PowerShell, REST APIs). Proven track record in CyberArk upgrades and custom integrations. Excellent communication and stakeholder engagement skills. Desirable Experience in financial services or banking environments. Familiarity with Sentinel, Defender XDR, and SIEM integrations. CyberArk Defender & Sentry certifications. Please apply within for further details - Matt Holmes, Harvey Nash More ❯
activities. Help coach and upskill junior analysts. You should bring: 2–4 years’ experience in a SOC, CSIRT, or cyber defence environment. Solid knowledge of SIEM and EDR platforms (Sentinel, Splunk, Defender, CrowdStrike, etc.). Understanding of MITRE ATT&CK and network/cloud security principles. Strong analytical and communication skills. Bonus points for: Scripting or automation experience (KQL, PowerShell More ❯
ll bring: Proven experience in Security Operations, SOC Engineering, or Cyber Consultancy Strong scripting and automation skills (Python, PowerShell, REST APIs) Practical knowledge of SIEM and SOAR technologies (Microsoft Sentinel, XSOAR, Logic Apps, etc.) Exposure to EDR/XDR platforms and vulnerability management tools Excellent communication and documentation skills Eligibility for SC or DV clearance Why it’s worth a More ❯
incident prediction. Experience supporting MLOps: deploying ML workflows, ensuring model traceability and compliance. Use of AI assistants and workflow tools to script, manage incidents, and enforce security policies (OPA, Sentinel). Soft Skills: Influential in driving DevOps culture change. Strong communicator across development, security, and business teams. Mentorship and process rigor, open-minded to AI-driven productivity improvements. High accountability More ❯
compliance controls. Implement the enterprise cloud capability and enhance the cloud orchestration platform for automated provisioning, management and scalability of hosts, containers, applications, and cloud services (AquaSec, Wiz.io, Defender, Sentinel, Google Chronicle, Splunk, etc.) Develop APIs and Webhook for multi-directional integration of cloud orchestration platform with system management systems, DevOps Tools, and cloud platforms. Data transformation and reporting for More ❯
City of London, London, United Kingdom Hybrid / WFH Options
TurleyWay Limited
an enterprise-wide network. You will need to demonstrate and in depth knowledge of the Fortinet Product Suite alongside broad knowledge of multiple network technologies including security such as Sentinel and Microsoft Defender, experience of cloud networking tools and zero trust approach would be beneficial alongside exposure to Microsoft 365. Experience using Fortinet is essential as we are looking for More ❯
through best practices in identity, access, threat protection, and compliance within the Microsoft ecosystem. Key Responsibilities Design and present secure cloud solutions leveraging the Microsoft Security Stack, including Defender, Sentinel, Entra ID, Purview, and Intune. Collaborate with sales and technical teams to translate business needs into scalable, secure architectures. Lead client engagements, workshops, and technical assessments to shape solution strategy. More ❯
Leeds, West Yorkshire, England, United Kingdom Hybrid / WFH Options
Context Recruitment Limited
through best practices in identity, access, threat protection, and compliance within the Microsoft ecosystem. Key Responsibilities Design and present secure cloud solutions leveraging the Microsoft Security Stack, including Defender, Sentinel, Entra ID, Purview, and Intune. Collaborate with sales and technical teams to translate business needs into scalable, secure architectures. Lead client engagements, workshops, and technical assessments to shape solution strategy. More ❯
Salford, England, United Kingdom Hybrid / WFH Options
Premier Group
Ability to interpret logs and alerts to assess threat response Clear communicator with the ability to explain risk to non-technical teams Desirable Skills Familiarity with SIEM tools (e.g. Sentinel, Splunk) Scripting/automation knowledge (e.g. PowerShell, Python) Understanding of data protection and privacy frameworks (e.g. UK GDPR) In return the successful candidate and expect hybrid working 2 days per More ❯
coaching, mentoring, and line management. What We’re Looking For 2-3 years’ experience investigating and responding to cyber incidents. Hands-on use of SIEM tools (Splunk preferred, Microsoft Sentinel or equivalent acceptable). Experience with EDR solutions to support incident investigation. Understanding of threat actor tools, techniques, and procedures (TTPs). Strong analytical and problem-solving skills. Excellent written More ❯
manchester, north west england, united kingdom Hybrid / WFH Options
Premier Group
Ability to interpret logs and alerts to assess threat response Clear communicator with the ability to explain risk to non-technical teams Desirable Skills Familiarity with SIEM tools (e.g. Sentinel, Splunk) Scripting/automation knowledge (e.g. PowerShell, Python) Understanding of data protection and privacy frameworks (e.g. UK GDPR) In return the successful candidate and expect hybrid working 2 days per More ❯
Bristol, Avon, South West, United Kingdom Hybrid / WFH Options
ITS Recruitment
Center Azure Security Center, SIEM, Defender ATP, M365 Security, Data Compliance and Governance, PIM & PAM Zscaler (ZTNA), Darktrace, Firewalls, NAC, Network segregation, remote access & wireless technologies Windows & KQL (MS Sentinel) scripting Cloud computing (IaaS, PaaS, SaaS) Authentication (Windows, AAD, Managed Identity) Microsoft 365 security and compliance You Passionate about cyber security, thriving on solving problems and improving processes; proactive in More ❯
environment (5 years minimum) , dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft E5 Security stack - Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments - Azure preferably. Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering and Automation. More ❯
newport, wales, united kingdom Hybrid / WFH Options
ITS Recruitment
Center Azure Security Center, SIEM, Defender ATP, M365 Security, Data Compliance and Governance, PIM & PAM Zscaler (ZTNA), Darktrace, Firewalls, NAC, Network segregation, remote access & wireless technologies Windows & KQL (MS Sentinel) scripting Cloud computing (IaaS, PaaS, SaaS) Authentication (Windows, AAD, Managed Identity) Microsoft 365 security and compliance You Passionate about cyber security, thriving on solving problems and improving processes; proactive in More ❯
environment (5 years minimum) , dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft E5 Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure preferably. Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering and Automation. More ❯
environment (5 years minimum) , dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft E5 Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure preferably. Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering and Automation. More ❯
bristol, south west england, united kingdom Hybrid / WFH Options
ITS Recruitment
Center Azure Security Center, SIEM, Defender ATP, M365 Security, Data Compliance and Governance, PIM & PAM Zscaler (ZTNA), Darktrace, Firewalls, NAC, Network segregation, remote access & wireless technologies Windows & KQL (MS Sentinel) scripting Cloud computing (IaaS, PaaS, SaaS) Authentication (Windows, AAD, Managed Identity) Microsoft 365 security and compliance You Passionate about cyber security, thriving on solving problems and improving processes; proactive in More ❯
bath, south west england, united kingdom Hybrid / WFH Options
ITS Recruitment
Center Azure Security Center, SIEM, Defender ATP, M365 Security, Data Compliance and Governance, PIM & PAM Zscaler (ZTNA), Darktrace, Firewalls, NAC, Network segregation, remote access & wireless technologies Windows & KQL (MS Sentinel) scripting Cloud computing (IaaS, PaaS, SaaS) Authentication (Windows, AAD, Managed Identity) Microsoft 365 security and compliance You Passionate about cyber security, thriving on solving problems and improving processes; proactive in More ❯
bradley stoke, south west england, united kingdom Hybrid / WFH Options
ITS Recruitment
Center Azure Security Center, SIEM, Defender ATP, M365 Security, Data Compliance and Governance, PIM & PAM Zscaler (ZTNA), Darktrace, Firewalls, NAC, Network segregation, remote access & wireless technologies Windows & KQL (MS Sentinel) scripting Cloud computing (IaaS, PaaS, SaaS) Authentication (Windows, AAD, Managed Identity) Microsoft 365 security and compliance You Passionate about cyber security, thriving on solving problems and improving processes; proactive in More ❯
environment (5 years minimum) , dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft E5 Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure preferably. Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering and Automation. More ❯
technology landscape. Key Responsibilities: Design and deliver Microsoft 365 and Azure security solutions in line with best practices and industry standards. Implement and configure tools such as Microsoft Defender, Sentinel (SIEM/XDR), Entra, and Purview. Support internal and client environments post-deployment through troubleshooting, optimisation, and user training. Contribute to pre-sales engagements, including solution design, scoping, and client More ❯
environment (5 years minimum) , dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft E5 Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure preferably. Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering and Automation. More ❯
london (city of london), south east england, united kingdom
Lawrence Harvey
environment (5 years minimum) , dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft E5 Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure preferably. Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering and Automation. More ❯
technology landscape. Key Responsibilities: Design and deliver Microsoft 365 and Azure security solutions in line with best practices and industry standards. Implement and configure tools such as Microsoft Defender, Sentinel (SIEM/XDR), Entra, and Purview. Support internal and client environments post-deployment through troubleshooting, optimisation, and user training. Contribute to pre-sales engagements, including solution design, scoping, and client More ❯
years’ experience within a similar support based role, ideally in the managed services space across the Microsoft technology stack Experience in Entra ID, Intune, and Azure. Knowledge of Sentinel, and Microsoft Defender. Experience working within a SOC environment would be advantageous. Demonstrable experience in forming collaborative working relationships with customers and other internal stakeholders. Confidence in effectively communicating technical incidents More ❯
