20 Contract SIEM Jobs

services over the next year. What You'll do: Development of integrations between our main vulnerability tracking service and Security, Incident and Event Management (SIEM) tools used by public sector domain owners. You will have the following skills: Essential: A high level of expertise in Python. Strong working knowledge of more »

Role Title: SIEM/Incident SME Duration: 6 months Location: Hybrid/Corsham, Portsmouth or Northallerton - 2/3 days per week at ONE site Rate: £700/d - Umbrella only PLEASE NOTE: Applicants must hold active DV Clearance to be considered for this role Would you like to join … cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to Junior Analysts Key … C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications : Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent) All profiles will be reviewed against the required more »

case management, vulnerability management platforms, etc). Assist with Scripting to enable custom reporting and querying of systems like Active Directory, the Bank's SIEM, etc. Must Haves: Excellent python skills and ideally experience with Powershell as well; experience with integration work, processing structured data such as Jason or CSV. more »

relocate to Switzerland. The perfect candidate will be an experienced Security Specialist - Logging Specialist who has extensive real-world experience with log management and SIEM solutions. This would include tools such as QRadar, Sentinel, rsyslog, Windows Event Forwarding, logstash, fluentd, etc. You would also need to be familiar with typical … with improving the Bank's overall logging strategy. Assisting with maintenance and upgrades. Other duties as required Must Haves: Experience with log management and SIEM solutions in an enterprise environment, such as ideally with QRadar, Azure Sentinel and Windows Event Forwarding, or similar tools (Splunk, Elasticsearch, Logstash, Fluentd, Rsyslog, Syslog more »

case management, vulnerability management platforms, etc). Assist with Scripting to enable custom reporting and querying of systems like Active Directory, the Bank's SIEM, etc. Must Haves : Excellent python skills and ideally experience with Powershell as well; experience with integration work, processing structured data such as Jason or CSV. more »

SIEM/Incident SME CONTRACTOR MUST HOLD DV CLEARANCE Role Title: SIEM/Incident SME Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or Northallerton Duration: 6 months Role Description: Main Tech Skills required are ELK (Elastic, Logstash, Kibana) and Tanium … . Support Junior Analysts to manage SOC systems. . Previous experience of Enterprise ICS/network architectures and technologies . Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. . Experience as a mentor/coach to Junior Analysts … communication skills . Experience of writing Defence/Government documentation Desirable Qualifications: . Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) . SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) . Advanced Analyst Course (SANS SEC503 or equivalent) If this role is of interest more »

SIEM/Incident SME Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or Northallerton Duration: 6 months MUST BE PAYE THROUGH UMBRELLA We are heading up a recruitment drive for a global consultancy that require a DV Cleared SIEM/Incident … cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to Junior Analysts Your … C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications: Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent more »

IR35 Status: Outside Duration: 6 Months Travel: Fully Remote Extensive & demonstrable experience working with and tuning Splunk within an Oracle cloud environment. Experienced using SIEM platforms and development of use cases. In addition, experience with Splunk core enterprise, enterprise security experience from both an engineering and knowledge management perspective. Extensive … experience with log aggregation, building use cases, validating false positives, sys log collectors. Provide solution support to the implementation of the Splunk SIEM solution in early non-production and production environments. Assist the project, SOC and wider teams and help develop Cyber Use Cases e.g. log source onboarding, use case more »

and Support penetration testing and vulnerability testing. - Support development of Supply Chain Security Policy and Processes. SKILLS - Extensive security risk management knowledge. - Experience with SIEM Monitoring, AV, DDoS Protection, vulnerability scanning and EDR. - Knowledge of authentication and authorisation techniques, network sniffing and working with remote access technologies. - Familiarity with NIST more »

Qualys Total Cloud and address any findings relating to non-compliance. Auditing configurations in order to plan remediations and verify compliance requirements are met. SIEM Integration and Configuration for Microsoft Cloud Services: Configure cloud services and Defender for Cloud for integration with Rapid7 InsightIDR SIEM to enhance security monitoring and … incident response capabilities. Integrate SIEM for monitoring Entra ID sign-in, audit, and risk log categories. Work with Security Operations to build and test required alert/detection rules Experience: Professional experience in cloud security, particularly with Microsoft Azure, Entra ID and Microsoft 365. Proficiency with Rapid7 InsightIDR, Qualys, and more »

IT Recruitment specialist that provides support to the clients across UK, Europe and Australia. We have an excellent job opportunity for you. Role Title: SIEM/Incident SME (Need Active DV Clearance) Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or … cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to Junior Analysts Your … C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications: Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent more »

SIEM Security Specialist vacancy requiring profound QRadar and Sentinel knowledge for a globally operating Basel based company in the financial sector . Your tasks: Improving parsing and rule generation within the SIEM platforms QRadar and Sentinel Collaborating with the SOC and business units to ensure compliance with policies and standards … Validating log sources are logging correctly and improving the company's overall logging strategy Your experience/knowledge: Practical experience with log management and SIEM solutions in an enterprise environment Well-versed with QRadar, Azure Sentinel and Windows Event Forwarding, or similar tools Expertise in Cybersecurity or a System/ more »

in requirements management and associated tooling. Previous experience working on bids and/or large and complex change requests. Experience with Network Management or SIEM designs, tooling or support. Demonstrable experience owning a full technical solution from pre-sales stage through to delivery handover. Experience in presenting complex technical solutions more »

Analyst - Blue Team 3+ years experience in a similar Blue Team/Incident Response role In-depth knowledge of IDS/IPS, EDR tools, SIEM solutions etc Strong understanding of operating systems, IT infrastructure, security/network protocols Experience/knowledge of malware analsysis, incident triage, forensic tools etc You more »

or experience Self-motivated and able to work with minimal supervision across time zones and geographies. Experience delivering Security Operations tools and functions e.g. SIEM, TVM (Qualys), NDR, EDR, NAC etc. Experience with Azure and Microsoft Security Suite an advantage. Working knowledge of frameworks like ISO, NIST, CIS, GDPR and more »

configuration, and implementation of security controls and services. Design, configure and manage an array of Cyber Security tools and technologies including anti-virus products, SIEM, EDR, XDR and CMDBs. Develop and deliver secure system profiles and maintain a view of compliance. Assist the development of granular Asset Management tooling and more »

Registrations, Identity Protection, Privileged Identity Management, Identity Governance, Azure Infrastructure, Entra Connect, Intune, Secure Score, Exposure Management, Exchange Online Protection, Purview Familiarity with firewalls, SIEM, EDR, IDS/IPS concepts, email Security products, Vulnerability management and relevant industry standards (e.g., ISO27001, CIS, NIST). Other security certification such as CISSP more »

and Support penetration testing and vulnerability testing. - Support development of Supply Chain Security Policy and Processes. SKILLS - Extensive security risk management knowledge. - Experience with SIEM Monitoring, AV, DDoS Protection, vulnerability scanning and EDR. - Knowledge of authentication and authorisation techniques, network sniffing and working with remote access technologies. - Familiarity with NIST more »

Systems (OS) (MSWin, Linux, OSX, IOS) * Purple Teaming knowledge * Basic understanding of computer forensics * Use of Firewalls and IDS/IPS devices * Knowledge of SIEM technologies. * Networking, routing and switching * Cyber Security Review (CSR) Compliant * Cybersecurity Frameworks and Standards: Knowledge of frameworks such as NIST, ISO 27001,MITRE ATT&CK more »

DV Cleared - SIEM Engineer/Security Response Engineer/ArcSight - 6 months+ - £600-£650 pd Inside IR35 - Full time on site Hampshire Looking for a number of DV Cleared ArcSight Specialists who have a strong experience with creating and maintaining design, installation and support documentation. All applicants must hold an … clearance Skills and Responsibilities: Design and automate the installation of COTS software products on RHEL and Windows Operating systems. Configure, maintain and support ArcSight SIEM toolset (ESM, SmartConnectors, Logger and ArcMC) Investigating/Resolving issues with ArcSight SIEM toolset Experience of creating bespoke custom (Flex/Regx) Connectors Knowledge of … installation and support documentation Design and automate the installation of COTS software products on RHEL and Windows Operating systems Configure, maintain and support ArcSight SIEM toolset (ESM, SmartConnectors, Logger and ArcMC) Investigating/Resolving issues with ArcSight SIEM toolset DV Cleared - ArcSight SME/Cyber Security Consultant - 6 months+ more »