24 of 24 Security Operations Centre Jobs in the South East

Contract Role – Security Analyst (Network & Endpoint) – England/Remote – 4+ Months Initial We are looking for a highly capable and technically skilled Security Analyst (Network & Endpoint) to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The … successful candidate will have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Role Overview: Job Title: Security Analyst (Network & Endpoint) Location: England/Remote Contract Type: Contract Duration: Contract till 31st Mar 26 Sector: Healthcare . Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat … anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC More ❯

SOC Lead - Defence & National Security Location: Farnborough (Hybrid) Salary: £65,000 or £450 per day outside IR35 Clearance: Must be eligible for UK SC clearance and Sole British Citizen This is a fantastic opportunity for an experienced SOC Lead to take ownership of a high-performing Security Operations Centre working on critical defence and national security projects. You'll lead day-to-day SOC operations, drive incident response, and mentor analysts to strengthen detection and response capability against evolving threats. If you want to combine technical depth with leadership responsibility, this role offers both the challenge and the opportunity to shape how cyber resilience is delivered in secure environments. What you'll be doing … Leading daily SOC operations, task prioritisation and shift management Acting as the escalation point for complex incidents and investigations Reviewing, tuning and enhancing detection rules, alerts and playbooks in SIEM/SOAR tools Providing mentorship and technical guidance to SOC analysts Driving post-incident reviews, root cause analysis and continuous improvement Conducting proactive threat hunting and supporting compliance/ More ❯

Role: Senior Security Engineer Salary/Rate: £550-650 per day inside IR35 Location: Hybrid London or Fully RemoteContract Duration: until Dec' 2025 We are currently looking for a Senior Security Engineer for our government client. This Senior Security Engineer role is hybrid, based between working on site in London and remotely. There is scope for flexibility … of days needed in the office. Candidates able to commit to 1-2 days per week in the central London office will be preferred. The contract for the Senior Security Engineer position is until the beginning of December 2025 with potential to extend, operating inside IR35. Security Clearance: Security Check ("SC Clearance") This role is inside IR35 … Due to the service of the role, it will now be based on an Umbrella solution. Essential skills/experience required: 2+ years in security platform management ( SIEM, SOAR ). Expertise in enterprise-level monitoring and supporting large user bases (10,000+ users). Experience in creating/managing security playbooks and knowledge of public sector standards. Experience More ❯

lead from the front, joining in our success. This new position of SOC Shift Lead will be to conduct monitoring and triage of alerts associated with host and network security events for clients critical infrastructure. You will support the SOC through both delivery of client work and adding skills and ideas to the already diverse team. This role is … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

Are you in a Security Operations Centre and every day is the same? We can assure you that there is no boredom in our role. We have a growing Cyber practice in our Defence sector and support enterprise scale clients. Now we have opportunities for L2 SOC Analysts to join in our success and work with multiple … can offer great career progression opportunities, benefits which you can flex to meet your needs and training and development opportunities. What you will be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain, improve … and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical and non-technical audiences and continuously improve their content and presentation. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What you will bring : Experience in Security Operations Centre. Demonstrable More ❯

The Role: Leidos, a Global IT Solutions Provider specialising in large scale implementations involving science, engineering, and technology, require a Cyber Defence Analyst to work in their CSOC (Cyber Security Operations Centre) Team. The Cyber Defence Analyst will be expected to contribute to the growth and development of the CSOC. You will work with a wide variety … of stakeholders to ensure, the Leidos CSOC, a Defensive Cyber Security capability, can support a customers Cyber Resilience, protecting them with a 24 x 7 Threat Detection and Response service, mitigating their risk of Cyber Attack. The successful candidate will be able to demonstrate experience from a CSOC background or be able to demonstrate sufficient transferable Cyber Security … succeed in the role the candidate must be capable of working under pressure, delivering on multiple customer accounts and have an appetite to progress and develop their own Cyber Security career. The role will be working within the CSOC, adhering to a matrix managed environment, reporting operationally to the CSOC Lead and accountable to the CSOC Manager. What will More ❯

Cyber Security Assurance Manager Full Time Permanent Hybrid - Portsmouth PO6 (2-3 days per week onsite) £60-70K basic + benefits (5% pension, 25 days hols, life insurance, medical cover) Are you an experienced Cyber Security Assurance Manager looking for a new challenge? Do you have a background in Cyber Security Assurance with a strong understanding … of delivering and maintaining cybersecurity certifications, along with strong understanding of SOC operations and security assurance frameworks and also experience in customer-facing assurance activities, including audits, RFIs, and RFPs? Here at ARM we are recruiting for a full time permanent Cyber Security Assurance Manager for a global IT services and consultancy client of ours. Our client … of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects. Overview: The Cyber Security Assurance Manager will be responsible for ensuring the Security Operations Centres (SOC) achieves and maintains internationally recognised security certifications, audit reports, and assurance standards. This role More ❯

SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high-severity cyber incidents … and escalated security events, leveraging your technical expertise, analytical mindset, and industry-standard tools to contain, eradicate, and recover from cyber threats. Your work will directly contribute to safeguarding my client's network systems, operational technology, and customer data from emerging and sophisticated cyber risks. Key Responsibilities As a senior member of the Security Operations team, you … and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration and effective alert correlation across cloud and on-prem environments. Support and develop the organisation's SOAR More ❯

SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high-severity cyber incidents … and escalated security events, leveraging your technical expertise, analytical mindset, and industry-standard tools to contain, eradicate, and recover from cyber threats. Your work will directly contribute to safeguarding my client's network systems, operational technology, and customer data from emerging and sophisticated cyber risks. Key Responsibilities As a senior member of the Security Operations team, you … and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration and effective alert correlation across cloud and on-prem environments. Support and develop the organisation's SOAR More ❯

Cyber Security Consultant- Remote An exciting opportunity has arisen for a Cyber Security Consultant who can provide practical advice and hands-on support to improve security project and manage alerts. We’re seeking a specialist who has expertise in Microsoft Defender & Sentinel who can turn alert data into actionable intelligence, identify opportunities for optimisation, and advance the … customer’s SOC maturity through data-driven improvements and Sentinel/Defender best practices. As a Cyber Security Consultant, your mission is clear; be technically proficient and provide practical solutions rather than theoretical advice. The consultant should be able to work closely with the team to implement changes and improve security. Cyber Security Consultant’s Responsibilities: Develop and … tools such as Advanced Hunting, Threat Analytics, and Attack Surface Reduction to strengthen detection and response. Recommend SOC process improvements through data-driven insights and best practice alignment. Cyber Security Consultant’s Required Knowledge and Experience: Extensive experience with Microsoft Defender, Sentinel, and possibly working in a Security Operations Centre (SOC). Experience extracting alert data More ❯

Job Posting: Cyber Security Assurance Manager Location: Portsmouth (Hybrid) Salary: £50,000 - £65,000 DOE Are You Ready to Lead the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment. In this crucial … role, you will ensure that the SOC maintains its commitment to best-in-class standards through internationally recognised security certifications and industry-wide assurance frameworks, delivering confidence to clients and meeting regulatory expectations. As a core team member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors … to showcase security credentials that differentiate our SOC from the competition. If you're skilled in blending technical insight with customer-focused communication while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST More ❯

We are currently recruiting for a Senior Security Engineer with experience in SIEM/SOAR that is eager to join UK GOV department - SC Cleared envionmen t for a short term contract until end of the year 2025 About the role: Work in the Monitoring and Integration Platform Team and deliver against the initial phase of the security monitoring project-onboarding several critical services that are proactively monitored by the in-house SOC (Security Operations Centre). Essential Experience: 2+ years in security platforms management (SIEM, SOAR). Enterprise-level monitoring and supporting large user bases (10,000+ users). Create/manage security playbooks and knowledge of public sector standards. Experience … in Xsiam correlation/playbooks and Cortex XDR, Cortex Data Lake, and Cortex XSOAR. Strong cloud security, network/system security fundamentals, and scripting for automation. Familiar with NIST SC Clearance - Candidates holding active SC will benefit of a quick start date What you will gain: Amazing rate for great affordability Hybrid working that you can spend less More ❯

Junior SOC Analyst Up to 34kHybrid (London) Overview: We are seeking an enthusiastic Junior Cyber Security Analyst to join our client's dedicated SOC team. In this role, you will help monitor and defend networks, systems, and applications against evolving threats. You'll work as part of a team that provides 24/7 monitoring, detection, response, and remediation … services for a diverse client base. Key Responsibilities: Support the Managed Extended Detection & Response (MXDR) service. Monitor security alerts and events to identify potential incidents. Assist in investigating security incidents, determining root causes, and supporting remediation plans. Collaborate with internal teams and external stakeholders to ensure security controls are effectively maintained. Generate and review reports on events … incidents, and trends to drive continual improvement. Stay current with security developments, tools, and techniques to strengthen the service. Qualifications & Requirements: Bachelor's degree in Computer Science, Cybersecurity, or a related field (or equivalent experience) Evidence of self-learning and continual development outside of a university degree 1+ years of experience in cybersecurity (SOC or MSSP experience preferred) is More ❯

leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our clients critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role is … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

Job Posting: Cyber Security Assurance Manager Location: Portsmouth (Hybrid) Salary: £50,000 - £65,000 DOE Are You Ready to Lead the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment click apply for More ❯

SOC Operations Manager - Active SC, Azure, ISO27001, Energy Up to £800 per day - Inside IR35 Primarily remote - Occasional travel 3 - 6 months My client is an instantly recognisable consultancy who require a SOC Operations Manager with Active Security Clearance (SC), to lead the day-to-day operations of a Security Operations Centre. This is … measurable value to a well-known end client within the Energy Sector. Key Requirements: Proven experience working within SOC management, within Energy/Construction/Utilities Holds an Active Security Clearance (SC) Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC/SIEM/XDR). Strong working knowledge of M365 security features. Familiarity More ❯

SOC Operations Manager - Azure, ISO27001, Energy Up to £800 per day - Inside IR35 Primarily remote - Occasional travel 3 - 6 months My client is an instantly recognisable consultancy who require a SOC Operations Manager to lead the day-to-day operations of a Security Operations Centre. This is a hands-on leadership role where you'll … within Energy/Construction/Utilities Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC/SIEM/XDR). Strong working knowledge of M365 security features. Familiarity with cloud platforms, in particular Azure and/or AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current More ❯

Contract Type: Contract (Inside IR35) Duration: 6 Months Day Rate: £382.50 per day Inside IR35 The Role We are seeking an experienced SOC Level 2 Analyst to join our Security Operations Center, supporting threat detection, investigation, and response across enterprise systems. You'll work with leading security technologies, responding to advanced threats and guiding L1 analysts in … a fast-paced, collaborative environment. Key Responsibilities Investigate and remediate complex security incidents including malware, ransomware, and APTs. Handle escalations from Tier 1 analysts and provide technical mentoring. Analyze and correlate alerts using SIEM and EDR tools such as Splunk and Microsoft Defender. Perform forensic analysis to identify root causes and recommend containment and recovery actions. Develop detection use … cases, improve processes, and maintain accurate incident documentation. Collaborate with IT and security teams to strengthen overall detection and response capability. Essential Skills & Experience 6-8 years in cybersecurity, with strong SOC or incident response experience. Proficient in SIEM (Splunk, ArcSight) and EDR (Defender, CrowdStrike, Carbon Black). Strong knowledge of digital forensics, malware analysis, and threat hunting. Skilled More ❯

Job Title: L1 SOC Analyst Our client is a well-established Managed Security Service Provider (MSSP) and a leading Fortinet and Microsoft partner, delivering high-impact cybersecurity solutions to clients in the defense, government, and financial services industries. Committed to nurturing talent, our client offers a comprehensive training and development program to help you advance from entry-level to … a fully-fledged SOC Analyst. As an L1 SOC Analyst, you’ll be at the frontline of cybersecurity defense. You’ll handle real-time triaging of 80-100 security alerts per shift, utilizing Fortinet and Microsoft SIEM/EDR technologies to detect and mitigate threats. This is an excellent opportunity for those passionate about cybersecurity, with hands-on experience … that builds a strong foundation for a lasting career in the field. Responsibilities: Monitor and triage security alerts (80-100 alerts per shift) using Fortinet and Microsoft SIEM/EDR tools. Analyse and prioritize alerts to identify potential threats and escalate as needed. Provide rapid response to incidents and maintain a high level of vigilance across multiple security More ❯

Job Title: L1 SOC Analyst Our client is a well-established Managed Security Service Provider (MSSP) and a leading Fortinet and Microsoft partner, delivering high-impact cybersecurity solutions to clients in the defense, government, and financial services industries. Committed to nurturing talent, our client offers a comprehensive training and development program to help you advance from entry-level to … a fully-fledged SOC Analyst. As an L1 SOC Analyst, you’ll be at the frontline of cybersecurity defense. You’ll handle real-time triaging of 80-100 security alerts per shift, utilizing Fortinet and Microsoft SIEM/EDR technologies to detect and mitigate threats. This is an excellent opportunity for those passionate about cybersecurity, with hands-on experience … that builds a strong foundation for a lasting career in the field. Responsibilities: Monitor and triage security alerts (80-100 alerts per shift) using Fortinet and Microsoft SIEM/EDR tools. Analyse and prioritize alerts to identify potential threats and escalate as needed. Provide rapid response to incidents and maintain a high level of vigilance across multiple security More ❯

its technical capability, with ambitious growth plans and multiple acquisitions planned every year for the next 5 years (8 in the past 12 months). Reporting into the IT Operations Manager, you will oversee core infrastructure and networking. You'll work closely with managed service providers to ensure seamless operations and business continuity whilst taking a lead on … the Service Desk Team * Set up and configure Local Area Networks (LANs), including hardware deployment and support * Coordinate with third-party MSPs for network and infrastructure management * Manage firewall operations and connectivity with ISPs * Oversee network IP addressing and VPN setups * Support business continuity through proactive incident management * Rapid deployment of site connectivity solutions, including 4G routers * Monitor network … health and performance, ensuring high availability and resilience * Maintain inventory and configuration records for infrastructure and software * Collaborate with the Security Operations Center (SOC) on network security * Support software licensing and upgrades * Support data privacy and security audits * Provide technical support and mentoring * Maintain server rooms and ensure operational efficiency * Develop and implement business processes and More ❯

days office) £40-45k Our client are looking for a Level 2 SOC Engineer. This is a key role in the detection and response lifecycle within our Security Operations Centre. The role You will be responsible for triaging, investigating, and responding to cybersecurity incidents across customer environments using tools such as Microsoft Sentinel and Defender XDR. The More ❯

high-quality threat briefings, risk assessments, and operational recommendations Participate in incident response, providing context, attributions, and support as required Required Skills & Experience: Extensive experience in threat intelligence, cybersecurity operations, or penetration testing Proven ability to work collaboratively with Red/Blue teams and Security Operations Centres (SOC) Hands-on experience with TIPs (Threat Intelligence Platforms), SIEM More ❯

re growing like crazy, with $70M in Series C funding, 200% employee growth, and 300% revenue growth in 2024. Fueling Torq's growth are our game changing agentic AI security solutions, backed by a team and culture that makes Torq one of Forbes' Best Startup Employers in America, and a Business Insider 'startup to bet your career on'. … Life at Torq is all gas, no brakes. We're a team of relentless, collaborative go-getters pushing the boundaries of what's possible for security automation. Every role is an essential driver of Torq's success as the AI-native autonomous SecOps platform of choice for security teams across the Fortune 500. Excited about our vision and … to the team. As a Customer Success Engineer at Torq, you'll be a key member of our Field Engineering team, helping customers unlock the full potential of our security hyperautomation platform. Working closely with a global, highly skilled team, you'll ensure customer success by providing technical expertise, problem-solving, and valuable insights into our product's future. More ❯