51 to 75 of 86 SIEM Jobs in London

Dell, Cisco, Pure, Palo Alto) Microsoft Exchange, Microsoft SQL Networking Cisco, Palo Alto, Big IP (FW, SDWAN, VLAN’s, Routing, Switching) Security (Splunk, APM, SIEM) Login/Monitoring (Splunk, Elastic, Prometheus, PRTG, Netbox, IPAM, CMDB) Mattermost, Atlassian The role As a Site Reliability Engineer you will work on projects relating more »

and engineering experience Experience of an enterprise Linux, preferably Red Hat Enterprise Linux, CentOS or Oracle Linux. Recent involvement in implementing IDAM, PAM or SIEM tooling. Experience with monitoring and reporting software – Prometheus, Nagios or similar. Solid scripting experience with one of the following: Python, Shell, Bash or Ruby Familiarity more »

Senior Security Operations Analyst London (Hybrid) Responsibilities: Overseeing the security of the technical infrastructure provided by third-party suppliers, addressing any identified security risks to the organization. Managing the remediation of operational risks to their conclusion and taking ownership of more »

for building the security architecture and systems within the SOC, as well as maintaining and improving the security monitoring and analysis tools. As a SIEM subject matter expert, you will also be responsible for the maintaining and recommending new tools, as well as updating the systems. You will be a … responsible for the daily maintenance and support of applications and related hardware associated with our solutions for intrusion detection (IDS), Security Incident Event Monitoring (SIEM), and packet capture (PCAP). You will be expected to deliver upgrades and manage configuration of technology that underpins cyber operations, this is will include … be a subject matter expert for these tools, providing guidance to our Security Operations Centre. Main Duties Responding to requests from SOC to tune SIEM, IDS and associated tooling in an effective and timely manner. Working with threat management teams and liaising directly with Network and Data Centre teams to more »

practices. Conduct regular security assessments, audits, and penetration testing to identify and mitigate vulnerabilities. Implement and manage cloud security tools and services, such as SIEM, IAM, and DLP. Collaborate with cross-functional teams to ensure the integration of security throughout the IT lifecycle. Investigate and respond to security incidents, and … compliance standards, such as NIST, ISO 27001, and SOC 2. Familiarity with security testing methodologies, such as penetration testing and vulnerability assessments. Experience with SIEM tools, such as Splunk, ELK stack, or Azure Sentinel. Understanding of secure coding practices and experience with static code analysis tools. Incident response and forensics more »

to the Security Operations Manager, your key tasks may involve: Managing vulnerability scanning tools - SAST, SCA, IaC, Containers & DAST for all Egress products Investigate SIEM alerts, working with the Engineering and Operations teams to resolve issues Managing vetting applications, supplier onboarding and security awareness programmes Plan and manage 3rd party … Reviewing vulnerabilities found in code analysis tools and liaising with development/engineering to prioritise the resolution SOC investigation of security events in a SIEM (e.g. Azure Sentinel, Splunk etc) A basic knowledge and desire to learn python, to automate day to day tasks. You should have good prioritisation and more »

external and internal threats is a top priority which makes this role very challenging.Principal ResponsibilitiesResponsible for the daily operation of enterprise security systems including SIEM, SOAR, Elastic, ticketing, alerting, and messaging systems.Manage junior level analysts in the daily operation of enterprise security systems including shift rotations and hand-offs.Work closely … procedures, and consume available threat intelligence.Utilize detective controls to develop rules and alerts to drive security monitoring.Perform hunt activities across our log aggregation and SIEM platforms.Recommend, test, tune and implement SIEM and other tooling correlation rules.Identify false-positives from alerting, and perform incident response, triage, incident analysis and remediation tasks.Recommend … and develop new SIEM use cases/rules with engineering teams.Maintain documentation for the SOC function, including training program for new Security Operations personnel.Participate in Information Security Incident Response activities for the Firm’s environment.Enforce security policies and procedures by administering and monitoring appropriate systems, events and answering client queries.Perform more »

robust security controls including IAM, network security, data protection, and security monitoring. - Implement and manage cloud security tools and services like Azure Security Center, SIEM solutions (Splunk, ELK, Azure Sentinel), and conduct regular security assessments and penetration testing. - Develop and enforce cloud security policies, procedures, such as NIST, ISO … understanding of cloud security controls, tools (Azure Security Center), and services. - Familiarity with security testing methodologies like penetration testing and vulnerability assessments. - Experience with SIEM tools (Splunk, ELK, Azure Sentinel) and incident response/forensics. - Knowledge of security frameworks (NIST, ISO 27001, SOC 2) and relevant certifications (CISSP, CCSP). more »

Lead SOC Engineer/Manager (SC Cleared) London/WFH to £70k Are you an experienced SOC Engineer with a strong knowledge of SIEM combined with leadership experience? You could be progressing you career in an impactful role at a tech company that provide cyber security products to a range … role in ensuring the security and resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform and then once it's embedded ensuring BAU and leading security monitoring, carrying out indepth investigations and actively participating in incident response. This is … About you: You're an experienced SOC Analyst with the ability to troubleshoot and resolve complex security issues You have a strong understanding of SIEM systems e.g. IBM QRadar, FortiSIEM, Splunk, Sentinel and are able to recommend the right tool for the job You have a good understanding of IT more »

Lead SOC Engineer/Manager (SC Cleared) London/WFH to £70k Are you an experienced SOC Engineer with a strong knowledge of SIEM combined with leadership experience? You could be progressing you career in an impactful role at a tech company that provide cyber security products to a range … role in ensuring the security and resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform and then once it's embedded ensuring BAU and leading security monitoring, carrying out indepth investigations and actively participating in incident response. This is … About you: You're an experienced SOC Analyst with the ability to troubleshoot and resolve complex security issues You have a strong understanding of SIEM systems e.g. IBM QRadar, FortiSIEM, Splunk, Sentinel and are able to recommend the right tool for the job You have a good understanding of IT more »

GIAC GSEC, GCIH or other comparable degree or other relevant experience. IT skills Network Security System Administration Malware Analysis Security Information and Event Management (SIEM) Incident Response Tools Professional Competencies Solid grasp of cybersecurity concepts, including threat identification, risk assessment, and incident management, coupled with practical experience in applying security more »

PowerShell is a plus). Knowledge of Anti-virus, Endpoint Detection and Response, Vulnerability Management, and Patching. Familiarity with Security Information and Event Management (SIEM). Experience with CI tools, such as Azure DevOps or GitHub Actions. Experience in pipeline builds, release packaging, and artifact management. Experience with enterprise-wide more »

industry standard accreditations and a keen interest in cyber security best practices including but not limited to firewalls, Intrusion protection systems, protected monitoring solutions (SIEM), privileged access management, SharePoint, servers, laptops, desktops, tablets, and mobile phones. Interviews to be held Tuesday 18th June2024 Main duties of the job Please refer … Prince 2 Foundation ITIL Foundation Specific Skills Essential Advanced knowledge of security technologies including firewalls, anti-malware, IDS/IPS, web filtering, email filtering, SIEM, patch management, MDM, DLP, PKI and cryptography, IAM (Identity and access management) including MFA (multi-factor authentication) Advanced knowledge of ICT infrastructure including; networking and more »

experienced individual will know what the role entails, but some key points to be considered: - Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, Penetration Testing,) directly, or through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS … such as PCI, GDPR, ISO 27001, SOC2, NIST - Skills in leveraging application monitoring tools- AWS monitoring/alert tools (CloudTrail, GuardDuty), Qualys tools and SIEM experience, to detect and respond to security events/incidents. - Industry certifications such as CISSP, CISM, CEH, ECSA, LPT, OSCP, AWS certified security, or equivalent more »

You will be joining a small team where there is opportunity for career development and progression. Skills required; + Security Information and Event Management (SIEM) tooling + Experience in a SOC environment + Basic understanding of networks and cyber security + Bonus skillsets: Juniper, general infrastructure skills i.e. virtualisations, windows more »

a training program for the team to ensure the team is capable to respond to the latest cyber threats and attack methods.Collaborate with the SIEM and Threat Intel teams to effectively contribute to increasing security posture at the organisation.Provide mentorship, guidance and positive recognition to security analysts and team leads.Improve … operations teamIn-depth knowledge of cyber threat landscape and the technics, tactics & procedures of advanced adversariesIn-depth knowledge of security technologies, tools, methodologies including SIEM, IDP/IPS, EDRExcellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholdersAbility to work more »

Cyber Security Engineer, M&A, £635(inside) 10 months +Extension – SIEM, SOAR, IdAM, Vulnerability Management, Trellix Are you a Cyber Security Engineer and ready to take on a pivotal role in a global business? Working on a M&A, the largest in its sector. You will be joining the team … maintain cyber action plan. Track and communicate progress, risks, and issues. Review, report, and sign-off Infrastructure designs. Security Tooling (EDR, Vulnerability Management, IdAM, SIEM, SOAR). Input/review into cyber security design artefacts (HLD/LLD) and provide security engineering consultancy. Implementation cyber security support activities (configuration, connectivity more »

experienced individual will know what the role entails, but some key points to be considered: - Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, Penetration Testing,) directly, or through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS … such as PCI, GDPR, ISO 27001, SOC2, NIST - Skills in leveraging application monitoring tools- AWS monitoring/alert tools (CloudTrail, GuardDuty), Qualys tools and SIEM experience, to detect and respond to security events/incidents. - Industry certifications such as CISSP, CISM, CEH, ECSA, LPT, OSCP, AWS certified security, or equivalent more »

experienced individual will know what the role entails, but some key points to be considered: - Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, Penetration Testing,) directly, or through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS … cloud knowledge - obviously with a strong security focus. - Skills in leveraging application monitoring tools- AWS monitoring/alert tools (CloudTrail, GuardDuty), Qualys tools and SIEM experience, to detect and respond to security events/incidents. - Industry certifications such as CISSP, CISM, CEH, ECSA, LPT, OSCP, AWS certified security, or equivalent more »

Lead SOC Engineer/Manager (SC Cleared) London/WFH to £70k Are you an experienced SOC Engineer with a strong knowledge of SIEM combined with leadership experience? You could be progressing you career in an impactful role at a tech company that provide cyber security products to a range … role in ensuring the security and resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform and then once it's embedded ensuring BAU and leading security monitoring, carrying out indepth investigations and actively participating in incident response. This is more »

Focussing on developing highly secure pipelines while using Terraform to deploy into the Azure Cloud. You'll also require skills in the likes of SIEM and familiar with the likes of DAST & SAST testing. Finally, strong knowledge of frameworks like ISO & NIST is required. Any experience of the OT/… though; they'll consider a more mid-level candidate with strong foundations Tech-Stack essentials are: Azure (ideally but will consider AWS/GCP), SIEM, ELK, Terraform, Security tools & Scripting Company working heavily in Green-technology, Carbon-Emissions & Sustainability Please submit your CV to be considered and Ben Griffiths from more »

k + £8k Bonus + Bens dep on Skillset Location:- Central London, 3 days office, 2 days home Environment:- Microsoft Security, Modern Workplace, SIEM, MDR/EDR, M365 Security, Sentinel, Endpoint, Defender, InTune, Windows CoPilot, SharePoint, Lan, Wan, SD-Wan, SASE, Wireless, Firewalls, Audits, Risk Assessments, HLD, Fortinet, Aruba, Meraki … experience with the Microsoft suite of services to secure the Modern Workplace (Defender, Intune & Sentinel) as well as advanced, cloud-delivered services (SOC/SIEM, MDR/EDR). In addition, our customers will require expert guidance in protecting their data, securing their IT infrastructure allowing them to work securely … o Windows Copilot o SharePoint o Defender o Intune o Entra o Teams o Sentinel * Advisor in advanced cybersecurity services including SSE, SASE, SIEM, MDR/EDR * Solutions design experience - modern workplace infrastructure - SD-WAN, SASE, LAN, WiFi & Cybersecurity * Experience in recommending and designing solutions to meet compliance * Microsoft, Cisco more »

mostly on-premises financial environment. Key Responsibilities: Lifecycle management of security, covering tools and technology platforms Supporting and managing security tools eg CyberArk , Qualys, SIEM tools Python Scripting for various purposes Automation/Build & Deployment of CI/CD pipelines (Ansible/Atlassian Stack) Implementation & integration of security technologies Use … case development and onboarding for Security Incident and Event Monitoring (SIEM) Maintain software version and patch management for security products Essential Candidate Requirements: Strong background in Financial/Banking environments Python Scripting (advanced level) Expert in Automation ( Ansible ) Strong knowledge of 2 or more of the following tools: CyberArk, Qualys … Carbon Black, ArcSight, McAfee, SIEM tools etc. Extensive general knowledge of Cyber Security Relevant Security Certification/Educational qualification (eg CISSP) CORE SKILLS: Python, CyberArk, Qualys, ArcSight, Carbon Black, McAfee, CI/CD Pipelines, PowerShell, Automation, Deployment, Integration, Ansible, SIEM, On-Prem Technology To be considered, please ensure you complete more »

security operations and incident management Good knowledge of various security operations tools, technologies and processes including security device management tools, IDs/IPS and SIEM tools You'll also be well versed in security concepts such as threat vectors, event and incident management, cyber threats and attacks etc. Experience with … security device management and SIEM solutions Experience in global delivery operations support model (e.g. 24-7/16-8) You'll also have experience in leading security operational meetings with key internal and external stakeholders and managing relationship with service providers Any Information Security and/or Information Technology industry more »

Firewalling principles generally) - virtual and physical, IDS/IDP, CASB and SASE concepts, network segmentation as well as experience in network packet analysis and SIEM log analysis (advantageous). The Perimeter Security Engineer will be an SME and act as a platform owner for perimeter security technologies and will need … virtual and physical Extensive experience in secure network perimeter design including network segmentation Packet capture and analysis experience using vendor and open-source tooling SIEM log analysis and anomaly detection experience (preferable) Coding and automation experience Python and/or Terraform (preferable) CISSP certifications or familiarity with CISSP concepts Hybrid more »