1 to 25 of 97 SIEM Jobs in London

Microsoft/Google/AWS).Skills required for the IT Security Manager:- SOC Expertise- Wide technical breadth (Microsoft, Google, AWS)- Deployment of security tools (SIEM, EDR, NSM)- Confident communicator who can deal with a wide range of stakeholdersIT Security Manager/Cyber Security/SOC/Security OperationsLocation: London, Hybrid more »

to technical and nontechnical people.Experience engaging 3rd party security specialists to provide additional assurance.Experience and knowledge with IT Security software e.g. NGAV, EDR, XDR, SIEM etc.Be willing to deploy to clients sites at short notice to direct recovery and rebuild activity and strategy.Ability to Build successful working relationships with team more »

in conducting thorough investigations and root cause analysis of incidents.Security Monitoring: Oversee security monitoring and threat detection processes, leveraging security information and event management (SIEM) and other security tools to proactively identify and address potential security threats.Vulnerability Management: Coordinate vulnerability assessments and penetration testing activities. Work with relevant teams to … are preferred.Proven experience in security operations management and cybersecurity, with a track record of successful incident response and security incident management.Strong knowledge of security technologies, including SIEM, intrusion detection/prevention systems, endpoint protection, and security analytics tools.Experience with vulnerability assessment tools and vulnerability management processes.Understanding of security best practices more »

and action findings- Work closely with engineering teams to continuously provide technology requirements and use cases for enabling technologies including but not limited to SIEM, SOAR, Case Management, GRC, EDR, Intrusion Detection Systems, HIPS, Web Proxy/Content Filtering, Active Directory, PKI- Work with partners to mature crisis procedures and more »

Cloud.Experience in implementing various security controls, such as NIST, CSA, HIPAA, PCI, etc.Experience with implementation of security tools such as WAF, IPS/IDS, SIEM, Data Leakage Prevention, Automation and Orchestration, Encryption, etc.Experience with MS Sentinel and ServiceNow.Agile Working Statement Our goal is to embed flexibility across our business by more »

Cybersecurity Analyst or similar role Experience in information security or related field Experience with computer network penetration testing and techniques Understanding of firewalls, proxies, SIEM, antivirus and IDPS concepts Ability to identify and mitigate network vulnerabilities and explain how to avoid them Professional ...Discipline(s): TechnologyJob type: Permanent more »

incident management. Possess a working knowledge of Cisco network switches, routers, firewalls and VPN, network security, administration of DLP, antivirus\antimalware, IDS/IPS, SIEM, SMTP, Email security, AD, Group Policy, DNS, DHCP, and VLANs. Experience with identity access management solutions, such as SAML\OATH Experience with HIDS and NIDS more »

project milestones as part of Service Transition activitiesWhat we need from you:Experience in the use of management information from the following Security tools : SIEM, EDR, Vulnerability Intelligence or Behavioural Analysis.Project Management Experience (PRINCE2, AGILE etc)CompTIA Security.Understanding of incident response and Cyber Kill Chain.ITIL Foundation Level (v3 or v4 more »

external and internal threats is a top priority which makes this role very challenging.Principal ResponsibilitiesResponsible for the daily operation of enterprise security systems including SIEM, SOAR, Elastic, ticketing, alerting, and messaging systems.Manage junior level analysts in the daily operation of enterprise security systems including shift rotations and hand-offs.Work closely … procedures, and consume available threat intelligence.Utilize detective controls to develop rules and alerts to drive security monitoring.Perform hunt activities across our log aggregation and SIEM platforms.Recommend, test, tune and implement SIEM and other tooling correlation rules.Identify false-positives from alerting, and perform incident response, triage, incident analysis and remediation tasks.Recommend … and develop new SIEM use cases/rules with engineering teams.Maintain documentation for the SOC function, including training program for new Security Operations personnel.Participate in Information Security Incident Response activities for the Firm’s environment.Enforce security policies and procedures by administering and monitoring appropriate systems, events and answering client queries.Perform more »

ð¼ Senior Security Operations Managerð Telco/Fibre-Opticð London (Hybrid)ðµ 80k-100kð EDR, SIEM, UEBA, SOAR Integration, MITRE ATT&CK, TCP/IP, OSI Model, Linux/WindowsAre you looking for an exciting new MSP management opportunity, whilst also working with cutting edge security technology?I am partnered … with good knowledge of SOC, ideally coming from a Security role previously, as well as:Linux SystemsCertifications such as: CISSP, CISM, CISA, CERT-CSIHEDR, SIEM & UEBA Systems, SOAR IntegrationExperience in Telecoms industrySecurity Clearance EligibilityBut most importantly they are looking for individuals with an appetite to expand their knowledge and apply more »

Access networks and Cisco ISE. Deep understanding of the technical concepts required in the role including LAN, WAN, WiFi, data-centre networks, unified comms SIEM and IPS/IDS technologies and toolset used for vulnerability scanning including Nessus Cloud computing including IaaS, PaaS and SaaS. Core network skills to include more »

experience PowerShell, Python or an equivalent. Experience building, configuring and releasing vendor applications Exposure and willingness to up-skill on supporting products including CyberArk, SIEM, SOAR, McAfee, CarbonBlack and more. 4 years+ experience If you are a proactive and analytical professional with a passion for technology and a track record more »

responsibilities will include: Incident triage and investigation. Analysis of all suspicious email activity. Participating in threat hunt and offensive security exercises. Analysis of all SIEM logs, and the opportunity to get involved in some threat detection. Working with technical infrastructure teams on controls. You will need the following background. At … role Experience in a varied technical security role Experience of managing high priority security incidents Demonstrable business facing skills Experience of working with a SIEM platform – Splunk, QRadar, Elastic Security certifications highly desirable Experience of scripting/automation, threat hunting and offensive security highly desirable Please send your CV for more »

methodology development; business process design for security compliance and assurance. • Specific technical expertise and background in infrastructure and network security, cyber security capabilities and SIEM/analytics. • In-depth subject matter expertise of application and data security, with thorough understanding of infrastructure and network security. • Very good knowledge and experience more »

of staff · Minimum two years experience working within Secuirty Engineering · Understanding of Security Operations · Experience with security toolsets such as (but not limited to) SIEM, cloud security (zero trust, CASB ect), SOAR, CVM tools. Desirable skills: · Experience with using Zscaler · Experience with using CrowdStrike. · Experience with using Qualys CVM. If more »

digital assets and maintaining the integrity, confidentiality, and availability of our information systems. Your expertise in Microsoft technologies and experience with SIEM (Security Information and Event Management) tools will be instrumental in identifying and mitigating security threats proactively. Responsibilities: 1. Security Monitoring and Incident Response: - Utilize SIEM tools such as … s degree in Computer Science, Information Technology, or a related field. - Proven experience as an IT Security Analyst, with a focus on Microsoft technologies and SIEM tools. - In-depth knowledge of security principles, protocols, and technologies, including firewalls, intrusion detection/prevention systems, and endpoint security solutions. - Hands-on experience … with Microsoft Azure, Active Directory, and related security features. - Proficiency in configuring and managing SIEM solutions, such as Microsoft Sentinel, Splunk, or IBM QRadar. - Strong analytical and problem-solving skills, with the ability to prioritise and manage multiple tasks in a fast-paced environment. - Relevant certifications such as CISSP, CISM more »

Recommends and coordinates the application of fixes, patches, & recovery procedures in the event of a security breach. Understanding of security tools and platforms including SIEM, IPS/IDS, SecOps, Endpoint and Server protection, Network protection, Firewalls, etc. Knowledge of Federated Identity Management, Single Sign On, and Enterprise class Identity and more »

Experience: Bachelor’s degree in a related technical area. One or more relevant certifications such as CISSP, CISM, GCIH, CEH, or OSCP. Proficiency in SIEM Platforms, vulnerability management tools, and incident management processes. Experience in managing security functions or SOC capabilities. Strong analytical skills to analyze security monitoring data and more »

monitoring, analysing, and adapting defences to anticipate and neutralise emerging threats. This role will revolve around executing security consulting projects, including tasks such as SIEM Log Management with Microsoft Sentinel, EDR Administration using Microsoft Defender, customer engagement, and crafting designs for SOC and Sentinel deployments. This role will revolve around … executing security consulting projects, including tasks such as SIEM Log Management with Microsoft Sentinel, EDR Administration using Microsoft Defender, customer engagement, and crafting designs for SOC and Sentinel deployments. This position presents an exceptional opportunity for Technical Security Consultants eager to broaden their horizons. Beyond SOC onboarding, there are avenues more »

Firepower. Strong understanding of networking protocols, TCP/IP stack, routing, and switching technologies. Proficiency in security technologies such as VPNs, IDS/IPS, SIEM, and endpoint security solutions. Experience working within an ITIL framework. Hands-on experience with security tools and platforms for monitoring, analysis, and incident response. Excellent more »

an event are documented and remediated; Monitoring and analysing security relevant logs, events, and alerts including, but not limited to, logs from systems, applications, SIEM, AV, Firewalls, and IPS; document relevant incidents and suggest/co-ordinate appropriate remedial actions; Design and manage security logging and SIEM programs for the more »

mostly on-premises financial environment. Key Responsibilities: Lifecycle management of security, covering tools and technology platforms Supporting and managing security tools e.g. CyberArk , Qualys, SIEM tools Python Scripting for various purposes Automation/Build & Deployment of CI/CD pipelines (Ansible/Atlassian Stack) Implementation & integration of security technologies Use … case development and onboarding for Security Incident and Event Monitoring (SIEM) Maintain software version and patch management for security products Essential Candidate Requirements: Strong background in Financial/Banking environments Python Scripting (advanced level) Expert in Automation ( Ansible ) Strong knowledge of 2 or more of the following tools: CyberArk, Qualys … Carbon Black, ArcSight, McAfee, SIEM tools etc. Extensive general knowledge of Cyber Security Relevant Security Certification/Educational qualification (e.g. CISSP) KEY SKILLS: Python, CyberArk, Qualys, CI/CD Pipelines, Automation, Deployment, Integration, Ansible, SIEM, On-Prem Technology, ArcSight, Carbon Black, McAfee To be considered, please ensure you complete your more »

and security monitoring Understanding of threat modelling Investigation experience into Information and Cyber security incidents Broad technical understanding covering Windows, Linux, Unix, Networking, Cisco, SIEM, IAM, DLP, LAN/WAN, Wireshark, VMware, SSL and others Experience and knowledge of NIST, COBIT, GCIA, GCIH, GCFA etc. This is an excellent opportunity more »

of experience in DevSecOps role or security operations. 1 + years of experience configuring and supporting production firewalls. 1 + years of hands-on SIEM configuration and support. Expertise with IaC tooling (Hashicorp Terraform). Expertise with token/secret management tools (Hashicorp Vault). Expertise with monitoring and alerting more »

Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK and SIEM technologies eg Microsoft Sentinel An interest in automation of Security operation function including artificial intelligence An understanding of Microsoft security product portfolio CISSP/CISM more »