51 to 75 of 104 Remote/Hybrid SIEM Jobs

enterprise clients Create high-level and low-level architecture designs and technical specifications Work with cloud platforms, directories, HR systems, and security tools (SIEM, MFA) Define operating models, roadmaps, and maturity assessments (Senior and above) Develop client proposals, commercial offers, and executive presentations (Senior Manager and above) Build and maintain ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

Senior Cyber Security Analyst, Professional Services, CompTIA, SIEM, ISO27001, Part Remote Senior Cyber Security Analyst required to work for a Law Firm based in the City of London. It will be 3 days a week in the office and 2 from home. We need an experienced Senior Cyber Security Analyst … relevant certification preferred Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management Experienced with security tools such as SIEM platforms, EDR/XDR solutions, firewalls, IDS/IPS Strong knowledge of Microsoft Azure cloud security technologies and concepts Familiar with cybersecurity frameworks such ...

demonstrate you are well versed in dealing with Cyber Security incident management/responses and mitigating the risks. You will have proven experience in SIEM, Anti-Virus, Vulnerability management, Data Loss Prevention and security tools as well as a good understanding of compliance around ISO 27001 and PCI-DSS This ...

demonstrate you are well versed in dealing with Cyber Security incident management/responses and mitigating the risks. You will have proven experience in SIEM, Anti-Virus, Vulnerability management, Data Loss Prevention and security tools as well as a good understanding of compliance around ISO 27001 and PCI-DSS This ...

servers, databases, applications, cloud, and DevOps environments. Configure password vaulting, rotation, reconciliation, session monitoring, recording, and auditing. Integrate CyberArk with Active Directory, identity providers, SIEM platforms, ticketing systems, and other enterprise tools. Develop automation using CyberArk REST APIs and PowerShell or Python scripting. Act as the escalation point for complex ...

profession standards with HR/L&D.Timely access to SL stakeholders, systems, repositories, and tooling (e.g., policy library, LMS, phishing platform, service management/SIEM, PMO data). Availability of policy owners and project managers for reviews and attestations. SL will provide required clearances, facilities, and collaboration tools. Core experience ...

pipelines. Production Build: Build and configure production instances of your tools, ensuring integration with an Identity Provider (IdP) and establishing log feeds to a SIEM system. Fleet Management & Support: Take ownership of the end-to-end device life cycle (inventory, provisioning, onboarding, and offboarding) while providing high-quality technical support ...

Security (IAM, MFA, encryption, policy enforcement) Storage & data services (object/block/file, backup, replication) Automation (IaC, pipelines, scripting) Observability (logging, metrics, tracing, SIEM integration) Why Join Quorum? Quorum is an employee-owned IT consultancy, delivering managed services, projects, and professional services to organisations across the public and private ...

incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. Oversee operational security processes with tools like SIEM, EDR, and Vulnerability Management, continuously enhancing capabilities. Network and System Security Manage advanced security tools such as firewalls and IDS/IPS to protect network … qualifications. Good underpinning knowledge of the Microsoft technology stack, cloud, on-premises and End user Compute. Understanding and experience of web filtering, email security, SIEM, EDR/XDR. Experience of managing investigations in SOC (L2 or above ...

while remaining at the forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment, and remediation. … Security or Cybersecurity role. Strong understanding of cyber defence practices and modern attack techniques. Hands-on experience with security technologies such as EDR, XDR, SIEM, SOAR, IDS, and IPS. Experience in vulnerability analysis, security alert analysis, incident response, and email threat analysis. Ability to read and understand scripting and query ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

likely grown from an engineering background and can write scripts (Python, Bash) to automate, enhance, and refine detection and response workflows. Experience with Splunk, SIEM operations, cloud endpoints, networks, and detection engineering will be highly advantageous. NOTE: Candidates for this role must be eligible for un-caveated UK SC Clearance. … Responsibilities Develop, maintain, and optimise detection content (primarily within Splunk SIEM) to identify threats across cloud, endpoint, and network environments. Collaborate across security functions to identify gaps in logging, alerting, and detection coverage aligned to business risk. Improve SecOps processes by recommending enhanced logging, identifying trends, and driving operational optimisation. ...

Cyber Security Engineer required by an established, global asset management firm based near Bank station to join a focused, high-impact 3-person IT Security team. It is a hybrid role (3 days office, 2 ...

and Storage on Edge - Content Delivery Network and Edge Computing - Border Gateway Protocol (BGP) and ACL's - Zero Trust Architecture - Load Balancing - Threat Intelligence, SIEM Data and Traffic Reporting - Proxies and Reverse Proxies to manage Ingress/Egress - Cloud infrastructure, particularly ...

NIST, ISO/IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Web Application Firewalls (WAF) Encryption and key management solutions Collaborate with engineering, DevOps, and IT teams ...

workshops, stakeholder sessions, and requirement discussions Support UAT, validation, and policy rollouts Track project progress, risks, and deliverables Assist in evaluating NAC tools & integrations (SIEM, CMDB, ITSM) Required Skills & Experience Senior Business Analyst (enterprise/financial services preferred) Strong experience with NAC tools – Forescout preferred Solid network fundamentals (VLANs, 802.1X ...

recovery governance, and secure operational restoration. IT/OT Integration Assurance: Collaborate with cross-functional architecture and engineering teams to govern system onboarding (e.g., SIEM/SOC infrastructure monitoring) across both corporate enterprise and industrial Operational Technology (OT/SCADA) environments. Requirements Governance: Create procurement-grade business analysis artifacts, including ...

senior escalation point for Level 1 and Level 2 analysts Conduct proactive threat hunting activities and identify emerging attack patterns Develop and optimise SIEM detection rules, correlation logic, and automation workflows Improve incident response processes, runbooks, and security operations procedures Analyse security alerts and telemetry to identify threats and vulnerabilities … have: Strong experience within a Security Operations Centre (SOC) environment Proven experience handling high-severity cyber incidents and incident response Hands-on experience with SIEM technologies, log analysis, and threat detection Strong understanding of Microsoft security tooling including Microsoft Sentinel, Defender XDR and Entra ID Experience with KQL (Kusto Query ...

enterprise Firewalls (Palo Alto, Cisco), WAF/DDoS protection (Imperva), and Microsoft Gateways. Threat Detection & Response: Oversee email/web security gateways (Mimecast, Menlo), SIEM/SOAR platforms, and EDR/XDR alert response (CrowdStrike, Rapid7 IDR). Identity & Access Management: Administer MFA/SSO protocols using Okta and Microsoft ...

Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform ...