1 to 25 of 58 CSOC Jobs in the UK

/day (Umbrella) MAX Duration: 9 months Security Clearance: SC Responsibilities: Produce architecture diagrams, high-level and low-level design documents. Configure Splunk with use cases aligned with CSOC standards. Configure Splunk during onboarding of CNI and other systems. Configure infrastructure, including AWS services like EC2, S3, SQS. Attend technical workshops and represent the project at key meetings such as … Essential Skills: SIEM engineering and architecture skills, specifically in Splunk SaaS. Experience with delivery lifecycle improvements for Splunk SaaS. Experience in defining SIEM improvements within Cyber Security Operations Centre (CSOC) functions. Strong communication, reporting, documentation, and presentation skills. AWS infrastructure skills, including configuration of EC2, S3, etc. Desirable Skills: Public Sector experience. Experience with other SIEM solutions. Experience with multiple More ❯

aligned to a national programme improving the government's ability to detect and respond to cyber threats across multiple portfolios. You'll work alongside the SIEM Product Owner and CSOC teams to define and deliver architectural and engineering enhancements using Splunk SaaS and related technologies. Key Responsibilities Produce and maintain architecture diagrams, high- and low-level design documentation Lead configuration … of Splunk and associated infrastructure (AWS EC2, S3, SQS, etc.) Drive use case development aligned with CSOC and MITRE ATT&CK framework Attend and represent the project at key technical forums (ADF, TDA, workshops) Deliver improvements to SIEM architecture, use cases, automation, and data enrichment Improve onboarding processes for directorates and manage onboarding QA Lead integration of SOAR, Attack Analyzer … as Code (IaC) where possible Essential Skills & Experience Strong experience in Splunk SaaS as a lead engineer and/or architect Deep understanding of SIEM Engineering & Architecture , particularly in CSOC environments Demonstrated experience leading end-to-end SIEM improvement initiatives Proven ability to define and implement change within complex cyber environments Excellent documentation, communication, and stakeholder engagement skills Solid AWS More ❯

Corsham, England, United Kingdom 3 days ago Bristol, England, United Kingdom 1 week ago Bristol, England, United Kingdom 4 days ago Bristol, England, United Kingdom 16 hours ago Cyber - Security Operations Centre [SOC] Assistant Manager IGH Greater Bristol Area, United Kingdom 2 weeks ago Bristol, England, United Kingdom 2 days ago Greater Bristol Area, United Kingdom 3 weeks ago Bristol More ❯

SOC ANALYST - £45 TO £85PH INSIDE IR35 - ONSITE IN STEVENAGE - SC TO DV CLEARANCE - 6 MONTHS WILL BE EXTENDED Overview of department: An opportunity has arisen in the cyber security operations centre (SOC) within Information Management (IM) for a SOC Threat Detection Analyst. The successful applicant will drive a proactive ethos in an ever-changing cyber security environment and provide More ❯

frameworks. * Understanding of Malware capabilities, attack vectors, propagation and impact. * Good communication skills liaising with the business and suppliers. Overview of department: An opportunity has arisen in the cyber security operations centre (SOC) within Information Management (IM) for a SOC Threat Detection Analyst. Supporting the Senior SOC analysts in assisting IM meet the challenges and demands of countering the Cyber More ❯

hours per week Initially may not be expected to do nights until team grows. SOC Threat Detection Analyst Job Description: An opportunity has arisen in the cyber security operations centre (SOC) within Information Management (IM) for a SOC Threat Detection Analyst. Supporting the Senior SOC analysts in assisting IM meet the challenges and demands of countering the Cyber Threat. The More ❯

hours per week Initially may not be expected to do nights until team grows. SOC Threat Detection Analyst Job Description: An opportunity has arisen in the cyber security operations centre (SOC) within Information Management (IM) for a SOC Threat Detection Analyst. Supporting the Senior SOC analysts in assisting IM meet the challenges and demands of countering the Cyber Threat. The More ❯

change. Splunk SaaS experience and expertise as a lead architect and/or engineer Experience of defining improvements within Cyber departments, particularly, SIEM improvements within Cyber Security Operations Centre (CSOC) functions that result in an increase in SIEM Maturity Levels. Experience of the lifecycle of SIEM delivery, including convergence from other SIEMs. If you are available and interested, please apply More ❯

change. Splunk SaaS experience and expertise as a lead architect and/or engineer Experience of defining improvements within Cyber departments, particularly, SIEM improvements within Cyber Security Operations Centre (CSOC) functions that result in an increase in SIEM Maturity Levels. Experience of the lifecycle of SIEM delivery, including convergence from other SIEMs. If you are available and interested, please apply More ❯

Job description Assistant Manager – Security Operations Centre (SOC) Assistant Manager – IGH Location: Bristol, Birmingham, London, Cheltenham Capability: Consulting The Security Operations Centre - Assistant Manager role will provide the pivotal function of planning, designing, building, and sustaining SOC and Next-Generation More ❯

day operational engagement with clients, maintaining consistent dialogue and delivering regular service updates. Work alongside the sales team to help retain existing clients by supporting the renewal process for CSOC contracts. Handle investigations into potential security events, generate incident reports, and resolve client concerns ensuring corrective measures are actioned to reduce further risk. Develop and maintain internal technical documentation to More ❯

to contribute to evolving technical solutions and service delivery. Key Responsibilities: Manage daily operational engagement with clients, maintaining regular communication and updates. Support client retention efforts, including renewal of CSOC contracts. Investigate security events, generate incident reports, and address client concerns to reduce risks. Develop and maintain technical documentation to improve workflows. Assist service teams in troubleshooting operational issues. Facilitate More ❯

July 11:55pm Job summary Cyber Security at the Home Office is critical to protecting a large government department and safeguarding critical digital infrastructure. The Cyber Security Operations Centre (CSOC) Threat Intelligence team is tasked with understanding and contextualising the Home Office’s cyber threat landscape. The team manages the department’s intelligence requirements, based on assessed threats to Home … Office systems, then seeks to obtain and analyse data to identify threats and their potential impact. The specialised team of six works alongside other CSOC areas to provide awareness of threats, allowing for the deployment of targeted defences and the sharing of timely and actionable guidance. The Threat Assessment Lead plays a critical role in the success of the Cyber … Security Operations Centre (CSOC) by overseeing all threat intelligence activities. This includes defining intelligence requirements, managing collection and analysis, and ensuring timely dissemination of insights. The role supports protective monitoring, contributes to incident response, and leads the development of team members through line management and professional development. As the Threat Intelligence Lead, your day-today responsibilities will be to: Lead More ❯

Hemel Hempstead, England, United Kingdom 3 weeks ago Hemel Hempstead, England, United Kingdom 1 week ago Information Security Analyst - SecOps Detection London, England, United Kingdom 1 week ago Cyber - Security Operations Centre [SOC] Assistant Manager IGH Greater London, England, United Kingdom 4 weeks ago London, England, United Kingdom 2 weeks ago London, England, United Kingdom 2 days ago London, England More ❯

SOC Analyst Location: Stevenage Rate: £85 p/h - We are booking interviews next week! Please call or email for a slot An opportunity has arisen in the cyber security operations centre (SOC) within Information Management (IM) for a SOC Threat Detection Analyst. Supporting the Senior SOC analysts in assisting IM meet the challenges and demands of countering the Cyber More ❯

SOC Analyst Location: Stevenage Rate: £45 p/h - We are booking interviews next week! Please call or email for a slot An opportunity has arisen in the cyber security operations centre (SOC) within Information Management (IM) for a SOC Threat Detection Analyst. Supporting the Senior SOC analysts in assisting IM meet the challenges and demands of countering the Cyber More ❯

week PAY RATE: (UMBRELLA INSIDE IR35) Senior level= £680pd; £85 UMB Mid level= £45 UMB Job Title: SOC Analyst Overview of department: An opportunity has arisen in the cyber security operations centre (SOC) within Information Management (IM) for a SOC Threat Detection Analyst. Supporting the Senior SOC analysts in assisting IM meet the challenges and demands of countering the Cyber More ❯

looking to bring in multiple SOC Analysts due to an increase in demand. We are looking for both mid-level and senior engineers. The role will support the cyber security operations centre (SOC), assisting with vital threat detection and analysis in a constantly evolving cyber environment. This contract position offers an exciting opportunity to work within one of the most More ❯

looking to bring in multiple SOC Analysts due to an increase in demand. We are looking for both mid-level and senior engineers. The role will support the cyber security operations centre (SOC), assisting with vital threat detection and analysis in a constantly evolving cyber environment. This contract position offers an exciting opportunity to work within one of the most More ❯

looking to bring in multiple SOC Analysts due to an increase in demand. We are looking for both mid-level and senior engineers. The role will support the cyber security operations centre (SOC), assisting with vital threat detection and analysis in a constantly evolving cyber environment. This contract position offers an exciting opportunity to work within one of the most More ❯

looking to bring in multiple SOC Analysts due to an increase in demand. We are looking for both mid-level and senior engineers. The role will support the cyber security operations centre (SOC), assisting with vital threat detection and analysis in a constantly evolving cyber environment. This contract position offers an exciting opportunity to work within one of the most More ❯

day operational engagement with clients, maintaining consistent dialogue and delivering regular service updates. Work alongside the sales team to help retain existing clients by supporting the renewal process for CSOC contracts. Handle investigations into potential security events, generate incident reports, and resolve client concerns ensuring corrective measures are actioned to reduce further risk. Develop and maintain internal technical documentation to More ❯

England, United Kingdom 1 day ago Cyber Security Assistant Manager/Manager London, England, United Kingdom 2 days ago Information Security Consultant (Insurance) Information Security Officer – Cybersecurity - Banking Cyber - Security Operations Centre [SOC] Assistant Manager IGH Greater London, England, United Kingdom 3 weeks ago London, England, United Kingdom 2 weeks ago Lead Consultant- Cyber Security Consulting & Advisory London, England, United More ❯

analytics and business intelligence platforms. Your work will ensure that data is accessible, reliable, and secure across the organisation. You will collaborate closely with the Cyber Security Operations Centre (CSOC) and the wider Home Office Cyber Security (HOCS) team. Your contributions will be shaped by proactive research and insights, as well as retrospective analysis of known risks, incidents, and intelligence … supporting colleagues and stakeholders with data insights. Design and implement a data streaming service, including new data models and ETL processes. Ensure successful data delivery to teams such as CSOC Engineering, Cyber Detection & Response, Threat Operations, and Service Management, including troubleshooting. Build and test complex or large-scale data products, managing the full development lifecycle. Apply data modelling principles across More ❯

ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits, regulatory compliance, and readiness for external audits while also contributing to Cybersecurity Operations Center (CSOC) activities, including incident monitoring and response. How will you make an impact? Internal Audit Execution: Conduct internal audits to evaluate and enhance IT controls, compliance with standards, and risk management … you got what it takes? Strong expertise in audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus. Familiarity with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience in internal and external audits, compliance assessments, and process improvement. Basic understanding of incident response frameworks and cybersecurity More ❯