analysis, and improvement of cybersecurity postures. Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment. Strong hands-on expertise with SIEM tools such as Microsoft Sentinel and Splunk . Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ). Skilled in incident response and threat intelligence analysis . Familiarity with Mitre Att … Analyst , you will be at the forefront -leading incident response, improving detection mechanisms, and mentoring junior analysts. Your responsibilities will include: Analysing security incidents using advanced SIEM platforms ( Microsoft Sentinel , Splunk ). Leading incident response and driving improvements in detection and containment strategies. Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck . Collaborating with colleagues to More ❯
Derby, England, United Kingdom Hybrid / WFH Options
JR United Kingdom
posture, identifying and assessing any cyber security risks, in accordance with laws and regulations. You will be responsible for leveraging and optimising a number of tools including, MS Defender, Sentinel, Azure and the external SOC partner to enhance cyber resilience, conduct threat analysis, and proactive risk assessments to design effective controls. You will be leading the Cyber Security operations function … establishing responsibilities and ensure an end-to-end approach to cyber resilience Is embedded in other functions. What you'll need to succeed Extensive understanding of Azure, MS Defender, Sentinel, and Cyber Assessment Framework Experience leading a team of security and infrastructure engineers Extensive experience of creating cyber security roadmaps Experience of building and implementing strong operational processes Excellent communication More ❯
a busy SOC with a tech-first approach. The team is on the cusp of continued growth, and we are looking for leaders to drive forward. Knowledge of Microsoft Sentinel, Splunk, and MISP Threat Sharing would be a significant advantage. This role is based at our head office in Hemel Hempstead or Farnborough and involves a shift pattern with … non-technical audiences and improving their content. Updating security incident documentation, including reports, analysis, and mitigation strategies. Qualifications and experience: Experience working in a Security Operations Centre. Managing Microsoft Sentinel and Splunk implementations. Knowledge of the Mitre Att&ck Framework. Understanding of client-server applications, web applications, databases, firewalls, VPNs, and AntiVirus products. Expertise in log data analysis and intrusion More ❯
Bolton, England, United Kingdom Hybrid / WFH Options
JR United Kingdom
working on proactive threat detection, incident response, and advanced security automation. Key Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and automation playbooks Perform deep-dive analysis on malware, phishing, and lateral movement threats Correlate events across … regular SOC performance reports and threat intelligence summaries Required Skills & Experience: 5+ years in cybersecurity, with 2+ years at SOC Level 3 or senior analyst level Expertise in Microsoft Sentinel (KQL, custom rules, automation, dashboards) Strong hands-on experience with Microsoft Defender for Endpoint, Identity, and Office 365 Proficient in handling incidents aligned with MITRE ATT&CK framework Solid understanding More ❯
Warrington, England, United Kingdom Hybrid / WFH Options
JR United Kingdom
working on proactive threat detection, incident response, and advanced security automation. Key Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and automation playbooks Perform deep-dive analysis on malware, phishing, and lateral movement threats Correlate events across … regular SOC performance reports and threat intelligence summaries Required Skills & Experience: 5+ years in cybersecurity, with 2+ years at SOC Level 3 or senior analyst level Expertise in Microsoft Sentinel (KQL, custom rules, automation, dashboards) Strong hands-on experience with Microsoft Defender for Endpoint, Identity, and Office 365 Proficient in handling incidents aligned with MITRE ATT&CK framework Solid understanding More ❯
Loughton, Essex, South East, United Kingdom Hybrid / WFH Options
Profile 29
proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities … Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention … purposes only (details of Profile 29s privacy policy can be found at: profile-29 .com/privacy) Profile 29 recruitment keywords: DevSecOps DevOps Azure cloud security Microsoft Defender Microsoft Sentinel WAF IPS DNS pcidss pci dss pci-dss soar loughton Debden essex London More ❯
of the business forward - ensuring that security controls, policies and technologies effectively protect the organisation's assets, infrastructure and data. They are using the MS Security Stack including Defender, Sentinel and Entra ID, and are very ahead-of-the-curve in their respective sector. The ideal candidate will have come from a hands-on Engineering background, who loves being technically … Support M&A security assessments and maintain compliance. Requirements: * Experience in a Cyber Security leadership-level role * Proven experience with the MS Security Stack including Defender (Endpoint, Identity, Cloud), Sentinel (SIEM), Entra ID Security Features, and Purview * Knowledge of Azure Security controls, including Azure Firewall, Key Vault, Conditional Access, and Azure Network Security * Familiarity with standards such as ISO More ❯
of the business forward - ensuring that security controls, policies and technologies effectively protect the organisation's assets, infrastructure and data. They are using the MS Security Stack including Defender, Sentinel and Entra ID, and are very ahead-of-the-curve in their respective sector. The ideal candidate will have come from a hands-on Engineering background, who loves being technically … Support M&A security assessments and maintain compliance. Requirements: * Experience in a Cyber Security leadership-level role * Proven experience with the MS Security Stack including Defender (Endpoint, Identity, Cloud), Sentinel (SIEM), Entra ID Security Features, and Purview * Knowledge of Azure Security controls, including Azure Firewall, Key Vault, Conditional Access, and Azure Network Security * Familiarity with standards such as ISO More ❯
access and configuration requests, and escalating technical challenges to appropriate teams. What Your Day-To-Day Looks Like (Position Responsibilities): Provide Tier 1 and Tier 2 technical support to Sentinel users via ticketing systems, email, and chat, ensuring high levels of customer service and responsiveness. Monitor and triage service desk tickets within SLAs using Service Manager (or similar ITSM platform … authentication processes, and basic role configuration. Respond to and resolve incidents across three operational enclaves, including after-hours support for mission-critical issues. Assist in maintaining operational readiness of Sentinel environments by coordinating closely with DevOps, Infrastructure, and Security teams. Provide support for audit and compliance-related requests by gathering system usage data and logs. Contribute to knowledge base articles More ❯
of the business forward - ensuring that security controls, policies and technologies effectively protect the organisation's assets, infrastructure and data. They are using the MS Security Stack including Defender, Sentinel and Entra ID, and are very ahead-of-the-curve in their respective sector. The ideal candidate will have come from a hands-on Engineering background, who loves being technically … Support M&A security assessments and maintain compliance. Requirements: * Experience in a Cyber Security leadership-level role * Proven experience with the MS Security Stack including Defender (Endpoint, Identity, Cloud), Sentinel (SIEM), Entra ID Security Features, and Purview * Knowledge of Azure Security controls, including Azure Firewall, Key Vault, Conditional Access, and Azure Network Security * Familiarity with standards such as ISO More ❯
Manchester, North West, United Kingdom Hybrid / WFH Options
Queen Square Recruitment Limited
maturity, optimizing license consumption, and enhancing security visibility across the enterprise. Key Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and SOAR playbooks Monitor and optimise license consumption across Microsoft security tools Manage log onboarding/offboarding … in cybersecurity, with at least 2+ years at SOC Level 3 or senior analyst level Strong expertise in Microsoft Azure , including security monitoring and engineering Deep experience with Microsoft Sentinel (KQL, custom rules, automation, dashboards) Hands-on proficiency with Microsoft Defender for Endpoint, Identity, and Office 365 Strong understanding of log management (onboarding, parsing, retention strategies) Demonstrated ability to build More ❯
Manchester Area, United Kingdom Hybrid / WFH Options
Queen Square Recruitment
maturity, optimizing license consumption, and enhancing security visibility across the enterprise. Key Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and SOAR playbooks Monitor and optimise license consumption across Microsoft security tools Manage log onboarding/offboarding … in cybersecurity, with at least 2+ years at SOC Level 3 or senior analyst level Strong expertise in Microsoft Azure , including security monitoring and engineering Deep experience with Microsoft Sentinel (KQL, custom rules, automation, dashboards) Hands-on proficiency with Microsoft Defender for Endpoint, Identity, and Office 365 Strong understanding of log management (onboarding, parsing, retention strategies) Demonstrated ability to build More ❯
of cybersecurity postures. Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment SOC Level 2 Strong hands-on expertise with SIEM tools such as Microsoft Sentinel and Splunk Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ) Skilled in incident response and threat intelligence analysis Familiarity with Mitre Att&ck framework and … be at the forefront of digital defence—leading incident response, improving detection mechanisms, and mentoring junior analysts. Your responsibilities will include: Analysing security incidents using advanced SIEM platforms ( Microsoft Sentinel , Splunk ) Leading incident response and driving improvements in detection and containment strategies Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck Collaborating with colleagues to enhance the More ❯
Enfield, Middlesex, England, United Kingdom Hybrid / WFH Options
Eden Brown Synergy
in London who are seeking an experienced Cyber Security Analyst to play a key role in strengthening their cyber security capabilities and ensuring the effective use of Microsoft's Sentinel security information and event management system. This opportunity offers a chance to contribute to a progressive, security-focused team committed to protecting critical infrastructure and information assets. The role is … to attend the London office 2 days per week. Key Responsibilities: * Monitor and analyse various security systems to identify, mitigate, and respond to risks and potential threats. * Utilise Microsoft Sentinel and related tools to analyse security data, detect anomalies, and respond effectively to incidents. * Oversee vulnerability assessments and penetration testing to ensure robust security measures are maintained. * Contribute to the More ❯
technical issue resolution knowledge and deployment/adoption processes best practices. Provide analysis of information security risk and issues of non-compliance. Manage, maintain, optimise and tune the Microsoft Sentinel SIEM solution, ensuring all key systems send activity information to the SIEM solution and that the solution recognises and differentiates between both normal and abnormal system activities. Investigate unusual behaviour … efficient management of SIEM related processes. Skills: Experience and good understanding of Microsoft technologies including: Azure Active Directory, Windows Server, and M365. An in-depth knowledge of the Microsoft Sentinel SIEM solution and configuration best practice and use. Use of advanced security assessment tools. Basic understanding of firewall and intrusion detection system administration. Basic understanding of TCP/IP. Ability More ❯
and experience necessary to build a lucrative career, then welcome to THRIVE!! Position Overview We are seeking a Security Engineer with a strong focus on managing and optimizing Microsoft Sentinel and Defender XDR products. This role will be pivotal in enhancing our cybersecurity framework by leading the integration and utilization of these key security tools. Responsibilities include designing and optimizing … is essential. This position is ideal for a detail-oriented individual eager to push the boundaries of cybersecurity and enhance client interactions. Primary Responsibilities Lead the management of Microsoft Sentinel and Defender XDR products, including their integration with existing tools, utilizing them to elevate existing Security Operations Design and optimize SIEM (Security Information and Event Management) rules using FortiSIEM to … documents Stay informed about the latest security events and techniques to enhance our operations and defense strategies Other duties as required Qualifications And Required Skills Proven experience with Microsoft Sentinel and Defender XDR products Strong background in SIEM rule design and optimization Extensive experience in implementing and overseeing Endpoint Detection and Response (EDR) solutions Experience with SOAR tools and automated More ❯
London, Tower, United Kingdom Hybrid / WFH Options
Skillcast
of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC 2, ISO 27001, and Cyber Essentials audits – including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM – including data source configuration, detection rule creation, incident triage, and reporting - Oversee vulnerability scanning, prioritisation, stakeholder coordination, and remediation tracking - Implement and manage security controls across Azure and Kubernetes … years of experience in cybersecurity and IT infrastructure roles - Hands-on experience with Azure, Kubernetes/Docker, and CI/CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security controls - Familiarity with SOC 2, ISO 27001, Cyber Essentials, and NIST frameworks - Experience with core security More ❯
City of London, London, England, United Kingdom Hybrid / WFH Options
Skillcast
of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC 2, ISO 27001, and Cyber Essentials audits – including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM – including data source configuration, detection rule creation, incident triage, and reporting - Oversee vulnerability scanning, prioritisation, stakeholder coordination, and remediation tracking - Implement and manage security controls across Azure and Kubernetes … years of experience in cybersecurity and IT infrastructure roles - Hands-on experience with Azure, Kubernetes/Docker, and CI/CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security controls - Familiarity with SOC 2, ISO 27001, Cyber Essentials, and NIST frameworks - Experience with core security More ❯
Gosport, Hampshire, South East, United Kingdom Hybrid / WFH Options
Walsh Employment
analysis, and improvement of cybersecurity postures. Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment Strong hands-on expertise with SIEM tools such as Microsoft Sentinel and Splunk Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ) Skilled in incident response and threat intelligence analysis Familiarity with Mitre Att&ck framework and … will be at the forefront of digital defenceleading incident response, improving detection mechanisms, and mentoring junior analysts. Your responsibilities will include: Analysing security incidents using advanced SIEM platforms ( Microsoft Sentinel , Splunk ) Leading incident response and driving improvements in detection and containment strategies Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck Collaborating with colleagues to enhance the More ❯
Aberdeen, Aberdeenshire, Scotland, United Kingdom Hybrid / WFH Options
QA
Employer description: Sentinel Marine are operators of quality offshore support vessels. Overview: We are currently recruiting for a Digital Operations Apprentice! The right candidate will play a vital role providing daily support to the Technical & Operations Departments. To succeed in this role you should be enthusiastic, pro-active and possess a strong ‘can-do’ attitude. The ability to multi-task … in a fast-paced working environment and an eye for detail is a must. You must also be able to work independently and as part of a team. At Sentinel Marine, we value the mental, physical and financial health of our employees and their families and therefore offer a variety of company benefits including hybrid working and private health care. More ❯
and existing security solutions. (Privileged Access Management, Vulnerability Management, Threat Intelligence, etc) Expert in Microsoft Azure’s security tools and services. (Entra, Privileged Identity Management, conditional access, Microsoft defender, Sentinel, etc) Perform security input and guidance on tools being adopted within the organisation. Oversee and assess the outputs of the vulnerability management platforms to effectively identify and mitigate vulnerabilities Ensure … designs are up to date, including technical design documents and associated policies, procedures and processes Azure Security Management: Utilize Microsoft Azure’s security features, including Azure Security Centre, Azure Sentinel, and Active Directory, Entra ID to enhance the organization’s security posture Implement and manage identity and access management (IAM) solutions within Azure Monitor and respond to security alerts generated More ❯
XDR Team provides world-class Extended Detection and Response (XDR) services, detecting, responding, and mitigating cyber-attacks on our customers' networks in our Security Operations Centres using the Microsoft Sentinel ecosystem. The Cloud XDR Team is looking for Senior XDR Security Analysts with a passion for security to join the team to help the customers get the most out of … and response to cyber incidents. Summary Monitor global systems looking for potential threats, vulnerabilities, and indicators of compromise. Perform in-depth analysis of security alerts utilizing Microsoft XDR suite (Sentinel/Defender etc). Act as incident handlers during high-priority incidents. Provide incident remediation and prevention documentation and recommendations to customers based on defined procedures and analyst experience. Document … you Experience/Skills Minimum 3 years’ experience working in relevant SOC analyst roles. Practical knowledge and experience of security and networking toolsets such as Microsoft’s XDR suite (Sentinel/Defender). Pre-existing, in-depth knowledge of common network protocols and endpoint detection/forensics. Pre-existing, in-depth knowledge of Windows and Linux-based operating systems. Experience More ❯
Support cloud migration projects, including planning, execution, and post-migration support. Implement and manage a range of Azure services such as Azure Virtual Machines, Azure Storage, Azure Databricks, Microsoft Sentinel and more. Automate deployment and management processes using Azure Bicep (infrastructure as code) and by utilising tools such as Azure CLI and Azure DevOps. Monitor and troubleshoot cloud infrastructure to … monitoring tools such as Azure Monitor, Application Insights, or similar. Knowledge of security best practices in cloud environments. Understanding of network setup and configuration in Azure. Familiarity with Microsoft Sentinel and Microsoft Defender services. Familiarity with the Cloud Adoption Framework and the Azure Landing Zone conceptual architecture. Active Directory and Entra ID. Experience of the following would be beneficial: Microsoft More ❯
London, England, United Kingdom Hybrid / WFH Options
Skillcast Group plc
Security Audits & Compliance Coordinate SOC 2, ISO 27001, and Cyber Essentials audits - including documentation, evidence management, gap analysis, and communication with auditors. Manage Security Operations Administer and enhance Azure Sentinel SIEM - including data source configuration, detection rule creation, incident triage, and reporting. Drive Vulnerability Management Oversee vulnerability scanning, prioritisation, stakeholder coordination, and remediation tracking. Strengthen Cloud & Container Security Implement and … years of experience in cybersecurity and IT infrastructure roles Hands-on experience with Azure, Kubernetes/Docker, and CI/CD security practices Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools Strong knowledge of incident response, infrastructure hardening, and cloud security controls Familiarity with SOC 2, ISO 27001, Cyber Essentials, and NIST frameworks Experience with core security More ❯
