26 to 50 of 104 Remote/Hybrid SIEM Jobs

Lead deployment and optimisation of technologies such as Zscaler, Netskope, Prisma Access, or similar platforms • Oversee integration of Zero Trust solutions with identity providers, SIEM/SOAR tooling, endpoint security, and cloud environments • Conduct architecture reviews, threat modelling exercises, gap assessments, and security strategy workshops • Lead proof-of-concept exercises ...

Istio), API Security, IaC security (e.g. Terraform, ARM templates). • Network Security: Zero Trust, firewalls, segmentation, DDoS Protection. • Security Logging and Monitoring: Security logging, SIEM integration, event correlation. Responsibilities • Develop and enforce reference architectures, patterns, and blueprints for secure cloud adoption across Azure, GCP and hybrid environments. • Conduct threat modelling ...

time effectively Excellent interpersonal skills and professional demeanour Excellent verbal and written communication skills Proficient in Microsoft Office Applications Proficient in the use of SIEM (Security Incident and Event Management) technology, in terms of handling alerts, analysis of the data within the alert and rationale on whether escalation or closure ...

incidents Lead and support incident response activities Conduct threat hunting and threat modelling exercises Manage vulnerability remediation and penetration testing activities Support and improve SIEM, EDR/XDR and security tooling Provide security guidance across infrastructure and change projects Drive security best practice and security-by-design principles Maintain and … internal IT teams and third-party security providers Technology and experience required: 5+ years’ experience in Cyber Security or Information Security Strong experience with SIEM, EDR/XDR, IDS/IPS and firewalls Good understanding of Microsoft Azure security technologies Knowledge of NIST, ISO27001 and CIS Controls Experience in incident ...

security concepts into clear recommendations for senior stakeholders Skills & Experience Strong experience in enterprise security architecture within large-scale environments Expertise across: SOC/SIEM/SIAM Network Security Architecture Cloud Security (Azure, AWS, Hybrid environments) Strong understanding of modern security operations and tooling Familiarity with frameworks such as TOGAF ...

/LLD documents for security solutions. Strong understanding of Security Operations/SOCs. Hyperscaler experience (AWS, Azure, GCP); Professional Cloud Architect cert preferred. SIEM/SOAR tooling (e.g., Google SecOps/Chronicle). EDR/XDR/NDR experience (e.g., Crowdstrike, Corelight, Microsoft Defender XDR). What's on Offer ...

security concepts into clear recommendations for senior stakeholders Skills & Experience Strong experience in enterprise security architecture within large-scale environments Expertise across: SOC/SIEM/SIAM Network Security Architecture Cloud Security (Azure, AWS, Hybrid environments) Strong understanding of modern security operations and tooling Familiarity with frameworks such as TOGAF ...

Engineer - Cyber As a Cyber SOC Engineer, you will: Act as a technical escalation point and engineering SME across SOC technologies including SIEM, MDR/XDR, EDR, vulnerability management, and cloud security tooling Support, maintain, and improve cyber security infrastructure across enterprise customer environments Work closely with internal teams and … tools such as Tenable or Qualys Azure, Microsoft 365, Intune, or AWS environments Security tooling, infrastructure, and cloud platforms Linux and Windows operating systems SIEM technologies and security monitoring Basic scripting or automation using KQL, PowerShell, Python, or Bash ITIL environments and structured change control processes Firewall, endpoint, or cloud ...

security-related role Experience following change management and similar ITIL best practice Strong knowledge of security technologies (NGFW, WAF, EDR, SIEM etc.) Security certification, e.g. CompTIA Security+, GIAC GISF/GSEC Progression: Professional qualification financial support with up to 6 days paid study leave for professional qualifications Training and personal ...

alongside a completely refreshed technology environment. This is a rare opportunity to shape Detection & Response properly from day one, rather than inherit a noisy SIEM, half-owned tooling and legacy processes. The role suits a deeply technical security engineer who understands systems at a low level, has strong opinions ...

Azure, Microsoft 365, identity and endpoint ecosystems. - Strong understanding of ITIL based service management and operational governance. - Experience with DMS platforms (desired) - Familiarity with SIEM, SOAR and modern security tooling. Head of IT Infrastructure/Head of IT Platforms In accordance with the Employment Agencies and Employment Businesses Regulations ...

crisis management structures and frameworks. Technical Understanding (Desirable): Solid grounding in cyber security concepts and threats. Experience with Endpoint Detection & Response (e.g., CrowdStrike), SIEM platforms (e.g., Microsoft Sentinel), and ServiceNow (Security Operations). Ability to engage with technical teams and interpret technical data. To apply for this Senior Cyber Incident ...

detection engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities including alerting, tuning, and integrations Build intelligent detection and response workflows Develop automation solutions using scripting and AI-assisted … best practices Monitor emerging threats and recommend improvements to security posture Technical EnvironmentThe team works across a modern cloud-first stack with exposure to: SIEM/SOAR platforms EDR/XDR tooling AWS cloud environments Identity & Access Management Vulnerability Management Security Automation & Scripting CSPM tooling AI-assisted security operations What ...

detection engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities including alerting, tuning, and integrations Build intelligent detection and response workflows Develop automation solutions using scripting and AI-assisted … best practices Monitor emerging threats and recommend improvements to security posture Technical EnvironmentThe team works across a modern cloud-first stack with exposure to: SIEM/SOAR platforms EDR/XDR tooling AWS cloud environments Identity & Access Management Vulnerability Management Security Automation & Scripting CSPM tooling AI-assisted security operations What ...

required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Security Engineer, Cyber Security, IAM, PAM, RBAC, DevSecOps, SIEM, Vulnerability Management, Active Directory ...

detail to safeguard sensitive data and systems effectively Key responsibilities of the role include: Deploy, configure, and maintain, troubleshoot security tools such as SIEM, EDR, DLP, VM, Threat Intel,PAM etc extending to Cloud toolsets Perform assessments to understand the current and potential security gaps Use monitoring tools to detect ...

1.4m revenue/£580k gross profit (with realistic ramp-up) 🧠 What You'll Bring Proven experience selling Microsoft Security solutions , such as: Microsoft Sentinel (SIEM) Microsoft Defender XDR (Endpoint, Email, Identity) Microsoft Intune/M365 Defender suite Entra ID/Azure AD (Identity & Access Management) Deep understanding of IAM , conditional ...

bridges/war rooms and strong decision-making skills in high-pressure situations. Technical Understanding (Desirable) : Knowledge of cyber security concepts, Endpoint Detection & Response, SIEM platforms, and ServiceNow. To apply for the Cyber Governance Risk and Compliance Manager position, please submit your CV and a member of the Reed Professional ...

security-first approach in system architecture, ensuring the highest standards of security protocols are embedded. Manage and maintain group-wide firewalls, antivirus systems, SIEM platforms, and Network Access Control systems, in conjunction with Information Security Team. Ensure proactive system monitoring and effective incident resolution, partnering with the Information Security team ...

function and be a key technical resource across the business, covering: Day-to-day 2nd line support and incident resolution Security operations: working with SIEM platforms, monitoring alerts, and contributing to policy and process improvements Infrastructure management: Windows Server, virtualisation (VMware), and core business systems Network support: firewalls, VPN configuration ...

meet business, compliance, and risk mitigation requirements; ensuring controls are effective, measurable, and operationally sustainable. Implement and maintain detection and response capabilities through SIEM integration with security controls and IT systems, with a focus on reducing time-to-detect and time-to-remediate through improved pre-incident engineering. Participation … 24x7 on-call support rota, responding to SIEM health alerts and restoring log ingestion where required. Manage use cases, perform data enrichment, and define standardized and automated containment workflows. Develop and manage operational procedures and reporting methodology. Manage and oversee security technology platforms (e.g. SIEM, SOAR, EDR, and email security ...

and recommending remediation actions Provide technical and procedural guidance to junior SOC analysts Develop and enhance detection use cases, correlation rules, and playbooks within SIEM and EDR platforms Conduct proactive threat hunting activities across client environments Collaborate with engineering teams to improve visibility, telemetry, and automation Support major incident response … CSIRT, or cyber defence environment Strong understanding of attack frameworks (e.g. MITRE ATT&CK, Cyber Kill Chain) Hands-on experience with SIEM and EDR tools (e.g. Microsoft Sentinel, Splunk, CrowdStrike, Defender) Experience in incident triage, containment, and response Good knowledge of network protocols, Windows/Linux systems, and cloud environments ...

resilience. You will sit at the heart of our cyber defence operations, working daily with technologies including Microsoft O365 Defender, Entra ID, Intune, Rapid7 SIEM, and Sophos Antivirus. Youll be responsible for monitoring security events, investigating suspicious activity, responding to incidents, and continuously improving our security posture. This … cyber security What you will do: Security Monitoring & Incident Response Actively monitor alerts and telemetry across endpoints, identities, email, and cloud services using Rapid7 SIEM, Microsoft Defender, and Sophos AV. Investigate suspected cyber attacks including malware infections, phishing campaigns, identity compromise, and unauthorised access attempts. Perform triage, root cause analysis ...

across enterprise environments. This role will work closely with Cyber Security, SOC, Infrastructure, Cloud, Data Engineering, and Application teams to improve data visibility, reduce SIEM costs, and enhance security monitoring capabilities. Key Responsibilities Design, deploy, and manage Cribl data pipelines across enterprise environments. Configure and support Cribl Stream , including data … collection, transformation, filtering, enrichment, masking, and routing. Optimise telemetry ingestion into SIEM and observability platforms. Implement data reduction strategies to improve platform efficiency and reduce licensing costs. Develop and maintain data parsing, normalisation, and enrichment processes. Support integration with security and monitoring platforms such as Splunk, Microsoft Sentinel, Elastic, and ...

partysupplierstoprogressinvestigationandremediation. Participateinout-of-hoursresponseasrequired. Knowledge,Skills&ExperienceEssential ProvenexperienceinaLevel3orSeniorSecurityAnalystorIncidentResponserole. Hands-onexperienceinvestigatingandresolvingincidentsacrossendpoints,identityplatforms,networks,andcloudservices. Strongunderstandingofmalwareandransomwareresponse,identitycompromise,andvulnerabilityremediation. ExperienceworkingwithinformalSecurityIncidentandMajorIncidentprocesses. Strongwrittendocumentationandstakeholdercommunicationskills. Knowledge,Skills&ExperienceDesirable Experiencesupportingmulti-siteoroperationallysensitiveenvironments. FamiliaritywithDefender,SIEM,EDR,andvulnerabilitymanagementtools. UnderstandingofregulatedorPCI-adjacentenvironments. Relevantsecuritycertificationsorequivalentexperience. BehaviouralCompetencies Takesownershipfromdetectionthroughtoresolution. Investigatesthoroughlyandchallengesincompletefixes. Calm,methodical,anddecisiveduringliveincidents. Understandsoperationalandbusinessimpact. Professionalandconfidentwhenengagingcustomersandsuppliers. DecisionMaking&Authority Makestechnicaldecisionsrelatingtoinvestigation,containment,andremediationofsecurityincidents. EscalatesriskanddecisionpointsappropriatelytoIncidentManagementandServiceDeliveryleadership. KeyInterfaces IncidentManagement SecurityOperations InfrastructureandNetworkServices Third-partysuppliers ...