outliers within data sets that match threat actor TTPs, post compromise behavior, and otherwise unusual activity, such as insider threat. Create and modify securitySIEM dashboards to clearly identify scope of findings, or monitor activity Drive implementation and improvement of new tools, capabilities, frameworks, and methodologies Instill and reinforce industry more »
that outputs results in a variety of formats, such as VB scripts, Python, C++, HTML, XML or other. Established experience with incident response andSIEM tools, host-based logs, network-based logs, and regex. Ability to work independently with minimal direction; self-starter/self-motivated. Required certifications: The candidate more »
andsecurity monitoring Understanding of threat modelling Investigation experience into Informationand Cyber security incidents Broad technical understanding covering Windows, Linux, Unix, Networking, Cisco, SIEM, IAM, DLP, LAN/WAN, Wireshark, VMware, SSL and others Experience and knowledge of NIST, COBIT, GCIA, GCIH, GCFA etc. This is an excellent opportunity more »
and projects. Requirements You will have worked a as Security Operations Engineer or similar role. You will have solid understanding of AWS, Microsoft security, SIEM, SOC, and programming. Solid experience of relevant security frameworks such as ISO27001, GDPR & HIPAA, NIST Cybersecurity Framework. Proven experience AWS and Azure cloud computing experience more »
IaaS, PaaS, SaaS) in particular AWS, MS Sentinel and Defender Good understanding of Security Operations and related security tools such as Firewalls, VPN Gateway, SIEM, SOAR, EDR, MDR, UEBA, DLP Good understanding and practical experience of Cyber Security Frameworks and standards such as NCSC security principles, NIST Framework, ISO more »
a security operations centre (SOC) and responding to security alerts. Experience in creating response playbooks and handling escalations. Additional experience in EDR, M365 security, SIEM, Vulnerability management, MITRE attack framework, and Incident response. Strong stakeholder engagement skills and the ability to promote a secure mindset within an organisation. Previous experience more »
communicate to both a technical and non-technical audience. understanding of networking fundamentals, TCP/IP, and core protocols. experience in log monitoring andSIEM (ideally Splunk and Tenable), log managementand an understanding of vulnerability management. endpoints, investigate threats/alerts (Ideally SentinelOne). management experience (ideally BeyondTrust reported more »
Employment Type: Temporary
Salary: £25000 - £40000/annum Pro Rata until October
commercial experience with the following technologies/systems: Check Point Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering SIEM/Splunk Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning (e.g., Nessus) Microsoft Windows Server family of products more »
and evaluate risk and understand the implications of new technologies. •Good project management skills, with the ability to balance multiple initiatives and priorities simultaneously •SIEM experience with Azure Sentinel, Splunk & QRadar •Experience of running simulated or reacting to actual incidents, following procedures and good practice to limit, reduce and remediate more »
Recommends and coordinates the application of fixes, patches, & recovery procedures in the event of a security breach. Understanding of security tools and platforms including SIEM, IPS/IDS, SecOps, Endpoint and Server protection, Network protection, Firewalls, etc. Knowledge of Federated Identity Management, Single Sign On, and Enterprise class Identity andmore »
Cyber Security Experience of working in environments using ISO27001 or Cyber Essentials Plus would be beneficial Strong knowledge of security tooling and technologies including SIEM, vulnerability management, DLP etc Good knowledge and understanding of public Cloud platforms (e.g. AWS and Azure) Good understanding of the current threat landscape Excellent communication more »
Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITRE ATT&CK andSIEM technologies eg Microsoft Sentinel An interest in automation of Security operation function including artificial intelligence An understanding of Microsoft security product portfolio CISSP/CISM more »
a technical hands on/engineering role. Hands-on experience with security tools such as firewalls, intrusion detection/prevention systems, antivirus software, andSIEM solutions. Experience with cloud security principles and practices with either AWS or Azure. Experience implementing policies and procedures in alignment with standards such as ISO27001 more »
a technical hands on/engineering role. Hands-on experience with security tools such as firewalls, intrusion detection/prevention systems, antivirus software, andSIEM solutions. Experience with cloud security principles and practices with either AWS or Azure. Experience implementing policies and procedures in alignment with standards such as ISO27001 more »
capability, especially using PowerShell Bash. Familiarity with tools like zScaler, Solarwinds, Crowdstrike, Splunk. Experience with batch automation tools, Linux, and Azure. Working knowledge of SIEM Tools. Experience in Event Analysis, Triage, Incident Handling, and Root-Cause identification. What can we do for you? 22 days holiday On-sire gym at more »
Dublin, City of Dublin, Republic of Ireland Hybrid / WFH Options
The Recruitment Company
knowledge of and proven experience in best practice InformationSecurity, e.g. Incident Response, Intrusion mgmt., Attack Monitoring, Network mgmt., Threat and Vulnerability Management, e.g. SIEM, XDR, Firewall, IPS, NAC, Server config controls Excellent knowledge of and proven experience in managing an array of IT Infrastructure: Servers, workstations, network switches, mobile more »
infrastructure, including Hyper-V and VMWare. Practical experience in Storage Solutions, Backup and Replication Services (DFS, VEEAM, ASR). Experienced with security controls including SIEM, Vulnerability Scanning, Server and Client Security, ZScaler and Microsoft Defender for Cloud. Demonstrable experience of similar position/role or working within established architecture practice. more »
and risk levels Develop and maintain SecOps documentation, policies, and procedures Maintain cybersecurity solutions across systems, applications, and infrastructure Investigate security alerts from the SIEM tool and take appropriate incident response actions. Communicate with stakeholders about security incidents, detailing actions taken. Support the Cyber Incident Response Manager by triaging events more »
methodology development; business process design for security compliance and assurance. • Specific technical expertise and background in infrastructure and network security, cyber security capabilities andSIEM/analytics. • In-depth subject matter expertise of application and data security, with thorough understanding of infrastructure and network security. • Very good knowledge and experience more »
Greater London, England, United Kingdom Hybrid / WFH Options
Oliver Bernard
for new and existing products and ways of working. Requirements: Proven knowledge of informationand cyber security engineering Great experience with PCI DSS. Good SIEM knowledge (Splunk is ideal) Great understanding of logs and log events across Linux, Windows, AWS, AV and Vulnerability scanning etc Good experience of Security Operations more »
Glasgow, Lanarkshire, Scotland, United Kingdom Hybrid / WFH Options
SDL Solutions Limited
updated on IT security trends and regulations. Maintain accurate security documentation. Skills and Qualifications: Understanding of computer networking across LANs and WANs Knowledge of SIEM solutions Any knowledge of Azure Security principles Ideally experience with Microsoft Defender stack Knowledge of essential cybersecurity principles and practices Excellent communication, stakeholder management, andmore »
/pcaps Solid understanding of TCP/IP, Routing and DNS Compliance monitoring (GDPR, ISO etc) Defence in Depth techniques. Experience in using a SIEM (ELK, Logstash, Splunk, Sentinel etc) for reporting and analysis, with experience in configuring and tuning alerts and alarms and ingesting new log sources Monitor threat more »
infrastructure, and cloud services. Excellent communications skills (written and oral) are essential, as is detailed knowledge and practical experience of security-enforcing technologies (Firewalls, SIEM tools, Identity and Access Management, etc.). Familiarity with risk management frameworks and methodologies is required. The candidate's profile is rounded out by non more »
Glasgow, Scotland, United Kingdom Hybrid / WFH Options
Nine Twenty Recruitment
methodologies. Proficient with Microsoft, Windows, and related technologies. Familiarity with networking and network infrastructure. Experienced in designing, implementing, and managing Security services such as SIEM, Endpoint protection, EDR, and Vulnerability management platforms. To be considered for this position, please apply today or contact Sophie on snorton@weareninetwenty.com more »