CrawlJobs Logo
Vodafone Logo Vodafone · IT - Software Development

Cyber Onboarding Engineer

United Kingdom, Farnborough · Job Posted March 21, 2026
Apply Position
Job Link Share

Job Description

Join Vodafone Business Security Enhanced and strengthen the cyber security of the UK's Critical National Infrastructure and public sector organisations. As a Cyber Onboarding Engineer you are key to the successful delivery of Cyber Services for both Vodafone and its customers. You are self-motivated with a strong interest in Cyber Security and can enhance detection content for our SOC Team, enabling them to provide high-quality monitoring of SIEM systems, managed firewall & IPS services and much more. This role offers full project lifecycle involvement ensuring you will develop an understanding of our customers, their risks and concerns and work collaboratively with them to create relevant SIEM content that supports agreed use-cases and threat models.

Job Responsibility

  • Enhance detection content for our SOC Team
  • Ensure feeds into the SIEM are iteratively enhanced
  • Write custom IDS/IPS rules to improve detection capabilities
  • Assist with Vulnerability Scanning activities
  • Produce/Enhance/Refine Monthly Reports for internal and external audiences
  • Configure/Tune SIEM content, Managed Firewalls and IPS systems
  • Monitor Threat Intelligence – internal, open source and commercial feeds
  • Interact with other Cyber Defence, Security and Incident Response teams, within Vodafone, with customers and suppliers

Requirements

  • Experience of SIEM content creation in a SOC environment
  • Ability to interpret logs and events and identify patterns of behaviour, indications of compromise
  • Knowledge of MITRE ATT&CK and other cyber frameworks
  • IT and Network Security – Windows, Linux, Firewalls, IPS, Security Appliances
  • Experience of programming or scripting (e.g Python,C,Java,Bash)
  • Educated to degree level or equivalent experience
  • Must be able to maintain DV security clearance

Nice to have

  • Comfortable writing Regular Expressions (regex)
  • Knowledge of MITRE ATT&CK and previous experience mapping existing SIEM content to this framework

What we offer

  • Great pay
  • Bonuses
  • Up to 28 days off plus bank holidays
  • Paid time for charity work
  • Discounts
  • Vouchers
  • Pension plan
  • Amazing learning tools
  • Top-notch parental leave policies
Vodafone - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cyber Onboarding Engineer

8 matching positions

New

SIEM Onboarding Engineer

We are seeking an experienced SIEM Engineer to support the onboarding and integr...
Location
Location
India , Pune
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience working with Google SecOps or similar SIEM platforms
  • Strong understanding of diverse security log sources, including firewall, proxy, EDR, IAM, operating systems, cloud audit, applications and network telemetry
  • Experience with log parsing, normalisation and schema mapping
  • Familiarity with ingestion methods such as syslog, APIs, agents, collectors, event hubs and forwarders
  • Scripting and automation skills in Python, PowerShell, Bash or similar languages
  • Proven ability to troubleshoot ingestion pipelines and validate end-to-end data flows
  • Strong collaboration and stakeholder engagement skills, with the ability to work across multidisciplinary teams
  • Working knowledge of cloud platforms (e.g., GCP), data tools (e.g., Elastic Stack) or visualisation tools (e.g., Kibana) is advantageous
  • Exposure to DevSecOps or ITOps environments supporting security data platforms is beneficial
Job Responsibility
Job Responsibility
  • Onboard, transform, validate and deliver telemetry, logs and event sources into Google SecOps using scalable and reusable ingestion patterns
  • Configure, troubleshoot and optimise data ingestion pipelines to ensure reliability, consistency and performance
  • Implement and maintain data lineage, ownership tagging and metadata standards to support governance and regulatory requirements
  • Diagnose and resolve data ingestion, parsing and data quality issues through structured troubleshooting approaches
  • Collaborate with EU market cyber teams, engineering, and operations stakeholders to gather onboarding requirements and address constraints
  • Validate end-to-end event flows to ensure completeness, accuracy and timeliness of telemetry
  • Contribute to documentation, standardisation and continuous improvement of ingestion practices and processes
What we offer
What we offer
  • Opportunity to work on large-scale, multi-market cyber security initiatives within Vodafone
  • Exposure to advanced SIEM and cloud security technologies, including Google SecOps
  • A collaborative environment with cross-functional teams across engineering, operations and cyber security
  • The ability to shape and improve security telemetry, contributing directly to threat detection and regulatory compliance
  • Continuous learning through hands-on problem-solving, automation and modern data ingestion practices
  • Fulltime
Read More
Arrow Right

Cyber Security Engineer

An international organisation is seeking a hands‑on Senior Cybersecurity Enginee...
Location
Location
Latvia , Riga
Salary
Salary:
Not provided
skyebusinesssolutions.com Logo
Skye Business Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years’ experience in cybersecurity or security engineering
  • Hands‑on experience with: SIEM and log management platforms
  • Cloud‑based security controls
  • Identity and access management
  • Endpoint protection
  • Strong troubleshooting, threat‑hunting, and investigation skills
  • Experience operating in complex, distributed environments
  • Familiarity with security frameworks such as ISO 27001 or NIST
Job Responsibility
Job Responsibility
  • Design and implement centralised security monitoring (SIEM or equivalent)
  • Prepare environments for successful managed SOC integration
  • Improve detection use cases to increase signal quality and reduce noise
  • Enhance visibility across cloud, identity, and operational systems
  • Act as the primary technical liaison for the managed SOC provider
  • Support SOC onboarding, log ingestion, tuning, and use‑case development
  • Validate alerts, incident handling, and reporting outputs
  • Continuously refine detection fidelity and response effectiveness
  • Manage and optimise cloud‑based security controls
  • Improve web application security, bot protection, and traffic filtering
  • Fulltime
Read More
Arrow Right

Cyber Security Engineer

An international organisation is seeking a hands‑on Senior Cybersecurity Enginee...
Location
Location
Croatia
Salary
Salary:
Not provided
skyebusinesssolutions.com Logo
Skye Business Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years’ experience in cybersecurity or security engineering
  • Hands‑on experience with: SIEM and log management platforms
  • Cloud‑based security controls
  • Identity and access management
  • Endpoint protection
  • Strong troubleshooting, threat‑hunting, and investigation skills
  • Experience operating in complex, distributed environments
  • Familiarity with security frameworks such as ISO 27001 or NIST
Job Responsibility
Job Responsibility
  • Security Monitoring & Detection: Design and implement centralised security monitoring (SIEM or equivalent)
  • Prepare environments for successful managed SOC integration
  • Improve detection use cases to increase signal quality and reduce noise
  • Enhance visibility across cloud, identity, and operational systems
  • Managed SOC Integration: Act as the primary technical liaison for the managed SOC provider
  • Support SOC onboarding, log ingestion, tuning, and use‑case development
  • Validate alerts, incident handling, and reporting outputs
  • Continuously refine detection fidelity and response effectiveness
  • Cloud Security: Manage and optimise cloud‑based security controls
  • Improve web application security, bot protection, and traffic filtering
  • Fulltime
Read More
Arrow Right

Cyber Security Engineer

As a Cyber Security Engineer of the Cyber Secure by Design team, you will as the...
Location
Location
Greece , Athens
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong aptitude for staying updated with the latest cybersecurity trends and best practices
  • Familiarity with relevant regulations and industry standards (i.e. ISO27001, NIST SP 800-53)
  • Knowledge of the main security controls to secure networks, applications, and Cloud
  • Relevant certifications such as CISSP, CISM, or CEH are considered a plus
  • Bachelor's and/ or Master's degree in Computer Science, Information Security, or a related field
  • Proven experience (typically 2+ years) in cyber security
  • Effective communication skills to articulate complex technical concepts to both technical and non-technical stakeholders
  • Capable of working collaboratively with cross-functional teams to implement and maintain robust cybersecurity measures
Job Responsibility
Job Responsibility
  • Assist Vodafone Greece to comply with Group’s cyber security control framework
  • Ensure products launched adapt Secure by Design principles
  • Identify potential Cyber Risks in newly developed products/ services
  • Guide product teams on Security Tools onboarding
  • Provide technical advice and guidance to internal and external project teams on security-related matters
What we offer
What we offer
  • Competitive pay, bonus & remuneration package
  • Private Health & Medical Insurance
  • Hybrid way of working: a blend of 60% remote and 40% office-based working, including the option to work up to 20 days from abroad
  • Unlimited connectivity with our mobile, landline and Vodafone TV services
  • Unlimited access to learning resources and trainings
  • Vodafone Parental Leave: 16 weeks of fully paid parental leave to all employees regardless of gender, sexual orientation or length of service
  • Remote work equipment to help you create a comfortable, ergonomic workspace at home
  • Spirit of Vodafone days: dedicated time to pause, develop new skills and connect with our teams, values and services
  • Extra days off: Vodafone Day, Family Day, Volunteering Day
  • Office amenities (subject to the office location): such as restaurant, beauty corner, gym and parking
Read More
Arrow Right

Cyber Threat Detection Engineer

Rearc is looking for a Cybersecurity Threat Detection Engineer with proactive co...
Location
Location
United States
Salary
Salary:
Not provided
rearc.io Logo
Rearc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of experience in Cybersecurity with a focus on: Log streaming
  • Cybersecurity data lakes and data warehousing
  • SOAR engineering
  • SIEM engineering, administration, architecture, and operations
  • Data science, statistical analysis, and threat detection development
  • Integrating disparate IT, OT, and business applications into SIEM systems
  • Bachelor's degree in Management Information Systems, Computer Science, or a related field
  • A strong passion for Cybersecurity and a commitment to staying current with industry trends, best practices, and tools
  • Proven experience in documenting, socializing, and operationalizing Cybersecurity technologies and processes
  • Prior programming experience in Python, SQL, and Apache Spark
Job Responsibility
Job Responsibility
  • Utilize NDR, EDR, real-time streaming, and SIEM technologies to develop robust threat detection capabilities
  • Build and optimize detection rules leveraging real-time data streaming to enhance detection accuracy
  • Design enrichment pipelines and automation workflows to enhance the precision of threat detections
  • Develop correlation logic and automated processes to create high-fidelity threat alerts
  • Build compliance and recoverability of customer Data Analytics solutions, including SOPs, data onboarding, normalization, enrichment, and system maintenance
  • Create automation playbooks for incident triage and response
  • Align detection content with customer-specific Use Case Frameworks and provide metrics on cybersecurity threats impacting their environment
  • Collaborate with customer cybersecurity teams to cover gaps and enhance enterprise posture
  • Support enterprise Cybersecurity, Information Technology (IT), and Operational Technology (OT) teams by providing dashboards and other data exploration tools
  • Stay continually aware of emerging cybersecurity threats and trends, adapting detection strategies as needed
Read More
Arrow Right
New

Security Architect

Opportunity to join a premier enterprise Architecture & Delivery team to steer c...
Location
Location
Australia , Melbourne
Salary
Salary:
900.00 - 1100.00 AUD / Day
https://www.randstad.com Logo
Randstad
Expiration Date
July 03, 2026
Flip Icon
Requirements
Requirements
  • 8+ years of professional experience in IT solution design, build, or delivery, with 5+ years dedicated to IT Security, IAM, IGA, PAM, and cloud security environments
  • Expert hands-on experience with Entra ID (including Conditional Access Policies, Connect, B2B/B2C, ZTNA, Graph API) and Okta SSO (SAML, OIDC, OAuth)
  • Strong architectural knowledge of IGA platforms (SailPoint, One Identity, or Saviynt) and PAM architectures (CyberArk or Beyond Trust)
  • Proven understanding of identity-specific threat modelling, DevSecOps mindsets, and frameworks such as MITRE ATTCK and NIST AI RMF across hybrid cloud structures (VMware, AWS, Azure, GCP)
  • Tertiary qualification in IT, Engineering, or a related field, combined with an industry standard certification such as CISSP
  • 8+ years of professional experience in IT solution delivery or design, with 5+ years focused on SIEM, SOAR, Vulnerability Management, and Continuous Threat & Exposure Management (CTEM)
  • Direct experience architecting and implementing solutions using Microsoft Unified SecOps Platforms, Microsoft Sentinel, Microsoft Defender XDR, and Splunk ES/SOAR
  • Technically proficient in securing hybrid cloud environments using native and third-party CASB, M365 E5 Security Services, Intune MDM, and Cloud Workload Protection platforms
  • Comprehensive knowledge of security and architecture frameworks including TOGAF, SABSA, MITRE Atlas, NIST RMF, ISO 27001, ISM, and ASD Essential 8
  • Tertiary qualification in IT, Computing, or Engineering, with highly regarded certifications such as CISSP, AWS Security Specialty, Microsoft AZ-500, or Microsoft SC-100
Job Responsibility
Job Responsibility
  • Architect and implement modern identity and access management (IAM) models leveraging Entra ID, Ping Identity, and auxiliary technologies
  • Deliver secure solution architecture artefacts (such as SAR, SOAP, and NFRs) tailored for identity portfolio epics
  • Design and enforce robust network validation and enterprise authentication policies, including SSO, MFA, Conditional Access, and Passwordless Authentication
  • Lead enterprise migrations involving legacy infrastructure upgrades, Exchange transitions, and broad application onboarding to Entra ID
  • Govern and design solutions for Privileged Identity Management (PIM) and Privileged Access Management (PAM) to secure elevated credentials
  • Automate identity lifecycle processes (Joiner-Mover-Leaver) and configure rigid RBAC models and compliance access reviews
  • Define the secure implementation strategy and construct security controls aligned with Microsoft Azure and M365 E5 Security Services
  • Architect and implement SecOps solutions using Microsoft Defender, Microsoft Sentinel, Unified SecOps Platform, Microsoft Security Copilot, and Splunk ES/SOAR
  • Deliver end-to-end solution architectures and architecture documentation for assigned SecOps portfolio epics
  • Integrate and optimize Azure Sentinel to advance threat detection capabilities, incident response mechanisms, and AI security defense analytics
Read More
Arrow Right

Cyber Security Operations Lead

Morgan Sindall Group are looking for a Cyber Security Operations Lead role, to s...
Location
Location
United Kingdom , Coventry
Salary
Salary:
Not provided
morgansindall.com Logo
Morgan Sindall Plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum of 3 A levels or equivalent education (e.g. C&G, HND / HNC)
  • Good written and spoken English
  • Evidence of interest in Information Technology, Information Security or Data Protection
Job Responsibility
Job Responsibility
  • Oversee day-to-day security operations
  • Supervision and support of Operations analysts
  • Triage and remediation of incidents
  • Threat hunting
  • Performing scheduled checks
  • Assisting with user queries
  • Monitoring and maintaining our security controls
  • Own the operational relationship with our outsourced Security Operations Centre
  • Work with the Engineering function of the team to onboard and run new security controls
  • Develop and maintain an appropriate set of reporting metrics
  • Fulltime
Read More
Arrow Right

Support Analyst (Entry Level)

We're looking for a Level 1 IT Support Analyst to join our team in Albany, Auckl...
Location
Location
New Zealand , Albany, Auckland
Salary
Salary:
60000.00 NZD / Year
virtuoso.tech Logo
Virtuoso
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong interest in technology and cyber security
  • Excellent verbal and written communication skills
  • A customer-first mindset with a positive attitude
  • At least one year of experience in a professional customer-facing environment is beneficial
Job Responsibility
Job Responsibility
  • Provide technical support to customers with a focus on rapid resolution and exceptional customer service
  • Troubleshoot hardware, operating systems, Microsoft 365 applications, and endpoint issues
  • Process service requests including new starters, leavers, user onboarding, and device provisioning
  • Review, categorise, and route support tickets appropriately
  • Handle inbound customer calls and create tickets with accurate information and prioritisation
  • Collaborate with vendors, suppliers, and internal technical teams
  • Escalate incidents to Level 2 and Level 3 engineers when required
  • Continuously develop technical knowledge and stay current with emerging technologies and best practices
What we offer
What we offer
  • Funded Training & Certifications – Fully paid technical training, certifications, and professional development
  • Flexible Working – Flexible work arrangements, generous annual leave, and paid parental leave
  • Quarterly Bonus – Discretionary bonus scheme based on individual, team, and company performance
  • Great Team Culture – Regular social events, team celebrations, and company activities
  • Modern Technology – Work with the latest Microsoft cloud technologies and industry-leading tools
  • Career Progression – Clear development pathways and opportunities to grow your IT career
  • High-Performing Team – Learn from experienced engineers and work with customers across New Zealand, Australia, and the UK
  • Fulltime
Read More
Arrow Right