1 to 25 of 67 Security Operations Centre Jobs in England

Senior Cyber Security Analyst (Ops - Cloud) The Senior Security Analyst (Ops) sits within the Protective Monitoring function of the Cyber Security Operations Centre (CSOC). The CSOC is made up of Protective Monitoring, Incident Management, Threat Operations, Engineering and Consultancy. The role is a Tier 3 analyst in the Cloud Protective Monitoring Sub team. … Cyber Operations purpose is to support safe care and build public trust by building NHS England's cyber resilience and enabling the wider health system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Cyber Operations sub-directorate consists of 4 operational areas: Cyber Security Operations Unit (CSOU) Cyber Delivery Unit (CDU). Cyber Improvement Programme. Chief Information Security Office Function (CISO) The post of Senior Security Analyst has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In recognition of this, the role attracts an additional monthly RRP payment equal to 20% per annum. Please be More ❯

Senior Cyber Security Analyst (Ops - Cloud) The Senior Security Analyst (Ops) sits within the Protective Monitoring function of the Cyber Security Operations Centre (CSOC). The CSOC is made up of Protective Monitoring, Incident Management, Threat Operations, Engineering and Consultancy. The role is a Tier 3 analyst in the Cloud Protective Monitoring Sub team. … Cyber Operations purpose is to support safe care and build public trust by building NHS England's cyber resilience and enabling the wider health system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Cyber Operations sub-directorate consists of 4 operational areas: Cyber Security Operations Unit (CSOU) Cyber Delivery Unit (CDU). Cyber Improvement Programme. Chief Information Security Office Function (CISO) The post of Senior Security Analyst has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In recognition of this, the role attracts an additional monthly RRP payment equal to 20% per annum. Please be More ❯

Job summary The Senior Security Analyst (Ops) sits within the Protective Monitoring function of the Cyber Security Operations Centre (CSOC). The CSOC is made up of Protective Monitoring, Incident Management, Threat Operations, Engineering and Consultancy. The role is a Tier 3 analyst in the Cloud Protective Monitoring Sub team. Cyber Operations purpose is … cyber resilience and enabling the wider health system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Cyber Operations sub-directorate consists of 4 operational areas: Cyber Security Operations Unit (CSOU) Cyber Delivery Unit (CDU). Cyber Improvement Programme. Chief Information Security Office Function (CISO … The post of Senior Security Analyst has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In recognition of this, the role attracts an additional monthly RRP payment equal to 20% per annum. Please be aware that RRP is none contractual and subject to review. Main duties of the job As a Senior More ❯

Vacancy No VN140 Location City Dundee Location Country United Kingdom Business Unit Global Delivery Employment Type Full-Time About Systal We are Systal: a global managed network, cloud and security transformation specialist. We provide complex and strategic technology services for enterprise businesses, managing 200,000+ assets across 93 countries. These services help our customers achieve strategic technology transformation and … maximise the business value, security and innovative potential of their IT infrastructure Description We are seeking enthusiastic, dedicated and detail-oriented Level 1 SOC Analyst to join our UK based Security Operations Centre (SOC). The successful candidate will be responsible for the initial analysis and triage of security alerts, monitoring security systems, and … supporting the development of security event investigation and analysis within a large Organisational Environment. This role is critical in identifying and responding to security incidents to protect our customers information assets. Key Responsibilities Monitor Security Information & Event Management (SIEM) Tools: Continuously monitor SIEM tools to pro-actively engage with and investigate potential security incidents. Incident Identification More ❯

Contract Role – Security Analyst (Network & Endpoint) – England/Remote – 4+ Months Initial We are looking for a highly capable and technically skilled Security Analyst (Network & Endpoint) to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The … successful candidate will have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Role Overview: Job Title: Security Analyst (Network & Endpoint) Location: England/Remote Contract Type: Contract Duration: Contract till 31st Mar 26 Sector: Healthcare . Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat … anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC More ❯

Role title: Information Security Manager Reports to: Head of Operational Resilience Location: Hub Location Hours of work: Full time, with 3 days per week in the office SMCR Function: Conduct Purpose of role Information Security Manager you will define and drive the information security strategy across our financial services business. You will lead a growing team of … security professionals to safeguard customer data, ensure compliance with regulatory frameworks, and build a culture of security awareness throughout the organisation. Your strategic vision and hands-on expertise will protect critical systems and support business growth. Key Responsibilities Develop and maintain the enterprise information security strategy aligned with business goals Lead the implementation and oversight of a … 3rd party managed Security Operations Centre (SOC) ensuring effective integration. Baseline and conduct regular reviews with an incoming 3rd party managed SOC and the security tools in the Cloud environment (Defender and Sentinel) Oversee security architecture, vulnerability management, incident response, and threat intelligence Lead security risk assessments and manage remediation plans for identified gaps More ❯

CYBER SECURITY ANALYST | SECURITY OPERATIONS CENTER (SOC). Summer-Browning Associates is supporting our client in the Central Government who is seeking a Cyber Security Analyst for an initial 12-month assignment, with the possibility of extension. Location: London | Hybrid| Remote The ideal candidates will hold active DV clearance and have a proven background in Cyber … Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform triage of security events to determine their … scope, priority, and impact, while making recommendations for efficient remediation. Experience in network security principles, firewalls, and access control mechanisms. Preferred Qualifications: - Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable. To apply, please submit your latest CV for review. More ❯

We are looking for a dynamic and experienced SOC Operations Manager to lead and shape the delivery of our Security Operations Centre (SOC) services. In this pivotal role, you will be responsible for ensuring the SOC operates at peak performance while driving continual improvement, with a strong focus on ITIL service management principles and full alignment … with CREST standards. Based on-site in Hemel Hempstead, this is an outstanding opportunity for a SOC Operations Manager with proven experience in monitoring and analysing security threats for multiple customers.You will oversee and mentor a skilled team of analysts, fostering a culture of continuous learning, champion best practices in threat detection and incident management, and play a … vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews, and foster continuous improvement. Oversee full lifecycle of security incidents from detection to resolution. Ensure compliance with SLAs and escalation protocols. Maintain and enhance incident response plans and procedures. Direct threat intelligence collection and analysis. Manage vulnerability assessments More ❯

our overall success. We invite you to share your perspectives, cultural backgrounds, and innovative ideas; we look forward to your contributions. Join the Vix team as an experienced Cloud Security Engineer! This on-site position in Manchester involves collaborating with our Cloud Operations team and the Security team to maintain robust security protocols. You'll play … a crucial role in guiding our technical teams to meet security standards, successfully passing security audits, and safeguarding both company and customer data. As the first point of contact for security incidents, your expertise will be essential in keeping our systems secure. We regret that this position is only available for UK citizens/Residents with indefinite … the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in Manchester. Responsibilities Evaluate and strengthen our overall security posture by performing continuous audits, risk assessments, threat modelling, and architecture reviews to ensure effective controls and adherence to regulatory standards. Consistently monitor and assess cloud environments for vulnerabilities More ❯

The Role: Leidos, a Global IT Solutions Provider specialising in large scale implementations involving science, engineering, and technology, require a Cyber Defence Analyst to work in their CSOC (Cyber Security Operations Centre) Team. The Cyber Defence Analyst will be expected to contribute to the growth and development of the CSOC. You will work with a wide variety … of stakeholders to ensure, the Leidos CSOC, a Defensive Cyber Security capability, can support a customers Cyber Resilience, protecting them with a 24 x 7 Threat Detection and Response service, mitigating their risk of Cyber Attack. The successful candidate will be able to demonstrate experience from a CSOC background or be able to demonstrate sufficient transferable Cyber Security … succeed in the role the candidate must be capable of working under pressure, delivering on multiple customer accounts and have an appetite to progress and develop their own Cyber Security career. The role will be working within the CSOC, adhering to a matrix managed environment, reporting operationally to the CSOC Lead and accountable to the CSOC Manager. What will More ❯

and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! The Cyber Security Incident Response Team (CSIRT), part of Counter Threat & Engineering (CT&E), responds to digital security threats and incidents globally from bp hubs in Houston, Sunbury, Kuala Lumpur, Pune … and Singapore. The Security Operations Center (SOC) raises incidents to CSIRT, which conducts long-term investigations using digital forensics, advanced techniques, and collaborating across bp. Team members must understand bps business segments and address a broad range of security-related questions. You will help ensure enterprise security, enabling safe and secure business operations as part … of this global team. Key Accountabilities Support the bp SOC as an escalation point for security events and incidents. Conduct digital forensic investigations on high-priority incidents to include functions such as host (disk and memory) forensics, network forensics and log analysis. Work across Digital Security and the bp business functions to partner on incidents and to ensure More ❯

Cyber Security Engineer Location: Leeds City Centre (Hybrid: 3 days in the office, 2 days remote) Job Type: Full-Time Reports To: Security Operations Manager Salary: £30,000 – £45,000 + On-Call Allowance + Benefits Working Hours: 09:30–18:00 (core business hours are 08:00–18:00) On-Call: 1-in-4 rotation … with allowance, providing 24/7 coverage Company Overview The team supports a broad range of cutting-edge security technologies, helping customers secure their networks, applications, and infrastructure through proactive monitoring, management, and incident response. As demand for managed firewall and security services grows, my client is looking for a Cyber Security Engineer with strong networking fundamentals … and a willingness to learn advanced security technologies. This role is ideal for someone with 1–2 years of experience who wants to develop their skills in a supportive, growth-focused environment. Role Overview As a Cyber Security Engineer within the Security Operations Center (SOC), you will help manage and support customer network security environments. More ❯

SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high-severity cyber incidents … and escalated security events, leveraging your technical expertise, analytical mindset, and industry-standard tools to contain, eradicate, and recover from cyber threats. Your work will directly contribute to safeguarding my client's network systems, operational technology, and customer data from emerging and sophisticated cyber risks. Key Responsibilities As a senior member of the Security Operations team, you … and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration and effective alert correlation across cloud and on-prem environments. Support and develop the organisation's SOAR More ❯

SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high-severity cyber incidents … and escalated security events, leveraging your technical expertise, analytical mindset, and industry-standard tools to contain, eradicate, and recover from cyber threats. Your work will directly contribute to safeguarding my client's network systems, operational technology, and customer data from emerging and sophisticated cyber risks. Key Responsibilities As a senior member of the Security Operations team, you … and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration and effective alert correlation across cloud and on-prem environments. Support and develop the organisation's SOAR More ❯

Network Security Engineer (SOC) Job Description Please note this role will require candidates to gain DV Clearance. An exciting opportunity for a passionate Network Security Engineer to join a unique, multi-national Information Management function. Ideal candidates should be committed to protecting critical systems and ensuring the integrity and security of the network infrastructure. The opportunity: Join … a forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our clients’ organisations’ network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions to protect against evolving threats. Collaborating with cross-functional teams, you will work on implementing changes securely, identifying vulnerabilities, managing security incidents and ensuring compliance with industry best practices. The role will be involved in the optimisation of network security tools to remediate “purple team” highlighted areas identified for improvement. You will also have the opportunity More ❯

Network Security Engineer (SOC) Job Description Please note this role will require candidates to gain DV Clearance. An exciting opportunity for a passionate Network Security Engineer to join a unique, multi-national Information Management function. Ideal candidates should be committed to protecting critical systems and ensuring the integrity and security of the network infrastructure. The opportunity: Join … a forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our clients’ organisations’ network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions to protect against evolving threats. Collaborating with cross-functional teams, you will work on implementing changes securely, identifying vulnerabilities, managing security incidents and ensuring compliance with industry best practices. The role will be involved in the optimisation of network security tools to remediate “purple team” highlighted areas identified for improvement. You will also have the opportunity More ❯

Network Security Engineer (SOC) Job Description Please note this role will require candidates to gain DV Clearance. An exciting opportunity for a passionate Network Security Engineer to join a unique, multi-national Information Management function. Ideal candidates should be committed to protecting critical systems and ensuring the integrity and security of the network infrastructure. The opportunity: Join … a forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our clients’ organisations’ network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions to protect against evolving threats. Collaborating with cross-functional teams, you will work on implementing changes securely, identifying vulnerabilities, managing security incidents and ensuring compliance with industry best practices. The role will be involved in the optimisation of network security tools to remediate “purple team” highlighted areas identified for improvement. You will also have the opportunity More ❯

Cyber Security Consultant- Remote An exciting opportunity has arisen for a Cyber Security Consultant who can provide practical advice and hands-on support to improve security project and manage alerts. We’re seeking a specialist who has expertise in Microsoft Defender & Sentinel who can turn alert data into actionable intelligence, identify opportunities for optimisation, and advance the … customer’s SOC maturity through data-driven improvements and Sentinel/Defender best practices. As a Cyber Security Consultant, your mission is clear; be technically proficient and provide practical solutions rather than theoretical advice. The consultant should be able to work closely with the team to implement changes and improve security. Cyber Security Consultant’s Responsibilities: Develop and … tools such as Advanced Hunting, Threat Analytics, and Attack Surface Reduction to strengthen detection and response. Recommend SOC process improvements through data-driven insights and best practice alignment. Cyber Security Consultant’s Required Knowledge and Experience: Extensive experience with Microsoft Defender, Sentinel, and possibly working in a Security Operations Centre (SOC). Experience extracting alert data More ❯

Job Title: Technical Operations Analyst - Fully Remote (MUST BE BASED IN THE UK) - No Sponsorship Available Job Description The Technical Operations Analyst is responsible for providing extensive technical support and ownership for maintaining the service throughout the life of the contract. This role involves owning the technical delivery model and fostering strong relationships with internal supplier resolver teams … delivery. Maintain strong relationships with internal supplier resolver teams. Ensure a seamless experience for the customer through effective operations. Essential Skills (Please ensure your CV reflects these skills) SOC (Security Operations Centre) experience. Cyber security expertise Security management Risk management proficiency Technical support experience Operational analysis skills Why Work Here? Join an environment that values … Contacting Us" section of our Online Privacy Notice at (url removed)/en-gb/privacy-notices for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as More ❯

Job Posting: Cyber Security Assurance Manager Location: Portsmouth (Hybrid) Salary: £50,000 - £65,000 DOE Are You Ready to Lead the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment. In this crucial … role, you will ensure that the SOC maintains its commitment to best-in-class standards through internationally recognised security certifications and industry-wide assurance frameworks, delivering confidence to clients and meeting regulatory expectations. As a core team member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors … to showcase security credentials that differentiate our SOC from the competition. If you're skilled in blending technical insight with customer-focused communication while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST More ❯

forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Kyndryl's Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not … and managing the most modern and reliable technology infrastructure that the world depends on every day. As a Cybersecurity Defense professional at Kyndryl, you will encompass cybersecurity, incident response, security operations, vulnerability management, and the world of cyber threat hunting and security intelligence analysis all to protect the very heartbeat of organizations – their infrastructure. In this role … detection and response (EDR) will be the shield that safeguards individual workstations, laptops, servers, and other devices from cybercrime. Your responsibilities go beyond vigilance. When it comes to network security, you'll utilize Network Detection and Response (NDR) to monitor the ever-flowing currents of network traffic. The incident management process will be used as you respond and manage More ❯

Defence capabilities? This role offers the opportunity to contribute to the development and optimisation of advanced threat detection systems within a highly secure environment. You will work within a Security Operations Centre (SOC), designing and maintaining detection logic across SIEM (Security Information and Event Management) and EDR (Endpoint Detection and Response) platforms. Your work will help … positives, and improve overall detection coverage across networks, endpoints, cloud services, and identity platforms. Job Description As a SOC Detection Engineer, you will be part of a specialist cyber operations team responsible for implementing and maintaining high-fidelity detection capabilities. You will contribute to the development of detection rules, threat hunting activities, and automation workflows to support incident response … and continuous improvement. Key responsibilities include: Designing and tuning detection rules and use cases in SIEM and EDR platforms Monitoring and investigating security alerts to identify potential threats Conducting proactive threat hunting using MITRE ATT&CK and threat intelligence sources Collaborating with incident response teams to support investigations and containment Enhancing detection coverage across network, endpoint, cloud, and identity More ❯

Defence capabilities? This role offers the opportunity to contribute to the development and optimisation of advanced threat detection systems within a highly secure environment. You will work within a Security Operations Centre (SOC), designing and maintaining detection logic across SIEM (Security Information and Event Management) and EDR (Endpoint Detection and Response) platforms. Your work will help … positives, and improve overall detection coverage across networks, endpoints, cloud services, and identity platforms. Job Description As a SOC Detection Engineer, you will be part of a specialist cyber operations team responsible for implementing and maintaining high-fidelity detection capabilities. You will contribute to the development of detection rules, threat hunting activities, and automation workflows to support incident response … and continuous improvement. Key responsibilities include: Designing and tuning detection rules and use cases in SIEM and EDR platforms Monitoring and investigating security alerts to identify potential threats Conducting proactive threat hunting using MITRE ATT&CK and threat intelligence sources Collaborating with incident response teams to support investigations and containment Enhancing detection coverage across network, endpoint, cloud, and identity More ❯

SC Cleared Cyber Security Engineer- 3 months+ - £600-650pd Inside IR35 - Hybrid ( 1-2 days on site in London) The person will be joining the MIP team (Monitoring and Integration Platform) within Technology Services. The Technology Services team is responsible for all infrastructure, end user computing, onsite support and delivery of technology projects. It has responsibility for … devices and infrastructure across 900+ sites. The requirement is to deliver against the initial phase of the security monitoring project-onboarding 67 critical services and 72+ services proactively monitored by our in-house SOC (Security Operations Centre). Essential Criteria for the Role 2+ years in security platforms management (SIEM, SOAR). Expertise in enterprise … level monitoring and supporting large user bases (10,000+ users). Experience in creating/managing security playbooks and knowledge of public sector standards. Experience in Xsiam correlation/playbooks. Excellent communication skills, able to articulate technical concepts to diverse audiences. Technical requirements Proven experience with Cortex XDR, Cortex Data Lake, and Cortex XSOAR. Solid understanding of cloud security More ❯

Role title: Head of Information Security Reports to: CTOO Location: Hub Location Hours of work: Full time, with 3 days per week in the office SMCR Function: Certified Purpose of role As Head of Information Security you will define and drive the information security strategy across our financial services business. You will lead a team of security professionals to safeguard customer data, ensure compliance with regulatory frameworks, and build a culture of security awareness throughout the organisation. Your strategic vision and hands-on expertise will protect critical systems and support business growth. Key Responsibilities Develop and maintain the enterprise information security strategy aligned with business goals Oversee security architecture, vulnerability management, incident response … and threat intelligence Lead security risk assessments and manage remediation plans for identified gaps Ensure compliance with financial regulations (e.g. GDPR, PCI DSS, SOX, FCA requirements) Establish and enforce security policies, standards, and procedures Report security posture, incidents, and key metrics to senior leadership and the board Drive security awareness and training programmes for all employees More ❯