76 to 100 of 104 Remote/Hybrid SIEM Jobs

clear commercial reporting to stakeholders Main Skills Needed: Proven experience in strategic account management and Cybersecurity technologies, services and solutions (Inclusive of SOC/SIEM, EDR, MDR, Security Assessments, GRC etc.) Consultative in approach, able to identify growth opportunities within existing accounts to develop relationships and position new solutions that ...

reviews and continuous improvement actions Own and manage key security platforms, including security awareness and secure communications tools Ensure effective configuration and use of SIEM and monitoring technologies, with meaningful reporting for senior stakeholders Identify, assess and mitigate cyber risks through regular assessments and control reviews Chair or contribute … and security governance Very strong familiarity with Microsoft security technologies, including Microsoft 365, E5 licensing and the associated security stack (e.g. identity, endpoint, email, SIEM and cloud security tooling) Broad technical exposure across infrastructure, cloud and network technologies, with the ability to translate technical risk into business language Experience working ...

role in a growing SecOps function protecting a modern Microsoft and cloud environment. This is a highly technical role focused on incident response, SIEM optimisation, vulnerability management, and security engineering, helping drive a Zero Trust journey and supporting ISO 27001 & CIS controls. What you'll be doing Lead and support … incident response, threat monitoring and root-cause analysis Tune and optimise SIEM & CrowdStrike EDR for maximum effectiveness Drive vulnerability management, remediation and risk reduction Secure cloud and infrastructure across Intune, Entra ID, Palo Alto, Cisco ISE, Mimecast and more Implement key security controls including MFA, SSO, PAM, WAF, DDoS ...

and improve operational efficiency Investigate security incidents and drive root cause analysis and remediation Implement and manage tools such as Microsoft Defender, Nessus, and SIEM/SOAR platforms Develop secure cloud templates and baseline configurations Partner with engineering teams to embed secure coding and DevSecOps practices Stay up to date … prem environments Deep understanding of Azure security, DevOps, and automation Hands-on experience with EDR/DLP tools (e.g. Microsoft Defender) Experience with SIEM/SOAR platforms Knowledge of frameworks such as ISO 27001, NIST, and CIS Strong troubleshooting and problem-solving skills Ability to manage multiple priorities ...

support when required. This is a hands-on technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development … automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting activities Act as an escalation point for Tier 1 analysts, providing ...

using Flow Designer, Script Includes, and Business Rules Create and maintain REST/SOAP API integrations and IntegrationHub spokes to connect ServiceNow with IAM, SIEM, ERP, and HR platforms Design intuitive Workspaces, Portals, and Dashboards, applying Performance Analytics to provide stakeholders with clear visibility into enterprise risk Design automated workflows ...

using Flow Designer, Script Includes, and Business Rules Create and maintain REST/SOAP API integrations and IntegrationHub spokes to connect ServiceNow with IAM, SIEM, ERP, and HR platforms Design intuitive Workspaces, Portals, and Dashboards, applying Performance Analytics to provide stakeholders with clear visibility into enterprise risk Design automated workflows ...

using Flow Designer, Script Includes, and Business Rules Create and maintain REST/SOAP API integrations and IntegrationHub spokes to connect ServiceNow with IAM, SIEM, ERP, and HR platforms Design intuitive Workspaces, Portals, and Dashboards, applying Performance Analytics to provide stakeholders with clear visibility into enterprise risk Design automated workflows ...

Cyber Security Analyst (SOC) Role: Cyber Security Analyst (SOC) Specialism(s): Security Operations, Security Alerts, Security Incident Management, SIEM, Defender, Cofense, Azure, Email Security, Conditional Access Policies, User Authentication, EDR, Playbooks Security Assessment, Vulnerability Analysis, Risk Analysis, SOAR Type: Contract, Daily Rate Pay Rate: £300 - £400 per day (Inside IR35 … . *Candidates must be eligible for UK Security Clearance* Role Requirements * Play an active role in the CSOC Operations team by: o Monitor active SIEM solutions and platforms o Investigate and triage to security alerts and incidents o Be the escalation point for junior analysts, offering knowledge and mentorship where ...

responsibilities: This is an interesting opportunity where you will work with the cyber resilience team and assist with the Security Operations function, including EDR, SIEM, gathering security control framework evidence and general day-to-day assistance with security tasks. You will help deliver a strategy which will enhance the organisations … campaigns. Stay informed about emerging cyber threats and vulnerabilities. You will need: Good knowledge and understanding of SOC processes and procedures. Basic experience using SIEM systems such as MS Sentinel, LogRhythm, AlienVault, Splunk Good understanding of incident response stages and handling. Basic knowledge and experience using leading endpoint detection and ...

with cloud security across AWS, Azure or Google Cloud Understanding of network security, encryption, authentication and access control Experience with security tooling such as SIEM, IDS, firewalls and vulnerability assessment tools Knowledge of threat modelling and risk assessment TO BE CONSIDERED: Please either apply through this advert or emailing … client in conjunction with this vacancy only. KEY SKILLS Security Architect, Cyber Security, ISO 27001, NIST, Cloud Security, AWS, Azure, Risk Assessment, Threat Modelling, SIEM, Defence ...

enjoys working across a broad technology estate and keeping up to date with emerging threats and security technologies. Key Responsibilities: * Monitor and develop SIEM and threat detection platforms * Investigate and respond to security incidents and alerts * Support vulnerability scanning, remediation, and reporting activities * Assist with development of security policies, procedures … cyber threats and recommend improvements where appropriate Key Skills & Experience: * 2-4 years' experience within a cybersecurity or infrastructure security role * Experience working with SIEM tools and vulnerability management platforms * Strong understanding of EDR, XDR, MDR, IDS/IPS technologies * Good knowledge of Microsoft security technologies and infrastructure environments * Understanding ...

systems, infrastructure and sensitive client data. The successful individual will: Lead and develop a high-performing Information Security team Oversee security operations including SIEM, endpoint protection, vulnerability management and incident response Manage cyber resilience across both cloud and on-premise environments Act as the senior escalation point for security incidents … financial services environments Strong understanding of cyber security operations, governance and risk management Experience managing and developing technical security teams Strong knowledge of SIEM technologies, cloud security and incident response processes Ability to communicate effectively with both technical teams and senior leadership Experience operating within regulated environments Desirable experience includes ...

/month at their office. Requirements: • Hands-on with AWS and/or Azure (cloud infra, IaC with Terraform/CloudFormation) • Cybersecurity experience: SIEM (Sentinel/Splunk), EDR/XDR, DLP, vulnerability scanning, pen testing • IAM: Azure AD (Entra ID) or Okta, SSO, MFA, PAM, RBAC/ABAC • Windows Server … comprehensive cybersecurity strategy aligned with business objectives. Design and implement security controls, systems, and protocols to protect company assets from cyber threats. Experience with SIEM platforms and security event monitoring (Microsoft Sentinel, Splunk, or equivalent) Familiarity with EDR/XDR solutions for endpoint threat detection Knowledge of DLP tools Conduct ...

real time, and driving continuous improvement across a modern IT environment. Key Responsibilities Own and manage the organisation's cyber security tooling including firewalls, SIEM, IPS, endpoint protection, vulnerability management, and threat monitoring. Support and maintain core network infrastructure across LAN/WAN, Layer 2/3 networking … operational stability, compliance, documentation, and high service standards. Experience Required Strong experience across cyber security operations and network infrastructure. Hands-on knowledge of firewalls, SIEM tools, endpoint security, and networking technologies. Experience responding to security incidents and managing vulnerabilities. Strong troubleshooting and problem-solving capabilities. Relevant certifications such as Security+ ...

real time, and driving continuous improvement across a modern IT environment. Key Responsibilities Own and manage the organisation's cyber security tooling including firewalls, SIEM, IPS, endpoint protection, vulnerability management, and threat monitoring. Support and maintain core network infrastructure across LAN/WAN, Layer 2/3 networking … operational stability, compliance, documentation, and high service standards. Experience Required Strong experience across cyber security operations and network infrastructure. Hands-on knowledge of firewalls, SIEM tools, endpoint security, and networking technologies. Experience responding to security incidents and managing vulnerabilities. Strong troubleshooting and problem-solving capabilities. Relevant certifications such as Security+ ...

robust protection of business systems and data. Key Responsibilities Manage day-to-day cyber security operations and incident response Monitor and optimise security tools (SIEM, firewalls, endpoint security) Maintain and support network infrastructure (LAN/WAN, Wi-Fi, L2/L3) Identify threats, conduct investigations, and implement security fixes Support … cyber security projects and ongoing improvements Key Skills & Experience Proven experience in cyber security operations and network infrastructure Strong knowledge of Palo Alto firewalls, SIEM tools, and endpoint security Experience with L2/L3 networking (Nexus, LAN/WAN, Wi-Fi) Vulnerability management (e.g. Qualys) and incident response expertise Understanding ...

pipelines and shared enterprise services Detection, Automation & Response Build detection logic, automation, and response mechanisms to improve security operations Integrate cloud security tooling with SIEM and monitoring platforms Support incident response activities through improved detections and recovery mechanisms Contribute to post-incident improvements and continuous optimisation of controls Modern Engineering … supporting cloud security controls and automation Familiarity with CI/CD, Infrastructure as Code, and cloud automation tooling Desirable Experience with CSPM, DLP, SIEM, or cloud security tooling Exposure to detection engineering, incident response, or security automation Understanding of secure cloud design principles and distributed systems Experience with policy ...

with BAE Systems in Preston on helping them source a Systems Administrator that has a couple of years' experience working with Linux (RHEL) and SIEM technologies. About the Role This role focuses on the day-to-day administration, monitoring, and support of Red Hat Linux servers within an enterprise environment. … system health, troubleshooting issues, and ensuring reliable performance across both Linux and Windows platforms. Alongside core system administration duties, you'll support security tooling (SIEM and SOAR), ensuring systems are correctly configured to collect, process, and deliver accurate data. You'll also help onboard new systems and data sources, ensuring ...

rotational basis. Develop and tune detection rules to improve alert quality and reduce false positives. Write and optimise queries (e.g., KQL) across SIEM platforms. Collaboration & Support: Work closely with internal teams and third-party providers to investigate and resolve incidents. Support MSSP interactions and escalations where required. Participate in incident …/Tier 3 preferred). Strong background in incident investigation and response. Experience handling escalated alerts and security tickets. Technical Skills: Experience with SIEM platforms (e.g., Microsoft Sentinel). Experience with EDR/XDR tools (e.g., CrowdStrike). ServiceNow or similar ITSM/SecOps platforms. Ability to write and optimise ...

Discover and vault service/application/shared accounts Configure session proxies, Just-in-Time access, and break-glass procedures Integrate PAM with SIEM and Active Directory/Entra ID Manage upgrades, patches, and troubleshoot platform issues Maintain documentation, policies, and runbooks Support audit and compliance reporting Essential Requirements: Hands … Credential vaulting, password rotation, and session monitoring experience Onboarding Windows, Linux/Unix, and network devices to PAM Knowledge of AD privileged accounts and SIEM integration Understanding of ISO 27001/NIST CSF frameworks Strong troubleshooting and documentation skills Desirable: Degree in InfoSec, CS, or STEM Beyond Trust certifications Experience ...

Support cyber testing exercises and continuous operational improvements. Analyse network traffic, PCAP captures, endpoint activity, and attack patterns to identify malicious behaviour. Work with SIEM technologies and security tooling across large and complex enterprise environments. Produce technical reports and provide briefings to senior stakeholders and executives. Support cyber risk management … and detection technologies. Experience with scripting languages and strong proficiency in data analysis. Strong understanding of cyber risk, controls, and security governance. Proficiency with SIEM technologies within large and complex computing environments. Incident response expertise including: PCAP Capture Network Analysis Traffic Pattern Analysis Excellent interpersonal and stakeholder management skills. Experience ...

proven skills working with the following – • Monitoring security alerts and events across enterprise environments • Investigating potential cyber security incidents and responding appropriately • Working with SIEM platforms such as Splunk, Sentinel or QRadar • Conducting threat analysis and triaging security alerts • Supporting incident response and remediation activities • Working with security engineering teams … Experience within financial services, fintech or other regulated environments would be beneficial. Interested? Please apply below SOC Analyst, Security Operations Analyst, Cyber Security Analyst, SIEM Analyst, Splunk, Microsoft Sentinel, Incident Response, Outside IR35 Contract ...

/Unix servers, network devices and applications to the PAM platform Configure Just-in-Time (JIT) access workflows and approval processes Integrate PAM with SIEM tools for monitoring and alerting Manage platform upgrades, patching and ongoing health monitoring Troubleshoot connector issues and session failures Maintain technical documentation and support audit … credential vaulting, password rotation and privileged access workflows Experience onboarding systems into PAM platforms Strong understanding of Active Directory privileged account management Experience with SIEM integration Ability to obtain SC level security clearance If this sounds like a role for you please apply with an up to date version ...

support issues Supporting and mentoring Tier 1 Engineers Troubleshooting Microsoft 365, Azure and infrastructure issues Investigating and responding to security alerts from SOC/SIEM platforms Supporting Cisco Meraki networking environments Managing issues through to resolution with clear customer communication throughout Identifying recurring technical or service trends and helping improve … teams where required Technical Environment Microsoft 365 Azure Windows Server/Active Directory Cisco Meraki Endpoint Manager/Intune MFA/Security tooling SIEM/EDR platforms Hyper-V Windows, Mac, iPhone and Android device support What They're Looking For Previous experience in a 2nd Line Support or Escalation ...