51 to 75 of 525 Remote SIEM Jobs

play a key role in proactive threat hunting and compliance reporting. What you'll be doing as a Senior Cyber Security Analyst: Security Incident Response : Investigate security alerts from SIEM and third-party MSSPs, triage and respond to incidents, and support root cause analysis to drive remediation. Stakeholder Engagement : Work closely with technology and business teams to communicate cyber risks … risks in complex digital environments Working with third-party security partners or MSSPs Essential Technical Skills & Qualifications: Strong knowledge of IT infrastructure, networking, and end-user computing Experience with SIEM tools, particularly Microsoft Sentinel Ability to write and tune Kusto Query Language (KQL) queries Hands-on experience with PAM, MFA, and other SecOps tools Excellent communication skills with the ability More ❯

effectively. Willingness to participate in continuous learning and professional development. Flexibility to work on-site in Peterborough two days per week (negotiable). Skills & Certifications: Experience with KQL, Rapid7 SIEM, SentinelOne EDR, Microsoft Defender XDR, or Microsoft Sentinel. Level 3 Analysts: Additional expertise in threat hunting, digital forensics, and leadership experience. Benefits: Competitive salary package with opportunities for overtime and More ❯

re an accomplished Security Operations Engineer with a track record of threat detection engineering within a security operations center (SOC) or similar environment. You bring hands-on experience with SIEM solutions, EDR, intrusion detection/prevention systems, and other security tools. You're proficient in scripting languages (e.g. Python) for automating security processes and customizing security tools. You have prior More ❯

controls including NIST CSF, CIS CSC, PCI-DSS, Cyber Defense Matrix, ISO 27001, and MITRE ATT&CK. Familiarity with a broad range of security tools and technologies including EDR, SIEM, SWG, CASB, DLP, & IDS/IPS. Preferred certifications: CCSP, CASP+, CISSP, Security+, CEH. Experience with modern network architectures and tooling to manage and support remote workforce including associates in the More ❯

Every day, organizations around the world rely on Swyft to secure their digital infrastructure, protect sensitive data, and defend against evolving cyber threats. Our cutting-edge solutions in SOC, SIEM, and hardware security enable businesses to operate with confidence in an increasingly complex security landscape. At Swyft, we’re building the technology that powers next-generation cybersecurity, combining automation, intelligence … teams, driving enterprise sales, and managing complex cybersecurity engagements. Responsibilities Develop & execute a UK security strategy aligned with Swyft’s global cybersecurity frameworks, ensuring technical alignment with SOC/SIEM, threat intelligence, and compliance requirements. Build and scale a UK cybersecurity team , including pre-sales engineers, SOC analysts, and risk/compliance specialists. Oversee technical sales & enterprise security solutions, working … cybersecurity vendor, MSSP, or enterprise security team. Expertise in cybersecurity frameworks & compliance standards (NIST CSF, ISO 27001, CIS Controls, GDPR, NIS Directive). Hands-on experience with SOC/SIEM operations, threat intelligence, and security engineering (Splunk, Sentinel, Elastic Security, or similar platforms). Proven track record in cybersecurity solution sales & business expansion, including technical pre-sales, contract negotiation, and More ❯

satisfactory DBS check. Flexibility to work occasional weekends and out-of-hours. Desirable Criteria: ITIL Foundation Level or above. ISO:27001 Implementor, Auditor, or related security certification. Experience with SIEM tools, vulnerability management, scripting (PowerShell, Python). Microsoft Azure Security Engineer Associate certification. Additional certifications: Security+, Network+, Linux+, Data+, DataSys+. Full UK Driving Licence. The Company: The Best Connection, established More ❯

DBS check. Flexibility to work occasional weekends and out of hours Desirable Criteria: ITIL Foundation Level or above ISO:27001 Implementor, Auditor, or other security-related certifications Experience with SIEM tools, vulnerability management, or scripting (e.g., PowerShell, Python) Microsoft Azure Security Engineer Associate Certifications such as CompTIA Security+, Network+, Linux+, Data+, DataSys+ Full UK Driving Licence The Company: The Best More ❯

Security Tooling Engineer (SIEM/SOAR) Location: Cheltenham/Hybrid Please Note: Due to the nature of client work you will be undertaking, you will need to be willing to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application. As a Security Tooling Engineer, you will … Be responsible for developing and optimising Security Tooling, to drive the maturation of Accenture’s Security Operation Centre (SOC) offerings. Build, maintain and optimise Security Information Event Management (SIEM) and Security, Orchestration, Automation and Response (SOAR) toolsets. Develop and implement innovative solutions to improve the efficiency and capabilities of Accenture’s service offerings. Approach problems with a security-first mindset … and Response (SOAR) platforms, such as Palo Alto XSOAR, Splunk Phantom or Chronicle SOAR. Deploying and optimising either Microsoft Sentinel and/or Splunk Enterprise Security. Knowledge of other SIEM platforms is advantageous. Understanding of DevOps principles and orchestration toolsets. Working knowledge of at least one software development or scripting language, such as Python or PowerShell. Familiarity with the principles More ❯

for this role: 3+ years' experience in a senior cyber security role Strong knowledge of security frameworks (NIST, NCSC, CIS, MITRE ATT&CK) Hands-on experience with security tools: SIEM, IDS/IPS, firewalls, endpoint protection Expertise in Azure security and securing cloud platforms A solid understanding of vulnerabilities, penetration testing, and compliance Experience with network security, encryption, TLS, SSL More ❯

customers Understanding adversarial Tactics, Techniques and Procedures (TTPs) and developing novel detection and prevention techniques across multiple environments including network, endpoint and applications, particularly through use of the bank SIEM solution Monitoring events and alerts generated by firewalls, SIEMs, IDS and networking equipment Systematically identify system security issues and determine root cause via a consistent, logical approach In conjunction with … with project management methodologies SKILLS/KNOWLEDGE: Solid Understanding of the following: Network topologies/design: routing, switching, and MPLS/ELan technologies Palo firewall technology, design, and administration SIEM configuration and content development experience Global load balancing technology design and support IP networking (TCP/IP and packet analysis) Network and system attack knowledge Remote access design and implementation More ❯

for this role: 3+ years' experience in a senior cyber security role Strong knowledge of security frameworks (NIST, NCSC, CIS, MITRE ATT&CK) Hands-on experience with security tools: SIEM, IDS/IPS, firewalls, endpoint protection Expertise in Azure security and securing cloud platforms A solid understanding of vulnerabilities, penetration testing, and compliance Experience with network security, encryption, TLS, SSL More ❯

Collaborate with third-party suppliers and internal teams. Provide expert advice on security technologies and processes. Requirements : Proven team leadership experience.Strong knowledge of security technologies (firewalls, IDS/IPS, SIEM).Relevant qualifications (CISSP, CISM, etc.). Apply now to make a significant impact on NHS BSA's cyber security strategy! What do we offer ?o 27 days leave (increasing with … monitoring activities, ensuring compliance with Information Security Standards ISO27001, NHS DSPT, NCSC CAF 4.Experience of managing security technologies including; firewalls, anti-malware, IDS/IPS, web filtering, email filtering, SIEM, patch management, MDM, DLP 5.Designing and recommending appropriate controls to enable the achievement of Cyber security and wider business goals. Desirable 1.Evaluation of threat intelligence data from multiple sources to More ❯

technology products and platforms to customers Ensure coverage of security tooling is complete to give complete visibility across the estate with regards to vulnerabilities, incidents, alerts and that the SIEM is properly configured Ensure vulnerabilities across endpoint and product are within tolerance Ensure Cyber security training is fit for purpose and engaging Respond to and manage security incidents Help the … delivering secure, large-scale projects as cloud solutions Experience managing best practice standards, such as ISO27001 and NIST Experience maintaining vulnerability detection tooling, email security gateways, EDR solutions and SIEM technology Experience in red teaming/pen testing advantageous Experience in securing the development of DevOps pipelines Experience with containerisation and orchestration technologies (Docker, Kubernetes, Helm) Knowledge of scripting languages More ❯

to protect against them. Experience responding to incidents across corporate and customer-facing web applications, identifying potential threats and mitigating/escalating as required would be beneficial. Experience with SIEM Platforms (ideally Splunk), including working with logs and creating correlation searches and dashboards is a plus. Experience of working within PCI DSS, or other compliance frameworks. Software and Technology Coding … languages (Python, Teraform) Build pipeline tools (Gitlab, Jenkins) IaaS (AWS, Azure, GCP) & SIEM (ideally Splunk) Endpoint Detection and Response (EDR) tools such as MS Defender APT. Network and Host Intrusion Detection/Prevention tools Web Application Firewalls (ideally Akamai) Vulnerability scanning tools (ideally Rapid7) Whats in it for you? Hybrid working(2-3 days in the office at a minimum More ❯

email and identity protection technologies (XDR) for a cloud focused environment. Designing and deploying identity and access management solutions for cloud identity providers. Supporting and designing deployments of cloud SIEM/SOAR technologies in enterprise environments. Assessing and reviewing customer cloud security posture across multiple solutions and technologies. Creating and maintaining technical project documentations such as technical configuration documents or More ❯

Job Description Key Responsibilities: Design, implement, and manage security controls for Microsoft Azure, M365 environments, and other business areas as required. Develop and implement Zero Trust security architectures and strategies. Manage and maintain access management (IAM) systems and processes. Conduct More ❯

document attack sources, techniques, tactics, and procedures (TTPs), and assess attack extent. Capture and feed back attack chain details into detection capabilities. Ensure monitoring effectiveness by creating and updating SIEM/SOAR playbooks aligned with attacker TTPs. Use intrusion analysis skills to contribute to new detection techniques and research industry capabilities. Communicate with government or commercial security operation centers for More ❯

continuous learning. Client Relationship Management: Act as a point of contact, managing ongoing communications and ensuring technical needs are met Threat Detection & Analysis: Triage and analyse alerts across multiple SIEM platforms (e.g., Microsoft Sentinel, custom ELK stacks). Log & Threat Intelligence Analysis: Perform detailed log analysis and threat intelligence research to uncover root causes and bolster security defences. Technical Reporting More ❯

with a minimum of 3 years in a management role. Deep understanding of cybersecurity principles, frameworks, and best practices as they apply to SOC environments. Hands-on knowledge of SIEM platforms and technologies, such as Splunk, QRadar, Google, LogRhythm and SolarWinds. Solid understanding of EDR, MDR and XDR technologies and processes. Extensive experience of integrating Threat Intelligence, Automation tools and … presentation skills, with the capability to convey technical concepts to non-technical stakeholders. Demonstrated project management abilities, with experience handling multiple projects and meeting deadlines. Understanding of SOC/SIEM configurations and possesses the ability to test, diagnose, configure and maintain SOC systems. Produce security architecture design documents that have been created through an analysis of the potential risks, which More ❯

or similar role You have experience of building out functions of a Cyber Defence Team e.g. insider risk, threat intelligence, breach attack simulation You have a strong knowledge of SIEM and deep Splunk experience You have a good understanding of various security infrastructure tools such as firewalls, intrusion prevention/detection systems, proxy servers, email controls, anonymising technology, data loss More ❯

conducting analysis of data from a diverse range of data sources using a SIEM. Demonstrated expertise in performing forensic investigations and root cause analyses for complex incidents. Experience with SIEM platforms, endpoint detection and response tools, and network traffic analysis. Strong understanding of attack frameworks (e.g. MITRE ATT&CK) and the ability to apply them to threat hunting and incident More ❯

response role Hands-on experience with Microsoft Sentinel (KQL, analytics rules, Logic Apps) Knowledge of Microsoft Defender XDR suite (Defender for Endpoint, Cloud, Identity) Understanding of MITRE ATT&CK, SIEM best practices, and security operations Strong analytical & communication skills (explaining risks to clients is key!) Bonus if you have: Microsoft certs (SC-200, SC-100, AZ-500) Experience with automation More ❯

remediation. Knowledge of security frameworks, such as NIST, ISO 27001, or similar. Excellent communication skills, with the ability to clearly convey technical details to diverse audiences. Previous experience in SIEM/SOAR within large-scale, complex environments. Familiarity with other security tools and technologies. Desirable Skills: Relevant certifications (e.g., CISSP, CEH, Microsoft Certified: Security, Compliance, and Identity Fundamentals) a plus. More ❯

Security: Implement and monitor DNS security solutions to prevent cyber threats. Incident Response: Formulating and documenting a solid process utilising a 3rd party support partner Security Monitoring & Logging: Develop SIEM solutions, logging strategies, and real-time threat intelligence. Monitor, audit, and improve infrastructure security posture using automated tooling. Policy & Procedures: Define and enforce security policies, incident response strategies, and structured … with Terraform for IaC security automation. Knowledge of DevOps pipelines (CI/CD) and security hardening. Deep understanding of PCI DSS compliance, security frameworks, and audit processes. Familiarity with SIEM solutions, security orchestration platforms, and log management. Strong experience with incident response planning, threat detection, and mitigation. Ability to define security policies, procedures, and structured action plans for compliance and More ❯

compliance, including preparing for and undergoing assessments. Familiarity with information security frameworks (e.g., NIST, CIS). Proficiency in risk management methodologies. Knowledge of common security technologies (e.g., firewalls, EDR, SIEM, vulnerability scanners). Exceptional analytical, problem-solving, and decision-making abilities. Excellent communication (written and verbal), interpersonal, and presentation skills. Ability to operate autonomously and manage multiple priorities in a More ❯