Onsite SIEM Analyst (Specialised)
Tasks
- Build investigation timelines and hypotheses
- Capture lessons learned and run post incident reviews
- Coordinate containment and mitigation activities
- Correlate events and identify patterns
- Develop and tune detection rules
- Execute incident response and escalation
- Investigate suspicious activity using evidence
- Maintain investigation records and evidence
- Monitor security events and alerts
- Perform alert triage and validation
Perks/Benefits
Skills/Tech-stack
Alert triage | Cyber Threat | Cyber Threat Intelligence | EDR | Elastic | Elastic Common Schema | Event management | Host-based Forensics | IDS/IPS | Incident Management | Incident Response | Kibana | Kibana Query Language | Kusto Query | Kusto Query Language | Lateral movement | Lateral movement indicators | Linux | Log Analysis | Log Integrity | Microsoft Sentinel | Networking concepts | Persistence artifacts | Process ancestry | Query Language | SIEM | Security monitoring | Splunk | Threat Intelligence | Threat detection | Windows
Education
N/A
Related jobs
-
Cyber Security Professional GBP 27K-27KCI methodology | Change Management | Incident Management | Linux | NetworkingAnnual leave | Carer’s leave | Enhanced womens health support | Equal family leave | On-target bonusEntry-level Full TimeIpswich, GB, IP5 3RE1d ago
-
Analyst I, Falcon Complete (Remote) GBP 89K-110KC# | Computer forensics | Countermeasures | Cybersecurity | Incident ResponseCompetitive vacation and holidays | Comprehensive wellness programs | Employee networks | Paid adoption leave | Paid parental leaveSenior-level Full TimeGBR Remote, United Kingdom R1d ago
-
Cyber Threat Intelligence (CTI) Analyst GBP 29K-31KAdversary TTPs | Cyber Threat | Cyber Threat Intelligence | ISO27001 | Indicators of compromiseCompany share purchase plan | Flexible work | Health and wellbeing rewards | Recognition awards | Team get-togethersMid-level Full TimeEdinburgh, United Kingdom1d ago
-
Cyber Threat Intelligence (CTI) Analyst GBP 29K-31KCountermeasures | Cyber Threat | Cyber Threat Intelligence | ISO 27001 | Indicators of compromiseEmployee share plan | Flexible work | Health and wellbeing rewardsMid-level Full TimeGreat Britain - Home Based, United … R1d ago
-
SOC Analyst GBP 79K-97KAWS GuardDuty | Cloud Security | Detection rules | EDR | EncryptionFinancial wellness support | Flexible remote work | Mental health supportSenior-level Full TimeCambridge, United Kingdom2d ago
-
Chronicle | Detection and Response | EDR | Endpoint Detection and Response | Endpoint detectionAnnual leave | Employee discounts | Flexible benefits | Income protection | Life assuranceMid-level Full TimeLeeds, England, United Kingdom2d ago
-
Security SOC Analyst - UK Remote GBP 57K-70KAbnormal Security | Access Management | Cloud Security | Conditional Access | CrowdStrikeEmployee share options | Learning and development opportunities | Parental leave | Remote work | WFH office expense budgetMid-level Full TimeUnited Kingdom, WC1, United Kingdom R2d ago
-
Senior Security Analyst - InfoSec GBP 47K-55KAPI Integration | AWS | Amazon Web Services | Automated response | Azure MonitorHybrid work | MentorshipSenior-level Full TimeLeicester, Leicestershire, United Kingdom3d ago
-
Cyber Security Assurance Specialist GBP 68K-78KAccess Controls | Application Security | By Design | Cyber Risk | Cyber Risk ManagementMid-level Full TimeEdinburgh, South Gyle Crescent – TESCO …3d ago
-
Opportunities in Cyber Security - eDV Required GBP 27K-27KAWS | Azure | Cloud Security | Cloud platform | Cobalt StrikeArmed Forces Covenant support | Defence Employer Recognition Scheme Gold Award | Dental insurance | Employee discount portal | Generous holiday allowanceMid-level Full TimeMalvern, England, United Kingdom3d ago
-
Cyber Threat Hunting Specialist GBP 30K-30KCloud telemetry | Data correlation | Detection engineering | ESQL | Endpoint telemetryAnnual leave | Charity days | Cycle to work scheme | Free health assessments | Gym discountSenior-level Full TimeNewbury, GB3d ago
-
Cyber Security Apprenticeship GBP 23K-27KApplication Security | CVSS | Cloud Computing | Cyber Threat | Cyber Threat Monitoring24 7 Virtual GP | Colleague discount | Company pension matching | Counselling | Employee assistance helplineEntry-level Apprenticeship Full TimeAsda House, United Kingdom3d ago
-
Associate Principal, Response Operations GBP 50K-65KDetection and Response | EDR | EPP | Endpoint Detection and Response | Endpoint PreventionMid-level Full TimeUnited Kingdom R5d ago
-
Cyber Security Consultant GBP 58K-62KCrisis management | Digital forensics | Incident Response | Information security | Project ManagementFertility treatment leave | Financial education | Flexible working hours | Gym discounts | Hybrid workingSenior-level Full TimeLondon7d ago
-
Cyber Security Analyst GBP 40K-45KAccess Control | CASB | DLP | Encryption | Endpoint SecurityCollaborative culture | On call team rotation | Professional development opportunitiesMid-level Full TimeLondon, United Kingdom8d ago
-
Information Security Analyst GBP 40K-45KCompliance Monitoring | Cryptography | Data Classification | ISO 27001 | Incident ResponseHybrid work | Occasional travel | Professional developmentMid-level Full TimeCheltenham8d ago
-
Lead Cyber Security Engineer (Payments) GBP 54K-71KAWS | Access Management | Access Rights | Access rights management | Audit LoggingSenior-level Full TimeGlasgow, United Kingdom8d ago
-
Security Operations Analyst GBP 30K-40KAudit Support | Cybersecurity compliance | Incident Response | Network Security | Operating SystemBike storage | Complimentary breakfast | Critical illness cover | Cycle to work scheme | Dental insuranceMid-level Full TimeBristol CEC, United Kingdom8d ago
-
Cyber Security Engineer GBP 32K-32KAWS | Azure | Bash | CI/CD | Cloud SecurityCharitable leave | On-call availability | Private medical insurance | Security clearance eligibility | Vacation daysMid-level Full TimeLondon, 30 Fenchurch Street, United Kingdom8d ago
-
AI Security | Access Management | Attack surface | Attack surface management | AutomationSenior-level Full TimeGBR - Kingston, United Kingdom8d ago
-
Cyber Security Engineer GBP 30K-34KAccess Management | Authentication | Cloud Architecture | Cloud Security | Content ProtectionFlexible work | Health and wellbeing rewards | Recognition awards | Share purchase plan company contribution | Team get-togethersMid-level Full TimeBristol, United Kingdom9d ago
-
Cyber Security Officer GBP 55K-75KAWS | Application Security | Change Advisory | Change Advisory Board | Change advisory board CABFull-time employment | Hybrid work | Pension | Permanent employmentSenior-level Full TimeSheffield S1 2BQ, United Kingdom9d ago
-
Senior Security Analyst GBP 55K-70KAWS | Antivirus | Azure | Cloud Security | Configuration reviewsSenior-level Full TimeLondon, United Kingdom9d ago
-
Access Control | Access Management | Architecture Reviews | Azure DevOps | Cloud SecurityAnnual leave | Cycle to work scheme | Flexible core working hours | Gym discount | Health cash planSenior-level Full TimeLondon, England, United Kingdom R9d ago
-
Information Security Analyst GBP 45K-55KAI Governance | API Security | AWS | Access Management | Audit preparationAnnual wellbeing day | Cycle to work scheme | Employer pension contribution | Hybrid working | Life assuranceMid-level Full TimeLondon, England, United Kingdom9d ago