1 to 25 of 30 Security Operations Centre Jobs in London

Proactive Security Lead, UK Security Operations link Copy link corporate_fare Google place London, UK Mid Experience driving progress, solving problems, and mentoring more junior team members; deeper expertise and applied knowledge within relevant area. Apply link Copy link Bachelor's degree or equivalent practical experience. 5 years of experience in cybersecurity, with an offensive security (e.g., Red Teaming, Penetration Testing, or Adversary Simulation) or threat modeling. Experience in a Security Operations Centre (SOC) or similar environment, with modern threat landscapes and attack techniques. Experience in technical troubleshooting and writing code in one or more programming languages. Experience in threat modeling methodologies (e.g., STRIDE, PASTA, or attack trees) and secure system design … principles. Current and active UK Developed Vetting (DV) Security Clearance. Preferred qualifications: Certifications in OSCE3, CRTP/CRTE, GIAC GCSA/Kubernetes-related, OSCP, OSCE, CRTO, CISSP, or GIAC (e.g., GPEN, GCTI, GWAPT). Experience designing or executing Purple Team exercises, combining offensive tactics with defensive feedback to drive continuous improvement. Experience with Kubernetes security, including secure cluster More ❯

Security Analyst, Security Operations and Incident Response Meta is seeking a Security Analyst to join the Global Security Operations and Incident Response team. The Analyst will serve on the front lines of Meta's Security team and will lead and support security investigations across the company's global infrastructure as well as … respond to escalations from the Tier1 team. The analyst will leverage an armory of tools to investigate and respond to both external and internal security threats.Utilizing Meta's tooling, you will monitor security events in real-time, assess external and internal threats, and provide accurate and timely response. You will collaborate closely with technical teams, with a broad … set of skills to tackle the panoply of unique security challenges that we encounter at Meta scale. Security Analyst, Security Operations and Incident Response Responsibilities Investigate and respond to external and internal cybersecurity threats in a timely manner while communicating clearly and proactively until remediation. Act as an escalation point for Tier1 investigations, contribute to the More ❯

Information Security Operations Manager - Software Company Remote-first with occasional travel to London (max once a week) 35-hour working week | 30 days annual leave + bank holidays Are you an Information Security expert looking to make a real impact in a collaborative and forward-thinking tech environment? A leading UK-based software company is going through … an exciting digital transformation and is looking for an Information Security Operations Manager to lead and evolve their security operations capability. You'll work with a growing, ambitious InfoSec team and be at the heart of protecting systems, services, and data critical to the company's success. What you'll be doing: Lead the day-to … day security operations function, including vendor oversight and management of the outsourced MDR partner Manage and evolve the Security Operations Centre (SOC), guiding a small team of security professionals Coordinate timely responses to security incidents, ensuring proper documentation and post-incident analysis Collaborate with internal teams to ensure policies, protocols and operations More ❯

opportunity through the power of train travel, and we'd love to have you along for the ride. An exciting opportunity has arisen to join Eurostar as its: IS Security Operations Specialist. This role is based in our head office in Kings Cross. Internal Use Only: Role is grade F based in KP. The Information Security Department … IS) is seeking a highly skilled and proactive Security Operations Specialist to join our cybersecurity team. In this role, you will be responsible for administering and enhancing our security monitoring and detection capabilities, ensuring rapid and effective response to cyber incidents, and driving continuous improvements across our security operations. The main responsibilities will include overseeing and … stepping in to manage Level 1 and Level 2 responses when needed. You will play a key role in maintaining and developing cyber response playbooks, actively monitoring IT and security infrastructure beyond the scope of our Security Operations Centers (SOCs) and ensuring alignment with organizational IT security policies and procedures. The ideal candidate has strong analytical More ❯

Senior Manager – Security Operations Location: Dubai Salary: £100,000-£120,000 + incredible benefits package Benefits & Package Based in Dubai with 3 days per week in the office Salary: AED 45,000–50,000 per month (approx. £10,000 monthly), tax-free Comprehensive relocation support including visa costs for candidate and family First 45 days hotel accommodation fully … skilled leader ready to take on a pivotal role in one of the world’s most prestigious luxury brand groups? Based in Dubai, we are seeking a Senior Manager – Security Operations to lead our cybersecurity function and safeguard the digital integrity of our global operations. As the Senior Manager of Security Operations, you will lead a … high-performing cybersecurity team, driving the implementation of advanced security technologies, best practices, and operational excellence. You’ll oversee the full scope of security operations—ensuring KPIs and SLAs are met, managing budgets, and defending the organisation’s digital assets across all environments. This role is central to our cybersecurity strategy, blending technical depth with leadership, operational More ❯

Senior Manager – Security Operations Location: Dubai Company: Luxury Brand Group Type: Full-Time, Permanent Benefits & Package Based in Dubai with 3 days per week in the office Salary: AED 45,000–50,000 per month (approx. £10,000 monthly), tax-free Comprehensive relocation support including visa costs for candidate and family First 45 days hotel accommodation fully paid … skilled leader ready to take on a pivotal role in one of the world’s most prestigious luxury brand groups? Based in Dubai, we are seeking a Senior Manager – Security Operations to lead our cybersecurity function and safeguard the digital integrity of our global operations. As the Senior Manager of Security Operations, you will lead a … high-performing cybersecurity team, driving the implementation of advanced security technologies, best practices, and operational excellence. You’ll oversee the full scope of security operations—ensuring KPIs and SLAs are met, managing budgets, and defending the organisation’s digital assets across all environments. This role is central to our cybersecurity strategy, blending technical depth with leadership, operational More ❯

Minimum qualifications: Bachelor's degree or equivalent practical experience. 2 years of experience in similar SOC related roles, explicitly in responding to and actioning on security incidents. Certification in Certified Ethical Hacker (CEH), Global Information Assurance Certification (GIAC) or Computing Technology Industry Association Security (CompTIA Sec ). Experience in technical troubleshooting and writing code in one or more … programming languages. United Kingdom Security Vetting Developed Vetting (DV) clearance. Preferred qualifications: Certifications in Security or similar Cyber Security/Incident Response. Experience responding to security incidents on Kubernetes. Experience analyzing, triaging, and remediating common information security incidents. Understanding of common attacker tactics, tools, and techniques. Excellent problem-solving and investigative skills. Current and active … UK Developed Vetting (DV) Security Clearance. About the job The UK Security Operations (SecOps) team in Google Public Sector delivers, operates and secures private cloud services. We aim to provide the flexibility, reliability, and scalability of public cloud for customers with exceptionally high security requirements that can only be met in a private cloud environment. We More ❯

Cyber security is critical to every organisation. We are shaping strategies and transforming the management of cyber risk and we need you to join us. You'll build strong relationships as one of the areas of our cyber practice with over 450 extremely talented individuals in the UK alone, as part of a Technology and Transformation practice of … people. Cyber security is a business problem, not just a technical problem, and we need people with a diverse array of backgrounds and skills sets to help our clients solve it. Join us and you will help our clients solve the latest cyber security challenges, in a business with very significant growth ambitions enjoying the kind of professional … action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity We are a team with a passion and curiosity, for cyber security and technology, comfortable with operating in fast-paced environments defining and leading the development of cyber strategy, cyber programmes and managing cyber risk. We are looking for likeminded individuals More ❯

Contract Role - SOC Manager/Cyber Security Operations Manager - Leeds/Remote - 12 Months Initial - Inside IR35 We are seeking an exceptional SOC Manager/Cyber Security Operations Manager to lead our Cyber Security Operations Centre; responsible for managing the day-to-day operations of the SOC team, overseeing incident detection and … response, ensuring vulnerability scanning and remediation efforts across the organization. Role Overview: Job Title: SOC Manager/Cyber Security Operations Manager Location: Leeds/England/Remote Contract Type: Contract Duration: 12 months initially Sector: Healthcare . Qualifications: Bachelor’s degree in Cybersecurity, Information Technology, or a related field (Master’s preferred). Minimum 5 years of experience … in cybersecurity operations, with at least 2 years in a leadership or management role. Strong knowledge of SOC operations, incident response, and vulnerability management best practices. Hands-on experience with SIEM tools (e.g., Splunk, QRadar, Sentinel), vulnerability scanners (e.g., Nessus, Qualys), and other security platforms. Relevant certifications such as CISSP, CISM, CEH, GIAC, or GCIA are highly More ❯

threat actors who attempt to evade our cyber defenses. This is a hands-on technical position where you'll play an important role in increasing the maturity of our Security Operations Centre (SOC). Additionally, you'll need a strong drive and willingness to learn and grow. You'll be in a rapidly evolving environment, which will … bring new challenges and opportunities for growth regularly. You'll be empowered to develop and explore your unique passion for cyber security operations. In return, we offer an agile working environment with the latest technologies such as SASE, AI, and automation. One of our main values is empowerment, allowing people to drive significant change and make a difference. Simply … Business is a cloud-native company leading in the InsureTech market. You will report to Laura, the Security Operations Manager, and work alongside an award-winning team of 5 analysts and 3 engineers with diverse technical skills and backgrounds in cyber security. As our Lead Cyber Security Analyst, you'll: Develop and maintain the security incident More ❯

CyberSecurity Operations Engineer We are excited to be recruiting for a Operations Engineers role working for an industry-leading cybersecurity company based in London, providing the opportunity to work remotely. Already well-established within the cyber-security sector, they have experienced rapid sales in 2023 & 2024, which has opened up several career opportunities for cybersecurity professionals. This … for progression and an exciting career trajectory ahead. Location: Remote - Must be able to travel into London when needed Salary: £35,000 - £50,000 per annum Requirements for CyberSecurity Operations Engineer: Ideally, you will have at least one year of commercial experience in a client-facing role with a cybersecurity focus- i.e. Consultant, Account Manager, Customer Support, Service Delivery … a closely related subject, from a top-ranked University You achieved at least AAA at A Level or equivalent UCAS points Strong knowledge within cybersecurity Good knowledge of network security Any experience in SOC beneficial Brilliant communication skills – this role is going to involve interacting with both internal colleagues and external clients so this is key You love the More ❯

About Us Integrity360 is the largest independent cyber security provider in Europe, with a growing international presence spanning the UK, Ireland, mainland Europe, Africa and the Caribbean. With over 700 employees, across 12 locations, and six Security Operations Centres (SOCs)-including locations in Dublin, Sofia, Stockholm, Madrid, Naples and Cape Town-we support more than … of industries. Over 80% of our team are technical experts, focused on helping clients proactively identify, protect, detect and respond to threats in an ever-evolving cyber landscape. Our security-first approach positions cyber resilience as a business enabler, empowering organisations to operate with confidence. At Integrity360, people come first. We invest heavily in learning, development and progression, fostering … a dynamic culture where innovation, collaboration and continuous growth are at the heart of what we do. If you're ready to take your cyber security career to the next level, we'd love to hear from you. Job role As a Cloud Security Consultant, you'll play a key role in delivering cloud-native security consulting More ❯

Role overview: Working for a global System Integrator as a SOC Manager, you are the senior lead to ensure our state of the art security centre is as effective and as efficient as can possibly be. As well as the proactive and responsive management of your team you will also have input for the strategy and future direction … responsibilities: Manage Shared SOC for more than 100 FTE across multiple locations providing services to multiple customers 24X7 Drive ongoing and continuous service improvement process Support all Global SOC operations and initiative Monitor, detect, and respond to global cybersecurity intrusions Document progress throughout the incident response life-cycle Ensure compliance to SLA, process adherence and process improvisation to achieve … operational objectives Revise and develop processes to strengthen the current Security Operations Framework, Review policies and highlight the challenges in managing SLAs Responsible for team & vendor management, overall use of resources and initiation of corrective action where required for Security Operations Centre Management, administration & maintenance of security devices under the purview of SOC which More ❯

To support the Security Operations Manager in responding, managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bell’s systems and services. Key to this is maintaining the confidentiality, integrity and availability of the data that resides upon those systems. This role will be key to understanding the threats targeting AJ … Bell and ensuring our defences provide and effective response. Key responsibilities: Reviewing and assessing Security Operations Centre alerts to ensure an appropriate response taken. Overseeing vulnerability scanning to confirm the effectiveness of patching Monitoring systems for compliance with policy and supporting remediation where required. Track and manage penetration testing programs. Investigate and respond to security breaches … and incidents. Supporting the administration of email and web gateways Develop our threat intelligence and provide monitoring of external information sources to make recommendations on latest security threats and vulnerabilities that affect our technical estate Collaborate with IT and other departments to ensure security best practices are followed. Stay up-to-date with the latest security trends More ❯

Security Engineer, AWS SOC Incident Response Job ID: Amazon Data Services UK Limited The Amazon Web Services Security Operations Center AWS-SOC Team manages security issues across the globe. The team is looking for a highly motivated, technically inclined individual to work as a Security Engineer. A successful candidate will need to embody our … will work from the LHR14, London SOC location. You need to be comfortable working in a dynamic technical, and at times, ambiguous environment. Key job responsibilities - Monitor and analyze security alerts from various sources to detect and respond to potential threats in real-time. - Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. … Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. - Maintain and optimize security information and event management systems and other security tools used in the SOC. - Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide regular reports on security posture. A day in the life More ❯

About the Role & Team At Disney, safeguarding our people, guests, assets, and operations is fundamental to ensuring the magic we create reaches every corner of the globe, uninterrupted. Within the Global Security function, we are committed to delivering world-class protection across a dynamic and evolving risk landscape - driven by technology, collaboration, and operational excellence. The EMEA Security Control Centre (ESCC) plays a vital role in this mission by serving as the central command hub for real-time monitoring, incident escalation, response coordination, and critical security communications across the region. Operating around the clock, the ESCC integrates cutting-edge technology with expert personnel to deliver proactive and effective security outcomes across Disney's diverse … EMEA footprint. We are seeking an experienced and strategic ESCC Manager to lead this multi-functional control centre, shaping its day-to-day operations, systems integration, and team development. The successful candidate will bring expertise in incident response, situational awareness, and stakeholder engagement, while fostering innovation and compliance across a high-performing environment. This role is key to More ❯

SUMMARY: The Security Team Manager (STM) serves as the day-to-day manager of a site security team that includes administrative officers, responders, and other security personnel at a client’s datacenter. The STM is responsible for building a cohesive and high performing team. Reporting directly to the Campus Security Manager (CSM), the STM works alongside … other security team managers in their campus to ensure a safe and secure environment. Additional job functions may include client service and problem resolution, service enhancement, Security Operations Center (SOC) systems maintenance, audit compliance, system monitoring, log maintenance, and access rights maintenance. ESSENTIAL FUNCTIONS: 1. Actively manages site security personnel; partners with the local branch to … recruit and hire, oversee onboarding, training, and development at the datacenter. 2. Coaches security personnel and carries out disciplinary actions in accordance with current policy. 3. Ensures all responders and control room supervisors adhere to policies and standard operating procedures, acting as responder or control room supervisor in periods of increased activity or in the case of absent staff. More ❯

SUMMARY: The Security Team Manager (STM) serves as the day-to-day manager of a site security team that includes administrative officers, responders, and other security personnel at a client’s datacenter. The STM is responsible for building a cohesive and high performing team. Reporting directly to the Campus Security Manager (CSM), the STM works alongside … other security team managers in their campus to ensure a safe and secure environment. Additional job functions may include client service and problem resolution, service enhancement, Security Operations Center (SOC) systems maintenance, audit compliance, system monitoring, log maintenance, and access rights maintenance. ESSENTIAL FUNCTIONS: 1. Actively manages site security personnel; partners with the local branch to … recruit and hire, oversee onboarding, training, and development at the datacenter. 2. Coaches security personnel and carries out disciplinary actions in accordance with current policy. 3. Ensures all responders and control room supervisors adhere to policies and standard operating procedures, acting as responder or control room supervisor in periods of increased activity or in the case of absent staff. More ❯

across the South, West and East of England, including London, as well as aiming to create thousands of new affordable homes every year. We're seeking an experienced Cyber Security Analyst to help protect our organisation from cyber threats and contribute to a safe, secure digital future for our customers, systems, and data. You'll be based in our … office in Wembley or Basingstoke , combining both office and home working. The Role: As a Cyber Security Analyst , you'll play a key role in maintaining and improving our cyber resilience. Working closely with our external Security Operations Centre (SOC) and internal teams, you'll monitor systems, respond to threats, remediate vulnerabilities, and help manage incidents. … You'll be part of a collaborative cyber security function that supports all areas of the business, ensuring our infrastructure, applications, and data remain secure and compliant with relevant frameworks and standards. Key Responsibilities Monitor and analyse security events and alerts using SIEM and other security tools Conduct triage of security incidents and escalate as appropriate More ❯

Senior SOC Engineer/SOC Technical Lead (Incident Response) Reporting into the Security Operations Centre Senior Manager, the role will take the lead across the EMEA region to develop and integrate the Incident Response (IR)/SOC security infrastructure to monitor both on premise and cloud environments. The role will serve as a critical bridge between … operations and engineering. Responsibilities: - Drive and improve continuous monitoring and incident response, serving as a senior resource in the SOC and Incident Response processes. - Configure and integrate platforms, tools, service providers, and solutions into IR/SOC systems, make recommendations as needed. - Consolidate and improve security logging and monitoring solutions on premise and in the cloud to detect … and respond to security threats in real time. - Drive efforts to automate and accelerate the detection and response processes. - Ensure integration of input from the deployed suite of security tools to SOC systems (e.g. SIEM/SOAR), including, but not limited to, IDS/IPS, End Point Protection, MDR/XDR, PAM, MFA, DNS Security, and cloud More ❯

Description We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. We have an exciting opening for a skilled and experienced L2 Insider Threat- IRM Analyst. As part of the Cyber Defence department, this role will investigate Insider Risk Management (IRM) cases … that have been escalated by our L1 Insider Threat team. Reporting to the Insider Threat - IRM Operations Manager, the L2 Insider Threat- IRM Analyst role is suited to someone who has strong Microsoft Purview DLP and Insider Risk Management (IRM) analyst experience. It is a business facing role and requires working proactively with stakeholders and colleagues to investigate Insider … other data protection devices. Help Identify trends and drive requirements aimed at improving and enhancing existing IRM detection policies. Work closely with Cyber Defence teams such as the Global Security Operations Centre as well as Legal, Privacy and HR teams if necessary, during investigations and incidents. Prepare detailed reports on security incidents, investigations, and mitigation efforts. More ❯

Senior IR-SOC Engineer - Elite Law Firm - London Are you a security professional looking to step into a high-profile, enterprise environment? One of the world’s most prestigious law firms is seeking a Senior Incident Response & SOC Engineer to join its global Information Security team, based in London . This is a rare opportunity to play a …/7 SOC , handling incident response and contributing to the development of detection, automation, and reporting tools. Key Responsibilities: Lead and support incident response (IR) and investigation of security threats across a complex enterprise estate. Manage, tune, and develop SIEM and EDR technologies to enhance threat detection and response capabilities. Implement and refine playbooks , automations , and alerting rules in … collaboration with security partners. Contribute to threat hunting and proactive detection strategies. Produce actionable reporting and metrics for stakeholders, including executive leadership. Desired Experience: Proven experience working in or alongside a 24/7 Security Operations Centre . Strong technical exposure to SIEM (ideally Splunk), EDR (CrowdStrike preferred), and SOAR tools. Expertise in incident handling , threat More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

We are looking for a seasoned, detail-oriented Security Incident Manager to join our security team. The Cybersecurity Incident Manager is a senior role responsible for managing, documenting and communicating enterprise-level cybersecurity incidents. This crucial role involves the careful documentation and management of security incidents, ensuring our response is thorough and aligned with compliance and regulatory … requirements.The Security Incident Manager will act as a key liaison between the central Security Operations Center (SOC) and internal stakeholders, facilitating clear communication with senior leadership and driving incident resolution. This individual will drive teams to ensure timely detection, containment, eradication, and recovery from cyber threats while minimizing operational disruptions. Your Impact Incident Response Leadership Lead all … and Coordination Collaborate with Corporate CSIRT, Incident Command, Cyber legal, IT, risk management, Data Protection and other departments to ensure a unified response. Engage with third-party vendors, Managed Security Service Providers (MSSPs), and law enforcement when necessary. 4. Preparation and Readiness Develop, maintain, and test incident response plans, playbooks, and escalation procedures. Conduct regular tabletop exercises and simulations More ❯

Social network you want to login/join with: We are looking for a seasoned, detail-oriented Security Incident Manager to join our security team.The Cybersecurity Incident Manager is a senior role responsible for managing, documenting and communicating enterprise-level cybersecurity incidents. This crucial role involves the careful documentation and management of security incidents, ensuring our response … is thorough and aligned with compliance and regulatory requirements. The Security Incident Manager will act as a key liaison between the central Security Operations Center (SOC) and internal stakeholders, facilitating clear communication with senior leadership and driving incident resolution. This individual will drive teams to ensure timely detection, containment, eradication, and recovery from cyber threats while minimizing … and Coordination Collaborate with Corporate CSIRT, Incident Command, Cyber legal, IT, risk management, Data Protection and other departments to ensure a unified response. Engage with third-party vendors, Managed Security Service Providers (MSSPs), and law enforcement when necessary. 4. Preparation and Readiness Develop, maintain, and test incident response plans, playbooks, and escalation procedures. Conduct regular tabletop exercises and simulations More ❯