1 to 25 of 35 Security Monitoring Jobs in the UK excluding London

Learn more at experianplc.com. Internal Grade E Job Description As a Cyber Defence Analyst, you will join the Cyber Fusion Center, performing in-depth analysis, assessment, and response to security threats by following documented policies to meet Service Level Goals. The team provides global 24x7 security operations and monitoring for cybersecurity events affecting Experian. You will be … the first line of defence in Experian's broader incident response and incident management departments, responsible for receiving and prioritizing cybersecurity alerts, including being the dedicated contact for potential security incidents reported by users (e.g., Experian employees). Depending on the results of assessment, this team is then responsible for investigating, containing, eradicating, and recovering from events falling in … risk events to dedicated incident response and management teams in the CFC. This role is critical in ensuring the handling of potential threats and plays a part in improving security operations. This is a home based role reporting to the Director of Security Operations for SecOps & Threat Detection. Please note that in this role, you will have an More ❯

One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world's most trusted organisations. We are the trusted partner for operators of essential services and provide end-to-end cyber security capabilities that … help our clients overcome their security challenges, allowing them to operate safely and securely. Bridewell holds the Gold level, Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly one team. Who are we looking for? A passionate technology focused individual, with an honest and empathic approach to customer conversations. You … will have hands on experience in Security Architecture and Cloud Security and can deliver comprehensive and robust security solutions to different audiences. You will have owned, led and developed end to end solution architectures for projects which have high security requirements. Requirements This role sits within our Security Architecture and Cyber Consulting teams meaning you More ❯

now – let's talk about the role and who we're looking for... A bit about the role... The SOC Shift Analyst role is a vital part of the Security Operations team, reporting to the SOC Manager. This role will be responsible for the proactive security monitoring of the Allwyn estate and the detect and respond phases … of cyber security incident response and will be instrumental in supporting and advancing the operational security capabilities of the SOC Team The Security Operations Analyst will have primary responsibility for all technologies managed directly by the SOC team but also need to track, check and report on security events discovered by our MSSP. Team Description: Allwyn … UK SOC team is pivotal to Allwyn's commitment to protect the National Lottery and its players from Cyber Threats. The SOC is part of the Cyber and Information Security function alongside with our Cyber Défense team and the GRC team. The purpose of the SOC team to deliver Allwyn UK security monitoring and incident response capability. More ❯

Our client, a leading technology company, is currently seeking a Security Architect to support a project for BP on a contract basis. This role is ideal for individuals with substantial experience in information security, particularly within Azure environments. Key Responsibilities: Developing and implementing security architectures that align with client requirements Supporting infrastructure deployment and ensuring security best practices Overseeing networking arrangements and ensuring secure configurations Setting up and managing Azure Monitor to enhance security monitoring capabilities Collaborating with project stakeholders to identify and mitigate security risks Providing expert advice on security needs and solutions during project development Ensuring compliance with relevant security standards and regulations Documenting security policies, procedures … and guidelines Job Requirements: Significant experience in information security Strong expertise in Azure-based security practices Proficiency in infrastructure deployment and networking within cloud environments Experience with Azure Monitor and security monitoring tools Excellent problem-solving and analytical skills Strong communication and interpersonal abilities Ability to work collaboratively within a team environment Contract Details: Start date More ❯

Job Title : Cyber Security Engineer Location: Bridgend, South Wales Salary: £32,000 - £37,000 per annum Job Type: Full Time, Permanent Working Hours: Monday to Friday - 9am to 5.30pm (flexible hours between 8am - 6pm) Who are we Flotek Group is one of the fastest-growing Tech Companies in the UK, providing IT, Cybersecurity, Comms and Managed Print Solutions to … working environment, where we can expect to learn to be exceptional, earn trust through actions and receive recognition when our work gets a 'Wow!' The role As a Cyber Security Engineer at Flotek, you will play a pivotal role within our dedicated IT Engineering team. You will be responsible for the delivery and ongoing improvement of robust security solutions, ensuring that every project and operational process meets the Flotek standard for cyber resilience. Your responsibilities will include not only maintaining and exceeding established security benchmarks for our partners for Cyber Essentials and Cyber Essentials+ audits and certifications, but also actively identifying opportunities for process improvement and risk reduction. Collaboration is at the heart of this role More ❯

Job Overview Join our clients security team as a Mid-Level SOC & Security Analyst, bridging project delivery and incident response. You'll work alongside Security Architects on transformation projects and support Junior Analysts on live security incidents. We're looking for someone proactive, solutions driven, and ready to strengthen internal defences across a 5,000-strong … user base in the UK, Ireland and the US. Key Responsibilities Monitor and analyse security events and alerts, assessing urgency and impact Support the delivery of security architecture and transformation projects Triage, investigate and help remediate security incidents with the SOC team Respond to phishing and social engineering threats, including email anomaly reviews Oversee and complete security reviews from initiation to resolution Evaluate and recommend security solutions based on organisational need Support policy, user awareness, and compliance enforcement Assist with internal and external security audits Experience Required 4+ years experience in security, SOC or Security Analyst roles Previous IT Support/Service Desk background One of the following certifications: CompTIA Security More ❯

Role: Information Security Officer Location: Milton Keynes Salary: £50k - £60k Work Pattern: Hybrid Summary: A new position has opened at an exciting software company for an Information Security Officer to lead the organisation's security strategy, operations, and compliance efforts. This hands-on role blends strategic security architecture with day-to-day operational management and regulatory … compliance oversight. The ideal candidate will establish and maintain security standards across the product portfolio, oversee secure system environments, and act as the primary contact for ISO 27001, PCI DSS, and GDPR compliance. Additionally, this role will support our commercial teams by contributing to tender responses and ensuring client security assurance. The Company: They are a technology company … experience and a broad global client base, they develop solutions that simplify complexity and drive smarter, more efficient ways of working. Core Responsibilities: Strategic (30%) Define and maintain robust security architecture and standards across multi-cloud SaaS platforms. Integrate security best practices into product design, development, and roadmap planning. Conduct threat modelling and risk assessments for new features More ❯

SIEM Engineer Contract - Inside IR35 Duration: March 2026 Reading (Hybrid) Are you a seasoned SIEM (Security Information and Event Monitoring) professional looking to take your career to new heights? If so, this could be the perfect opportunity for you! The company is seeking a talented SIEM Engineer to join their dynamic team and play a pivotal role in … maintaining and enhancing their security monitoring platform. As the SIEM Engineer, you will be responsible for ensuring the optimal performance, scalability, and integration of the company's SIEM platform. This includes onboarding log sources, developing analytical rules, creating automation for triage and remediation, and integrating with other IT and Operational Technology platforms. You will collaborate with the wider … team to ensure the SIEM platform meets their day-to-day needs and provide support during incidents as necessary. Key Responsibilities of the SIEM Engineer Develop and maintain the security monitoring platform, ensuring it meets the company's evolving security requirements. Participate in infrastructure projects to plan and implement solutions for security monitoring. Design, implement, and More ❯

Role Overview We are seeking a highly skilled Cloud Security Engineer with hands-on experience using Wiz and deep technical expertise across major cloud platforms including AWS, Azure, and GCP . This role is key in strengthening our cloud security posture, managing security incidents, and driving proactive improvements through advanced risk and control measures. You will collaborate … with cross-functional IT, DevOps, and Security teams to identify, assess, and mitigate security risks, leveraging automation and best practices to ensure secure cloud environments across our organization. Key Responsibilities Deploy, configure, and optimize Wiz for continuous cloud security monitoring and compliance management. Identify vulnerabilities, misconfigurations, and risks across AWS, Azure, and GCP environments, and drive … remediation efforts. Lead root cause analysis (RCA) for security incidents and coordinate escalations as needed. Partner with software engineering and infrastructure teams to integrate security best practices into CI/CD pipelines and software design. Monitor industry information technology trends to anticipate evolving threats and recommend security strategy enhancements. Participate in change and transformation initiatives to improve More ❯

market leaders in providing customer and client-centric services, operating across multiple locations. Due to continued growth and acquisitions, they are keen to appoint an experienced Head of Information Security, based out of the central Birmingham offices - one day in the office and 4 days remote. Paying a salary range up to £85,000 plus bonus. As an experienced … Information Security Manager, you will define and drive InfoSec strategy across group. Leading a security team ensuring safeguarding data, compliance with regulatory frameworks. In addition, you will lead a strategic vision with hands-on expertise across critical systems. Information Security Manager: Duties Experience of business acquisitions - Highly desirable Develop/Maintain enterprise InfoSec strategy aligned business goals … Oversee security architecture, vulnerability management, incident response and threat intelligence Lead security risk assessments and manage remediation plans for gaps Financial regulation compliance - GDRP, PCI DSS, SOX, FCA Establish security policies, standards & procedures Repost security posture, incidents & key metrics Drive security awareness and training programmes Manage relationships with external auditors, regulators and security vendors More ❯

Security Analyst 3-month contract My Customer is looking for a proactive Security Analyst to join their team and take ownership of monitoring, triaging, and responding to security alerts across their Microsoft security ecosystem. Strong experience troubleshooting and responding to alerts would be the main focus of the role. Strong expertise with Microsoft Defender and … Sentinel is needed. Key Skills & Experience from the Security Analyst: Strong experience with Microsoft Sentinel (SIEM) and Microsoft Defender suite (Defender for Endpoint, Identity, Cloud, etc.). Proven track record in security monitoring, incident response, and alert troubleshooting . Working knowledge of SOAR platforms (preferably within Sentinel or similar). Understanding of threat detection, log analysis, and … automation within Microsoft s security ecosystem. Experience with Tenable is beneficial Knowledge of Microsoft Purview would be beneficial Key Responsibilities of the Security Analyst: Monitor, investigate, and respond to security alerts and incidents in Microsoft Sentinel and Microsoft Defender . Perform detailed security event analysis and correlation, escalating incidents where necessary. Develop and optimise SOAR (Security More ❯

Security Analyst – 3-month contract My Customer is looking for a proactive Security Analyst to join their team and take ownership of monitoring, triaging, and responding to security alerts across their Microsoft security ecosystem. Strong experience troubleshooting and responding to alerts would be the main focus of the role. Strong expertise with Microsoft Defender and … Sentinel is needed. Key Skills & Experience from the Security Analyst: Strong experience with Microsoft Sentinel (SIEM) and Microsoft Defender suite (Defender for Endpoint, Identity, Cloud, etc.). Proven track record in security monitoring, incident response, and alert troubleshooting . Working knowledge of SOAR platforms (preferably within Sentinel or similar). Understanding of threat detection, log analysis, and … automation within Microsoft’s security ecosystem. Experience with Tenable is beneficial Knowledge of Microsoft Purview would be beneficial Key Responsibilities of the Security Analyst: Monitor, investigate, and respond to security alerts and incidents in Microsoft Sentinel and Microsoft Defender . Perform detailed security event analysis and correlation, escalating incidents where necessary. Develop and optimise SOAR (Security More ❯

discovery and support innovation across the firm. The role We're looking for an Elastic Platform Engineer to manage and evolve the Elastic SIEM and Tines infrastructure within our Security Engineering team. In short, you'll be the brain behind Elastic and Tines at G-Research. You'll ensure stability, scalability and security of the platform, while planning … executing upgrades, patches and integrations. As a senior engineer within the team, you'll be expected to mentor junior colleagues and contribute to the cross-skilling of the wider Security Engineering function, including support for the Azure Logging platform when required. You will report into the Security Engineering Manager and play a key role in enabling the CSIRT … Team to perform effective security monitoring and incident response across G-Research's cloud, hybrid cloud and corporate environments. Key responsibilities of the role include: Owning the Elastic SIEM and Tines infrastructure, ensuring reliability, performance and security Planning, testing and implementing system upgrades, patches and improvements with minimal service disruption Collaborating with security analysts, detection engineers More ❯

Role: Security Information & Event Monitoring (SIEM) Engineer – **Security Cleared** Location: Reading/Havant – UK Mode: Hybrid (2 days office) Language: English Mandatory - **Clearance: Must be Security Cleared (Active SC)** Job Summary: Looking for an experienced SIEM Engineer to maintain and enhance the Security Monitoring platform. Responsible for log onboarding, custom parsers, rule creation, automation … for triage and remediation, and integration with other security tools. Key Responsibilities: Develop and manage the SIEM platform ensuring scalability and performance. Plan and implement solutions for security monitoring. Design and maintain detection rules. Lead and mentor SIEM team. Work closely with Threat Detection & Response team to support incident handling. Required Skills: Proven hands-on experience in SIEM … engineering. Strong understanding of security logs across domains (identity, network, system, data, cloud). Proficient in PowerShell and Python. Good knowledge of SOAR platforms. Leadership and stakeholder management skills More ❯

Infrastructure Security Engineer- Spanish speaking We are currently recruiting for a Infrastructure Security Engineer on a 6 month initial contract. Hybrid basis (2-3 days) They are looking for a candidate to take responsibility for leading, guiding, supporting and delivering secure architectural design for the group cyber security maturity programme. They are also looking for a candidate … who is able to provide advice and recommendations for the programme. Key Skills Support the integration of new cyber security technologies that meets the next generation threats and can be adopted by the group globally You will be required to travel to the local sites, data centre or multiple offices location in order to complete your tasks for off … the network countries. Support global cyber security team to ensure open Continuous Security Improvement Programme (CSIP's) are managed effectively up to closure Information Security Management System (Infrastructure Security Operations). Azure cloud infrastructure and configuration. System Centre Configuration Manager, Operations Manager and Virtual Machine Manager. Microsoft Exchange online Azure and on-premises Active Directory Cyber More ❯

Network Engineer Cisco (CCNP/CCIE) Meraki Security Monitoring LAN/WAN Infrastructure We are seeking a highly skilled Network Engineer with deep expertise in Cisco technologies, strong hands-on Meraki experience, and a solid understanding of security, monitoring, and wider infrastructure environments. This role focuses on designing, supporting, and optimising complex LAN/WAN networks … Key Responsibilities Design, implement, and support LAN/WAN and wireless network solutions using Cisco technologies. Manage, configure, and optimise Cisco Meraki environments, including SD-WAN, wireless, switching, and security appliances. Maintain secure network operations through firewall management, access control, segmentation, and threat mitigation. Monitor and troubleshoot network performance using industry-standard tools. Collaborate with server, storage, and infrastructure … . Strong knowledge of LAN/WAN, routing, switching, VPNs, and network protocols (BGP, OSPF, STP, etc.). Hands-on expertise with Cisco Meraki solutions. Solid understanding of network security principles and tools. Experience with monitoring platforms (e.g., SolarWinds, PRTG, Meraki Dashboard, ThousandEyes, etc.). Good grounding in server and storage infrastructure (VMware, Windows Server, SAN/NAS More ❯

Job Title: SIEM Engineer (Security Cleared) Location: United Kingdom (Must hold active Security Clearance) Job Type: Contract/Permanent Overview: We are seeking an experienced Security Information & Event Monitoring (SIEM) Engineer with active Security Clearance to join our cybersecurity team. The ideal candidate will be responsible for maintaining, developing, and optimizing the SIEM platform — ensuring … plan, and track log integrations. Develop automation for alert triage and incident remediation through SOAR tools. Collaborate with Threat Detection & Response teams to ensure the SIEM platform aligns with security monitoring requirements. Participate in infrastructure projects and security tool integrations. Lead and mentor junior SIEM engineers, fostering a culture of continuous improvement. Key Skills & Experience: Active UK … Security Clearance – Essential . Proven hands-on experience as a SIEM Engineer . Strong understanding of security log management across multiple domains (identity, access, network, systems, cloud, and applications). Proficiency in Python and/or PowerShell for data analysis and automation. Experience with SOAR platforms and security automation workflows. Excellent problem-solving, stakeholder management, and collaboration More ❯

Candidate MUST BE SECURITY CLEARED As a Security Information & Event Monitoring (SIEM) Engineer, you are responsible for maintaining the SIEM platform. This includes onboarding log sources, creating custom parsers, developing analytic rules, creating automation for triage and remediation, and integrating with other Information Technology and Operational Technology SSE platforms at pace. You will: Develop the security monitoring platform, ensuring optimal performance, scalability, and integration with security tools. Participate in infrastructure projects to develop, plan, and implement solutions for security monitoring. Design, implement, and maintain detection rulesets. Scope, plan, and track log integrations. Guide, develop, and grow the SIEM Engineering team. Collaborate with the wider Threat Detection & Response team to ensure the SIEM … platform meets their day-to-day needs and support incidents as necessary. You have Proven hands-on SIEM Engineering background. Extensive experience working with security logs across multiple domains identity and access, network, system, data, application, cloud and multiple product types. Proficiency in data analysis and scripting languages (e.g., PowerShell, Python). Strong Security Orchestration, Automation and Response More ❯

ICS OT Cyber Security Consultant Home based with travel to Staffordshire and UK-wide customer sites Are you an OT/ICS cyber specialist who enjoys getting hands-on with red team activities in critical industrial environments? Do you want a role that mixes penetration testing, threat emulation and resilience validation with security architecture and incident response? Would … membership fees covered What will you be doing? Delivering OT-focused red team activities with specialist partners, including penetration testing, adversary simulation and incident response exercises Planning and executing security assessments and incident response exercises in OT/ICS environments Developing and implementing attack scenarios and detection use cases using frameworks such as MITRE ATT&CK for ICS Performing … vulnerability assessments, threat modelling and attack path analysis to identify and address security weaknesses Supporting risk assessments and compliance against standards such as IEC 62443, NIST SP800-82 and NIS-R Helping deploy, configure and maintain OT cybersecurity and security monitoring solutions Contributing to crisis simulations, incident response plans and cybersecurity awareness training Preparing reports, documenting findings More ❯

Security Operations Centre OperativeHours: 12-hour night shifts, 4-on/4-offLooking for a role where every shift truly matters? We’re seeking a Security Operations Centre Operative to join a fast-paced, technology-driven monitoring environment—protecting people, assets, and operations around the clock.The RoleYou’ll be at the heart of incident response and live … monitoring, spotting issues before they escalate and reacting quickly when they do. From analysing CCTV feeds to supporting emergency protocols, this is a role for someone who stays cool under pressure and thrives in a detail-focused, mission-critical setting.Key Responsibilities Monitor security systems, alarms, and CCTV to detect and respond to incidents. Escalate issues in line with … procedures. Liaise with internal teams and emergency services when required. Conduct routine system health checks and identify faults. Support clear, accurate shift handovers. Provide first-line technical support for security equipment. Maintain detailed records and ensure GDPR compliance. Uphold strict confidentiality and discretion at all times. About You Calm, organised, observant, and confident using technology. Excellent written and verbal More ❯

basis. The position will be based in Aberdeen and will have a 3/2 hybrid working pattern Key ResponsibilitiesRisk Assessment & Secure by Design Perform structured IT and information security risk assessments and threat modelling for new IT platforms, systems, and applications and for material changes. Provide security architecture advice (patterns, guardrails) aligned to NIST CSF/ISO … test scopes, frequency and metrics. Track high-risk deviations and risk acceptances; drive remediation and report residual risk to the CISO, CIO and business risk owners. OT/ICS Security Own the LOD2 assurance plan across OT sites against the OT security standard, deciding the order and frequency of assessments aligned to risk and risk appetite. Provide OT … security advisory in relation to OT security standards alignment across all OT sites, advocating for segmentation, zoning, secure remote access, security monitoring and patching controls in line with ISA/IEC 62443. Supplier & Third-Party Assurance (with Procurement) Run supplier assurance in collaboration Procurement including, pre contract due diligence, control reviews, and ongoing attestation for Suppliers More ❯

basis. The position will be based in Aberdeen and will have a 3/2 hybrid working pattern Key ResponsibilitiesRisk Assessment & Secure by Design Perform structured IT and information security risk assessments and threat modelling for new IT platforms, systems, and applications and for material changes. Provide security architecture advice (patterns, guardrails) aligned to NIST CSF/ISO … test scopes, frequency and metrics. Track high-risk deviations and risk acceptances; drive remediation and report residual risk to the CISO, CIO and business risk owners. OT/ICS Security Own the LOD2 assurance plan across OT sites against the OT security standard, deciding the order and frequency of assessments aligned to risk and risk appetite. Provide OT … security advisory in relation to OT security standards alignment across all OT sites, advocating for segmentation, zoning, secure remote access, security monitoring and patching controls in line with ISA/IEC 62443. Supplier & Third-Party Assurance (with Procurement) Run supplier assurance in collaboration Procurement including, pre contract due diligence, control reviews, and ongoing attestation for Suppliers More ❯

Analyst (Operational Technology) Outside IR35 Duration: 6 9 months Location: Crawley, Hybrid 2 days per week on site Overview of project: The role of an Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst is to respond to high-severity cyber security incidents and/or escalated events and alerts then, using experience combined with industry … forensic analysis across multiple data sources and recommend containment and eradication actions. Crisis Testing: Take part in cyber-attack simulations to strengthen resilience. Reporting: Improve reporting dashboards and key security metrics. Tooling: Support and maintain security tools and platforms for threat prevention, detection and response. Audit: Support SOC2/NCSC CAF/ISO27001 audits and ensure compliance. Continuous … Improvement: Automate and enhance monitoring, detection and response based on evolving threats. Skills, experience and previous achievements required: Essential Extensive End to End Cyber Incident Leadership Experience Extensive SOC L3/CSIRT L3 Experience Extensive CNI/Defence/Business Critical Environment Experience Desirable Threat Hunting Experience Threat Hunting Strategy Mindset Runbook & Playbook Authoring Lessons Learned/Root Cause More ❯

Analyst (Operational Technology) Outside IR35 Duration: 6 – 9 months Location: Crawley, Hybrid 2 days per week on site Overview of project: The role of an Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst is to respond to high-severity cyber security incidents and/or escalated events and alerts then, using experience combined with industry … forensic analysis across multiple data sources and recommend containment and eradication actions. Crisis Testing: Take part in cyber-attack simulations to strengthen resilience. Reporting: Improve reporting dashboards and key security metrics. Tooling: Support and maintain security tools and platforms for threat prevention, detection and response. Audit: Support SOC2/NCSC CAF/ISO27001 audits and ensure compliance. Continuous … Improvement: Automate and enhance monitoring, detection and response based on evolving threats. Skills, experience and previous achievements required: Essential Extensive End to End Cyber Incident Leadership Experience Extensive SOC L3/CSIRT L3 Experience Extensive CNI/Defence/Business Critical Environment Experience Desirable Threat Hunting Experience Threat Hunting Strategy Mindset Runbook & Playbook Authoring Lessons Learned/Root Cause More ❯

for using technology to solve business problems, working in partnership with our clients to help in achieving their goals. About the role: Lead, mentor, and develop a team of Security Analysts to ensure effective 24/7 SOC operations Act as the primary escalation point for complex security incidents, ensuring timely investigation and resolution Oversee incident response activities … coordinating with internal and external stakeholders where required Manage day-to-day SOC operations, ensuring adherence to SLAs, KPIs, and compliance requirements Drive continuous improvement in security monitoring, detection, and response processes Ensure effective use and optimisation of SIEM, SOAR, EDR, and other security technologies Produce and deliver regular reporting on SOC performance, incident trends, and risk … skills and experience relevant to this role: Strong knowledge of SIEM, SOAR, EDR, IDS/IPS, firewalls, and endpoint protection solutions Strong Knowledge in Incident response Familiarity with cloud security and hybrid environments Understanding of network protocols, operating systems (Windows/Linux), and common attack vectors Benefits At Sword, our core values and culture are based on caring about More ❯