Threat Intelligence which is actionable information (e.g. IOCs/TTPs), conduct threat hunting activities; leveraging and analyzing sources of information as available through the SIEM, in addition identify and investigate potential suspicious activity as well as helping organizations identify, isolate, and contain security issues. You will also support the initial … activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat. Identify opportunities for SOC and client SIEM platform configuration improvements, use case development, monitoring rule creation, tuning & optimization. Assist in architectural design to facilitate the onboarding of new information systems, including the … Analyst/Senior Cyber Securityandsecurity operations experience Microsoft MDE, MDI, Sentinel, Lighthouse and DevOps experience Experience of onboarding, tuning, reporting, and configuring SIEM solutions Experience of threat intelligence Leadership and mentoring experience and skills Understanding of low-level concepts including operating systems and networking Commercial experience in Penetration more »
Manchester, Clifton, City and Borough of Salford, United Kingdom Hybrid / WFH Options
Advania UK
the Security & Networks area of Advania. The candidate will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of SIEMandsecurity toolsets to meet the requirements of the business and its customers. This is a hands-on role and requires a broad technical knowledge … a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities Qualifications & Experience: Essential: Demonstrable experience working with SIEM technology, preferably within a CSOC/SOC environment Demonstrable technical knowledge, skills and/or experience in intrusion analysis, and network andsecurity investigation using more »
Summary Senior InformationSecurity Engineer Overview Mastercard's Vocalink Security Monitoring Engineering (SME) team is looking for a Senior InformationSecurity Engineer to manage SIEM content, to monitor and detect cyber security threats & incidents. The ideal candidate is highly motivated, intellectually curious and analytical. The role requires a blend of … cybersecurity experience and highly developed communication skills. The purpose of this role is to enhance security monitoring tooling, detections and incident response capabilities using SIEM solutions to provide a single view of the environment. A good working knowledge of Splunk SPL is essential for this role. In this role, you … environments (including PCI, ISO27001, & ISAE3000) • Define how logs should be parsed and ingested for best practice • Engage with other teams to ensure that the SIEM is performing to standard with all necessary logging sources monitored • Analyse, design and deliver solutions to detect and stop adversaries • Propose additional Security Monitoring Use more »
Glasgow, Scotland, United Kingdom Hybrid / WFH Options
Head Resourcing
to state affiliated groups. Preventing and detecting common attacker techniques and the MITRE ATT&CK framework. Tuning and configuring cyber security tools, for example SIEMand EDR tooling. How enterprise IT networks, Active Directory and Azure AD operate. Service Management of key partners This role comes with excellent benefits such more »
Salford, England, United Kingdom Hybrid / WFH Options
Talent
a strong focus on development/implementation of security strategies Knowledge of security principles and best practices Cyber Essentials Experience with firewalls, antivirus software, SIEM Technical background, including networking, Operating Systems, M365, Active Directory What will you get in return? Bonus scheme Flexible working Exclusive staff discounts Online wellbeing centre more »
LS1, Leeds, West Yorkshire, United Kingdom Hybrid / WFH Options
Picture More Ltd
of planning, development and implementation of Azure security-related technologies An excellent understanding of infrastructure and application technologies An excellent understanding of security technologies: SIEM, firewalls, intrusion detection/prevention systems, anti-virus software, authentication systems, log management, content filtering, etc. An excellent understanding of security approaches: ISMS, risk analysis more »
a similar Cyber/IT Security/InfoSec based role Experience in a wide range of Cyber Security areas. Knowledge of security tool sets (SIEM, FIM, EDR, NDR) Strong Communication skills and the ability to communicate and present at all levels Northreach is an equal opportunity employer and we do more »
Hereford, Herefordshire, West Midlands, United Kingdom
Henderson Scott
ICS/network architectures and technologies. * Working with frameworks and technologies that support data-intensive distributed applications. * Experience maintaining and administrating data analytical andSIEM platforms. * Experience using host and network-based IDS/IPS * Experience using packet capture solutions. * Skill in developing and deploying signatures. * Skill to apply cybersecurity more »
of cyber security experience with a strong understanding of security concepts, principles and best practice You're experienced with security tools and technologies e.g. SIEM, SOAR, EDR, NDR You have a good knowledge of Linux and associated scripting languages e.g. Python, bash, PowerShell Ideally you will have cloud security experience more »
Manchester Area, United Kingdom Hybrid / WFH Options
Searchability®
Benefits Manchester office, 2 days per week onsite requirement Security Operations/Monitoring/Identifying Threats/Investigation/Prevention/Documentation Responsibilities: Monitor SIEM Systems Identify and investigate security threats Responding to alerts Documentation Collaborating within an informationsecurity environment Proactive threat intelligence What We Offer: An opportunity to more »
Surrey, England, United Kingdom Hybrid / WFH Options
Roc Search
SSR tools like Next.js • Modern web application development practices Desirable skills • Azure API Management • Virtual Network architectures • K8s security features (SecurityContext, network policies) • KQL • SIEM systems such as Sentinel • Cloudflare • A/B and MVT Testing • GitOps approach and DevOps workflow automation • BDD, ATDD, TDD • CRM, CMS and ERP Systems more »
skills •Azure API Management •Virtual Network architectures •K8s security features (SecurityContext, network policies) •Relational and no-SQL databases (e.g MS SQL, Redis, Cosmos DB) •SIEM systems such as Sentinel •Cloudflare •A/B and MVT Testing •API design, including RESTful and Graph APIs •GitOps approach and DevOps workflow automation •BDD more »
specify requirements through tenders and evaluate supplier proposals. * Specific technology/subject experience should ideally cover one or more of IDAM, remote access solutions, SIEM, software defined networks, data integration, NIS standards and hyper convergence. * Examples of balancing long-term strategic objectives with immediate business imperatives, and contributing to roadmap more »
Defender suite technology deployments and experience configuring Syslog integrations. We expect the successful candidate to have an understanding of structured query languages used in SIEM products (examples: SQL, Kusto, Splunk). For this role, candidates must be comfortable liaising with clients, understanding clients concerns and requirements and pro-actively taking more »
Farringdon, Greater London, United Kingdom Hybrid / WFH Options
Metropolitan Thames Valley
virtualised infrastructure and operations Experience with enterprise data storage systems Experience in managing complex LAN, WAN infrastructure, and data centre operations and exposure to SIEM operations Experience with backup and disaster recovery solutions, specifically Veeam Administration of Gateways and Internet content filtering solutions Change management processes Project managementand delivery more »
latest trends in cybersecurity threats, vulnerabilities, and best practices. Security Infrastructure Management Assist with the maintenance of existing security tools and technologies, such as SIEM, EDR and firewalls. Contribute to the selection of new security tools. Documentation and Reporting Create and maintain detailed documentation of security processes and procedures. Generate … with other IT teams to identify and remediate security vulnerabilities. PROFESSIONAL EXPERIENCE/QUALIFICATIONS/SKILLS Hands on experience with security tools such as SIEM/EDR and vulnerability Management. Proven experience in a security operations role. In-depth knowledge of cybersecurity principles, threat landscapes, and attack vectors. Experience working more »
and issue managementand the budgeting process. What are we looking for? Experience with informationsecuritymanagement frameworks Experience with Front end cyber attack, SIEMand SOC compliance. The role will involve supporting project managers in risk and issue management Creation, review, and approval of documentation such as requirements, architecture more »
with managing Cybersecurity tools and technologies. Key Responsibilities: - Lead in defining and implementing security controls and services. - Manage Cybersecurity tools like anti-virus products, SIEM, EDR, XDR, and CMDBs. - Develop secure system profiles and ensure compliance. - Support Threat Hunting tasks and compliance activities. Requirements: - Hands-on experience with security technologies more »
experience PowerShell, Python or an equivalent. Experience building, configuring and releasing vendor applications Exposure and willingness to up-skill on supporting products including CyberArk, SIEM, SOAR, McAfee, CarbonBlack and more. 4 years+ experience If you are a proactive and analytical professional with a passion for technology and a track record more »
Cyber Defence Analyst - DV Clearance Required! The Cyber Defence Analyst will join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal more »
Cyber Defence Analyst - DV Clearance Required! The Cyber Defence Analyst will join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal more »
Cyber Defence Analyst - DV Clearance Required! If your skills, experience, and qualifications match those in this job overview, do not delay your application. The Cyber Defence Analyst will join a growing security team responsible for designing, delivering and maintaining operational more »
Cyber Defence Analyst - DV Clearance Required! If your skills, experience, and qualifications match those in this job overview, do not delay your application. The Cyber Defence Analyst will join a growing security team responsible for designing, delivering and maintaining operational more »
Cardiff, South Glamorgan, Wales, United Kingdom Hybrid / WFH Options
Hays
and Support penetration testing and vulnerability testing. - Support development of Supply Chain Security Policy and Processes. SKILLS - Extensive security risk management knowledge. - Experience with SIEM Monitoring, AV, DDoS Protection, vulnerability scanning and EDR. - Knowledge of authentication and authorisation techniques, network sniffing and working with remote access technologies. - Familiarity with NIST more »
Employment Type: Contract, Work From Home
Rate: £500.0 - £550.0 per day + £500-£550 Per Day Inside IR35