26 to 50 of 263 Sentinel Jobs

working remotely. This role is operating outside of IR35. Candidates must be based in the UK. Key Responsibilities: Monitor and investigate security alerts using SIEM tools (e.g., Splunk, Microsoft Sentinel). Conduct threat-hunting activities to proactively identify suspicious behavior and potential threats. Analyze logs and network traffic to identify anomalies. Collaborate with incident response teams to contain and remediate … What We're Looking For: Strong background in cybersecurity with hands-on SOC experience. Proficiency in threat-hunting methodologies and investigative techniques. Experience with SIEM platforms such as Splunk, Sentinel, or similar. Solid understanding of security frameworks, malware analysis, and network protocols. Strong analytical and problem-solving skills. Relevant certifications (e.g., CompTIA Security+, CEH, GCIA, or Splunk Certified) are a More ❯

s capability Building automated workflows, playbooks, and logging integrations to enhance the SOC's scalability, efficiency, and incident response readiness. Designed and fine-tune proactive and reactive detections in Sentinel - working closely with Threat Intelligence, IR, and Attack Surface Management teams. Partnered with SOC analysts to identify repetitive tasks and implement automation to boost day-to-day operational efficiency in … Continuously assessed and improved automation systems for reliability, performance, and scalability to meet evolving security and operational needs. Hands-on experience with security automation and cloud tools such as Sentinel, Splunk SOAR, Palo Alto XSOAR, and platforms like Azure, AWS, and GCP to support SOC and detection engineering efforts. More ❯

involved with ongoing IT security projects and achieving strategic objectives, particularly to reduce risk across the business. You will have a broad range of technical skills including Endpoint Central, Sentinel One, SenseOn, Greylog, Active Directory and Azure. You will also be familiar with IT/Cyber Security frameworks, such as Cyber Essentials, ISO 27001, NIST Framework. Skills & Experience Required Experience … of working in a similar IT/Information Security Analyst role. Familiarity with ISO27001 as well as Cyber Essentials. Broad range of technical skills including Endpoint Central, Sentinel One, SenseOn, Greylog, Active Directory and Azure. Role Summary Role: Information Security Analyst (Contract) Rate: £250 - £300 per day – Outside of IR35 Duration: 6 months initially Location: Highbridge, Somerset with hybrid remote More ❯

working remotely. This role is operating outside of IR35. Candidates must be based in the UK. Key Responsibilities: Monitor and investigate security alerts using SIEM tools (e.g., Splunk, Microsoft Sentinel). Conduct threat-hunting activities to proactively identify suspicious behavior and potential threats. Analyze logs and network traffic to identify anomalies. Collaborate with incident response teams to contain and remediate … What We're Looking For: Strong background in cybersecurity with hands-on SOC experience. Proficiency in threat-hunting methodologies and investigative techniques. Experience with SIEM platforms such as Splunk, Sentinel, or similar. Solid understanding of security frameworks, malware analysis, and network protocols. Strong analytical and problem-solving skills. Relevant certifications (e.g., CompTIA Security+, CEH, GCIA, or Splunk Certified) are a More ❯

working remotely. This role is operating outside of IR35. Candidates must be based in the UK. Key Responsibilities: Monitor and investigate security alerts using SIEM tools (e.g., Splunk, Microsoft Sentinel). Conduct threat-hunting activities to proactively identify suspicious behavior and potential threats. Analyze logs and network traffic to identify anomalies. Collaborate with incident response teams to contain and remediate … What We're Looking For: Strong background in cybersecurity with hands-on SOC experience. Proficiency in threat-hunting methodologies and investigative techniques. Experience with SIEM platforms such as Splunk, Sentinel, or similar. Solid understanding of security frameworks, malware analysis, and network protocols. Strong analytical and problem-solving skills. Relevant certifications (e.g., CompTIA Security+, CEH, GCIA, or Splunk Certified) are a More ❯

working remotely. This role is operating outside of IR35. Candidates must be based in the UK. Key Responsibilities: Monitor and investigate security alerts using SIEM tools (e.g., Splunk, Microsoft Sentinel). Conduct threat-hunting activities to proactively identify suspicious behavior and potential threats. Analyze logs and network traffic to identify anomalies. Collaborate with incident response teams to contain and remediate … What We're Looking For: Strong background in cybersecurity with hands-on SOC experience. Proficiency in threat-hunting methodologies and investigative techniques. Experience with SIEM platforms such as Splunk, Sentinel, or similar. Solid understanding of security frameworks, malware analysis, and network protocols. Strong analytical and problem-solving skills. Relevant certifications (e.g., CompTIA Security+, CEH, GCIA, or Splunk Certified) are a More ❯

working remotely. This role is operating outside of IR35. Candidates must be based in the UK. Key Responsibilities: Monitor and investigate security alerts using SIEM tools (e.g., Splunk, Microsoft Sentinel). Conduct threat-hunting activities to proactively identify suspicious behavior and potential threats. Analyze logs and network traffic to identify anomalies. Collaborate with incident response teams to contain and remediate … What We're Looking For: Strong background in cybersecurity with hands-on SOC experience. Proficiency in threat-hunting methodologies and investigative techniques. Experience with SIEM platforms such as Splunk, Sentinel, or similar. Solid understanding of security frameworks, malware analysis, and network protocols. Strong analytical and problem-solving skills. Relevant certifications (e.g., CompTIA Security+, CEH, GCIA, or Splunk Certified) are a More ❯

working remotely. This role is operating outside of IR35. Candidates must be based in the UK. Key Responsibilities: Monitor and investigate security alerts using SIEM tools (e.g., Splunk, Microsoft Sentinel). Conduct threat-hunting activities to proactively identify suspicious behavior and potential threats. Analyze logs and network traffic to identify anomalies. Collaborate with incident response teams to contain and remediate … What We're Looking For: Strong background in cybersecurity with hands-on SOC experience. Proficiency in threat-hunting methodologies and investigative techniques. Experience with SIEM platforms such as Splunk, Sentinel, or similar. Solid understanding of security frameworks, malware analysis, and network protocols. Strong analytical and problem-solving skills. Relevant certifications (e.g., CompTIA Security+, CEH, GCIA, or Splunk Certified) are a More ❯

working remotely. This role is operating outside of IR35. Candidates must be based in the UK. Key Responsibilities: Monitor and investigate security alerts using SIEM tools (e.g., Splunk, Microsoft Sentinel). Conduct threat-hunting activities to proactively identify suspicious behavior and potential threats. Analyze logs and network traffic to identify anomalies. Collaborate with incident response teams to contain and remediate … What We're Looking For: Strong background in cybersecurity with hands-on SOC experience. Proficiency in threat-hunting methodologies and investigative techniques. Experience with SIEM platforms such as Splunk, Sentinel, or similar. Solid understanding of security frameworks, malware analysis, and network protocols. Strong analytical and problem-solving skills. Relevant certifications (e.g., CompTIA Security+, CEH, GCIA, or Splunk Certified) are a More ❯

operations; ensure effective monitoring and alerting Deliver and embed cyber incident response processes and playbooks Work closely with third-party MSSP and internal security functions Leverage Microsoft Defender + Sentinel stack Bridge data feeds (e.g., SQL) into Sentinel Align SOC operations with GRC, Architecture, and Security Engineering Drive outcomes across BAU and transformation activities Essential Experience & Skills Strong background as … a SOC Manager or Lead in mid-large organisations Hands-on experience with Microsoft Defender & Sentinel Proven track record delivering cyber incident response plans and playbooks Experience working with or managing third-party security providers Comfortable in tactical, operational delivery roles (not just strategic) Excellent communication skills, stakeholder engagement, and emotional intelligence Able to work autonomously and embed change in More ❯

enterprise clients, ensuring they get real value from their Microsoft investment and help them solve complex problems. The role requires deep technical expertise across the Microsoft Defender suite, Microsoft Sentinel, and Microsoft Entra, with a focus on level 400-500 technical depth. Key Responsibilities: Communicate Microsoft's strategic direction in cybersecurity, including its rationale, competitive advantages, and future roadmap aligned … with Orange Cyberdefenses advisory and managed service offerings Represent Microsoft's security narrative to customers, partners, and internal stakeholders. Provide deep technical guidance on Microsoft Defender, Sentinel, and Entra. Act as a trusted advisor in pre-sales engagements, supporting clients in understanding and adopting Orange Cyberdefense Microsoft security solutions. Translate complex technical concepts into business value for C-level and … a senior technical role focused on Microsoft security technologies. Experience solutioning Microsoft services and solutions, tailored to meet client needs. Deep technical knowledge (Level 400-500) of Microsoft Defender, Sentinel, and Entra. Strong understanding of Microsoft's security strategy and competitive landscape. Experience engaging with enterprise customers in a pre-sales or technical advisory capacity. Excellent communication and public speaking More ❯

enterprise clients, ensuring they get real value from their Microsoft investment and help them solve complex problems. The role requires deep technical expertise across the Microsoft Defender suite, Microsoft Sentinel, and Microsoft Entra, with a focus on level 400-500 technical depth. Key Responsibilities: Communicate Microsoft's strategic direction in cybersecurity, including its rationale, competitive advantages, and future roadmap aligned … with Orange Cyberdefenses advisory and managed service offerings Represent Microsoft's security narrative to customers, partners, and internal stakeholders. Provide deep technical guidance on Microsoft Defender, Sentinel, and Entra. Act as a trusted advisor in pre-sales engagements, supporting clients in understanding and adopting Orange Cyberdefense Microsoft security solutions. Translate complex technical concepts into business value for C-level and … a senior technical role focused on Microsoft security technologies. Experience solutioning Microsoft services and solutions, tailored to meet client needs. Deep technical knowledge (Level 400-500) of Microsoft Defender, Sentinel, and Entra. Strong understanding of Microsoft's security strategy and competitive landscape. Experience engaging with enterprise customers in a pre-sales or technical advisory capacity. Excellent communication and public speaking More ❯

Security Operations Centre (SOC) staffed by dedicated professionals. We're seeking a skilled Cyber Security Engineer to join our clients eam. The ideal candidate will have expertise in Azure Sentinel SIEM, Microsoft Defender, and KQL scripting. This role demands a proactive individual who can monitor and protect our organization's digital assets while staying updated on the latest security threats … and trends. If you are interested in this opportunity, apply today! Responsibilities: Implement and manage Azure Sentinel SIEM for threat detection, incident response, and security monitoring. Configure and maintain Microsoft Defender for endpoint protection and threat detection. Develop and maintain KQL scripts for querying and analysing data within Azure Sentinel. Collaborate with cross-functional teams to identify security vulnerabilities and … team. Requirements: Bachelor's degree in Computer Science, Information Technology, or related field. Proven experience working as a Cyber Security Engineer or similar role. In-depth knowledge of Azure Sentinel SIEM, Microsoft Defender, and KQL scripting. One of the following certifications: AZ-500 (Microsoft Azure Security Technologies) or SC-200 (Microsoft Security Operations Analyst). Strong analytical and problem-solving More ❯

of enterprise security by designing and deploying cutting-edge architectures across both cloud and on-prem environments. Youll take a Microsoft-first approach , leveraging tools such as Microsoft Defender , Sentinel , and Azure Identity services to create integrated, scalable, and future-ready solutions. This is a rare opportunity to take the architectural lead on a flagship programme that will transform how … doing Lead the design and delivery of end-to-end security architectures across complex environments Align security strategies with business and technology roadmaps Champion Microsofts security stack, particularly Defender, Sentinel, and Identity capabilities Advise stakeholders across business and IT, shaping solutions that are secure, sustainable, and business-aligned Drive best practices across architecture governance, secure SDLC, and innovation in security … quality technical documentation, security roadmaps, and design blueprints What were looking for Proven experience delivering enterprise-grade security architectures Deep technical expertise across Microsoft security platforms, especially Defender and Sentinel Strong grasp of cloud and hybrid security models, particularly within Azure Knowledge of core security frameworks and methodologies including defence-in-depth and zero trust Excellent stakeholder engagement skills, able More ❯

to address security breaches promptly and effectively. Key Skills and Experience Required: Proven experience in cyber security, with a focus on security information and event management systems including Microsoft Sentinel In-depth knowledge of security monitoring techniques, using Microsoft Sentinel and its integration technologies and related tools to manage and analyse logs to detect and respond to threats effectively. Demonstrated More ❯

L2&L3 SOC/Cyber Security Engineer - Threat Hunter/SIEM Sentinel - £45-65K + 25% Shift - Home/Office 2x per month My client is one of the most recognisable names in IT and has some of the best professionals in the industry. They are top partners with leading Vendors, which means you will work with cutting-edge … upon hire. Key Skills required: At least 2 years' experience in a SOC environment, preferably MSSP, or in a technical security role. Experience with SIEM tools such as MS Sentinel, AlienVault, or Splunk. Cybersecurity qualifications, certifications, or degrees e.g., CySA+, CompTIA SEC+, or similar experience. Microsoft SC-200 certifications are desirable. Strong knowledge of threat actor methodologies, incident response, and … Incident Management, including Major Incidents and analysis for ongoing investigations. Conduct proactive threat hunts, RCAs, and develop detection capabilities. Monitor and investigate security alerts from SIEM platforms like MS Sentinel, AlienVault, or Splunk. Respond to security alerts, incidents, and requests, managing threats and vulnerabilities effectively. Document cases and generate reports with insightful recommendations. Assist in recovery processes post-incident. Provide More ❯

L2&L3 SOC/Cyber Security Engineer - Threat Hunter/SIEM Sentinel - £45-65K + 25% Shift - Home/Office 2x per month My client is one of the most recognisable names in IT and has some of the best professionals in the industry. They are top partners with leading Vendors, which means you will work with cutting-edge … upon hire. Key Skills required: At least 2 years' experience in a SOC environment, preferably MSSP, or in a technical security role. Experience with SIEM tools such as MS Sentinel, AlienVault, or Splunk. Cybersecurity qualifications, certifications, or degrees e.g., CySA+, CompTIA SEC+, or similar experience. Microsoft SC-200 certifications are desirable. Strong knowledge of threat actor methodologies, incident response, and … Incident Management, including Major Incidents and analysis for ongoing investigations. Conduct proactive threat hunts, RCAs, and develop detection capabilities. Monitor and investigate security alerts from SIEM platforms like MS Sentinel, AlienVault, or Splunk. Respond to security alerts, incidents, and requests, managing threats and vulnerabilities effectively. Document cases and generate reports with insightful recommendations. Assist in recovery processes post-incident. Provide More ❯

a fully Cloud based technical environment Security: Enforcing and designing Security and access management policies IAM management Azure AD, MFA, SSO, PAM etc. Threat monitoring and detection – Microsoft Defender, Sentinel, SIEM etc. Adhering to security frameworks – ISO27001, NIST, GDPR Conducting risk assessments Core skills required: Strong Azure and Microsoft 365 experience (Exhcnage, SharePoint, Teams, Azure Infrastructure, Defender, Sentinel) Strong Security More ❯

a fully Cloud based technical environment Security: Enforcing and designing Security and access management policies IAM management Azure AD, MFA, SSO, PAM etc. Threat monitoring and detection – Microsoft Defender, Sentinel, SIEM etc. Adhering to security frameworks – ISO27001, NIST, GDPR Conducting risk assessments Core skills required: Strong Azure and Microsoft 365 experience (Exhcnage, SharePoint, Teams, Azure Infrastructure, Defender, Sentinel) Strong Security More ❯

a team focused on protecting enterprise assets against evolving cyber threats. Key Responsibilities: Lead investigations and response efforts for high-severity security incidents. Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite. Develop and fine-tune analytic rules, workbooks, and automation playbooks in Sentinel. Perform deep-dive analysis of malware, phishing, and lateral movement techniques. Collaborate with engineering …/Must have: Over 5 years of experience in cybersecurity, including a minimum of 2 years in a Level 3 SOC or equivalent role. Expert-level proficiency with Microsoft Sentinel, including KQL, custom analytic rules, and automation. Hands-on experience with Microsoft Defender for Endpoint, Identity, and Office 365. Strong knowledge of the MITRE ATT&CK framework, threat intelligence, and More ❯

please get in touch with at UKI.recruitment@tcs.com or call TCS London Office number 02031552100 with the subject line: “Application Support Request”. Role: SOC L3 Security Analyst (Microsoft Sentinel & Defender Specialist) Job Type: Permanent Location: Manchester, UK, Hybrid Number of hours: 40 hours per week – full time Are you looking to take on a role in Security Analysis? We … and security monitoring, while also optimizing license consumption and SIEM integration efforts. Key responsibilities: Investigate and analyze complex security incidents escalated from L1/L2 SOC analysts. Leverage Microsoft Sentinel (SIEM) and Microsoft Defender XDR to conduct in-depth incident response. Correlate multi-source telemetry (network, endpoint, identity, cloud) to identify and contain threats. Perform proactive threat hunting using KQL … tune custom analytics rules, workbooks, and hunting queries. Apply the MITRE ATT&CK framework to build coverage and improve threat visibility. Onboard and integrate new data sources into Microsoft Sentinel, ensuring accurate log ingestion and parsing. Build and manage data connectors, custom log parsers, and normalization schemas. Collaborate with cloud and infrastructure teams to onboard telemetry from endpoints, identity systems More ❯

have experience with writing infrastructure as code using Terraform. You will have experience building and working with public cloud infrastructure. You will have Terraform Enterprise, Private Module Registry, Terraform Sentinel etc. Deep knowledge of web protocols, multiple operating systems, hypervisors and distributed systems architecture AWS, Azure, or GCP platforms and services.Deep knowledge of Azure Cloud Adoption Framework(CAF) or similar … frameworks. Cloud Security (e.g. Azure Policy, Azure Defender for Cloud, Azure Sentinel).Experience with cloud security Hands-on experience with CI/CD toolchains such as Maven/Jenkins and Experience with general programming languages Java/python, etc. If this role sounds of interest drop me a CV so that we can speak in more detail. More ❯

Mechanical Design Engineer with Active Secret Clearance will support senior mechanical engineers in the design of military avionics including inertial navigation and measurement systems and mission computers for the Sentinel program. Location: Woodland Hills, CA 91367 (Onsite) Position: Mechanical Design Engineer with Active Secret Clearance Pay Rate: $42.17/hr. - $53.39/hr. on W2 (DOE) Duration: 6 months or More ❯

flexible team, you will play a key role in helping to protect front-line policing from cyber-attacks. Configuration and maintenance of the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Development, maintenance, and deployment of detection rules and other SIEM content. Creation of custom solutions using both low-code and traditional development approaches. Providing support to forces for the … configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creation and ongoing maintenance of technical design documentation Working with the PDS design team and wider NMC operational teams to create, test and implement new tools and technologies. Leveraging Microsoft support for technical assistance and information More ❯

flexible team, you will play a key role in helping to protect front-line policing from cyber-attacks. Configuration and maintenance of the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Development, maintenance, and deployment of detection rules and other SIEM content. Creation of custom solutions using both low-code and traditional development approaches. Providing support to forces for the … configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creation and ongoing maintenance of technical design documentation Working with the PDS design team and wider NMC operational teams to create, test and implement new tools and technologies. Leveraging Microsoft support for technical assistance and information More ❯