1 to 25 of 129 SIEM Jobs

specifically around policies, security practices, and risk management methodologies. * Technologies: Advanced proficiency with AuditBoard is preferred. Experience with other key cybersecurity technologies such as SIEM, firewall management, and intrusion detection systems is highly regarded. * Education: Bachelor's degree in computer science, information security, or a related field; a graduate degree more »

Key requirements: Vendor certification of the following would be beneficial: VMware, MS Windows System Support, Cisco knowledge - LAN/WAN, Juniper, IP Trade. McAfee SIEM Security - Security Information Events Management knowledge IT/ICT further education Vendor certification of the following would be beneficial: VMware, MS Windows System Support, Cisco more »

with diagnostic and monitoring tooling. Proficient in Cryptographic key management and encryption deployments. Knowledge of ISO 27001/27002, NIST and/or CIS, SIEM tooling (Splunk) , Endpoint Detection and Response tooling (SentinelOne) Knowledge of zero trust security for applications and Operating Systems (Windows, Linux, zOS, F5) Familiar with analytic more »

routers, firewalls, VPNs and a small number of niche products using remote hands as required Administer DNS and DHCP for internal lab networks Administer SIEM tooling and report/escalate incidents and events as appropriate Administer information protection tooling (e.g., Microsoft Purview) Key Skills: Thorough, diligent, meticulous finisher Strong multi more »

complex technical information in order to provide appropriate advice and guidance to senior management. Deep understanding of security technologies, tools, and systems such as SIEM, SOAR, EDR, DLP, VPN, Encryption techniques, IDS/IPS. Cloud Security - IaaS, PaaS & SaaS. Knowledgeable in key IAM concepts (Lifecycle and governance, Role Based access more »

LENGTH: 6 MONTHS WITH SCOPE TO EXTEND Key responsibilities Alert monitoring, Security Events analysis, Log Management Security Incident response management Manage, tune, and optimise SIEM tool (Sentinel), which includes evaluating existing rules, filters, events and use cases per the business requirement Provide recommendation to optimise security controls such as IDS … Creation and presentation of SLA reports with Customer leadership team Drive continuous improvement and optimisation of services Required skills and knowledge: Strong Expertise in SIEM Tools, 7-10 years , Operating at L3 level for a minimum of 2 years Proven experience as a SOC Lead/Senior Member of the more »

MONTHS WITH SCOPE TO EXTEND Key responsibilities: Alert monitoring, Security Events analysis, Log Management Microsoft Sentinel Security Incident response management Manage, tune, and optimise SIEM tool (Sentinel), which includes evaluating existing rules, filters, events and use cases per the business requirement Provide recommendation to optimise security controls such as IDS … rd party teams in the scenario of Data breach/Major incidents Provide Audit and Compliance support Required skills/knowledge: Strong Expertise in SIEM Tools, 5-7 years , Operating at L2 level for a minimum of 2 years Proven experience as a SOC Analyst at L2 level Good Exposure more »

routers, firewalls, VPNs and a small number of niche products using “remote hands” as required Administer DNS and DHCP for internal lab networks Administer SIEM tooling and report/escalate incidents and events as appropriate Administer information protection tooling (e.g., Microsoft Purview) Key Skills: Thorough, diligent, meticulous finisher Strong multi more »

Our client, a leading global consultancy, are looking for a SIEM Engineer to join for an initial 6-month contract based in London on a hybrid basis. ROLE: SIEM ENGINEER LOCATION: LONDON (2 X PER WEEK IN OFFICE) RATE: £550 A DAY INSIDE IR35 LENGTH: 6 MONTHS WITH SCOPE TO … of integrity, result-oriented approach, and composure under pressure Strong communication, influencing, and collaboration skills? Knowledge of detection rule development, covering tools (such as SIEM, EDRs) and industry frameworks (such as MITRE ATT&CK) Expert proficiency in Python, Kusto, or other scripting language Experience working as a security analyst or more »

cyber security technologies and services in use at the company Role & Accountabilities KEY Identity access management, experience/involvement with Security services such as SIEM and Vulnerability Management. Provide expert knowledge and act as a subject matter expert on key principles of (IAM) with an in-depth knowledge in the … remediation of vulnerabilities in line with best practise and policy. Assist with the investigation vulnerability results and remediation efforts. Assist with management of the SIEM service, including the ingestion of new log sources, configuration of alerting and providing expert knowledge to aid the investigation of alerts where required. Support the more »

e.g. Ansible/Puppet/Landscape) Essential skills/experience required for the Senior Infrastructure Engineer: Extensive experience with Windows, Microsoft365, and Linux Implementing SIEM solutions Configuring and monitoring compliance policies within M365 Setting up SSO (specifically SAML) Managing devices via Intune Desirable skills/experience required for theSenior Infrastructure more »

and communicate effectively at all levels to both technical and non-technical audiences, assess and evaluate risk and understand the implications of new technologies. SIEM experience with designing, implementing and maintaining Splunk Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective more »

Adherence to Protocols: Ensure all investigative steps follow established protocols. Advanced Threat Detection and Response: Utilize and fine-tune advanced threat detection tools, including SIEM systems, IDS/IPS, and EDR solutions. Customer Interaction: Customer-Facing Expertise: Directly interface with customers during incidents, providing clear and reassuring communication. Technical Queries more »

Espire infolabs is looking forSIEM Onboarding Engineer for London, UK with remote working flexibility, Job Title: SIEM Onboarding Engineer Job Type: FTC-Fixed Term Contract(6 Months + Possible extensions) Job Location: London, UK(Remote) Job Description: The SIEM Onboarding Engineer plays a critical role in enhancing our organizations security … posture by integrating various devices and data sources into our SIEM environment, utilizing OpenSearch. The SIEM Onboarding Engineer will work closely with business units to identify devices for onboarding, manage the data pipeline, and assist other engineers in configuring their data sources to provide a resilient pipeline.The SIEM Onboarding Engineer … tool whenever possible. Responsibilities: Device Integration: Work with various business units to identify devices and data sources that need to be onboarded to our SIEM (OpenSearch with Security Analytics). Data Pipeline Management: Configure and manage data collection agents to ensure data is reliably ingested into the SIEM. Automation: Leverage more »

vectors, current threats, and remediation strategies. Proficient in patch lifecycle management using tools such as SCCM, Qualys, and Patch my PC. Experience working with SIEM providers, SOC, and other third parties in the security space. Benefits A fantastic pension Life assurance Great holidays An award-winning flexible benefits package Volunteering more »

practical understanding of some of the core security frameworks (NIST, Cyber Essentials +, ISO27001), and a level of understanding of core security analysis tools (SIEM, IAM/PAM, Firewalls, EDR, Vulnerability scanning tools etc). Your new role will involve Assisting with the implementation and enhancement of the security strategy … risk and compliance) background Experience working with 3rd party suppliers and MSSPs on the enhancement of organisational security Some technical cyber experience (utilisation of SIEM/Vulnerability/IAM tools) Excellent communication skills alongside a proactive and business solution-focused mindset Thorough understanding of, and practical application experience of, commonplace more »

and communicate effectively at all levels to both technical and non-technical audiences, assess and evaluate risk and understand the implications of new technologies. SIEM experience with designing, implementing and maintaining Splunk Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective more »

of the latest threat landscape, tactics, techniques, and procedures (TTPs) used by attackers Develop and maintain expertise in threat detection tools and technologies, including SIEM systems, EDR (endpoint detection and response) tools, and network monitoring solutions Be a part of a Team to improve our security stance and implement your … of integrity, result-oriented approach, and composure under pressure Strong communication, influencing, and collaboration skills? Knowledge of detection rule development, covering tools (such as SIEM, EDRs) and industry frameworks (such as MITRE ATT&CK) Nice-to-have Expert proficiency in Python, Kusto, or other scripting language Experience working as a more »

interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and more »

interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and more »

interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and more »

design, defence-in-depth principles and network security architecture. Extensive experience and understanding of security analysis tools, defensive technologies and other security technologies (e.g. SIEM, VAS, IDS/IPS, Firewalls, IAM, PAM, NAC, Email Security, Web filtering, Patch management, Anti-malware). Experience in identifying, detecting, applying protection, responding and more »

design, defence-in-depth principles and network security architecture. Extensive experience and understanding of security analysis tools, defensive technologies and other security technologies (eg SIEM, VAS, IDS/IPS, Firewalls, IAM, PAM, NAC, Email Security, Web filtering, Patch management, Anti-malware). Experience in identifying, detecting, applying protection, responding and more »

broad understanding OT and IT services Subject matter expert on Cyber Security on protecting IT, OT, and IP networks, such as IPSec VPNs, Firewalls, SIEM, IPS/IDS, AV/EDR solutions, LDAP/AD, etc. Privileged Access Management and related tools High level of expertise on Vulnerability and Compliance more »

ISO27001/17 and STRIDE Threat Modelling Framework. Understanding of general security practices such as encryption, IAM, PAM, penetration testing, container security, security information and event management etc. and supporting technologies. Ability to take ownership and work proactively . Organised with a proven ability to prioritise workload, meet deadlines, and more »