1 to 25 of 217 Permanent SIEM Jobs in England

Cyber Security Lead - Bristol - Hybrid working - £85,000 - £95,000 pa - Not-for-profit organisation Cyber Security/Lead/Cloud/SIEM/Strategy We have a fantastic opportunity for a Cyber Security Lead to work for a superb company in Bristol. Our client is looking for a Cyber … the cyber security strategy across the organisation. You will monitor threats from vulnerability managements tools and support the design, implementation and management of any SIEM tools. You will promote a level of cyber security culture and awareness across the organisation Provide leadership and insights into security threats You will lead … best practice in relation to Cyber Security Around 7+ years of experience working in Security Engineering Strong knowledge of security tooling and technologies including SIEM, vulnerability management, DLP etc Experience of working in environments using ISO27001 or Cyber Essentials Plus Good knowledge of cloud platforms - AWS and Azure Good understanding more »

Are you an expert Engineer who has been involved designing and implementing a SIEM solution based on a set of customer requirements? Are you eager for something new and want to join our experienced team on a transformation journey? Join our well-established Cyber Security Operations team within Aerospace, Defense … our HemelHempstead site 3 days a week. What you will be doing: Maintaining the health of the SOCs technology stack Design and implement a SIEM based on a set of customer requirements Crafting and delivering solutions to onboard customers into the Managed SOC Provide engineering support to analysts Aid in … priorities within a fast paced environment It would be great if you have: Deploying solutions into Cloud (especially where Infrastructure as Code is used) SIEM detection-rule writing Use of log filtering and forwarding technology (such as Splunk forwarders, Logstash, Fluentd, Fluent Bit, etc.) If you are interested in this more »

SOC - SIEM - Threat and Vulnerability Management - Intrusion Detection and Prevention Systems IDS/IPS - EDR - Anti-Virus My client, a technical services company based in London is looking for a Security Analyst (SOC) to join their global Security team on a permanent basis. The Security specialist will work around SIEM … call support for out-of-hours escalation and the candidate needs to be able to work on Shift patterns. The role Troubleshooting and supporting SIEM components (Sentinel) Manage Anti-Virus and Endpoint Detection and Response Monitoring security tickets and respond to all SOC service requests Use of forensic tools and … network security Technical Services or Consulting experience will be preferred Ability to work on shift patterns and embed a "follow the Sun" methodology SOC - SIEM - Threat and Vulnerability Management - Intrusion Detection and Prevention Systems IDS/IPS - EDR - Anti-Virus To be considered, please ensure you complete your application on more »

of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and/or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams through the deployment where required more »

systems with a mix of both BAU and project work. Your role will involve the following, Using your knowledge of security tools such as SIEM, Firewalls and Cloud Security to monitor systems Providing Windows Server and Network Support Assess and respond to external threat intelligence reports Support ISO27001, Cyber Essentials more »

Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM technologies eg Microsoft Sentinel An interest in automation of Security operation function including artificial intelligence An understanding of Microsoft security product portfolio CISSP/CISM more »

ensuring the security and integrity of our systems and data. This role will have a strong focus on project work with integrations into the SIEM and you will be empowered to drive and build your own security improvement initiatives as part of the role. You will be responsible for designing … threats and vulnerabilities. You will act as a security SME with input into wider digital projects to ensure logging and monitoring coverage into the SIEM platform. This role requires technical expertise, problem-solving skills, and a strong commitment to maintaining the highest level of security. What you'll be doing … SIEM Management: Develop and maintain efficient log ingestion processes to collect, process, and analyse logs from various systems, applications, and network devices Identify and address any gaps in log ingestion coverage to ensure comprehensive visibility into potential security threats Enhance SIEM telemetry by configuring and optimising data sources, correlation rules more »

of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and/or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams through the deployment where required more »

Develop a comprehensive an in-depth understanding of our company's CyberSecurity offering, including but not limited to Public & Private cloud, managed firewall, SOC, SIEM, EDR, managed services and professional services. Articulate the value propositions and benefits to potential clients based on their unique business needs. Make recommendations and drive more »

and communicate effectively at all levels to both technical and non-technical audiences, assess and evaluate risk and understand the implications of new technologies. SIEM experience with designing, implementing and maintaining Splunk Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective more »

GIAC GSEC, GCIH or other comparable degree or other relevant experience. IT skills Network Security System Administration Malware Analysis Security Information and Event Management (SIEM) Incident Response Tools Professional Competencies Solid grasp of cybersecurity concepts, including threat identification, risk assessment, and incident management, coupled with practical experience in applying security more »

payments will be made). Your main duties will include: Technical ownership of the Security Operations Centre (SOC) tooling, most notably the AlienVault & Sentinel SIEM platforms but including other supporting tooling as required, such as components of the Microsoft Defender XDR suite. Responsible for the implementation of the SIEM platform … in customer environments. Ranging from the initial ingestion and tuning of data feeds (from both a SIEM, log collector and source device perspective), and heightened support of the implementation. Ensure the progression of the engineering maintenance plan by assuring that all in scope solutions are reviewed by the engineering team … with agreed quality SLAs and KPIs and industry best practice. Required to work closely with the SOC post-implementation, to support and maintain the SIEM platform on behalf of the SOC, contributing to the ongoing development and maintenance of use cases and rulesets as required. Provide chargeable technical Cyber thought more »

incidents, advising on containment points and response strategies. Threat understanding - Maintain a deep understanding of evolving cybersecurity threats What you will bring: Experience with SIEM tools including Splunk, QRadar, and Sentinel. Ability to assess and impact business changes on the security posture. Possess current certifications for enterprise level security platforms. more »

experience of cyber security Extensive practical experience in managing Microsoft server systems, NGAV, Amazon Cloud services, AD, ADFS, M365, security, public clouds, Azure services, SIEM, vulnerability assessment, patch management, DLP, and endpoint protection. Substantial proven expertise in supporting large corporate systems and applications within a large enterprise networked environment. (Educational more »

of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and/or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams through the deployment where required more »

recommendations. Design, implement, and provide support for customer security solutions. Serve as a senior security escalation point for the Service Desk. Configure and maintain SIEM systems. Participate in presales meetings with customers. Required Skills: Certified Cyber Essentials Assessor. Certified Cyber Essentials Lead Assessor. Experience in scoping and conducting penetration tests. … Strong understanding of SIEM and EDR solutions. Experienced in designing and delivering cybersecurity solutions across diverse environments. Proficient in both on-premise and cloud technologies. Excellent organizational skills, effective communication, and a strong customer service focus. Benefits include: Unlimited annual leave (yes seriously) Flexible working options Social events Accreditations and more »

Key requirements: Vendor certification of the following would be beneficial: VMware, MS Windows System Support, Cisco knowledge - LAN/WAN, Juniper, IP Trade. McAfee SIEM Security - Security Information Events Management knowledge IT/ICT further education Vendor certification of the following would be beneficial: VMware, MS Windows System Support, Cisco more »

Cyber Security Experience of working in environments using ISO27001 or Cyber Essentials Plus would be beneficial Strong knowledge of security tooling and technologies including SIEM, vulnerability management, DLP etc Good knowledge and understanding of public Cloud platforms (e.g. AWS and Azure) Good understanding of the current threat landscape Excellent communication more »

Proven work experience as a Cybersecurity Analyst or Engineer or similar role · Experience with computer network penetration testing and techniques · Understanding of firewalls, proxies, SIEM, antivirus and IDPS concepts · Ability to identify and mitigate network vulnerabilities and explain how to avoid them · Knowledge of security frameworks and standards, such as more »

and communication Important Knowledge Cybersecurity Capability Maturity Model (C2M2) and NIST Cyber Security Framework (CSF) Current awareness of the market for data analytics and SIEM platforms, including emerging leaders and Network security implementations (e.g host-based IDS, IPS), including their function and placement Cyber defence and information security policies, procedures more »

a technical hands on/engineering role. Hands-on experience with security tools such as firewalls, intrusion detection/prevention systems, antivirus software, and SIEM solutions. Experience with cloud security principles and practices with either AWS or Azure. Experience implementing policies and procedures in alignment with standards such as ISO27001 more »

a Managed Service Provider (MSP) environment. Strong understanding of networking protocols, security technologies, and best practices. Hands-on experience with security tools such as SIEM, IDS/IPS, antivirus, firewalls, and endpoint protection. Familiarity with industry regulations and standards (e.g., GDPR, HIPAA, PCI DSS). Excellent analytical and problem-solving more »

NCSC) Cyber Assessment Framework (CAF) and ISA/IEC 62443, ISO/IEC 27001/27002, and GDPR. Working knowledge of security technologies including SIEM, SOAR, EDR, AV, IDS/IPS, NAC, AD, DLP, Web Filtering, Email Filtering, Behavioural Analytics. Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard more »

policies, and standards. Assess risk and compliance for solutions at scale, with a focus on 5000+ endpoints, and implement security infrastructure solutions such as SIEM, Access Governance, SASE, and Endpoint Protection. Apply information security standards (e.g., ISO 27001, ISF, NIST), industry security guidance (OWASP & CIS), and risk assessment frameworks to more »

implement Security as Code practices. Assist in securing data platforms and implementing internal SIEM. Collaborate on securing Microsoft 365 and Azure cloud services. Operate SIEM and SOAR capabilities and enhance identity governance. Requirements: Hands-on experience with Microsoft Sentinel and Defender suite. Proficiency in Azure Landing Zones security enhancement. Familiarity more »