76 to 100 of 210 Remote SIEM Jobs

Qualifications Required: 5+ years in cyber security leadership with a strong technical security background. Expertise in Microsoft & Azure security environments (cloud, hybrid, on-prem). Hands-on experience with SIEM, EDR, and XDR solutions for security monitoring. Certifications preferred: CISSP, CISM, AZ-500, SC-200, SC-100. Strong knowledge of ISO 27001, NIST, CIS benchmarks, and security governance. Experience leading More ❯

Regulatory requirement expertise - Cyber Essentials Plus, ISO 27001 and GDPR Microsoft security tools - Defender, Entra ID, Purview Cloud platform exposure - Azure preferred Broad experience of configuring and management of SIEM tooling Certifications CISSP, CISM are a non-negotiable Hands-on expertise with identity and access management, endpoint protection, vulnerability and patch management and cloud security. Ability to explain complex technical More ❯

systems. The Role The Principal Security Analyst will support busy pods on more complex issues, lead and coordinate threat hunting activities, perform and lead vulnerability assessment activities and perform SIEM-based event analysis, incident triage and coordinate incident response activities. Furthermore, the Principal Security Analyst will actively collaborate with other analysts and enhance the teams effectiveness through ownership of relevant More ❯

systems. The Role The Principal Security Analyst will support busy pods on more complex issues, lead and coordinate threat hunting activities, perform and lead vulnerability assessment activities and perform SIEM-based event analysis, incident triage and coordinate incident response activities. Furthermore, the Principal Security Analyst will actively collaborate with other analysts and enhance the teams’ effectiveness through ownership of relevant More ❯

adversarial attacks, model poisoning, and data privacy issues. Deep knowledge of: Identity & Access Management (IAM) Network and Application Security Data Protection & Encryption Kubernetes, Containers, and DevSecOps/MLOps practices SIEM, logging, and monitoring Zero Trust architectures Skilled in applying frameworks such as NIST CSF, ISO 27001, PCI DSS, CSA CCM, NIST AI RMF . Hands-on with tools for vulnerability More ❯

of continuous learning and improvement within the security domain. Experience: Proven experience in a Security Consultant Role, with a strong background in incident response and threat intelligence. Familiarity with SIEM tools, CompTIA Security+, and other cyber security certifications are highly desirable. Collaborating with stakeholders and 3 rd parties. Creating security strategies and leading the implementation of the strategy plan Active More ❯

and help shape our strategy using frameworks such as OWASP, SASE, and Zero Trust. What We're Looking For Essential: Proven experience in cyber security engineering, including vulnerability management, SIEM, WAFs, and secure infrastructure design. Strong knowledge of TCP/IP, firewalls, routing, access controls, and threat-based security approaches. Excellent communication skills with the ability to create and maintain More ❯

organisational procedures and business continuity plans. Operate tools and processes to identify vulnerabilities and support timely patching across systems and infrastructure. Configure and maintain security tools and systems (e.g. SIEM, firewalls) in accordance with defined policies and procedures. Support the production of security metrics and documentation; share knowledge and best practice with colleagues to promote security awareness. Skills and experience More ❯

CEH, or GIAC. 3-5 years of experience in cybersecurity roles, with hands-on experience in security assessment, monitoring, and incident response. Proficiency in security tools and technologies, including SIEM, IDS/IPS, endpoint protection, and network security appliances. Strong understanding of networking protocols, operating systems, and cloud computing environments. More ❯

code (IaC) deployments across Azure. Lead container, API, and web application security initiatives, including code reviews. Support threat modelling, vulnerability management, and penetration testing activities. Drive logging integration with SIEM tools, enabling SOC monitoring and incident response. Coach engineering teams on cloud security principles and manage audit-related actions. What You'll Bring Essential Skills: Deep expertise in Azure security More ❯

Proven experience in a cyber security engineering role, ideally within enterprise or financial environments. Strong hands-on expertise with the Azure security stack , including: Microsoft Defender for Cloud Sentinel (SIEM) Azure Security Center Azure Policy & Role-Based Access Control (RBAC) Microsoft Purview and Compliance tools Familiarity with security frameworks such as NIST, ISO 27001, or CIS. Experience with scripting (PowerShell More ❯

Proven experience in a cyber security engineering role, ideally within enterprise or financial environments. Strong hands-on expertise with the Azure security stack , including: Microsoft Defender for Cloud Sentinel (SIEM) Azure Security Center Azure Policy & Role-Based Access Control (RBAC) Microsoft Purview and Compliance tools Familiarity with security frameworks such as NIST, ISO 27001, or CIS. Experience with scripting (PowerShell More ❯

threats by researching, testing, and implementing new solutions. What we'd love you to bring: A solid grounding in network and system security (think firewalls, VPNs, IDS/IPS, SIEM). Knowledge of security frameworks (ISO 27001, NIST, CIS, etc.) and how to actually apply them. Experience with cloud platforms (AWS, Azure, GCP) and securing them. Scripting or coding chops More ❯

threats by researching, testing, and implementing new solutions. What we'd love you to bring: A solid grounding in network and system security (think firewalls, VPNs, IDS/IPS, SIEM). Knowledge of security frameworks (ISO 27001, NIST, CIS, etc.) and how to actually apply them. Experience with cloud platforms (AWS, Azure, GCP) and securing them. Scripting or coding chops More ❯

well as support Senior Analysts in closing incidents when called upon. Qualifications and Experience At least 5 years' experience in Incident Management, SecOps or IT Security Experience of reviewing SIEM alerts and responding to them appropriately Experience working through cyber investigations independently Proven experience of Splunk or Sentinel Worked with EDR systems such as Defender or Symantec Knowledge of KQL More ❯

and maintenance of effective incident response playbooks and provide technical expertise to enhance the overall incident response process. - Investigate incidents utilising data from various sources, including asset logs and SIEM platforms, and forensic artefacts. Prepare detailed analysis reports for incident management teams, ensuring incidents are adequately tracked and collaborating with SecOps and SOAR platform specialists to maintain optimal platform efficiency. More ❯

opportunity to work on cutting-edge security operations, with a strong focus on IBM QRadar , threat modelling, and automation. What You’ll Do Deploy, configure, and maintain IBM QRadar SIEM solutions. Onboard and normalise log sources across both cloud and on-premise environments. Develop and optimise analytical rules for advanced threat detection and behavioural analysis. Design and implement incident response … tools for new opportunities. Mentor junior analysts and contribute to continual service improvements. What We’re Looking For 3+ years experience in SOC/NOC Environments Strong experience with SIEM - IBM QRadar . Experience with log parsing, KQL/SPL/AQL, and scripting (Python, PowerShell). Solid understanding of threat detection, incident response, vulnerability management, and penetration testing . More ❯

security workflows. This role is ideal for someone with deep technical expertise in security operations and a strong background in scripting, orchestration, and automation tools such as SOAR platforms, SIEM, and custom API integrations.Wage/Salary Range: 90-100K ESSENTIAL DUTIES & RESPONSIBILITIES The Essential Duties and Responsibilities are intended to present a descriptive list of the range of duties … Palo Alto XSOAR, Splunk SOAR) and scripting languages (Python, PowerShell, Bash). Develop playbooks to automate repetitive SOC tasks (alert triage, enrichment, notifications, remediation). Integrate various cybersecurity tools (SIEM, EDR, firewall, threat intel platforms) via APIs. Build dashboards and reporting tools for real-time monitoring and analytics. Continuously improve incident response efficiency through automation and orchestration. QUALIFICATIONS - EXPERIENCE, EDUCATION … individuals with disabilities to perform the essential functions. Required (Minimum Necessary) Qualifications Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or a related field. Technical Skills: Experience with SIEM platforms (e.g., Splunk, QRadar, Sentinel). Proficiency in one or more scripting languages (Python highly preferred). Strong understanding of security frameworks and standards (MITRE ATT&CK, NIST, ISO More ❯

Profile Practical experience and understanding of ISO27001 Familiar with NIST and GDPR is preferred Solid experience in threat, risk and vulnerabilities management process Experience with security tools such as SIEM, intrusion detection systems, and endpoint protection. Strong analytical and problem-solving skills. Hold at least one security related professional certification is desirable Job Offer 24 days of holiday leave Performance More ❯

technologies, and make recommendations for security improvements Skills Required: • ACAS (Assured Compliance Assessment Solution) • HBSS (Host-Based Security System) • eMASS (Enterprise Mission Assurance Support Service) • RMF (Risk Management Framework) • SIEM (Splunk or LogRythm) • Strong understanding of security principles, including confidentiality, integrity, and availability • Experience with security technologies, including firewalls, intrusion detection systems, and encryption • Excellent problem-solving and analytical skills More ❯

financial management and controls Previously worked within the NHS A good practical knowledge of security technologies and wider business solutions including Firewalls, IDS/IPS, Identity and access management, SIEM, remote working and cloud technologies Proven experience of working at a senior level leading and delivering IT Security in a sensitive and complex environment which is undergoing significant change Experience More ❯

systems troubleshooting, patching, and updating. Must be skilled at investigating and remediating reported vulnerabilities, and a have proactive approach to solutions. Deep understanding of cybersecurity frameworks and tools (EDR, SIEM, MFA, PKI, DLP). Nessus VAPT reporting and remediation Strong expertise in: Microsoft technologies (Windows Server, Azure Active Directory) Virtualization platforms (VMware ESXi, Proxmox) Networking including Layer 2/ More ❯

systems troubleshooting, patching, and updating. Must be skilled at investigating and remediating reported vulnerabilities, and a have proactive approach to solutions. Deep understanding of cybersecurity frameworks and tools (EDR, SIEM, MFA, PKI, DLP). Nessus VAPT reporting and remediation Strong expertise in: Microsoft technologies (Windows Server, Azure Active Directory) Virtualization platforms (VMware ESXi, Proxmox) Networking including Layer 2/ More ❯

approach. Relevant technical qualifications. Experience in one or more of the following areas: MDR, EDR, XDR, NDR NGFW, IDS/IPS, WAF, SASE, SSE, NAC PAM, MFA, SSO, DLP, SIEM, SOAR Threat Intelligence, Incident Response, Pen Testing, Red Teaming Cloud security solutions (CASB, CNAPP, VM, DAST) Security awareness training, vCISO/vSM services, compliance frameworks (PCI, ISO, NIST, Cyber Essentials More ❯

Logstash, and Elasticsearch APIs. • Create and manage Kibana dashboards to provide actionable insights to technical and non-technical stakeholders. • Tune and optimize Elasticsearch clusters for performance and availability. • Support SIEM and threat-hunting capabilities using Elastic Security features. • Work with DevOps teams to automate deployment and monitoring of Elastic solutions using tools such as Ansible, Terraform, or Kubernetes. • Ensure compliance More ❯