101 to 125 of 240 SIEM Jobs

degree. Cloud experience, ideally with MS Azure though open to AWS, GCP, Oracle Cloud. Experience with security tools such as WAF, IPS/IDS, SIEM, Data Leakage. Familiarity with network protocols, encryption techniques, and access control models. more »

Will Need to Succeed: Minimum 5+ years of experience working in 24x7 enterprise operations, preferably security operations Minimum 3+ years of experience working with SIEM, including running investigations (correlating events on different aspects such as source/destination addresses, usernames, and process names) Minimum 1+ years of experience managing teams more »

etc.) to identify trends, anomalies, and suspicious or malicious activity. Experience with detections involving technologies such as cloud solutions, O365, and Kubernetes and advanced SIEM queries; bonus for KQL. Experience with writing proof of concept code for attack techniques on Windows and Linux operating systems. Ability to evaluate threat intelligence more »

etc.) to identify trends, anomalies, and suspicious or malicious activity. Experience with detections involving technologies such as cloud solutions, O365, and Kubernetes and advanced SIEM queries; bonus for KQL. Experience with writing proof of concept code for attack techniques on Windows and Linux operating systems. Ability to evaluate threat intelligence more »

etc.) to identify trends, anomalies, and suspicious or malicious activity. Experience with detections involving technologies such as cloud solutions, O365, and Kubernetes and advanced SIEM queries; bonus for KQL. Experience with writing proof of concept code for attack techniques on Windows and Linux operating systems. Ability to evaluate threat intelligence more »

etc.) to identify trends, anomalies, and suspicious or malicious activity. Experience with detections involving technologies such as cloud solutions, O365, and Kubernetes and advanced SIEM queries; bonus for KQL. Experience with writing proof of concept code for attack techniques on Windows and Linux operating systems. Ability to evaluate threat intelligence more »

e.g., firewall, IDS, proxy, authentication, endpoints, etc.) to identify trends and anomalies indicative of malicious activity and advanced query writing in at least one SIEM; bonus for KQL. Strong interpersonal and organizational skills and demonstrable ability to prioritize tasks and serve as a leader for enterprise security initiatives. Candidates that more »

e.g., firewall, IDS, proxy, authentication, endpoints, etc.) to identify trends and anomalies indicative of malicious activity and advanced query writing in at least one SIEM; bonus for KQL. Strong interpersonal and organizational skills and demonstrable ability to prioritize tasks and serve as a leader for enterprise security initiatives. Candidates that more »

e.g., firewall, IDS, proxy, authentication, endpoints, etc.) to identify trends and anomalies indicative of malicious activity and advanced query writing in at least one SIEM; bonus for KQL. Strong interpersonal and organizational skills and demonstrable ability to prioritize tasks and serve as a leader for enterprise security initiatives. Candidates that more »

e.g., firewall, IDS, proxy, authentication, endpoints, etc.) to identify trends and anomalies indicative of malicious activity and advanced query writing in at least one SIEM; bonus for KQL. Strong interpersonal and organizational skills and demonstrable ability to prioritize tasks and serve as a leader for enterprise security initiatives. Candidates that more »

Level 2 support or project-based role, with excellent client facing skills. Knowledge of security fundamentals (endpoint protection, MFA, EDR/XDR, SOC/SIEM etc.). Experience with Cisco switching, VLAN, routing, firewalling support. Experience with mobile device support and data backup and recovery support. At least one IT more »

on technical IT projects ·Experience with O365/M365 Administration including Intune/Endpoint Manager, PowerShell, Power Apps. Experienced with security controls such as SIEM, Vulnerability Scanning, Server and Client Security, SASE solutions and CloudFront/AWS WAF Good working knowledge of PowerShell and Automation tools Good knowledge of networking more »

and response tooling Experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, NDR, UEBA, honeypots, data loss prevention, SIEM, and log managers Understanding of regulatory processes in evidence-handling procedures Technical knowledge of anti-forensics, data hiding and obfuscation technologies including steganography, digital image more »

and response tooling Experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, NDR, UEBA, honeypots, data loss prevention, SIEM, and log managers Understanding of regulatory processes in evidence-handling procedures Technical knowledge of anti-forensics, data hiding and obfuscation technologies including steganography, digital image more »

and response tooling Experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, NDR, UEBA, honeypots, data loss prevention, SIEM, and log managers Understanding of regulatory processes in evidence-handling procedures Technical knowledge of anti-forensics, data hiding and obfuscation technologies including steganography, digital image more »

and response tooling Experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, NDR, UEBA, honeypots, data loss prevention, SIEM, and log managers Understanding of regulatory processes in evidence-handling procedures Technical knowledge of anti-forensics, data hiding and obfuscation technologies including steganography, digital image more »

and response tooling Experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, NDR, UEBA, honeypots, data loss prevention, SIEM, and log managers Understanding of regulatory processes in evidence-handling procedures Technical knowledge of anti-forensics, data hiding and obfuscation technologies including steganography, digital image more »

and response tooling Experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, NDR, UEBA, honeypots, data loss prevention, SIEM, and log managers Understanding of regulatory processes in evidence-handling procedures Technical knowledge of anti-forensics, data hiding and obfuscation technologies including steganography, digital image more »

and response tooling Experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, NDR, UEBA, honeypots, data loss prevention, SIEM, and log managers Understanding of regulatory processes in evidence-handling procedures Technical knowledge of anti-forensics, data hiding and obfuscation technologies including steganography, digital image more »

and response tooling Experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, NDR, UEBA, honeypots, data loss prevention, SIEM, and log managers Understanding of regulatory processes in evidence-handling procedures Technical knowledge of anti-forensics, data hiding and obfuscation technologies including steganography, digital image more »

and response tooling Experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, NDR, UEBA, honeypots, data loss prevention, SIEM, and log managers Understanding of regulatory processes in evidence-handling procedures Technical knowledge of anti-forensics, data hiding and obfuscation technologies including steganography, digital image more »

and response tooling Experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, NDR, UEBA, honeypots, data loss prevention, SIEM, and log managers Understanding of regulatory processes in evidence-handling procedures Technical knowledge of anti-forensics, data hiding and obfuscation technologies including steganography, digital image more »

SD-Access networks, Cisco ISE. Deep understanding of the technical concepts required in the role including LAN, WAN, WiFi, data-centre networks, unified comms SIEM and IPS/IDS technologies and toolset used for vulnerability scanning including Nessus more »

a similar Cyber/IT Security/InfoSec based role Experience in a wide range of Cyber Security areas. Experience with security tool sets (SIEM, FIM, EDR, NDR) The ability to contextualise, categorise and prioritise security events, incidents, and alerts Knowledge of security framework and standards implementation (NiST, ISO27001, PCI … spot and investigate anomalous behaviour Strong Communication skills and the ability to communicate and present at all levels IT Cyber Security Manager Technologies involved: SIEM - Logpoint Automated Intrusion and response - Darktrace AntiVirus/Malware detection Email Filtering & Web Security - Mimecast FIM - Tripwire VMware & VDI Horizon Windows Environment Microsoft Azure & O365 more »

intrusion prevention, and incident response. Experience setting up private bug-bounty programs Experience using or deploying a CSPM tool Familiarity using or deploying EDR, SIEM, SOAR platforms for endpoint devices What you'll be doing Support the implementation of policies and controls to attain and maintain security certifications Support both more »