76 to 100 of 227 SIEM Jobs in the UK

incidents, advising on containment points and response strategies. Threat understanding - Maintain a deep understanding of evolving cybersecurity threats What you will bring: Experience with SIEM tools including Splunk, QRadar, and Sentinel. Ability to assess and impact business changes on the security posture. Possess current certifications for enterprise level security platforms. more »

Threat Intelligence which is actionable information (e.g. IOCs/TTPs), conduct threat hunting activities; leveraging and analyzing sources of information as available through the SIEM, in addition identify and investigate potential suspicious activity as well as helping organizations identify, isolate, and contain security issues. You will also support the initial … activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat. '€¢Identify opportunities for SOC and client SIEM platform configuration improvements, use case development, monitoring rule creation, tuning & optimization. '€¢Assist in architectural design to facilitate the onboarding of new information systems, including the … Analyst/Senior Cyber Security and security operations experience '€¢Microsoft MDE, MDI, Sentinel, Lighthouse and DevOps experience '€¢Experience of onboarding, tuning, reporting, and configuring SIEM solutions '€¢Experience of threat intelligence '€¢Leadership and mentoring experience and skills '€¢Understanding of low-level concepts including operating systems and networking '€¢Commercial experience in Penetration more »

Threat Intelligence which is actionable information (e.g. IOCs/TTPs), conduct threat hunting activities; leveraging and analyzing sources of information as available through the SIEM, in addition identify and investigate potential suspicious activity as well as helping organizations identify, isolate, and contain security issues. You will also support the initial … activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat. Identify opportunities for SOC and client SIEM platform configuration improvements, use case development, monitoring rule creation, tuning & optimization. Assist in architectural design to facilitate the onboarding of new information systems, including the … Analyst/Senior Cyber Security and security operations experience Microsoft MDE, MDI, Sentinel, Lighthouse and DevOps experience Experience of onboarding, tuning, reporting, and configuring SIEM solutions Experience of threat intelligence Leadership and mentoring experience and skills Understanding of low-level concepts including operating systems and networking Commercial experience in Penetration more »

Develop a comprehensive an in-depth understanding of our company's CyberSecurity offering, including but not limited to Public & Private cloud, managed firewall, SOC, SIEM, EDR, managed services and professional services. Articulate the value propositions and benefits to potential clients based on their unique business needs. Make recommendations and drive more »

their specific security challenges and needs to identify customized solutions. Essential skills and experience Strong knowledge of security technologies (across multiple domains such as SIEM, Firewall, Network IPS, DLP, Cloud Security etc), information security concepts, and familiarity with security products. A good understanding of CSOC operations and managed security solutions more »

Actively assist in evolving the toolkits to deal with potential threats. You will need to have Strong Knowledge of controls or tools such as SIEM, IDS, Antivirus, Anti-Spam Experience working within cloud and virtual environments (VMware, Hyper-V etc.) A current understanding of common web vulnerabilities. A good awareness more »

its security suite. A good understanding of Security Operations You're a fast learner, passionate about emerging security trends. Experience with security tools like SIEM, IDPS, Cloud Security, and EDR is a big plus. Experience with Zscaler, CrowdStrike, or Qualys Web3 and DeFi Experience with ISO27001 and SOC2 If you more »

VPN, TCP/IP, SSL, TLS, IDS/IPS, SSH, SNMP, NTP of security tools and technologies, including firewalls, IDS/IPS, VPN, and SIEM and scripting skills required (Python, Powershell scripting or Shell scripts preferred) to learn and adapt to new challenges problem-solving skills and excellent communication and more »

tools to enable the detection and defence from threats to the society. Essential skills: • Experience of configuring security tools including one of the following: SIEM, EDR, AV, WAF or Secure Web Gateways. • Experience of integrating tools in an enterprise environment. • Proven problem-solving, analytical skills • Great experience of Microsoft Defender more »

Experience/exposure to: Authentication, Authorization, API Security, Kubernetes best practices, Cloud Security best practices, Oath2, OIDC, JWT, Java, Kubernetes, GCP, AWS Integration with SIEM and SOC systems Ability to manage large-scale technical change and regulatory projects Ability to plan, negotiate and deploy change requests Ability to work to more »

Strong Incident Response capabilities, and any relevant certifications in this area is desirable. Previous experience in Security Monitoring, having moved into incident management. Strong SIEM experience. Ideally this person would have Vulnerability management experience. System Admin background desired but not essential, this includes experience across Unix, Windows, Cisco, Networking, etc. more »

Proven experience in deploying new projects, services and features to cloud. Ability to support SaaS platforms such as Mimecast, Varonis, Identity Management, Cisco Umbrella, SIEM and SASE services, as well as traditional on-premises servers and Windows operating systems, VMware and Storage Knowledge of device and mobility management and applied more »

Experience: Bachelor’s degree in a related technical area. One or more relevant certifications such as CISSP, CISM, GCIH, CEH, or OSCP. Proficiency in SIEM Platforms, vulnerability management tools, and incident management processes. Experience in managing security functions or SOC capabilities. Strong analytical skills to analyze security monitoring data and more »

systems, including Linux and Windows Server; Experience with network hardware, including firewalls, switches, and routers Familiarity with technologies for network monitoring, such as Solarwinds SIEM Outstanding troubleshooting abilities Strong interpersonal and communication abilities The capacity to function both alone and together, while on-site The ideal candidate will have experience more »

and business or technical complexity Deep understanding of the technical concepts required in the role including LAN, WAN, WiFi, data-centre networks, unified comms SIEM and IPS/IDS technologies and toolset used for vulnerability scanning including Nessus Cloud computing including IaaS, PaaS and SaaS. Core network skills to include more »

latest trends in cybersecurity threats, vulnerabilities, and best practices. Security Infrastructure Management Assist with the maintenance of existing security tools and technologies, such as SIEM, EDR and firewalls. Contribute to the selection of new security tools. Documentation and Reporting Create and maintain detailed documentation of security processes and procedures. Generate … with other IT teams to identify and remediate security vulnerabilities. PROFESSIONAL EXPERIENCE/QUALIFICATIONS/SKILLS Hands on experience with security tools such as SIEM/EDR and vulnerability Management. Proven experience in a security operations role. In-depth knowledge of cybersecurity principles, threat landscapes, and attack vectors. Experience working more »

Summary Senior Information Security Engineer Overview Mastercard's Vocalink Security Monitoring Engineering (SME) team is looking for a Senior Information Security Engineer to manage SIEM content, to monitor and detect cyber security threats & incidents. The ideal candidate is highly motivated, intellectually curious and analytical. The role requires a blend of … cybersecurity experience and highly developed communication skills. The purpose of this role is to enhance security monitoring tooling, detections and incident response capabilities using SIEM solutions to provide a single view of the environment. A good working knowledge of Splunk SPL is essential for this role. In this role, you … environments (including PCI, ISO27001, & ISAE3000) • Define how logs should be parsed and ingested for best practice • Engage with other teams to ensure that the SIEM is performing to standard with all necessary logging sources monitored • Analyse, design and deliver solutions to detect and stop adversaries • Propose additional Security Monitoring Use more »

implementing security by design. Other essentials: Background that covers cyber technology, security operations, incident response, architecture, and training. Experience in implementing technology such as SIEM, XDR, SOAR, etc. Background in Financial Services or other regulated industries (desired) Experience in leading through leaders and developing an internal capability Good soft skills more »

to state affiliated groups. Preventing and detecting common attacker techniques and the MITRE ATT&CK framework. Tuning and configuring cyber security tools, for example SIEM and EDR tooling. How enterprise IT networks, Active Directory and Azure AD operate. Service Management of key partners This role comes with excellent benefits such more »

Technical Lead in a team of 10 and company size of 300. Skills: Experience in tools such as Tenable. Fundamental experience in EDR, XDR, SIEM, Microsoft Defender, Sentinel, Access Management Researching and accessing vulnerabilities Stakeholder management experience Managing vulnerability management services to clients Good communication skills Salary more »

track record in leading a technical security team. Demonstrated experience in planning, developing, and implementing Azure security technologies. Familiarity with security technologies such as SIEM, firewalls, intrusion detection/prevention systems, antivirus software, authentication systems, and log management. Strong knowledge of security approaches, including risk analysis, attack vectors, cryptography, and more »

Key requirements: Vendor certification of the following would be beneficial: VMware, MS Windows System Support, Cisco knowledge - LAN/WAN, Juniper, IP Trade. McAfee SIEM Security - Security Information Events Management knowledge IT/ICT further education Vendor certification of the following would be beneficial: VMware, MS Windows System Support, Cisco more »

qualify prospective clients within the target market for Cyber and QA Systems Testing services, in the areas of Pen Testing, Red Teaming, SOC/SIEM and consultancy Build and maintain strong relationships with key decision-makers, influencers, and stakeholders at prospective client organisations. Conduct thorough needs assessments and solution presentations more »

SSR tools like Next.js • Modern web application development practices Desirable skills • Azure API Management • Virtual Network architectures • K8s security features (SecurityContext, network policies) • KQL • SIEM systems such as Sentinel • Cloudflare • A/B and MVT Testing • GitOps approach and DevOps workflow automation • BDD, ATDD, TDD • CRM, CMS and ERP Systems more »

L2 & L3 Switching concepts IP routing technologies such as OSPF & BGP Redundancy protocols such as VRRP Security principles such as Stateful Firewall, UTM, IPSec & SIEM Wireless principles such as SSIDs, Encryption & Authentication Excellent written and oral communication skills; including the ability to translate technical jargon for a non-technical audience more »