24 of 24 Security Operations Centre Jobs in the South East

Security Operations Centre Shift Lead Location: Hemel Hempstead (On-site, Shift-Based) Salary: Highly competitive with excellent benefit package Security Clearance Level: Must be eligible for DV Clearance . Due to the highly secure nature of this work all applicants will be required to gain UK Security Clearance to the highest level. You must be … days annual leave (option to purchase additional days), health cash plan, life assurance, pension scheme, and a generous flexible benefits fund Key Requirements We are seeking a highly capable Security Operations Centre Shift Lead to support critical infrastructure within the Aerospace, Defence and Security sector. You will lead from the frontmentoring analysts, managing incident triage, and … environment. This is a shift-based position , following a rotation of 2 days (6am6pm), 2 nights (6pm6am), 4 days off . Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre More ❯

Senior Security Operations Analyst (SOC Splunk) London/WFH to £100k Are you a technologist SOC Analyst looking for an opportunity to make an impact, working on complex and interesting systems? You could be progressing your career in a hands-on role at a global cryptocurrency market data and trade execution technology company that is experiencing great success … and is growing as a result. As a Senior Security Operations Analyst you will be responsible for monitoring and analysing security incidents, responding to threats in real-time and ensuring the integrity of core systems and platforms. You will work closely with the SOC Manager across daily activities of the Security Operations Center, continuously monitoring … security alerts and incidents using SIEM tools (Splunk) to create detection use cases, analyse security event data for proactive threat hunting and conduct research on the latest threats and vulnerabilities to enhance incident response readiness and capabilities. Location/WFH: You'll join the team in the Frankfurt office three days a week with flexibility to work from More ❯

Experience Years: 3-5 Years of Experience Employee Type: Regular Remote Type: Onsite About the Opportunity The role of Information Security Engineer will be responsible for identifying, investigating, and managing cybersecurity related events and incidents. As an Information Security Engineer, you will be responsible for security operations, using and managing security systems, identifying and managing … risks and threats, and developing and following operating procedures. The ideal candidate will have a deep understanding of cyber security risks and threats, incident handling, and will possess excellent analytical, communication, and leadership skills. About the Opportunity The role of Information Security Engineer will be responsible for identifying, investigating, and managing cybersecurity related events and incidents. As an … Information Security Engineer, you will be responsible for security operations, using and managing security systems, identifying and managing risks and threats, and developing and following operating procedures. The ideal candidate will have a deep understanding of cyber security risks and threats, incident handling, and will possess excellent analytical, communication, and leadership skills. Responsibilities Strong collaboration More ❯

Join Us as a SOC Level 3 Analyst! Take Your Cyber Security Career to New Heights Are you ready to challenge yourself at the forefront of cyber security? UK Power Networks is seeking a talented SOC (Security Operations Centre) Level 3 Analyst to join our dynamic Information Systems team based in our Crawley offices. As … a key member, you'll work closely with the Cyber Security Operations Manager, tackling advanced security threats and supporting critical infrastructure. This is a permanent position offering substantial opportunities for professional growth and blended working arrangements: after a 6-month probation, enjoy the flexibility of 3 days in the office and 2 days remote each week. We … Efficient Benefits: Cycle to Work, Home & Tech, Green Car Leasing Wellbeing: Occupational Health Support included Don't miss out-apply now to become an integral part of our cyber security defence. The closing date for applications is 1st September 2025 . Step into a rewarding future, where your skills make a real impact. For more information and to view More ❯

Join Us as a SOC Level 3 Analyst! Take Your Cyber Security Career to New Heights Are you ready to challenge yourself at the forefront of cyber security? UK Power Networks is seeking a talented SOC (Security Operations Centre) Level 3 Analyst to join our dynamic Information Systems team based in our Crawley offices. As … a key member, you'll work closely with the Cyber Security Operations Manager, tackling advanced security threats and supporting critical infrastructure. This is a permanent position offering substantial opportunities for professional growth and blended working arrangements: after a 6-month probation, enjoy the flexibility of 3 days in the office and 2 days remote each week. We … Efficient Benefits: Cycle to Work, Home & Tech, Green Car Leasing Wellbeing: Occupational Health Support included Don't miss out-apply now to become an integral part of our cyber security defence. The closing date for applications is 1st September 2025 . Step into a rewarding future, where your skills make a real impact. For more information and to view More ❯

Are you in a Security Operations Centre and every day is the same? We can assure you that there is no boredom in our role. We have a growing Cyber practice in our Defence sector and support enterprise scale clients. Now we have opportunities for L2 SOC Analysts to join in our success and work with multiple … can offer great career progression opportunities, benefits which you can flex to meet your needs and training and development opportunities. What you will be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain, improve … and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical and non-technical audiences and continuously improve their content and presentation. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What you will bring : Experience in Security Operations Centre. Demonstrable More ❯

Position Available: SOC Shift Lead Location: Hertfordshire (on-site, shift-based role) Salary: £65,000 - £72,000 + Benefits Experience needed: Proven background in Cyber Security, with experience leading teams within a Security Operations Centre (SOC) environment. Strong technical knowledge across network security, infrastructure, and operating systems. About the role: We are seeking an experienced … SOC Shift Leader to join a dynamic Cyber Security Operations Centre, providing critical oversight across a 24/7 secure environment. This role is pivotal in ensuring operational excellence, shift continuity, and the highest standards of threat detection and response. You'll work across three rotating teams of Tier 1 and Tier 2 analysts, delivering live operational … mentoring. In addition to hands-on SOC analyst duties, you will play a key role in developing team capability, enforcing standards, and ensuring seamless communication between shifts and wider security functions. This is a senior operational position that blends technical expertise with leadership responsibilities. You'll act as the first point of escalation for your shift, support analysts with More ❯

tier consultancy that operates at the sharp end of cybersecurity within defence, aerospace, and national security. We’re looking for an experienced SOC Analyst to join our high-performing Security Operations Centre in Farnborough. This is a unique chance to contribute to real-world cyber defence, on country critical technology, pitting your SCO skills against state of … attacks. As the SOC Analyst, you will: Monitoring and triaging alerts across secure client environments Investigating threats using logs, network traffic, and endpoint telemetry Supporting response efforts during live security incidents Improving detection rules, playbooks, and tooling with MITRE ATT&CK-driven enhancements Producing clear incident reports for both technical and non-technical audiences Contributing to threat intelligence initiatives … Staying ahead of the curve on emerging threats, tactics, and techniques To secure this SOC role: Proven experience in a Security Operations Centre (SOC) environment Hands-on knowledge of SIEM tools (Microsoft Sentinel, Splunk, etc.) Familiarity with MITRE ATT&CK and threat detection methodologies Strong analytical mindset with log, endpoint, and network analysis skills Understanding of network More ❯

Senior Cyber Security Engineer – Reading - Perm £60,000 - £70,000 Hybrid working As our client’s Cyber Security business continues to grow, they are now looking for an experienced and dynamic Senior Cyber Security Engineer to join our vibrant office with hybrid working. Senior Cyber Security Engineer - Responsibility: Carry out daily security engineering/operation … ITIL framework Develop an understanding of the threats, risks, vulnerabilities and evolving attack vectors facing the business. Using strong technical knowledge, continuously analyse and make recommendations to implement effective security controls, system hardening and security improvement projects with a particular focus in application/web hosting security. Assist in the management of patching, vulnerability analysis and penetration testing … to ensure recommendations are risk assessed and implemented in a timely manner Senior Cyber Security Engineer - Skills: Experience in Security Engineering, Network Security, and/or working in a Security Operations Centre (SOC). Hands-on knowledge of security tools and technologies, including Web Application Firewalls, SASE, access control, SIEM, antivirus, email/ More ❯

11099MS £60k - 70k per year Senior Cyber Security Engineer - Reading - Perm £60,000 - £70,000 Hybrid working As our client's Cyber Security business continues to grow, they are now looking for an experienced and dynamic Senior Cyber Security Engineer to join our vibrant office with hybrid working. Senior Cyber Security Engineer - Responsibility: Carry out daily … security engineering/operation tasks under an ITIL framework Develop an understanding of the threats, risks, vulnerabilities and evolving attack vectors facing the business. Using strong technical knowledge, continuously analyse and make recommendations to implement effective security controls, system hardening and security improvement projects with a particular focus in application/web hosting security. Assist in the … management of patching, vulnerability analysis and penetration testing to ensure recommendations are risk assessed and implemented in a timely manner Senior Cyber Security Engineer - Skills: Experience in Security Engineering, Network Security, and/or working in a Security Operations Centre (SOC). Hands-on knowledge of security tools and technologies, including Web Application More ❯

Technical Security Delivery Manager £85000 GBP Onsite WORKING Location: Central London, Greater London - United Kingdom Type: Permanent Technical Security Service Delivery Manager - SOC Birmingham (Hybrid) Up to £85,000 + Bonus + Benefits We're working with a top-tier consultancy on the search for a Technical Security Service Delivery Manager to support and enhance the operations of a high-performing Security Operations Centre (SOC). This is a leadership role at the sharp end of service delivery - managing complex security incidents, vulnerability management programmes, and client relationships across enterprise environments. What you'll be doing: Acting as the key liaison between the client and operational delivery teams Leading on incident escalation … and coordination with SOC and IR teams Managing post-incident investigations and reporting Supporting and driving improvements to vulnerability management workflows Overseeing IDS/IPS updates, firewall security, and policy alignment Running regular service reviews and ensuring SLA/KPI performance Collaborating with senior delivery leadership on best practice and optimisation What we're looking for: 10+ years of More ❯

IBM Platform Security Analyst (Cross Training Opportunity) IBM Platform Security Analyst required for multi-national IT Services organisation based in on-site at our Buckinghamshire SOC location. If you an IBMi iSeries AS/400 platform operations professional looking for an opportunity cross train into IT Security we would like to hear from you. The focus … of this role will be the delivery of an IT Defence offering/service which is for IBM Power and Storage clients. You would be based in a Security Operations Centre (SOC) using IBM Native tools on both the Power and Storage platforms maintaining IT security services. Building on your current skills the scope of the … storage defender and Insights and use of a SIEM agent reporting. Key Skills Previous experience as an IBM System i/Power i/IBM i/i Series Operations Technical Consultant with excellence in Power I (IBMi ,System i, iSeries) systems support and management. IBM i OS, (i-Series IBMi Power I AS/400) BRMS, Work Management More ❯

IBM Platform Security Analyst (Cross Training Opportunity) IBM Platform Security Analyst required for multi-national IT Services organisation based in on-site at our Buckinghamshire SOC location. If you an IBMi iSeries AS/400 platform operations professional looking for an opportunity cross train into IT Security we would like to hear from you. The focus … of this role will be the delivery of an IT Defence offering/service which is for IBM Power and Storage clients. You would be based in a Security Operations Centre (SOC) using IBM Native tools on both the Power and Storage platforms maintaining IT security services. Building on your current skills the scope of the … storage defender and Insights and use of a SIEM agent reporting. Key Skills Previous experience as an IBM System i/Power i/IBM i/i Series Operations Technical Consultant with excellence in Power I (IBMi ,System i, iSeries) systems support and management. IBM i OS, (i-Series IBMi Power I AS/400) BRMS, Work Management More ❯

11151CA £65k per year + Bonus We are seeking a talented SOC Manager to join a highly skilled Cyber Security SOC team within a leading internationally advanced technology solution provider. As SOC Manager, you must be capable and experienced to lead the day-to-day operations of our Security Operations Centre. This is a hands-on … on-call role that requires strong technical knowledge, operational leadership, and the ability to drive both people and processes forward. Must have the ability to obtain Security Clearance (SC). Duties include: Lead a shift-based SOC team delivering 24/7 security operations and incident response. Act as a senior technical escalation point for complex or … onboard and integrate new log sources. Take ownership of team documentation, shift handover processes, and playbook quality. Required experience: Proven experience in a leadership or senior role within a Security Operations Centre. Strong technical skills in areas such as alerting, incident response, and log analysis. Comfortable working hands-on with detection and monitoring technologies such as Microsoft Sentinel. More ❯

We are seeking a talented SOC Manager to join a highly skilled Cyber Security SOC team within a leading internationally advanced technology solution provider As SOC Manager you must be capable and experienced to lead the day-to-day operations of our Security Operations Centre. This is a hands-on, with on-call role that requires … strong technical knowledge, operational leadership, and the ability to drive both people and processes forward * Must have the ability to obtain Security Clearance (SC). Duties include: Lead a shift-based SOC team delivering 24/7 security operations and incident response. Act as a senior technical escalation point for complex or high-impact incidents. Be front … onboard and integrate new log sources. Take ownership of team documentation, shift handover processes, and playbook quality. Required experience: Proven experience in a leadership or senior role within a Security Operations Centre. Strong technical skills in areas such as alerting, incident response, and log analysis. Comfortable working hands-on with detection and monitoring technologies such as Microsoft Sentinel. More ❯

Job Title: Senior SOC Analyst Role : We are rapidly expanding our Security Operations Centre (SOC) team and are looking for driven SOC Analysts who thrive in fast-paced, high-tech environments. This is a fantastic opportunity to support multiple high-profile clients across enterprise-scale environments while using industry-leading tools like Microsoft Sentinel, Splunk, and MISP. … If you're ready to lead from the front, contribute to national security, and grow your cybersecurity careerthis is the role for you. Responsibilities: Monitor, triage, and investigate security incidents on critical client infrastructure. Conduct in-depth analysis of network traffic, system events, and logs to detect security threats and vulnerabilities. Provide Incident Response support and maintain … sharing across the team. Prepare and present reports for managed clients, tailoring content for both technical and non-technical stakeholders. Skills/Must have: Proven experience working in a Security Operations Centre. Hands-on experience with Microsoft Sentinel and Splunk. Familiarity with the Mitre ATT&CK framework. Strong understanding of networking fundamentals (TCP/IP, WANs, LANs, common More ❯

Lead Incident Response Engineer PLEASE NOTE: 4 days per week required in the office. Reporting into the Security Operations Centre Senior Manager, the role will take the lead across the EMEA region to develop and integrate the Incident Response (IR)/SOC security infrastructure to monitor both on premise and cloud environments. The role will serve … as a critical bridge between operations and engineering. Responsibilities: - Drive and improve continuous monitoring and incident response, serving as a senior resource in the SOC and Incident Response processes. - Configure and integrate platforms, tools, service providers, and solutions into IR/SOC systems, make recommendations as needed. - Consolidate and improve security logging and monitoring solutions on premise and … in the cloud to detect and respond to security threats in real time. - Drive efforts to automate and accelerate the detection and response processes. - Ensure integration of input from the deployed suite of security tools to SOC systems (e.g. SIEM/SOAR), including, but not limited to, IDS/IPS, End Point Protection, MDR/XDR, PAM, MFA More ❯

Lead Incident Response Engineer PLEASE NOTE: 4 days per week required in the office. Reporting into the Security Operations Centre Senior Manager, the role will take the lead across the EMEA region to develop and integrate the Incident Response (IR)/SOC security infrastructure to monitor both on premise and cloud environments. The role will serve … as a critical bridge between operations and engineering. Responsibilities: - Drive and improve continuous monitoring and incident response, serving as a senior resource in the SOC and Incident Response processes. - Configure and integrate platforms, tools, service providers, and solutions into IR/SOC systems, make recommendations as needed. - Consolidate and improve security logging and monitoring solutions on premise and … in the cloud to detect and respond to security threats in real time. - Drive efforts to automate and accelerate the detection and response processes. - Ensure integration of input from the deployed suite of security tools to SOC systems (e.g. SIEM/SOAR), including, but not limited to, IDS/IPS, End Point Protection, MDR/XDR, PAM, MFA More ❯

leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our clients critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role is … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

be responsible for the day to day monitoring using various SIEM Tools (Qradar, Sentinel & LogRhythm). Some of the responsibilities that come along with this role include the following: Security Analytics Incident investigation, triage and escalation Threat monitoring and response Trend reporting Rule tuning and continual service improvement The role involves working alongside other team members including SOC engineers … and Service Managers. Skills required: Microsoft Certified: Security Operations Analyst Associate Certification (SC200) is a mandatory requirement for role fulfilment Experience working with SIEM technologies and security tooling An understanding of IT Infrastructure and Networking An understanding of vulnerability and threat management An understanding of the incident response lifecycle T he ability to work in a close … team and independently The ability to be adaptable to a high pace changeable workload An interest in security and threat management Benefits Include: Contributory pension scheme Employee Assistance Program Medical and Dental cover 22 days holiday + bank holidays Maternity Pay/Shared Parental leave and paternity leave Sick pay Suitable Candidates should submit CVs in the first instance. More ❯

be responsible for the day to day monitoring using various SIEM Tools (Qradar, Sentinel & LogRhythm). Some of the responsibilities that come along with this role include the following: Security Analytics Incident investigation, triage and escalation Threat monitoring and response Trend reporting Rule tuning and continual service improvement The role involves working alongside other team members including SOC engineers … and Service Managers. Skills required: Microsoft Certified: Security Operations Analyst Associate Certification (SC200) is a mandatory requirement for role fulfilment Experience working with SIEM technologies and security tooling An understanding of IT Infrastructure and Networking An understanding of vulnerability and threat management An understanding of the incident response lifecycle T he ability to work in a close … team and independently The ability to be adaptable to a high pace changeable workload An interest in security and threat management Benefits Include: Contributory pension scheme Employee Assistance Program Medical and Dental cover 22 days holiday + bank holidays Maternity Pay/Shared Parental leave and paternity leave Sick pay Suitable Candidates should submit CVs in the first instance. More ❯

be responsible for the day to day monitoring using various SIEM Tools (Qradar, Sentinel & LogRhythm). Some of the responsibilities that come along with this role include the following: Security Analytics Incident investigation, triage and escalation Threat monitoring and response Trend reporting Rule tuning and continual service improvement The role involves working alongside other team members including SOC engineers … and Service Managers. Skills required: Microsoft Certified: Security Operations Analyst Associate Certification (SC200) is a mandatory requirement for role fulfilment Experience working with SIEM technologies and security tooling An understanding of IT Infrastructure and Networking An understanding of vulnerability and threat management An understanding of the incident response lifecycle T he ability to work in a close … team and independently The ability to be adaptable to a high pace changeable workload An interest in security and threat management Benefits Include: Contributory pension scheme Employee Assistance Program Medical and Dental cover 22 days holiday + bank holidays Maternity Pay/Shared Parental leave and paternity leave Sick pay Suitable Candidates should submit CVs in the first instance. More ❯

lifecycle experience for improvements. Splunk SaaS experience and expertise as a lead architect and/or engineer Experience of defining improvements within Cyber departments, particularly, SIEM improvements within Cyber Security Operations Centre (CSOC) functions that result in an increase in SIEM Maturity Levels. Experience of the lifecycle of SIEM delivery, including convergence from other SIEMs. More ❯

We are rapidly growing our SOC team, offering serious career growth and exciting work with multiple high-profile clients! Join our expanding Cyber practice in the Aerospace Defence and Security sector. This team supports enterprise-scale clients and requires proven experience working in a busy SOC with a tech-first approach. The team is on the cusp of continued … off. You must be eligible for Developed Vetting (DV). We offer excellent career progression opportunities, flexible benefits, and training and development programs. Responsibilities include: Monitoring, triaging, and investigating security incidents on critical client infrastructure. Analyzing network traffic, logs, and system events to identify threats and vulnerabilities. Providing Incident Response support. Maintaining and developing team knowledge of SOC tools … and security operations. Preparing reports for technical and non-technical audiences and improving their content. Updating security incident documentation, including reports, analysis, and mitigation strategies. Qualifications and experience: Experience working in a Security Operations Centre. Managing Microsoft Sentinel and Splunk implementations. Knowledge of the Mitre Att&ck Framework. Understanding of client-server applications, web applications, databases More ❯