15 of 15 Blue Team Jobs in the UK excluding London

ongoing threat landscapes. 💡 Your background: Proven experience leading incident response operations and cybersecurity investigations. Deep understanding of cyber attack vectors, threat actors, and red team/blue team methodologies. Strong analytical skills with a data-driven approach to incident management and risk assessment. Confident communicator with … Reference Model. Cloud and endpoint forensics know-how. Practical understanding of security control frameworks and tooling. You'll be a crucial part of the team that ensures the organisations stays safe, secure, and always one step ahead in an evolving threat landscape. They’re investing in cutting-edge tech More ❯

Join a Leading Cyber Defence Operations Team and help safeguard against global cyber risks! Salary: £70,000 + Benefits Location: Reading - 2 Days a week on site Employment Type: Permanent The Cyber Defence Operations team is responsible for protecting customers against cyber threats worldwide. The team’s … posture and reduce cyber risks through operational leadership and capabilities. We’re looking for a Level 3 SOC Analyst to join our client's team, offering expertise in security analysis and incident response to help drive the success of their Cyber Security Operations Center (CSOC). In this role … onshore teams to fine-tune alert volumes and contribute ideas for operational improvement. Threat Response: Engage in threat hunting from a blue team perspective, identifying potential threat group activity. Mentorship & Leadership: Mentor and encourage team members to create sustainable knowledge bases, playbooks, processes, and procedures. Key More ❯

Shift Lead to support and secure critical infrastructure within the exciting Aerospace, Defence, and Security sector. This is an exceptional opportunity to lead a team of talented analysts, manage incident triage, and drive operational excellence in a mission-critical environment. It would be highly desirable if you have SC … engineering Any scripting or programming with Python, Perl, Bash, PowerShell, or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar The successful SOC Shift Lead, you will ensure the seamless operation and continual enhancement of … SOC processes and personnel. This pivotal role involves safeguarding client systems while guiding your team through sophisticated cyber defence challenges. The Soc Shift Leader would be tasked with Monitoring, triaging, and investigating alerts across host and network security systems Performing deep analysis of traffic, logs, and system events to More ❯

DV Clearance Scripting or programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities: As a SOC Shift Lead , you will ensure the smooth operation and continual … enhancement of SOC processes and personnel. You will play a pivotal role in protecting client systems and guiding the team through sophisticated cyber defence challenges. Your responsibilities will include: Monitoring, triaging, and investigating alerts across host and network security systems Performing deep analysis of traffic, logs, and system events … to identify threats and vulnerabilities Providing line management to SOC Analysts—developing capability and supporting career progression Enhancing team knowledge across SOC tooling , detection methodologies , and threat triage Analysing and optimising detection rules and use cases based on Mitre Att&ck Maintaining detailed and up-to-date incident documentation More ❯

DV Clearance Scripting or programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities: As a SOC Shift Lead , you will ensure the smooth operation and continual … enhancement of SOC processes and personnel. You will play a pivotal role in protecting client systems and guiding the team through sophisticated cyber defence challenges. Your responsibilities will include: Monitoring, triaging, and investigating alerts across host and network security systems Performing deep analysis of traffic, logs, and system events … to identify threats and vulnerabilities Providing line management to SOC Analysts—developing capability and supporting career progression Enhancing team knowledge across SOC tooling , detection methodologies , and threat triage Analysing and optimising detection rules and use cases based on Mitre Att&ck Maintaining detailed and up-to-date incident documentation More ❯

You will lead from the front—mentoring analysts, managing incident triage, and driving operational improvements in a mission-critical environment. You will lead a team of 4. This is a shift-based position , following a rotation of 2 days (6am–6pm), 2 nights (6pm–6am), 4 days off . … DV Clearance Scripting or programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities As a SOC Shift Lead , you will ensure the smooth operation and continual … enhancement of SOC processes and personnel. You will play a pivotal role in protecting client systems and guiding the team through sophisticated cyber defence challenges. Your responsibilities will include: Monitoring, triaging, and investigating alerts across host and network security systems Performing deep analysis of traffic, logs, and system events More ❯

DV Clearance Scripting or programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities As a SOC Shift Lead , you will ensure the smooth operation and continual … enhancement of SOC processes and personnel. You will play a pivotal role in protecting client systems and guiding the team through sophisticated cyber defence challenges. Your responsibilities will include: Monitoring, triaging, and investigating alerts across host and network security systems Performing deep analysis of traffic, logs, and system events … to identify threats and vulnerabilities Providing line management to SOC Analystsdeveloping capability and supporting career progression Enhancing team knowledge across SOC tooling , detection methodologies , and threat triage Analysing and optimising detection rules and use cases based on Mitre Att&ck Maintaining detailed and up-to-date incident documentation , findings More ❯

DV Clearance Scripting or programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities As a SOC Shift Lead , you will ensure the smooth operation and continual … enhancement of SOC processes and personnel. You will play a pivotal role in protecting client systems and guiding the team through sophisticated cyber defence challenges. Your responsibilities will include: Monitoring, triaging, and investigating alerts across host and network security systems Performing deep analysis of traffic, logs, and system events … to identify threats and vulnerabilities Providing line management to SOC Analysts developing capability and supporting career progression Enhancing team knowledge across SOC tooling , detection methodologies , and threat triage Analysing and optimising detection rules and use cases based on Mitre Att&ck Maintaining detailed and up-to-date incident documentation More ❯

Applications close 15th May at 5pm A chance to thrive We're looking for a Security Engineering Manager to join our Cyber Security Operations team at Tesco Bank, part of Barclays Bank UK Plc. You will work with the latest cybersecurity tools and technologies, ensuring our systems are always … our systems and data. Own practices and processes within the Security Operations Centre (SOC), ensuring effective monitoring and incident response. Manage workload for a team of security analysts, fostering collaboration and high performance. Engage with senior leadership to influence security strategies and policies. Support junior staff, promoting continuous learning … and professional growth. Work alongside a dedicated team of security professionals, reporting to the Cyber Security Operations Lead. What we need you to have Experience in line management or mentoring within a SOC leadership role. Exposure to security tools, including MDR, Proxy, and WAF. Experience working in a regulated More ❯

Applications close 15th May at 5pm A chance to thrive We're looking for a Security Engineering Manager to join our Cyber Security Operations team at Tesco Bank, part of Barclays Bank UK Plc. You'll work with the latest cybersecurity tools and technologies, ensuring our systems are always … of practices and processes within the Security Operations Centre (SOC) activities, ensuring efficient and effective monitoring and response to security incidents. Managing workload for team of security analysts, fostering a collaborative and high-performance environment. Engaging with senior leadership to influence and shape the organisation's security strategies and … policies. Supporting junior staff, promoting continuous learning and professional development within the team. Working alongside a dedicated team of security professionals, reporting directly to the Cyber Security Operations Lead. We need you to have Previous experience of line management or mentoring within a SOC leadership role. Exposure to many More ❯

clients and with the communities in which we work and live. It is personal to all of us." - Julie Sweet, Accenture CEO In our team you will learn: You will have a Cyber Security background, will perform as a client-facing role, and will be willing to contribute to … our internal Digital Transformation strategy and expertise. As a Cyber Threat Analyst you will: As part of our Blue Team, you'll use the latest intelligence and tooling to analyse information systems to ensure effective incident detection and response. Don't worry if you don't tick More ❯

clients and with the communities in which we work and live. It is personal to all of us." - Julie Sweet, Accenture CEO In our team you will learn: You will have a Cyber Security background, will perform as a client-facing role, and will be willing to contribute to … our internal Digital Transformation strategy and expertise. As a Cyber Threat Analyst you will: As part of our Blue Team, you'll use the latest intelligence and tooling to analyse information systems to ensure effective incident detection and response. Don't worry if you don't tick More ❯

clients and with the communities in which we work and live. It is personal to all of us." - Julie Sweet, Accenture CEO In our team you will learn: You will have a Cyber Security background, will perform as a client-facing role, and will be willing to contribute to … our internal Digital Transformation strategy and expertise. As a Cyber Threat Analyst you will: As part of our Blue Team, you'll use the latest intelligence and tooling to analyse information systems to ensure effective incident detection and response. Don't worry if you don't tick More ❯

I'm working with a renowned tech company known for innovating in the AI space. With a small, but highly skilled team, they're transforming multiple industries via AI solutions. Using new tech, they understand that security should be priority. As a Defensive Security Engineer, you will reinforce the … Required Skills: - You have C1+ German and B2+ English language skills - You have 3+ years of experience in defensive security: SOC, blue team or similar roles - You have technical hands-on experience with SIEM, IDS/IPS, EDR and cloud security tools - You have a solid understanding … working hours and manage your own time - You will be backed by a supportive workforce/working environment - You will get to attend fun team events and contribute to a growing success story If you have the required skills and want to protect some of the most interesting AI More ❯

Our Cyber team look after some complicated and compelling areas within Aero, Defence and Security. If you want to lead from the front, gain experience working with multiple clients, and always have access to the latest technologies, then join the team who are on the cusp of continued … growth and known as leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our clients critical infrastructure and support the SOC through both delivery of client … infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat More ❯