76 to 100 of 632 Sentinel Jobs

have proven experience working in a busy SOC with a tech-first approach and be able to lead from the front. From a technical perspective we are using Microsoft Sentinel, Splunk and MISP Threat sharing so any knowledge of these technologies would be a substantial benefit. This role is based out of our head office in Farnborough OR Hemel Hempstead … Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What you will bring : Experience in Security Operations Centre. Demonstrable experience of Managing Microsoft Sentinel or Splunk implementations. Knowledge and experience with Mitre Att&ck Framework. Solid grasp of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise AntiVirus products. Deep … SMTP, HTTP, FTP, POP, LDAP. It would be great if you had: ? Understanding of static malware analysis and reverse engineering. CREST Practitioner Intrusion Analyst. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar appreciated. If you are interested in this role but not sure if your skills and experience are exactly what were looking for, please More ❯

security operations. Knowledge of Security best practices and regulatory compliance frameworks (e.g., NIST, ISO27001, PCI-DSS etc) Knowledge of the following security products are ideal: ? SEIM (Rapid7 IDR, MS Sentinel, SPLUNK) ? SOAR (Rapid7 ICON, MS Sentinel) ? Endpoint Detection and Response (Microsoft Defender) ? Email Security (Proofpoint, Mimecast) ? Vulnerability Management (Rapid7 IVM, Nessus, Tenable) Proficiency with scripting and automation (e.g., Powershell, Python More ❯

investigating threats, guiding incident flow, analysing threat data, and playing a key role in improving detection and response processes. You’ll be working across platforms like: Elastic SIEM Microsoft Sentinel Defender for Endpoint CrowdStrike Falcon MISP (Malware Information Sharing Platform) As the team scales, this role offers both strategic involvement and technical depth. There’s also the option to step … what happened, but why, how, and how to prevent it Comfortable being an escalation point for technical and analytical issues Working knowledge of key SIEM and EDR platforms (Elastic, Sentinel, CrowdStrike, etc.) Natural curiosity and willingness to get hands-on with data and investigations Broad exposure across cyber domains beyond pure SOC is highly valued Why This Role? Be a More ❯

of the business forward - ensuring that security controls, policies and technologies effectively protect the organisation's assets, infrastructure and data. They are using the MS Security Stack including Defender, Sentinel and Entra ID, and are very ahead-of-the-curve in their respective sector. The ideal candidate will have come from a hands-on Engineering background, who loves being technically … Support M&A security assessments and maintain compliance. Requirements: Experience in a Cyber Security leadership-level role Proven experience with the MS Security Stack including Defender (Endpoint, Identity, Cloud), Sentinel (SIEM), Entra ID Security Features, and Purview Knowledge of Azure Security controls, including Azure Firewall, Key Vault, Conditional Access, and Azure Network Security Familiarity with standards such as ISO More ❯

of the business forward - ensuring that security controls, policies and technologies effectively protect the organisation's assets, infrastructure and data. They are using the MS Security Stack including Defender, Sentinel and Entra ID, and are very ahead-of-the-curve in their respective sector. The ideal candidate will have come from a hands-on Engineering background, who loves being technically … Support M&A security assessments and maintain compliance. Requirements: Experience in a Cyber Security leadership-level role Proven experience with the MS Security Stack including Defender (Endpoint, Identity, Cloud), Sentinel (SIEM), Entra ID Security Features, and Purview Knowledge of Azure Security controls, including Azure Firewall, Key Vault, Conditional Access, and Azure Network Security Familiarity with standards such as ISO More ❯

posture, identifying and assessing any cyber security risks, in accordance with laws and regulations. You will be responsible for leveraging and optimising a number of tools including, MS Defender, Sentinel, Azure and the external SOC partner to enhance cyber resilience, conduct threat analysis, and proactive risk assessments to design effective controls.You will be leading the Cyber Security operations function, by … establishing responsibilities and ensure an end-to-end approach to cyber resilience Is embedded in other functions. What you'll need to succeed Extensive understanding of Azure, MS Defender, Sentinel, and Cyber Assessment Framework Experience leading a team of security and infrastructure engineers Extensive experience of creating cyber security roadmaps Experience of building and implementing strong operational processes Excellent communication More ❯

of the business forward - ensuring that security controls, policies and technologies effectively protect the organisation's assets, infrastructure and data. They are using the MS Security Stack including Defender, Sentinel and Entra ID, and are very ahead-of-the-curve in their respective sector. The ideal candidate will have come from a hands-on Engineering background, who loves being technically … Support M&A security assessments and maintain compliance. Requirements: Experience in a Cyber Security leadership-level role. Proven experience with the MS Security Stack including Defender (Endpoint, Identity, Cloud), Sentinel (SIEM), Entra ID Security Features, and Purview. Knowledge of Azure Security controls, including Azure Firewall, Key Vault, Conditional Access, and Azure Network Security. Familiarity with standards such as ISO 27001. More ❯

posture, identifying and assessing any cyber security risks, in accordance with laws and regulations. You will be responsible for leveraging and optimising a number of tools including, MS Defender, Sentinel, Azure and the external SOC partner to enhance cyber resilience, conduct threat analysis, and proactive risk assessments to design effective controls. You will be leading the Cyber Security operations function … establishing responsibilities and ensure an end-to-end approach to cyber resilience Is embedded in other functions. What you'll need to succeed Extensive understanding of Azure, MS Defender, Sentinel, and Cyber Assessment Framework Experience leading a team of security and infrastructure engineers Extensive experience of creating cyber security roadmaps Experience of building and implementing strong operational processes Excellent communication More ❯

Salary: £60K - £62.5K + exceptional Employee Benefits including 28% Employer Pension, (+ on-call payment), great work/life balance Key Skills: Vulnerability Management tools, Azure Security Centre, Defender, Sentinel and a broad Infrastructure Engineer background Summary: This role joins a high performing, dedicated, hands-on Cyber Security Team responsible for providing a critical Security/Cyber Engineering function. The … essential skills and experience: Ability to work 2 days per week in Brighton 2+ years strong hands-on technical experience with Microsoft Security and infrastructure services including: Defender suite, Sentinel, Azure Security Center, Azure NSGs 5+years' experience in technical infrastructure support, (Network or Systems Engineer level), with as much of the following experience as possible: IaaS, PaaS, Virtual Machines (VMs More ❯

Salary: 60K - 62.5K + exceptional Employee Benefits including 28% Employer Pension, (+ on-call payment), great work/life balance Key Skills: Vulnerability Management tools, Azure Security Centre, Defender, Sentinel and a broad Infrastructure Engineer background Summary: This role joins a high performing, dedicated, hands-on Cyber Security Team responsible for providing a critical Security/Cyber Engineering function. The … essential skills and experience: Ability to work 2 days per week in Brighton 2+ years strong hands-on technical experience with Microsoft Security and infrastructure services including: Defender suite, Sentinel, Azure Security Center, Azure NSGs 5+years' experience in technical infrastructure support, (Network or Systems Engineer level), with as much of the following experience as possible: IaaS, PaaS, Virtual Machines (VMs More ❯

within a development team. Experience with Cloud platforms such as AWS, GCP, or Azure. Knowledge of Infrastructure as Code (IAC) security best practices. Proficiency in Terraform. Familiarity with Azure Sentinel and general SIEM/SOAR solutions. Competitive salary of £95,000. 5% bonus. Pension plan. Responsibilities: Assist, support, and contribute to the development of standardized, automated build processes. Design, code … within a development team. Experience with Cloud platforms such as AWS, GCP, or Azure. Knowledge of Infrastructure as Code (IAC) security best practices. Proficiency in Terraform. Familiarity with Azure Sentinel and general SIEM/SOAR solutions. #J-18808-Ljbffr More ❯

to incidents Collaborate effectively with cross-functional teams across different time zones. Experience required Primary requirements Significant (4+ years) experience of design/administering/managing SIEM (Splunk/Sentinel) in a large, distributed environment Strong experience with Microsoft Sentinel administration Experience with Splunk Enterprise Security administration Significant experience of the creation of rules and use cases to support business More ❯

Kingdom 1 week ago London, England, United Kingdom 1 week ago London, England, United Kingdom 2 weeks ago Edinburgh, Scotland, United Kingdom 6 days ago Principal Security Analyst - Microsoft Sentinel/Chronicle London, England, United Kingdom 2 days ago Principal Security Analyst - Microsoft Sentinel/Chronicle Senior Microsoft Security Consultant - Purview Leeds, England, United Kingdom 2 months ago London, England More ❯

cyber events. Help improve SOC workflows, including automation and threat detection use cases. Coach junior analysts and contribute to continuous improvement across the team. Hands-on experience with Microsoft Sentinel (critical to this role). Experience in security operations, including SIEM tools (e.g., Sentinel, Splunk). Solid understanding of cloud environments (Azure and/or AWS). Knowledge of network More ❯

What you’ll be doing: Leading and supporting cyber incident management across the business, ensuring timely and effective response. Managing and maintaining security tooling and systems, including Microsoft Defender, Sentinel, and the wider MS security stack. Supporting and promoting cyber awareness initiatives, helping users understand threats and best practices. Reviewing and approving security requests related to new software and hardware. … Proven experience in incident management and cyber incident response . Strong all-round cyber knowledge, ideally in an internal IT or hybrid enterprise setting. Familiarity with Microsoft 365 , Defender , Sentinel , and broader Microsoft security tooling. Experience working alongside an external SOC or MSSP provider. A proactive, collaborative approach – someone who’s comfortable fielding queries and helping others improve their security More ❯

a diverse, talented SOC team. What’s in it for you? Take a leadership role in a mission-critical cyber defence function. Work with industry-leading tools including Microsoft Sentinel and Splunk. Develop your career while supporting a nationally significant client in a secure environment. Responsibilities: Lead shift-based SOC operations and provide line management to analysts. Triage, monitor, and … SOC process improvement, skills development, and knowledge sharing. Skills/Must Have: Strong experience working in a SOC environment. Proven team leadership or people management experience. Expertise in Microsoft Sentinel and Splunk. Familiarity with the MITRE ATT&CK framework. Sound understanding of network protocols (TCP/IP, HTTP, SMTP, etc.), firewalls, VPNs, AV products, and enterprise infrastructure. It would be More ❯

Salary: £60K - £62.5K + exceptional Employee Benefits including 28% Employer Pension, (+ on-call payment), great work/life balance Key Skills: Vulnerability Management tools, Azure Security Centre, Defender, Sentinel and a broad Infrastructure Engineer background Summary: This role joins a high performing, dedicated, hands-on Cyber Security Team responsible for providing a critical Security/Cyber Engineering function. The … essential skills and experience: Ability to work 2 days per week in Brighton 2+ years strong hands-on technical experience with Microsoft Security and infrastructure services including: Defender suite, Sentinel, Azure Security Center, Azure NSGs 5+years' experience in technical infrastructure support, (Network or Systems Engineer level), with as much of the following experience as possible: IaaS, PaaS, Virtual Machines (VMs More ❯

Key Responsibilities Monitor and analyze user activity for anomalous behavior using SIEM, EDR, and UEBA tools. Develop and tune detection rules and alerts in platforms like Splunk and Microsoft Sentinel to identify insider threats and privileged account misuse. Lead or support investigations into insider threat incidents, collaborating with HR, legal, and SOC teams to ensure due process and policy alignment. … clearance or higher. 5+ years of experience in cybersecurity operations, with at least 2 years focused on insider threat detection or behavioral analytics. Proficiency with SIEM tools (e.g., Splunk, Sentinel), EDR platforms (e.g., CrowdStrike, SentinelOne), and DLP solutions. Experience with insider threat tools (e.g., Code42, DTEX, UEBA platforms). Familiarity with NIST, DFARS, CMMC, and insider threat program frameworks (e.g. More ❯

and implementing new and existing use cases by collaborating with team members and other stakeholders. The ideal candidate will have hands-on experience with cloud SIEM technology such as Sentinel and Cribl. At AXA we work smart, empowering our people to balance their time between home and the office in a way that works best for them, their team and … AXA, please don't hesitate to apply. What you'll bring: Previous experience of security engineering in a security operations team Proven experience with cloud SIEM technology such as Sentinel and Cribl Strong background in data engineering, log management, or observability platforms Experience with systems like Sentinel, Elasticsearch, Kafka, or similar Proficiency in data transformation, enrichment, and routing Solid scripting More ❯

and implementing new and existing use cases by collaborating with team members and other stakeholders. The ideal candidate will have hands-on experience with cloud SIEM technology such as Sentinel and Cribl. At AXA we work smart, empowering our people to balance their time between home and the office in a way that works best for them, their team and … AXA, please don't hesitate to apply. What you'll bring: Previous experience of security engineering in a security operations team Proven experience with cloud SIEM technology such as Sentinel and Cribl Strong background in data engineering, log management, or observability platforms Experience with systems like Sentinel, Elasticsearch, Kafka, or similar Proficiency in data transformation, enrichment, and routing Solid scripting More ❯

you need? * At least 1 year of hands-on experience in a Tier 1 SOC role, preferably within a managed services environment* Practical knowledge of Microsoft Defender XDR and Sentinel SIEM tools* Familiarity with the Microsoft Defender suite, particularly Endpoint Detection and Response* Solid understanding of Microsoft 365 cloud technologies from a security and threat landscape perspective* Hold current certifications … applying, you consent to your application being processed and submitted to the client for this vacancy only. KEY SKILLS - Cyber Security, SOC Analyst, Tier 1 Support, Microsoft Defender XDR, Sentinel, SIEM, Endpoint Detection, Microsoft 365, SC-200, SC-900, Incident Response, Threat Monitoring, IT Support More ❯

proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities … Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention … this must allow you to work in the UK unrestricted for at least the next 5 years. Profile 29 recruitment keywords: DevSecOps DevOps Azure cloud security Microsoft Defender Microsoft Sentinel WAF IPS DNS pcidss pci dss pci-dss soar loughton Debden essex London More ❯

you need? • At least 1 year of hands-on experience in a Tier 1 SOC role, preferably within a managed services environment • Practical knowledge of Microsoft Defender XDR and Sentinel SIEM tools • Familiarity with the Microsoft Defender suite, particularly Endpoint Detection and Response • Solid understanding of Microsoft 365 cloud technologies from a security and threat landscape perspective • Hold current certifications … applying, you consent to your application being processed and submitted to the client for this vacancy only. KEY SKILLS – Cyber Security, SOC Analyst, Tier 1 Support, Microsoft Defender XDR, Sentinel, SIEM, Endpoint Detection, Microsoft 365, SC-200, SC-900, Incident Response, Threat Monitoring, IT Support More ❯

you need? • At least 1 year of hands-on experience in a Tier 1 SOC role, preferably within a managed services environment • Practical knowledge of Microsoft Defender XDR and Sentinel SIEM tools • Familiarity with the Microsoft Defender suite, particularly Endpoint Detection and Response • Solid understanding of Microsoft 365 cloud technologies from a security and threat landscape perspective • Hold current certifications … applying, you consent to your application being processed and submitted to the client for this vacancy only. KEY SKILLS – Cyber Security, SOC Analyst, Tier 1 Support, Microsoft Defender XDR, Sentinel, SIEM, Endpoint Detection, Microsoft 365, SC-200, SC-900, Incident Response, Threat Monitoring, IT Support More ❯

OT estate, threats, controls; analyse network traffic using tools like Claroty; collaborate with Operations teams. Maintain Security Operations: Ensure continuous improvement in security processes; support tools such as Microsoft Sentinel, SOAR, EDR/XDR, and PAM; reduce alert fatigue and improve incident resolution times. Proactive Risk Remediation: Identify and evaluate risks; perform threat hunting; demonstrate risk reduction through metrics. Incident … or critical infrastructure environments. Experience with control systems like ICS, SCADA, CNI. Exposure to SOC operations; incident triage; risk remediation. Technical skills: familiarity with OT infrastructure, networking, KQL, Microsoft Sentinel, MFA, PAM, SIEM. Preferred Qualifications Knowledge of network security tools (NAC, firewalls, IDS/IPS). Leadership experience; degree in related fields; security certifications such as Microsoft SC-200, AZ More ❯