1 to 25 of 72 Security Operations Centre Jobs in the North of England

Social network you want to login/join with: Security Operations Center Analyst, Leeds, West Yorkshire Client: Anson McCade Location: Leeds, West Yorkshire, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 2 Posted: 08.05.2025 Expiry Date: 22.06.2025 Job Description: Senior SOC Analyst Please note: Candidates must be eligible for DV clearance (sole British national … . We’re looking for an experienced Senior SOC Analyst to join a high-profile security programme supporting a critical national infrastructure (CNI) client. This is a Leeds-based, on-site role working within a 24/7 Security Operations Centre, protecting vital systems hosted in Azure and AWS cloud environments. Key Responsibilities: Monitor, triage, and … investigate alerts and network traffic using SIEM tools. Analyse and categorise security incidents in line with internal policies. Conduct in-depth incident investigations, reporting, and remediation. Utilise threat intelligence to detect and respond to potential threats. Support incident response activities for national-scale cyber events. Help improve SOC workflows, including automation and threat detection use cases. Coach junior analysts More ❯

holiday and annual leave of analysts on Day/Night shift rotations. Compensation: Competitive Salary plus performance related bonus and shift allowance. This role will lead our approach to Security Response at Smart DCC, assisting with the toolsets, processes and capabilities required to effectively deliver a world class security operations Centre. Responsibilities will include leading security investigations that are initiated by managed security services (SOC) or from events generated by our security tools. You will be joining an exciting and growing area and will be instrumental in supporting and advancing the operational security capabilities of the Cyber Security Team. There will be opportunity to work on and establish new Security … as well as provide an advisory role to other elements of the business on best practice. The role will require establishing relationships with key stakeholders in Risk, Technology and Operations, as well as establishing yourself as a Subject Matter Expert (SME) for cyber security within the organisation. What will you be doing? Lead incident response for potential incidents More ❯

Location: Leeds – We offer hybrid and flexible working arrangements. Please speak to your recruiter about options for this role. Grade: GG08 Referral Bonus: £2,000 Job Description Conduct Cyber Security Monitoring to detect hacking/malware intrusion attempts against customer IT. Perform full triage of detection alarms to identify the cause, such as active infection, intrusion attempts, or false … updating SIEM/SOAR playbooks, adapting to evolving attacker TTPs. Use Intrusion Analysis skills to contribute to new detection techniques and research industry capabilities. Communicate with government or commercial security operations centers for root-cause analysis. Create low to medium complexity KQL analytics and hunt queries, conduct IOC and anomaly-based threat hunts. Identify and tag incorrect alert … into actionable detections. Coach junior analysts and colleagues as needed. Lead Threat Hunting workgroups during events for complex TTPs across industries. Deliver ad-hoc training and workshops to promote security awareness and knowledge sharing. Provide daily SITREPs on attacker activity. Experience Knowledge of Intrusion Analysis on Windows devices and servers. Knowledge of Intrusion Analysis in Azure, including attacker methods More ❯

Threat Hunter Job Title: Cyber Threat Analyst Requisition ID: 121703 Location: Leeds and surrounding area Grade: GG08 – GG09 Referral Bonus: £5,000 Role Description BAE Systems operates a dedicated Security Operations Centre (SOC) to support the defense of a major UK Critical National Infrastructure (CNI) organization. The networks are mainly cloud-hosted, with numerous systems to protect. … in SOC, Threat Intelligence, or Vulnerability Management. Strong communication skills for technical and non-technical audiences. Team player, self-motivated, and capable of mentoring. Desirable Qualifications: Degree in Cyber Security or related. SANS, CySA+, CREST, Azure, AWS certifications. Ethical hacking experience or equivalent. Life at BAE Systems Digital Intelligence We support Hybrid Working, enabling flexible work locations and times More ❯

Location: Leeds and surrounding area Grade: GG08 - GG09 Role Description BAE Systems have been contracted to undertake the day-to-day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK Critical National Infrastructure (CNI) organisation. The networks protected are predominantly hosted in cloud platforms, with many … working in a multi-disciplinary and diverse team Self-motivated and motivates others, keeping morale and performance high Ability to mentor others Desirable Qualifications: Degree-level education in Cyber Security or related area SANS GNFA, GCIH, GCIA, GCTD CySA+ AWS – Cloud Essentials, Security EC-Council Certified Ethical Hacker or demonstrable equivalent experience We are embracing Hybrid Working. This … perspectives, skills, life experiences and backgrounds – the best and brightest minds – can work together to achieve excellence and realise individual and organisational potential. Job Title: Cyber Threat Analyst - National Security West Job City: Leeds Professional Area: Cyber Security Specialists #J-18808-Ljbffr More ❯

Cyber Threat Analyst - National Security West View more categories View less categories Clearance Level DV ,SC ,None/Undisclosed Sector Defence ,Engineering ,Information Technology Job Type Permanent Location(s): UK, Europe & Africa : UK : Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand … area Grade: GG08 - GG09 Referral Bonus: £5,000 Role Description BAE Systems have been contracted to undertake the day-to-day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK Critical National Infrastructure (CNI) organisation. The networks protected are predominantly hosted in cloud platforms, with many … working in a multi-disciplinary and diverse team Self-motivated and motivates others, keeping morale and performance high Ability to mentor others Desirable Qualifications: Degree-level education in Cyber Security or related area SANS GNFA, GCIH, GCIA, GCTD CySA+ CREST - Intrusion Analyst, Cyber Threat Intelligence Azure - SC200, SC500, AZ500 AWS - Cloud Essentials, Security EC-Council Certified Ethical Hacker More ❯

week) Contract Type: Contract (6 months) Day Rate: Inside IR35 (Flexible) About the Role A leading organisation is seeking an experienced SOC Analyst (Level 3) to join its cybersecurity operations team. This senior role is ideal for professionals who excel in high-stakes environments and possess a strong engineering background, particularly within the Microsoft and Azure security ecosystem. … The ideal candidate will be instrumental in driving SOC maturity, optimizing license consumption, and enhancing security visibility across the enterprise. Key Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and SOAR playbooks Monitor and optimise … license consumption across Microsoft security tools Manage log onboarding/offboarding processes across varied sources and environments Drive SOC maturity initiatives, identifying and implementing process improvements Perform deep-dive analysis on malware, phishing, and lateral movement threats Correlate events across diverse log sources, including cloud and on-prem infrastructure Collaborate with engineering teams to enhance integration and performance of More ❯

Are you passionate about Cyber Security and Enterprise Architecture? Do you have senior-level experience as a Cyber Security Professional? Join us to shape the security technology and tooling strategy for HMRC and influence the UK Public Sector. Enjoy a healthy work/life balance while making a significant impact. HMRC are now one of the most … IT Landscape across Multi-Hybrid Cloud Platform. Working in one of the most complex infrastructures across Europe with significant investment and over 1000 changes monthly impacting over 600 services. Security Modernisation is critical to this initiative and our collective success. Now is a great time to join us as we establish a team of outstanding people in the fields … of Security Architecture, Risk Assessment and Testing who will create and run these new and improved technology services. This is a chance to work on services that matter and affect the lives of millions of citizens as well as delivering Government Security services directly across circa 400 Government Departments and Arms-Length Bodies (ALBs). Job description HMRC More ❯

Analyst Requisition ID: # Location: Leeds and surrounding area Grade: GG08 - GG09 Referral Bonus: £5,000 Role Description BAE Systems has been contracted to operate and improve a dedicated Security Operations Centre (SOC) supporting a major UK Critical National Infrastructure (CNI) organisation. The networks protected are mainly cloud-based, with numerous systems requiring safeguarding. The aim is More ❯

Social network you want to login/join with: Front Line Analyst - National Security - Leeds, Leeds col-narrow-left Client: BAE Location: Leeds, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: be332973ce3e Job Views: 11 Posted: 22.06.2025 Expiry Date: 06.08.2025 col-wide Job Description: BAE Systems Digital Intelligence is home to … Leeds - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Grade: GG08 Job Description Conducting Cyber Security Monitoring to detect hacking/malware intrusion attempts against customer IT. · Full triage of detection alarms to accurately identify the cause of the alarm, be it active infection, attempted … by Industry. Eg documenting requirements for new capabilities/techniques and associated dependencies for consideration by the Intrusion Analysis Lead for prioritisation. · Ad-hoc communications with government or commercial security operations centres as part of root-cause analysis · Creation of low-medium complexity KQL analytics and hunt queries, conducting IOC and anomaly-based threat hunts, including root cause More ❯

high-impact role with significant autonomy. You’ll need to think critically, and hunt methodically. As a Threat Hunter, you will actively search for cyber threats that evade traditional security solutions. Your role will involve conducting in-depth analysis, identifying indicators of compromise (IOCs), and working cross-functionally with the Security Operations Centre Analysts, Detection Engineers … automate hunts and visualise results. This individual has successfully built or significantly contributed to threat hunting programs, translating threat intelligence into actionable insights and working alongside detection engineers and security analysts to operationalise findings. They should be driven by curiosity and methodical thinking, constantly seeking to improve visibility and detection coverage across complex environments—including hybrid or cloud-native … understanding of the MITRE ATT&CK framework, TTP analysis, and adversary emulation. Deep familiarity with hypothesis-driven threat hunting frameworks and methodologies. Ability to work autonomously while collaborating across security, engineering, and business teams. Strong use of Splunk Programming Language. Strong scripting/query language skills (e.g., Python, KQL, SQL, PowerShell). Hands-on experience using Jupyter Notebooks for More ❯

Social network you want to login/join with: Security Operations Center Analyst, warrington, cheshire col-narrow-left Client: Queen Square Recruitment Location: Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 col-wide Job Description: Our client, a leading global consultancy, is partnering with a prestigious end … Contract Type: Contract (6 months) Day Rate: Inside IR35 (Flexible) About the Role A leading organisation is looking for an experienced SOC Analyst (Level 3) to join its cybersecurity operations team. This role is ideal for senior professionals who thrive in high-stakes environments and enjoy working on proactive threat detection, incident response, and advanced security automation. Key … Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and automation playbooks Perform deep-dive analysis on malware, phishing, and lateral movement threats Correlate events across diverse log sources and technologies Collaborate with engineering teams to optimise More ❯

Social network you want to login/join with: Security Operations Center Analyst, bolton, greater manchester col-narrow-left Client: Queen Square Recruitment Location: bolton, greater manchester, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 col-wide Job Description: Our client, a leading global consultancy … Contract Type: Contract (6 months) Day Rate: Inside IR35 (Flexible) About the Role A leading organisation is looking for an experienced SOC Analyst (Level 3) to join its cybersecurity operations team. This role is ideal for senior professionals who thrive in high-stakes environments and enjoy working on proactive threat detection, incident response, and advanced security automation. Key … Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and automation playbooks Perform deep-dive analysis on malware, phishing, and lateral movement threats Correlate events across diverse log sources and technologies Collaborate with engineering teams to optimise More ❯

Contract Type: Contract (6 months) Day Rate: Inside IR35 (Flexible) About the Role A leading organisation is looking for an experienced SOC Analyst (Level 3) to join its cybersecurity operations team. This role is ideal for senior professionals who thrive in high-stakes environments and enjoy working on proactive threat detection, incident response, and advanced security automation. Key … Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and automation playbooks Perform deep-dive analysis on malware, phishing, and lateral movement threats Correlate events across diverse log sources and technologies Collaborate with engineering teams to optimise … Microsoft security tool integration Mentor junior SOC analysts and contribute to internal knowledge sharing Maintain and enhance incident response processes and documentation Produce regular SOC performance reports and threat intelligence summaries Required Skills & Experience: 5+ years in cybersecurity, with 2+ years at SOC Level 3 or senior analyst level Expertise in Microsoft Sentinel (KQL, custom rules, automation, dashboards) Strong More ❯

systems to a secure state, and minimize damage. Continuously monitor the threat landscape for emerging threats, vulnerabilities, and evolving attack tactics. Communicate with clients, internal teams, and vendors regarding security incidents and recommendations. Develop and improve SOC processes and designing training programs. Provide guidance on effective cyber defenses and actionable, cost-effective solutions. Focus on utilizing SOAR platforms to … automate and improve security processes, incident response, and threat detection. Develop and implement plans to mitigate identified risks, including security controls and countermeasures. Your Profile: Essential knowledge/experience: Experience with Alerts/Threats Investigation. Driving Major Incident Response. Proficient in SOC. Knowledge of Incident Response. TCS is consistently voted a Top Employer in the UK and globally. … application and at any stage of the recruitment process. Beware of Fraudulent offers This is to notify you that TCS does not ask for any sort of payment or security deposit from candidates at any stage of the recruitment process. The firm never sends out job offers from free internet email services like Gmail, Yahoo Mail, and so on. More ❯

Security (SOC) Engineer Manchester/Remote (On site once a month) £35K- £55K (depending on experience) + Great Benefits A SOC Engineer is required for our medical client who are based in Manchester. The successful candidate will be responsible for delivering hands-on technical expertise to support in defending the organisation's systems from attack whilst ensuring they operate … seamlessly and are secure, enabling the team to deliver effective cybersecurity. You will work within the Security Operations Centre (SOC), supporting the engineering lead in configuring, implementing, and maintaining the tools that support all SOC functions. You will assess, implement, configure, and optimise our technical security controls, tools, and data feeds to maintain and continuously improve … the visibility across our environments. You will also lead initiatives to improve the security posture and respond to incidents, problems and change requests from a security operations perspective. Essential skills- Practical experience working within a SOC (Security Operations Centre) or in a cyber security focused role - Ideally 1- 2 years working as an More ❯

colleagues. We've achieved big things already, but we're just getting started. This is where you come in... Job Description An opportunity has arisen for a Senior Cyber Security Analyst , to become part of the Radius Cyber Security Team. This is an excellent opportunity for a seasoned professional to contribute to a high-performing Cyber Team in … of Cyber and will be located at our Emperor Court office in Crewe . This role is crucial to strengthening the organisation's cyber resilience. As a Senior Cyber Security Analyst, you will play a key role in protecting systems, networks, and data against cyber threats. You will lead threat detection and incident response efforts, support the development of … security policies and controls, and work closely with stakeholders to ensure compliance and security best practice across the business. You will also assist with maintaining and improving the company's accredited Information Security Management System (ISMS), with a particular focus on ISO 27001 and Cyber Essentials Plus requirements. In addition, you will help mentor team members, providing More ❯

Security Operations Center Analyst, Wakefield Client: Location: Wakefield, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: Job Title: Senior SOC Analyst - DV Cleared Location: Gosport - On-site - (Mon-Fri - 9/5:30) Role: We are rapidly expanding our Security Operations Centre (SOC … profile clients across enterprise-scale environments while using industry-leading tools like Microsoft Sentinel, Splunk, and MISP. If you're ready to lead from the front, contribute to national security, and grow your cybersecurity career—this is the role for you. Responsibilities: Analyzing security incidents using groundbreaking tools like Microsoft Sentinel and Splunk. Fine-tuning detection rules and … strategies with frameworks like Mitre Att&ck to stay ahead of new threats. Crafting the future of our Security Operations Centre, ensuring we remain adaptable to new challenges. Skills/Must have: Proven experience working in a Security Operations Centre. Hands-on experience with Microsoft Sentinel and Splunk. Familiarity with the Mitre ATT&CK framework. More ❯

Social network you want to login/join with: Security Operations Center Analyst, Sheffield, South Yorkshire Client: Location: Sheffield, South Yorkshire, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 Job Description: Job Title: Senior SOC Analyst - DV Cleared Location: Gosport - On-site - (Mon-Fri … Role: We are rapidly expanding our Security Operations Centre (SOC) team and are looking for driven SOC Analysts who thrive in fast-paced, high-tech environments. This is a fantastic opportunity to support multiple high-profile clients across enterprise-scale environments while using industry-leading tools like Microsoft Sentinel, Splunk, and MISP. If you're ready to … lead from the front, contribute to national security, and grow your cybersecurity career—this is the role for you. Responsibilities: Analyzing security incidents using tools like Microsoft Sentinel and Splunk. Fine-tuning detection rules and strategies with frameworks like MITRE ATT&CK to stay ahead of new threats. Contributing to the development of our Security Operations More ❯

A large enterprise organisation is seeking an experiencedLevel 3 SOC Analyst for an initial 6-month rolling contract. This is a key role within a mature and well-established Security Operations Centre, offering the opportunity to work on complex threats and contribute to a high-performing cybersecurity function. This is a challenging, rewarding role for a seasoned … make a tangible impact. Apply now to join a team focused on protecting enterprise assets against evolving cyber threats. Key Responsibilities: Lead investigations and response efforts for high-severity security incidents. Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite. Develop and fine-tune analytic rules, workbooks, and automation playbooks in Sentinel. Perform deep-dive analysis of … malware, phishing, and lateral movement techniques. Collaborate with engineering teams to optimise Microsoft security tool integrations. Maintain and enhance incident response procedures and documentation. Skills/Must have: Over 5 years of experience in cybersecurity, including a minimum of 2 years in a Level 3 SOC or equivalent role. Expert-level proficiency with Microsoft Sentinel, including KQL, custom analytic More ❯

QA Ltd West Yorkshire, England, United Kingdom Join or sign in to find your next job Join to apply for the Head of Cyber Security Operations role at QA Ltd QA Ltd West Yorkshire, England, United Kingdom Join to apply for the Head of Cyber Security Operations role at QA Ltd Remote (Once in a month … London or Leeds office) This senior role will involve you in strategic decision-making, system implementations, and the adoption and testing of new processes and procedures which improve the security and robustness of QA’s organisational infrastructure and associated IT systems. As a Head of Cyber Security Operations you will be responsible for safeguarding QA from intrusion … security threats, security weaknesses, software bugs and exploits. You will be responsible for direct and virtual teams involved in keeping QA secure. Role Responsibilities Management of the Security Operations Centre service, ensuring resources are aligned to monitor and protect QA IT assets including 24/7 out of hours on call coverage. Responsible for security More ❯

Work for an award-winning provider of Security Services, specialising in Cyber Security Services such as Vulnerability Management, Information Security, Penetration Testing, and Managed Security Services. We boast a fully managed Security Operations Centre (SOC) staffed by dedicated professionals. We're seeking a skilled Cyber Security Engineer to join our clients eam. … Sentinel SIEM, Microsoft Defender, and KQL scripting. This role demands a proactive individual who can monitor and protect our organization's digital assets while staying updated on the latest security threats and trends. If you are interested in this opportunity, apply today! Responsibilities: Implement and manage Azure Sentinel SIEM for threat detection, incident response, and security monitoring. Configure … maintain Microsoft Defender for endpoint protection and threat detection. Develop and maintain KQL scripts for querying and analysing data within Azure Sentinel. Collaborate with cross-functional teams to identify security vulnerabilities and develop appropriate solutions. Conduct regular security assessments and penetration testing to identify and mitigate potential risks. Stay updated on emerging cyber security threats and best More ❯

Ready to be our next Cloud Security Engineer ? We're on the lookout for a tech whiz to join our brilliant team in Sunderland and help us keep things super secure for our players and our business. If you're passionate about cloud security and love a challenge, you're in the right place! Cloud Security Engineer … At tombola, we take security seriously - but we also like to have a bit of fun while we're at it! As our Cloud Security Engineer , you'll be building on our existing operational security, with a special focus on protecting our cloud infrastructure. You'll be hands-on, designing, implementing, and managing top-notch security … play a key part in developing our vulnerability management program, working closely with our operational support, infrastructure, and development teams. Plus, you'll be right in the thick of security event monitoring, threat intelligence, and incident management - keeping us one step ahead! What you'll be doing: Delivering SOC Capabilities: You'll be a key team member in delivering More ❯

Role: Security Engineer Location: Manchester – 2 days a week from the office Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group. We are on a mission to make society a safer and more secure place. Our people are the ones who make that possible; a global community of … mission, to make the world safer and more secure. Take a look at our website here to learn more about why we’re one of the leading global Cyber Security and Risk Mitigation business... https://www.nccgroup.com/uk/The Opportunity: The Cyber and Information Security Team play a critical role in supporting our internal business … functions alongside our external customer commitments. NCC Group’s internal security team work to develop, introduce and maintain administrative, technical and physical security controls to continually improve the Group’s security. The Security Engineer is primarily responsible for implementing, monitoring and maintaining security tools, technologies and configurations to ensure the confidentiality, integrity and availability of Group More ❯

At Tombola, we take security seriously - but we also like to have a bit of fun while we're at it! As our Cloud Security Engineer, you'll be building on our existing operational security, with a special focus on protecting our cloud infrastructure. You'll be hands-on, designing, implementing, and managing top-notch security … play a key part in developing our vulnerability management program, working closely with our operational support, infrastructure, and development teams. Plus, you'll be right in the thick of security event monitoring, threat intelligence, and incident management - keeping us one step ahead! What you'll be doing: Delivering SOC Capabilities: You'll be a key team member in delivering … ongoing Security Operations Centre (SOC) capabilities for the business. Driving Automation: You'll push for security automation wherever possible and play a big part in evolving our security tooling and services. Policy & Standards: You'll champion the adoption and adherence to our InfoSec policy, standards, and guidelines. Threat Intelligence: You'll monitor and apply current More ❯