a passion for automation and innovation. Operational experience More ❯

proactive attitude & approach Essential for the Role · A degree level education and/or Microsoft or other relevant certifications · Azure & Office 365 certifications Desirable for the Role · Experienced with SIEM PHD Communications is a progressive growing print, mail & electronic deliverer, and archiver of Transactional Critical Mail. We have been in business for over 35 years and in that time have More ❯

HAVE (DEPENDING ON THE TEAM) Lab 1: Cloud Enterprise and Computer Security Data & Analytics (KQL/SQL or BigQuery for GCP) Power Platform and PowerShell Lab 2: Security Operations SIEM management Advanced logging DLP technical policy development Ability to build and train machine learning models to address business needs Power Platform and PowerShell WORKING WITH US We're proud to More ❯

that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending … that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending More ❯

is expensed 37.5 hour week with early finish one day a week Structured progression and internal knowledge-sharing culture Key Responsibilities Triage and investigate alerts from a range of SIEM and EDR platforms Perform initial escalation, incident classification, and severity assessment Conduct threat hunting and intel correlation using raw log sources Produce clear incident documentation and response reports Participate in More ❯

2 days ago Be among the first 25 applicants Clearwater People Solutions Ltd provided pay range This range is provided by Clearwater People Solutions Ltd. Your actual pay will be based on your skills and experience — talk with your recruiter More ❯

incidents, performing in-depth analysis and coordinating containment and mitigation strategies. Conduct proactive threat hunting using network traffic, behavioural patterns, threat intelligence, and security telemetry. Utilise and fine-tune SIEM tools such as Splunk, leveraging advanced queries and dashboards to identify anomalies. Collaborate closely with global security teams, threat intelligence units, and stakeholders to improve detection and response playbooks Senior … Cyber Operations Analyst – Requirements: Strong proficiency with SIEM platforms, ideally Splunk, including custom query writing and dashboard development. Deep understanding of incident response, including network traffic analysis, PCAP investigation, and forensic techniques. Familiarity with attack frameworks such as MITRE ATT&CK, and ability to recognise TTPs in real-world data. Demonstrated experience analysing logs and alerts across varied data sources More ❯

incidents, performing in-depth analysis and coordinating containment and mitigation strategies. Conduct proactive threat hunting using network traffic, behavioural patterns, threat intelligence, and security telemetry. Utilise and fine-tune SIEM tools such as Splunk, leveraging advanced queries and dashboards to identify anomalies. Collaborate closely with global security teams, threat intelligence units, and stakeholders to improve detection and response playbooks Senior … Cyber Operations Analyst – Requirements: Strong proficiency with SIEM platforms, ideally Splunk, including custom query writing and dashboard development. Deep understanding of incident response, including network traffic analysis, PCAP investigation, and forensic techniques. Familiarity with attack frameworks such as MITRE ATT&CK, and ability to recognise TTPs in real-world data. Demonstrated experience analysing logs and alerts across varied data sources More ❯

tools and processes for SOC scalability and resilience Desired Experience Proven experience leading or mentoring SOC or IR teams in an enterprise or MSSP environment Strong understanding of EDR, SIEM, and XDR platforms and their role in threat detection Familiarity with CREST, NCSC IR Level 2, or equivalent frameworks Ability to translate technical findings into business impact for internal and More ❯

hoc travel to other sites/data centres. The Role The Cyber Security Engineer will be joining the internal security team, monitoring and analysing real-time security events using SIEM tools to detect and respond to potential threats. The Cyber Security Engineer will conduct regular vulnerability assessments and penetration tests to identify and mitigate security risks and breaches, and will … sized organisation Hands-on experience in the management of IDS/IPS, Firewalls, VPN, EDR/XDR, mail filtering and other security products Experience of Security Information Event Management (SIEM) tools Any experience or knowledge of ISO27001 as well as with penetration testing/vulnerability scanning would be highly advantageous The list above is important, but not as important as More ❯

include: - Working with the wider business on ISO27001 and Cyber Essentials - Network and data security monitoring - Responding to tickets and working with teams on access, malware and vulnerability - Deploy SIEM - Support ongoing improvements to internal defence - Oversee policies and procedures - Support data protection initiatives - Security projects - Develop disaster recovery plans - Establish and improve vulnerability management To be considered suitable you … will need the following skills and experience: - Relevant cyber certifications - Experience in either a Cyber Analyst or Cyber Engineer role - Knowledge on SIEM and EDR tools - Experience in network audits and penetration testing - Infrastructure support experience - Knowledge on security frameworks More ❯

in Washington, D.C. You must have an active Secret clearance or higher and a solid background in information security fundamentals and core technologies (e.g., authentication, encryption, firewalls, vulnerability scanning, SIEM/SOAR, audit logs). Your main responsibilities in this position will include: Achieving ATOs for the company's software across multiple government customers with minimal oversight. Providing outstanding customer More ❯

dashboards in Elastic SIEM. 1st/2nd line Security Monitoring to triage incidents and carry out investigations Holds current DV clearance. Key Qualifications, Experience, and Skills Knowledge of configuring SIEM tooling. Experience in developing use cases and playbooks for Security Operations Centre. Experience in SIEM configuration. What’s In It For You? Amazing company to work for! Exciting and interesting More ❯

will be a hands-on leader in securing the business against evolving threats. Key Responsibilities Manage and optimise enterprise-grade security tools: WAF, DDoS, email and web security gateways, SIEM, SOAR, EDR, MFA, SSO, IDS/IPS, PAM and more. Perform vulnerability assessments and penetration test remediation. Deliver Cyber Security Awareness Training across the business. Lead ad-hoc security initiatives … Youll need strong technical expertise across multiple areas of cybersecurity and infrastructure, especially in the following: Essential Experience: Hands-on with: CrowdStrike EDR Mimecast Duo & Okta Palo Alto firewalls SIEM/SOAR platforms (e.g., Rapid7, CrowdStrike) InTune, Conditional Access Entra ID/Active Directory, GPO VPN, MFA, MDM/MAM Desirable Experience: Working knowledge of tools such as: Imperva WAF More ❯

As part of a small security team (3 people), your role will be varied and will include managing firewalls, email security, cloud (Azure), IAM/PAM systems, security certificates, SIEM, and SOAR. As the Senior Security Engineer, you will have the opportunity to mentor and develop the security engineer. The successful candidate will have experience gained in a broad, hands More ❯

Experience A great understanding of the Cyber Security Market and key areas such as Endpoint Security (EDR/MDR), Cloud Security, Secure Access (SWG/CASB), Identity, SOC Tooling, SIEM, Data Security, Advisory Services and Managed Security Services. Previous experience in a channel Solution Sales role or similar including leveraging partner resources, incentives and teams during presales engagements. Experience selling More ❯

solutions Strong Understanding of Security Operations working within or alongside Security Operations Centre(s) Experience working in all hyperscaler environments, preferably holding Professional Cloud Architect Certification Experience with multiple SIEM & SOAR Tooling, preferably Google SecOps (formerly Chronicle/Simplify) Experience with EDR/XDR and NDR Tooling, preferably Crowdstrike, Corelight, Microsoft Defender XDR Connect to your business - Technology and Transformation More ❯

Azure A strong understanding of software development methodologies and practices Ability to Rapid Risk Assessment and Threat Modeling Other technical skills required: Azure Security Monitoring including Application Insights, and SIEM Excellent communication skills to guarantee stakeholder alignment and successful outcomes at all stages of Product delivery and ongoing support This is a great opportunity and salary is dependent upon experience. More ❯

endpoints, networks, and logs to detect potential threats and vulnerabilities. Lead detailed investigations into security alerts and incidents, identifying root causes and impacts. Support MDR analysts and contribute to SIEM administration, including use-case development and log integration. Implement response actions to contain threats and restore secure system states. Stay ahead of emerging threats and evolving attack vectors. Collaborate with More ❯

endpoints, networks, and logs to detect potential threats and vulnerabilities. Lead detailed investigations into security alerts and incidents, identifying root causes and impacts. Support MDR analysts and contribute to SIEM administration, including use-case development and log integration. Implement response actions to contain threats and restore secure system states. Stay ahead of emerging threats and evolving attack vectors. Collaborate with More ❯

endpoints, networks, and logs to detect potential threats and vulnerabilities. Lead detailed investigations into security alerts and incidents, identifying root causes and impacts. Support MDR analysts and contribute to SIEM administration, including use-case development and log integration. Implement response actions to contain threats and restore secure system states. Stay ahead of emerging threats and evolving attack vectors. Collaborate with More ❯

principles Hands-on experience with data analysis, modeling, and correlation at scale Operating systems internals and forensics experience for macOS, Windows & Linux Domain experience managing and working with current SIEM and SOAR platforms Experience developing tools and automation using common DevOps toolsets and programming languages Understanding of malware functionality and persistence mechanisms Ability to analyze endpoint, network, and application logs More ❯

processes in line with the InfoSec roadmap Ensure that the platform meets all relevant security and compliance standards, integrating industry best practices and automated security tooling (e.g., IAM, RBAC, SIEM, IaC scanning, IDS/IPS) Operational Excellence: Own the maintenance and evolution of existing shared services, ensuring robust observability, reliability, and performance Champion the automation and abstraction of infrastructure dependencies More ❯

Experience with Juniper (SRX, EX series) and/or Cisco technologies Additional expertise in one or more of the following areas is desirable: Secure internet solutions (e.g., UTM firewalls, SIEM) Wired and wireless LAN environments Private & Public Cloud architecture Government network environments (e.g., PSN, HSCN, JANET) Strong commercial awareness and ability to communicate technical ideas to non-technical audiences Skilled More ❯

weaknesses of: Infrastructure and Configuration as Code Safe Deployment strategies and CI/CD Cloud-based and Cloud-native system design Observability Developer Experience DevOps and SRE InfoSec and SIEM If you know this, even better: We’re interested in talking to people who have worked with different technologies. We’re looking for candidates who can demonstrate skills from this More ❯