76 to 100 of 525 Remote SIEM Jobs

DSS compliance, including preparing for and undergoing assessments Familiarity with information security frameworks (e.g., NIST, CIS) Proficiency in risk management methodologies Knowledge of common security technologies (e.g., firewalls, EDR, SIEM, vulnerability scanners) Exceptional analytical, problem-solving, and decision-making abilities Excellent communication (written and verbal), interpersonal, and presentation skills Ability to operate autonomously and manage multiple priorities in a dynamic More ❯

use AWS) and DevSecOps principles. Experience of implementing and owning an ISO 27001 security framework. Hands-on expertise in network security, application security, IAM, and incident response. Proficiency with SIEM, IDS/IPS, WAFs, EDR, and vulnerability management tools. Understanding of secure coding practices and ability to collaborate with engineering teams. Strong communication skills to articulate security risks effectively to More ❯

and networks. • Automate repeatable tasks and provide consultative support. • Design, configure, implement, troubleshoot, and maintain security platforms (e.g., firewalls, intrusion detection/prevention, anti-virus/malware, cryptography systems, SIEM, MDM). • Formulate systems and methodologies, respond to security events, and assist in remediation efforts. • Participate in the change management process. • Coordinate and monitor log analysis for managed services to … ensure compliance with customer policies and security requirements. Basic Qualifications: • Expertise with at least one of the following tools: Splunk, HBSS/McAfee, Rapid7. • Proficiency in implementing and managing SIEM, end-point security (IDS/IPS, HBSS). • Strong knowledge of networking protocols (TCP/IP, LAN/WAN concepts). • Experience with automation tools (Ansible, CloudFormation). • Strong attention More ❯

our new cyber security team, working alongside cross-functional product teams, leading in the design, development and enablement of automated monitoring processes, advising on the latest SIEM (Security Information and Event Management) and network analysis tools, techniques and procedures to detect malicious activity, while communicating directly with leadership on the progress and status of cyber threat monitoring and response. Key … decisions on reporting or escalations for monitoring Lead the cyber security team in the design, development and enablement of automated monitoring processes, advising on the latest SIEM (Security Information and Event Management) and network analysis tools, techniques and procedures to detect malicious activity, while communicating directly with leadership on the progress and status of monitoring coordinate the triage and remediation More ❯

IT and Security problems for non-technical audiences. • Strong understanding of OT infrastructure, networking, and end-user computing. • Proficiency in writing Kusto Query Language (KQL) for creating and tuning SIEM queries and alerts. • Experience in configuring and troubleshooting MFA, Privileged Access Management (PAM), and Security Information & Event Management (SIEM) systems, particularly Microsoft Sentinel. Desirable Experience: • Familiarity with managing network security More ❯

to align security goals with business objectives. Lead risk assessments and threat modelling exercises for internal systems and third-party services. Manage the deployment and maintenance of security solutions (SIEM, firewalls, endpoint protection, DLP, etc.). Oversee the organization's incident response and business continuity plans, including simulations and real-time responses. Conduct regular security audits and work with internal … ISO/IEC 27001, NIST CSF, CIS Controls) and cybersecurity principles, practices, and regulatory requirements in the finance sector. Experience in security technologies such as firewalls, IDS/IPS, SIEM, encryption, and identity management. Experience with secure cloud computing platforms (e.g., Azure) in a regulated environment. Familiarity with data analytics platforms and financial data governance tooling. Strong working knowledge of More ❯

patch management). Microsoft 365 suite (Teams, Outlook, Entra ID, Exchange). Desirable Windows server environments (Active Directory, DNS). Understanding of key security technology such as firewalls, proxies, SIEM, and IDPS concepts Experience with security frameworks and standards, including ISO27001 and Cyber Essentials Plus. Datacentre experience (server installation, troubleshooting, cabling). Networking (firewalls, switches & access points). Familiarity with More ❯

should be an enabler, and whose role is to work with the business to achieve its goals. Broad experience of technologies including, but not limited to; Firewalls, IPS & IDS, SIEM, DLP, WAF, Modern Operating systems, AD/AAD, Microsoft management tools, Cloud Service Providers, Vulnerability management, Anti-virus, email and Web filtering. An understanding of core application development principles. Experience More ❯

Security Engineer toimplement robust infrastructure security measures utilizing modern security solutions. What You Will Be Doing: Design and implement robust infrastructure security measures utilizing modern security solutions such as SIEM platforms, host-based intrusion detection systems (HIDS), endpoint detection and response (EDR), AWS Security Hub, vulnerability scanning tools, and intrusion detection systems (IDS) Proactively research, evaluate, and integrate emerging security … tools/technologies to strengthen infrastructure defences, ensuring alignment with industry best practices and evolving threat landscapes Develop, analyze, and fine-tune SIEM alert configurations to maximize detection accuracy, reduce false positives, and streamline incident response workflows Design, implement, and maintain security automation workflows utilizing Ansible for configuration management, Terraform for infrastructure-as-code, and GitLab CI/CD pipelines … emerging threats and cybersecurity innovations About You: Proven experience in information security. Knowledge of cloud infrastructures, with a focus on AWS In-depth knowledge and hands-on experience with SIEM systems and vulnerability management tools Proficiency in using Terraform and Ansible for infrastructure automation Experience in Kubernetes security, including the use of tools for monitoring and securing containers Knowledge of More ❯

with client information security questionnaires. Assist IT with Security Administration. Your profile Essential Criteria Experienced security engineer with demonstrable detailed knowledge of security products, Web Application Firewalls, access control, SIEM, AV, email and web security gateways, firewalls, load-balancers, ACLs, TCP/IP, routing and switching. Knowledge of current and future security initiatives e.g. OWASP standards, SASE intelligence led penetration More ❯

with client information security questionnaires. Assist IT with Security Administration. Your profile Essential Criteria Experienced security engineer with demonstrable detailed knowledge of security products, Web Application Firewalls, access control, SIEM, AV, email and web security gateways, firewalls, load-balancers, ACLs, TCP/IP, routing and switching. Knowledge of current and future security initiatives e.g. OWASP standards, SASE intelligence led penetration More ❯

Ideal Candidate Profile Expert in Azure cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or More ❯

causes, uncovering malicious activity, recommending corrective actions, and working cross-functionally to drive remediation and strategic improvements. Key Responsibilities Security Monitoring & Incident Response Monitor and triage security alerts from SIEM, EDR, and other tools; escalate and respond as needed. Investigate security incidents, determine root cause, document findings, and develop IOCs to prevent recurrence. Support escalations from internal employees or customers … Penetration Testing : Offensive security and exploitation techniques. Digital Forensics : Host, network, or memory-based investigation. Threat Hunting : Detection engineering and hypothesis-driven threat investigation. Knowledge of modern security tooling (SIEM, EDR, vulnerability management, SOAR). Strong documentation and communication skills; fluent in written and spoken English. Diversity, Inclusion, and Equal Opportunity We hire, promote, and compensate employees based on their More ❯

experience in cybersecurity operations or incident response Proven track record in threat identification, network traffic analysis, and rapid incident mitigation Proficiency with tools used in modern cybersecurity environments (e.g., SIEM, intrusion detection/prevention systems, endpoint monitoring) Scripting experience using languages like Python, PowerShell, or Bash Familiarity with open-source diagnostic and assessment tools such as Nmap, Wireshark, and Kali More ❯

issues to higher levels. Work under direct supervision. Qualifications 8+ years of experience in cybersecurity Experience with Windows, Apple OSX, and Linux operating systems operations and artifacts Experience with SIEM technologies, including Splunk, Microsoft Sentinel, or Elastic Experience with forensics tools, including Magnet Axiom and FTK Experience performing forensic imaging, remote collection, and forensic analysis Experience with malware analysis, including More ❯

and document attack sources, techniques, tactics, and procedures (TTPs), and assess attack scope. Document attack chain details and update detection capabilities accordingly. Maintain monitoring effectiveness by creating and updating SIEM/SOAR playbooks, adapting to evolving TTPs. Use intrusion analysis skills to contribute to new detection techniques and research industry capabilities. Coordinate with government or commercial security operation centers for More ❯

logs from a variety of enterprise and security systems. Familiarity with regular expressions (regex), SPL (Search Processing Language), and custom log ingestion. Knowledge of cybersecurity operations, incident response, and SIEM use cases. Strong scripting skills (Python, PowerShell, Bash) for automation and customization. Preferred Qualifications: Splunk Core Certified Admin or Architect; Splunk ES experience strongly preferred. Experience working in highly secure More ❯

and other CTI frameworks Strong writing, communication, and briefing skills for both technical and executive audiences Experience working with tools such as ThreatConnect, MISP, Analyst Notebook, or TIP/SIEM platforms (e.g., Splunk) Preferred Qualifications: Prior DoD or IC experience in CTI or cyber operations Certifications such as GCIA, GCTI, GREM, GCFA, CEH, or Security+ Experience with malware analysis, reverse More ❯

and other CTI frameworks Strong writing, communication, and briefing skills for both technical and executive audiences Experience working with tools such as ThreatConnect, MISP, Analyst Notebook, or TIP/SIEM platforms (e.g., Splunk) Preferred Qualifications: Prior DoD or IC experience in CTI or cyber operations Certifications such as GCIA, GCTI, GREM, GCFA, CEH, or Security+ Experience with malware analysis, reverse More ❯

security threats, attack techniques and technologies to detect/prevent incidents, and collaborate with networks and conferences to gain industry knowledge and expertise. * Management and analysis of security information and event management systems to collect, correlate and analyse security logs, events and alerts/potential threats. * Triage of data loss prevention alerts to identify and prevent sensitive data for being … hybrid work arrangement-three days on-site and one day remote per week. To be successful as a Senior Cyber Operations Analyst you will need the following: * Proficiency in SIEM technologies including Splunk * Proactively search for potential threats using behavioural analytics, network traffic analysis, and threat intelligence. * Incident response skills, including proficiency in PCAP capture, network analysis, and traffic pattern More ❯

continuous learning. Client Relationship Management: Act as a point of contact, managing ongoing communications and ensuring technical needs are met Threat Detection & Analysis: Triage and analyse alerts across multiple SIEM platforms (e.g., Microsoft Sentinel, custom ELK stacks). Log & Threat Intelligence Analysis: Perform detailed log analysis and threat intelligence research to uncover root causes and bolster security defences. Technical Reporting More ❯

with complicated security-related concepts to technical and non-technical audiences. Proficient in the use of PowerBI or a similar dashboarding application. Knowledge of security systems (including working with SIEM data). SQL or database knowledge would be desirable. Relevant certifications such as CISSP, CISM, or CRISC (or equivalent) are preferred. Proven experience in managing and delivering technical projects and More ❯

with complicated security-related concepts to technical and non-technical audiences. Proficient in the use of PowerBI or a similar dashboarding application. Knowledge of security systems (including working with SIEM data). SQL or database knowledge would be desirable. Relevant certifications such as CISSP, CISM, or CRISC (or equivalent) are preferred. Proven experience in managing and delivering technical projects and More ❯

with complicated security-related concepts to technical and non-technical audiences. Proficient in the use of PowerBI or a similar dashboarding application. Knowledge of security systems (including working with SIEM data). SQL or database knowledge would be desirable. Relevant certifications such as CISSP, CISM, or CRISC (or equivalent) are preferred. Proven experience in managing and delivering technical projects and More ❯

with complicated security-related concepts to technical and non-technical audiences. Proficient in the use of PowerBI or a similar dashboarding application. Knowledge of security systems (including working with SIEM data). SQL or database knowledge would be desirable. Relevant certifications such as CISSP, CISM, or CRISC (or equivalent) are preferred. Proven experience in managing and delivering technical projects and More ❯