1 to 25 of 87 SIEM Jobs in London

in managing security consultants. Demonstrable consulting experience, trusted advisor, working in partnership with customers and a good relationship builder. Previous experience of working with SIEM products like Splunk, Exabeam, ArcSight, Sentinel, Cisco Sourcefire or other IPS/IDS products is essential Security transformation programmes – design and management of security solution more »

looking for a SOC Manager to help them grow their Security Operation department from the ground up.Key skills required for this role Security Operations, SIEM, SOC Important SOC, Security Operation, SIEM, SOAR Job descriptionTitle: Cyber Security Operations ManagerLocation: Either Crawley or London (Hybrid)Salary: Up to 80,000 base plus … and developing incident response playbooks/processes, Security Orchestration, Automation and Response (SOAR), running red-team exercises and tabletop crisis war games.Working knowledge of SIEM and SOAR solutions, Identity and Access Management and Data Loss Prevention technologies preferably including FortiSIEM, Q-Radar, Sentinel, Darktrace, Microsoft Defender.Experience managing suppliers for an more »

in securing cloud environments such as AWS, Azure, or GCP. Proficiency in security technologies and tools such as firewalls, intrusion detection/prevention systems, SIEM, and vulnerability management. Experience with IaC tools like Terraform, CloudFormation, or ARM templates. Deep understanding of IAM, encryption, network security, and data protection strategies in more »

on Sentinel, IAC, and SecOps. Previous experience working in start-ups or software development companies is highly desirable. Proficiency with Microsoft Sentinel and other SIEM platforms. Strong experience with Infrastructure as Code (IAC) tools such as Terraform, CloudFormation, or ARM. Hands-on experience with security tools and technologies In-depth more »

Firewalling principles generally) - virtual and physical, IDS/IDP, CASB and SASE concepts, network segmentation as well as experience in network packet analysis and SIEM log analysis (advantageous). The Perimeter Security Engineer will be an SME and act as a platform owner for perimeter security technologies and will need … virtual and physical Extensive experience in secure network perimeter design including network segmentation Packet capture and analysis experience using vendor and open-source tooling SIEM log analysis and anomaly detection experience (preferable) Coding and automation experience Python and/or Terraform (preferable) CISSP certifications or familiarity with CISSP concepts Hybrid more »

role 3+ experience with cloud vulnerabilities 2+ years of experience with endpoint protection tools 2+ years of experience with security information and event management (SIEM) tools 1+ years of experience with perimeter security Primary Functions Operate within the global Cybersecurity Team within the Information Technology department Ensure global alignment with … needed with security awareness content such as communications, posters, presentations Experience with security management/configuration cloud tools and services Experience maintaining and troubleshooting: endpoint security, SIEM systems, network security, cloud security, and perimeter security tools. Experience with Active Directory Experience with Microsoft desktop and server operating systems, RedHat Linux more »

Experience: Bachelor’s degree in a related technical area. One or more relevant certifications such as CISSP, CISM, GCIH, CEH, or OSCP. Proficiency in SIEM Platforms, vulnerability management tools, and incident management processes. Experience in managing security functions or SOC capabilities. Strong analytical skills to analyze security monitoring data and more »

with firewall configuration, Next Gen Firewalls, Load-Balancers, and intrusion detection/prevention platforms. Proficiency in Python, PowerShell scripting, and Shell scripts. Familiarity with SIEM platforms is preferred. Security certification such as CISSP, GCIA, or CISM is a plus. Our client is an equal opportunity employer who are committed to more »

and Information Technology (IT) services. Proficient in Cyber Security practices for safeguarding IT, OT, and intellectual property networks, including expertise in IPSec VPNs, Firewalls, SIEM, IPS/IDS, AV/EDR solutions, LDAP/AD, etc. Advanced knowledge in Privileged Access Management (PAM) and associated tools. High proficiency in Vulnerability more »

of staff · Minimum two years experience working within Secuirty Engineering · Understanding of Security Operations · Experience with security toolsets such as (but not limited to) SIEM, cloud security (zero trust, CASB ect), SOAR, CVM tools. Desirable skills: · Experience with using Zscaler · Experience with using CrowdStrike. · Experience with using Qualys CVM. If more »

of security principles, practices, and technologies, including encryption, authentication, and access control. Experience with security tools and technologies such as SAST, DAST, vulnerability scanners, SIEM, and WAF. Proficiency with CI/CD tools like Jenkins, GitLab, CircleCI, or similar, and infrastructure-as-code tools like Terraform, CloudFormation, or Ansible. Hands more »

Senior Security Operations Analyst London (Hybrid) Responsibilities: Overseeing the security of the technical infrastructure provided by third-party suppliers, addressing any identified security risks to the organization. Managing the remediation of operational risks to their conclusion and taking ownership of more »

years of experience with perimeter security administration (Web proxy, SMTP gateway, firewall) 3 or more years of experience with security information and event management (SIEM) tools 3 or more years of experience with endpoint protection tools 2 or more years of experience working with threat intelligence feeds and IOCs Cybersecurity more »

Lead SOC Engineer/Manager (SC Cleared) London/WFH to £70k Are you an experienced SOC Engineer with a strong knowledge of SIEM combined with leadership experience? You could be progressing you career in an impactful role at a tech company that provide cyber security products to a range … role in ensuring the security and resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform and then once it's embedded ensuring BAU and leading security monitoring, carrying out indepth investigations and actively participating in incident response. This is … About you: You're an experienced SOC Analyst with the ability to troubleshoot and resolve complex security issues You have a strong understanding of SIEM systems e.g. IBM QRadar, FortiSIEM, Splunk, Sentinel and are able to recommend the right tool for the job You have a good understanding of IT more »

for building the security architecture and systems within the SOC, as well as maintaining and improving the security monitoring and analysis tools. As a SIEM subject matter expert, you will also be responsible for the maintaining and recommending new tools, as well as updating the systems. You will be a … responsible for the daily maintenance and support of applications and related hardware associated with our solutions for intrusion detection (IDS), Security Incident Event Monitoring (SIEM), and packet capture (PCAP). You will be expected to deliver upgrades and manage configuration of technology that underpins cyber operations, this is will include … be a subject matter expert for these tools, providing guidance to our Security Operations Centre. Main Duties Responding to requests from SOC to tune SIEM, IDS and associated tooling in an effective and timely manner. Working with threat management teams and liaising directly with Network and Data Centre teams to more »

its security suite. A good understanding of Security Operations You're a fast learner, passionate about emerging security trends. Experience with security tools like SIEM, IDPS, Cloud Security, and EDR is a big plus. Experience with Zscaler, CrowdStrike, or Qualys Web3 and DeFi Experience with ISO27001 and SOC2 If you more »

latest trends in cybersecurity threats, vulnerabilities, and best practices. Security Infrastructure Management Assist with the maintenance of existing security tools and technologies, such as SIEM, EDR and firewalls. Contribute to the selection of new security tools. Documentation and Reporting Create and maintain detailed documentation of security processes and procedures. Generate … with other IT teams to identify and remediate security vulnerabilities. PROFESSIONAL EXPERIENCE/QUALIFICATIONS/SKILLS Hands on experience with security tools such as SIEM/EDR and vulnerability Management. Proven experience in a security operations role. In-depth knowledge of cybersecurity principles, threat landscapes, and attack vectors. Experience working more »

and engineering experience Experience of an enterprise Linux, preferably Red Hat Enterprise Linux, CentOS or Oracle Linux. Recent involvement in implementing IDAM, PAM or SIEM tooling. Experience with monitoring and reporting software – Prometheus, Nagios or similar. Solid scripting experience with one of the following: Python, Shell, Bash or Ruby Familiarity more »

industry standard accreditations and a keen interest in cyber security best practices including but not limited to firewalls, Intrusion protection systems, protected monitoring solutions (SIEM), privileged access management, SharePoint, servers, laptops, desktops, tablets, and mobile phones. Some duties include: This role will be required to research, implement, and integrate new more »

issues. Key Responsibilities Experience with enterprise networks including next generation firwalls, network segmentation technology (Forescout preferred) and internet connectivity. Experience with EDR, M365 security, SIEM, Vulnerability management, MITRE attack framework and Incident response. Experience of providing knowledge transfer to Service Delivery teams and developing other cybersecurity team members. Having an more »

a security operations centre (SOC) and responding to security alerts. Experience in creating response playbooks and handling escalations. Additional experience in EDR, M365 security, SIEM, Vulnerability management, MITRE attack framework, and Incident response. Strong stakeholder engagement skills and the ability to promote a secure mindset within an organisation. Previous experience more »

incident management. Possess a working knowledge of Cisco network switches, routers, firewalls and VPN, network security, administration of DLP, antivirus\antimalware, IDS/IPS, SIEM, SMTP, Email security, AD, Group Policy, DNS, DHCP, and VLANs. Experience with identity access management solutions, such as SAML\OATH Experience with HIDS and NIDS more »

expertise in securing cloud environments such as AWS, Azure, or GCP.Proficiency in security technologies and tools such as firewalls, intrusion detection/prevention systems, SIEM, and vulnerability management.Experience with IaC tools like Terraform, CloudFormation, or ARM templates.Deep understanding of IAM, encryption, network security, and data protection strategies in the cloud. more »

Information Security. In-depth knowledge of information security frameworks, standards, and best practices. (ISO27001) Hands-on experience with security technologies and tools, such as SIEM, IDS/IPS, firewalls, and encryption. Strong analytical and problem-solving skills, with the ability to make decisions under pressure. Excellent communication and interpersonal skills more »

to technical and nontechnical people.Experience engaging 3rd party security specialists to provide additional assurance.Experience and knowledge with IT Security software e.g. NGAV, EDR, XDR, SIEM etc.Be willing to deploy to clients sites at short notice to direct recovery and rebuild activity and strategy.Ability to Build successful working relationships with team more »