24 of 24 Contract SIEM Jobs in the UK

It will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best more »

It will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best more »

client a global manufacturing firm are looking to improve and enhance thier internal approach to managing 3rd party SOC alerts generated by sentinal managed SIEM and from thier existing tool base Netskope, Darktrace, SenitnalOne, Tenable. We are looking for an analyst who can be hands on to tune the technoologies more »

Developer to join our Cyber Maturity Programme. The role centres on implementing and maintaining a service-aware CMDB, integrating cloud platforms, security tools, and SIEM solutions while maturing our ServiceNow SecOps capabilities to strengthen our cybersecurity posture. Key Responsibilities: Design, implement and optimise a comprehensive service-aware CMDB architecture that more »

Developer to join our Cyber Maturity Programme. The role centres on implementing and maintaining a service-aware CMDB, integrating cloud platforms, security tools, and SIEM solutions while maturing our ServiceNow SecOps capabilities to strengthen our cybersecurity posture. Key Responsibilities: Design, implement and optimise a comprehensive service-aware CMDB architecture that more »

upon research and analysis Essential Skills/Knowledge Active Directory Authentication and Authorization protocols Network Security Controls: Firewalls, Proxy Azure/AWS/GCP SIEM Platforms Python/PowerShell SOAR Platforms Next Steps: If you are a Detection Engineer and you are looking work for a company fantastic approach to more »

security and compliance best practices in AWS, and familiarity with regulatory standards and frameworks. Experience with non-AWS security technologies such as vulnerability management, SIEM, PAM, EDR, IDPS, Firewalls, Threat Intelligence, DLP, Pen Testing, etc. AWS certifications (Preferred): AWS Certified Solutions Architect AWS Certified DevOps Engineer AWS Certified Security - Specialty more »

will have a strong background in cyber security or system engineering, with hands-on experience in managing security tools like anti-malware, content filtering, SIEM, and threat detection solutions. A deep understanding of Windows OS and general knowledge of Linux and MacOS is essential. You will collaborate with technology suppliers more »

Chronicle/Siemplify, Microsoft Sentinel, Palo Alto XSOAR, Torq, Tines). Hands-on experience with APIs and security tool integrations. Understanding of security technologies (SIEM, EDR, VM, Networking & Firewalls, IDS/IPS, Cloud, Web proxy, etc.). The role hybrid with travel to their Londonoffice2-3 days a week. Salary more »

Chronicle/Siemplify, Microsoft Sentinel, Palo Alto XSOAR, Torq, Tines). Hands-on experience with APIs and security tool integrations. Understanding of security technologies (SIEM, EDR, VM, Networking & Firewalls, IDS/IPS, Cloud, Web proxy, etc.). The role hybrid with travel to their London office 2-3 days a more »

advantageous. Catalogue Items & Record Producers: Implement catalogue items and record producers. Security Incident Response: Configure Security Incident Response applications and build custom integrations with SIEM and threat intelligence enrichment tools. Email Integration: Develop email integrations for importing suspicious emails as security incidents (Phishing use case). Vulnerability Response: Configure Vulnerability more »

Clearance required: Active Security Clearance Role purpose/summary Our client is looking for a Splunk SME to manage and optimize log management and SIEM environment. Will configure and maintain Splunk Heavy Forwarders, Windows Event Collectors, and Syslog Aggregators to ensure efficient log collection, analysis, and correlation. The focus will more »

Thresholds and predictive analysis . This role is crucial in enhancing our observability capabilities, with a focus on Splunk Observability Cloud rather than traditional SIEM products. CONTRACT DETAILS Role: Senior Splunk Product Engineer Day Rate: Competitive Location: Fully Remote Duration: 3 months (highly likely to extend) RESPONSIBILITIES ITSI Implementation and more »

Travel to at client site in Warwick. Potentially also Farnborough/Corsham. Job Description: A Splunk SME to manage and optimize log management and SIEM environment. Will configure and maintain Splunk Heavy Forwarders, Windows Event Collectors, and Syslog Aggregators to ensure efficient log collection, analysis, and correlation. The focus will more »

experience in Incident Management, Security Operations (SecOps), or IT Security, with a proven ability to coach and guide team members through handling and resolving security incidents. • SIEM Tools Training: Extensive experience in reviewing and responding to Security Information and Event Management (SIEM) alerts, with proficiency in tools such as Splunk … SOC team and implementing coaching strategies to address them. Experience required • At least 5 years' experience in Incident Management, SecOps or IT Security • Experience of reviewing SIEM alerts and responding to them appropriately • Experience working through cyber investigations independently • Proven experience of Splunk or Sentinel • Worked with EDR systems such … AWS Certified Security, CompTIA Security+). • At least 5-10 years of experience in cybersecurity, with a focus on incident response and security operations. • Experience with SIEM tools, EDR systems, and cloud security. more »

Clearance required: Active Security Clearance Role purpose/summary Our client is looking for a Splunk SME to manage and optimize log management and SIEM environment. Will configure and maintain Splunk Heavy Forwarders, Windows Event Collectors, and Syslog Aggregators to ensure efficient log collection, analysis, and correlation. The focus will more »

and protocols Collaborate with other teams to ensure the successful resolution of security incidents Qualifications: Strong understanding of security technologies and methodologies Experience with SIEM, IDS/IPS, and other security tools Excellent communication and problem-solving skills Ability to work effectively in a fast-paced and dynamic environment Relevant more »

or DV clearance and have a proven Cyber Security Engineering background, with the following skills/experience: Experience in Security information and event management (SIEM), Defender, Tenable Threat modelling system solutions, IDS/IPS, and vulnerability scanners. Experience in network security principles, firewalls, and access control mechanisms. Experience in SOC more »

and verbal. Desirable, but not essential Dell VxRail solutions Immutable infrastructure approach to patching Familiarity with HashiCorp KeyVault and/or Harbour Container Registry SIEM integration Networking (Load balancing, Firewalls, TCP/IP) Datacenter infrastructure management Familiarity with Agile methodologies, tools and ways of working. more »

Role Title: SIEM Engineer Duration: contract to run until 01/06/2025 Location: Wokingham, Hybrid 70/30% Rate: up to £567 p/d Umbrella inside IR35 Clearance required: Eligible to go through BPSS Role purpose/summary Build and deploy innovative technical solutions to advance the … such as CSOC and Threat Hunting and Detection Engineering (THaDE). Collaborate with application administrators across the business to onboard data sources into the SIEM data lake. Optimise forensic telemetry collection mechanisms to ensure accurate and efficient parsing and ingestion to the SIEM. Build resilient forensic telemetry collection technologies to … handle complex and dynamic situations. Has a keen awareness of current and emerging cyber threats, trends, and best practices. Has proven experience working with SIEM platforms and related tooling. Has a strong understanding of SIEM concepts and best practices. Is familiar with SIEM telemetry onboarding processes and techniques. Is knowledgeable more »

handling and/or co-ordination Experience in ServiceNow & Azure SANS LDR553 - Incident Management (or equivalent) - Desired Experience in Security information and event management (SIEM) - Desired Experience in Spunk, Defender and Qualys (or other Vulnerability tools) - Desired more »

e.g., ISA/IEC 62443, NIST 800-82). Define segmentation strategies between IT and OT. Lead the integration of OT log sources into SIEM platforms. Provide guidance for securing SCADA, PLC, and DCS systems. Provide guidance for ensuring NISR compliance Design OT-specific use cases and detection capabilities for … SIEM. Skills Required: Deep understanding of OT systems such as SCADA, PLCs, DCS, and ICS. OT Security Tools: Claroty SIEM Platforms: Microsoft Sentinel Threat Intelligence: MITRE ATT&CK, open-source threat intelligence feeds NIST Cybersecurity Framework Certification Ability to onboard, normalize, and analyze OT logs from legacy and modern systems. more »

Coventry The Role: The Solution Architect - Sentinel SME (L3) will play a pivotal role in designing, implementing, and optimizing Microsoft Sentinel as the core SIEM solution for the organization's Detect and Respond program. This role requires deep technical expertise in Microsoft Sentinel and the ability to architect scalable and … stakeholders, including SOC teams and cybersecurity architects, to enhance detection capabilities, automate workflows, and ensure regulatory compliance. Solution Design: Design the architecture of the SIEM solution, ensuring that it meets both IT and OT security requirements and acquire approval from the STW design authorities/approval bodies NIS-R Compliance more »

exciting opportunity to play a key role in developing and implementing a next-generation platform to onboard multiple clients, leveraging Splunk Observability (NOT the SIEM product). You will be responsible for building a framework to seamlessly integrate and import Configuration Items (CIs), enabling a shift from event-based correlation … based ticketing systems to adaptive thresholds for predictive analysis. Provide technical expertise on Splunk Observability, focusing on key features that integrate with internal operations (SIEM experience is not necessary). Collaborate with the team to develop and implement best practices for platform setup and rollout. Work closely with internal teams … implementing frameworks for multi-client onboarding . In-depth knowledge of Splunk product features , particularly in relation to Observability (we do not use the SIEM product). Ability to provide guidance and educate teams on new processes and platform capabilities. Previous experience working on Observability platforms and supporting internal development more »