1 to 25 of 56 Security Operations Centre Jobs in the UK excluding London

Security Operations Centre Administrative Assistant Location: Plymouth, Devon Contract: Permanent, Full-time Hours: 12-hour shifts on a 4-on, 4-off rota (flexibility may be required during critical incidents or audits)An exciting opportunity has arisen for a Security Operations Centre (SOC) Administrative Assistant to join a rapidly expanding, nationally recognised organisation with … and progression. With people and development at the heart of the business, this role offers the chance to be part of a forward-thinking company in a fast-paced, security-focused environment. About the Role The SOC Administrative Assistant provides essential support to the Security Operations team, ensuring the smooth running of daily activities. You will be … responsible for managing communications, documentation, scheduling, data entry, reporting, and supporting the coordination of security systems, incident tracking, and compliance processes.This role would suit someone highly organised, detail-driven, and comfortable handling sensitive information with discretion. Key Responsibilities Administrative Support Provide day-to-day administrative assistance to the Security and Loss Operations Manager and wider SOC team. More ❯

Learn more at experianplc.com. Internal Grade E Job Description As a Cyber Defence Analyst, you will join the Cyber Fusion Center, performing in-depth analysis, assessment, and response to security threats by following documented policies to meet Service Level Goals. The team provides global 24x7 security operations and monitoring for cybersecurity events affecting Experian. You will be … the first line of defence in Experian's broader incident response and incident management departments, responsible for receiving and prioritizing cybersecurity alerts, including being the dedicated contact for potential security incidents reported by users (e.g., Experian employees). Depending on the results of assessment, this team is then responsible for investigating, containing, eradicating, and recovering from events falling in … risk events to dedicated incident response and management teams in the CFC. This role is critical in ensuring the handling of potential threats and plays a part in improving security operations. This is a home based role reporting to the Director of Security Operations for SecOps & Threat Detection. Please note that in this role, you will have More ❯

Vacancy No VN140 Location City Dundee Location Country United Kingdom Business Unit Global Delivery Employment Type Full-Time About Systal We are Systal: a global managed network, cloud and security transformation specialist. We provide complex and strategic technology services for enterprise businesses, managing 200,000+ assets across 93 countries. These services help our customers achieve strategic technology transformation and … maximise the business value, security and innovative potential of their IT infrastructure Description We are seeking enthusiastic, dedicated and detail-oriented Level 1 SOC Analyst to join our UK based Security Operations Centre (SOC). The successful candidate will be responsible for the initial analysis and triage of security alerts, monitoring security systems, and … supporting the development of security event investigation and analysis within a large Organisational Environment. This role is critical in identifying and responding to security incidents to protect our customers information assets. Key Responsibilities Monitor Security Information & Event Management (SIEM) Tools: Continuously monitor SIEM tools to pro-actively engage with and investigate potential security incidents. Incident Identification More ❯

Security Operations Centre Analyst (SOC Analyst) Salary: £50,000 to £55,000 (based on candidate experience) Office Location: Portsmouth Hybrid Model: 3-4 days on-site (remaining days remote) Working Hours: Monday-Friday, Standard office hours (potentially some remote 24x7 on-call) Employment Type : Permanent About the Role: Join one of the best work-life organisations in … the IT Sector as part of their newly developing & rapidly expanding Cyber Security division. As a SOC Analyst, you'll be a vital part of a highly skilled Security Operations Centre team, responding to security alerts, investigating incidents, and helping to protect internal security and enterprise environments. 🔐 What You'll Do: Monitor SIEM, IDS …/IPS, EDR, and related tools for threat indicators. Utilise Security tools to monitor incidents and report threats. Analyse and investigate incidents, escalating when necessary. Conduct threat hunting and forensic analysis. Support rule development and tuning of detection systems. Assist with real-time detection, response, and containment. Maintain and improve SOC documentation and playbooks. Collaborate with team members and More ❯

IT Security Analyst Location: London - Remote with occasional travel to office Salary: £50,000 + Flexible Benefits Scheme Contract type: Permanent About the Role Morson Edge have partnered with a leading organisation to recruit a skilled IT Security Analyst to play a key role in protecting our clients digital infrastructure. You’ll monitor security systems, analyse threats … and respond to incidents ensuring the confidentiality, integrity, and availability of information assets. Working closely with the IT Security Manager, you’ll help strengthen defences, resolve security issues, and contribute to a proactive cyber-security culture. Key Responsibilities Monitor the organisation’s networks and systems for potential security issues. Investigate and resolve cyber incidents promptly and … effectively. Implement and manage security measures including firewalls, encryption, and endpoint protection. Maintain clear documentation of breaches, assessments, and remediation actions. Conduct vulnerability testing, penetration testing, and risk assessments. Collaborate with the IT Security Manager to identify and mitigate network vulnerabilities. Analyse logs from multiple sources to detect and respond to abnormal activity. Assist with internal and external More ❯

operations. In return, you’ll be at the cutting edge of new technology, learning new skills and gaining certifications that are recognised and respected across the industry. Our advanced Security Operations Centre (SOC) uses a combination of established solutions and cutting-edge internally developed technology to protect IT networks from a wide range of cyber threats on … all in-life services delivered to customers across a wide variety of market sectors. This is a shift based role which is responsible for analysing and responding to all security and service related events on a 24x7 basis. The role is ‘hands-on’, with a requirement to carry out cyber analysis . Working within the SOC, you will play … key role in helping to protect customer’s IT networks from cyber attack. Responsibilities : Monitor and analyse Intrusion Detection Systems (IDS), Anomaly Detection Systems (ADS), Firewall event logs, and Security Incident and Event Management (SIEM) toolset event logs to identify security attacks and threats for remediation/suppression. Assist in Computer Security Incident Response activities for large More ❯

We are looking for a dynamic and experienced SOC Operations Manager to lead and shape the delivery of our Security Operations Centre (SOC) services. In this pivotal role, you will be responsible for ensuring the SOC operates at peak performance while driving continual improvement, with a strong focus on ITIL service management principles and full alignment … with CREST standards. Based on-site in Hemel Hempstead, this is an outstanding opportunity for a SOC Operations Manager with proven experience in monitoring and analysing security threats for multiple customers.You will oversee and mentor a skilled team of analysts, fostering a culture of continuous learning, champion best practices in threat detection and incident management, and play a … vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews, and foster continuous improvement. Oversee full lifecycle of security incidents from detection to resolution. Ensure compliance with SLAs and escalation protocols. Maintain and enhance incident response plans and procedures. Direct threat intelligence collection and analysis. Manage vulnerability assessments More ❯

We are looking for a highly motivated and experienced Level 3 Security Operations Centre (SOC) Analyst to join our dynamic and growing team. The role holder will bring a mature approach to their work with extensive technical knowledge and hands-on experience in Security Operations. This is a unique opportunity to be a founding key member … operational cyber defence capability. Please note the on-call rota is every 1 in 6 weeks. Core Responsibilities Cyber Defence authority for real-time monitoring of Element’s security platforms such as SIEM and Extended Detection and Response (XDR) Prompt analysis and triage of alerts and security events. Support the Incident Response (IR) team to report potential or … digital forensics on computer/network artifacts to assess the risk and impact of an incident. Perform malware analysis. Develop and maintain string relationships with external stakeholders and Managed Security Service Providers to remediate vulnerabilities and improve security controls. Direct and coordinate analysts’ work and provide expert technical support Skills/Qualifications Excellent written and verbal communication skills More ❯

our overall success. We invite you to share your perspectives, cultural backgrounds, and innovative ideas; we look forward to your contributions. Join the Vix team as an experienced Cloud Security Engineer! This on-site position in Manchester involves collaborating with our Cloud Operations team and the Security team to maintain robust security protocols. You'll play … a crucial role in guiding our technical teams to meet security standards, successfully passing security audits, and safeguarding both company and customer data. As the first point of contact for security incidents, your expertise will be essential in keeping our systems secure. We regret that this position is only available for UK citizens/Residents with indefinite … the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in Manchester. Responsibilities Evaluate and strengthen our overall security posture by performing continuous audits, risk assessments, threat modelling, and architecture reviews to ensure effective controls and adherence to regulatory standards. Consistently monitor and assess cloud environments for vulnerabilities More ❯

top-tier consultancy that operates at the sharp end of cybersecurity within defence, aerospace, and national security.We’re looking for an experienced SOC Analyst to join our high-performing Security Operations Centre in Farnborough. This is a unique chance to contribute to real-world cyber defence, on country critical technology, pitting your SCO skills against state of … art attacks.As the SOC Analyst, you will: Monitoring and triaging alerts across secure client environments Investigating threats using logs, network traffic, and endpoint telemetry Supporting response efforts during live security incidents Improving detection rules, playbooks, and tooling with MITRE ATT&CK-driven enhancements Producing clear incident reports for both technical and non-technical audiences Contributing to threat intelligence initiatives … Staying ahead of the curve on emerging threats, tactics, and techniques To secure this SOC role: Proven experience in a Security Operations Centre (SOC) environment Hands-on knowledge of SIEM tools (Microsoft Sentinel, Splunk, etc.) Familiarity with MITRE ATT&CK and threat detection methodologies Strong analytical mindset with log, endpoint, and network analysis skills Understanding of network More ❯

The Role: Leidos, a Global IT Solutions Provider specialising in large scale implementations involving science, engineering, and technology, require a Cyber Defence Analyst to work in their CSOC (Cyber Security Operations Centre) Team. The Cyber Defence Analyst will be expected to contribute to the growth and development of the CSOC. You will work with a wide variety … of stakeholders to ensure, the Leidos CSOC, a Defensive Cyber Security capability, can support a customers Cyber Resilience, protecting them with a 24 x 7 Threat Detection and Response service, mitigating their risk of Cyber Attack. The successful candidate will be able to demonstrate experience from a CSOC background or be able to demonstrate sufficient transferable Cyber Security … succeed in the role the candidate must be capable of working under pressure, delivering on multiple customer accounts and have an appetite to progress and develop their own Cyber Security career. The role will be working within the CSOC, adhering to a matrix managed environment, reporting operationally to the CSOC Lead and accountable to the CSOC Manager. What will More ❯

Cyber Security Assurance Manager Overview An exciting opportunity has arisen for an experienced Cyber Security Assurance Manager to take ownership of security certifications, audits, and assurance standards for a leading Security Operations Centre (SOC) environment. This role will focus on delivering and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type … Cyber Essentials Plus , and CREST . Manage sector-specific compliance such as PCI DSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance, processes, and operations. Maintain evidence collection and audit readiness for both internal and external audits. Translate assurance … assurance activities related to SOC services. Support RFIs, RFPs , and audit requests with accurate and professional certification documentation. Develop and maintain customer-facing assurance materials that demonstrate a strong security posture. Regulatory & Framework Alignment Monitor changes in global cybersecurity regulations and standards (e.g. NIST CSF , NCSC , NIS2 , GDPR ). Ensure SOC assurance aligns with evolving regulatory and industry expectations. More ❯

About the role... The Security Engineer is a technical, hands-on role responsible for protecting computer systems, colleagues, and information from security risks. You will design and implement security measures, conduct audits, monitor systems, respond to incidents, and educate staff on common threats and misconceptions. You will also provide oversight and support for SOC operations and … may participate in security-related projects. This role requires expertise in vulnerability management, patch management, and security platforms, with a strong general knowledge of IT services. We uphold three core behaviours that guide all our actions: Love Our Customers: We strive to delight our customers, listening and responding to their needs because they are our priority. Care for … birthdays are important. Pension Scheme : Plan for the future with our contributory pension scheme, helping you save for a secure retirement. Your Impact and Responsibilities Design, implement, and maintain security measures to protect information and network infrastructure. Conduct regular security audits, risk assessments, and vulnerability scans (using tools such as Qualys). Manage and monitoring of technical vulnerabilities More ❯

Security Analyst – 5-week Contract – Fully Remote My Customer is seeking a proactive and technically skilled Security Analyst to join their growing cybersecurity function. This role acts as the critical bridge between the SOC (Security Operations Centre) team and the wider management group — ensuring that security incidents are not only investigated and remediated effectively … but also translated into actionable insights and long-term improvements across the business. Skills required from the Security Analyst: Proven experience in a Security Analyst , Incident Response , or SOC environment (2nd line or similar). Strong hands-on experience in threat investigation, log analysis, and remediation . Good understanding of common security frameworks and practices (e.g., MITRE … ATT&CK, NIST, ISO 27001). Familiarity with a range of security tools and platforms – experience with Microsoft Sentinel is desirable but not essential. Excellent communication skills – able to liaise confidently between technical and non-technical teams. A consultative mindset with the ability to translate technical findings into meaningful business recommendations. Key Responsibilities from the Security Analyst: Act More ❯

within the Critical National Infrastructure (CNI) energy sector, is looking to appoint an experienced Senior/Level 3 SOC Analyst. This is a senior escalation role within a dedicated Security Operations Centre, working at the forefront of protecting high-value national assets. The successful candidate will act as a technical authority for advanced incident response, threat hunting … and security engineering, with a strong focus on the Microsoft security stack. Key Responsibilities Serve as the primary escalation point for complex incidents and lead on incident response. Conduct in-depth threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance … to junior SOC analysts, enhancing team capability. Collaborate with IT and OT teams to address unique security requirements across CNI environments. Drive improvements in SOC operations, automation, and incident response processes. Monitor evolving threats and integrate threat intelligence into daily operations. Ensure adherence to industry standards and compliance frameworks (NIS2, CAF, ISO 27001). Skills & Experience Required Extensive More ❯

This role is based five days per week on-site in Corsham. Security Analyst – SOC (Corsham, On-Site) An exciting opportunity to join an established Security Operations Centre, providing cyber expertise to support day-to-day operations. The role involves regular SOC activities, introducing new processes, and embedding best practice across the workplace. This role is … continuous employment history, and an unspent criminal record check (DBS). Key Responsibilities Conduct reactive monitoring of client networks to deliver a layered, agile cyber defence capability across all security domains. Manage and triage alerts, perform impact assessments, and develop mitigating strategies to be briefed up the chain of command. Ensure compliance with all cyber security policies, procedures … reviewing and amending where required. Maintain and share knowledge of current cyber issues, vulnerabilities, and exploits through research, technical reports, and briefs. Skills and Experience Experience working as a Security Analyst in a SOC or equivalent security monitoring and response environment. Current SC clearance (essential). Knowledge of data networks. Experience with SIEM toolsets and security management More ❯

Cyber Security Engineer Location: Leeds City Centre (Hybrid: 3 days in the office, 2 days remote) Job Type: Full-Time Reports To: Security Operations Manager Salary: £30,000 – £45,000 + On-Call Allowance + Benefits Working Hours: 09:30–18:00 (core business hours are 08:00–18:00) On-Call: 1-in-4 rotation … with allowance, providing 24/7 coverage Company Overview The team supports a broad range of cutting-edge security technologies, helping customers secure their networks, applications, and infrastructure through proactive monitoring, management, and incident response. As demand for managed firewall and security services grows, my client is looking for a Cyber Security Engineer with strong networking fundamentals … and a willingness to learn advanced security technologies. This role is ideal for someone with 1–2 years of experience who wants to develop their skills in a supportive, growth-focused environment. Role Overview As a Cyber Security Engineer within the Security Operations Center (SOC), you will help manage and support customer network security environments. More ❯

Manager to protect DIT and the wider UK government from cyber threats in a fast paced and exciting role, responsible for the Vulnerability Management and Threat Hunting of the Security Operations Centre (SOC) Target Operating Model (TOM). £62,534 to £82,200 (including allowances) London £66,257 to £82,200, National £62,534 to £78,580. … Manager you will be helping to protect DBT and the wider UK government from cyber threats in a fast paced and exciting role. Reporting to the Head of Cyber Security Operations, the Cyber Threat and Vulnerability Manager will manage and be responsible for the Threat and Vulnerability Management function within the SOC, by providing leadership on identification and … improvement opportunities, and ensuring service owners are aware of weaknesses in their security posture and are empowered with the right information to take appropriate actions. A healthy curiosity will be essential, to actively go out and discover items of potential interest to the team, ensuring that there is collaboration between the architects, SOC engineers and analysts, and risk managers More ❯

Manager to protect DIT and the wider UK government from cyber threats in a fast paced and exciting role, responsible for the Vulnerability Management and Threat Hunting of the Security Operations Centre (SOC) Target Operating Model (TOM). £62,534 to £82,200 (including allowances) London £66,257 to £82,200, National £62,534 to £78,580. … Manager you will be helping to protect DBT and the wider UK government from cyber threats in a fast paced and exciting role. Reporting to the Head of Cyber Security Operations, the Cyber Threat and Vulnerability Manager will manage and be responsible for the Threat and Vulnerability Management function within the SOC, by providing leadership on identification and … improvement opportunities, and ensuring service owners are aware of weaknesses in their security posture and are empowered with the right information to take appropriate actions. A healthy curiosity will be essential, to actively go out and discover items of potential interest to the team, ensuring that there is collaboration between the architects, SOC engineers and analysts, and risk managers More ❯

Manager to protect DIT and the wider UK government from cyber threats in a fast paced and exciting role, responsible for the Vulnerability Management and Threat Hunting of the Security Operations Centre (SOC) Target Operating Model (TOM). £62,534 to £82,200 (including allowances) London £66,257 to £82,200, National £62,534 to £78,580. … Manager you will be helping to protect DBT and the wider UK government from cyber threats in a fast paced and exciting role.? Reporting to the Head of Cyber Security Operations, the Cyber Threat and Vulnerability Manager will manage and be responsible for the Threat and Vulnerability Management function within the SOC, by providing leadership on identification and … improvement opportunities, and ensuring service owners are aware of weaknesses in their security posture and are empowered with the right information to take appropriate actions. A healthy curiosity will be essential, to actively go out and discover items of potential interest to the team, ensuring that there is collaboration between the architects, SOC engineers and analysts, and risk managers More ❯

Manager to protect DIT and the wider UK government from cyber threats in a fast paced and exciting role, responsible for the Vulnerability Management and Threat Hunting of the Security Operations Centre (SOC) Target Operating Model (TOM). £62,534 to £82,200 (including allowances) London £66,257 to £82,200, National £62,534 to £78,580. … Manager you will be helping to protect DBT and the wider UK government from cyber threats in a fast paced and exciting role. Reporting to the Head of Cyber Security Operations, the Cyber Threat and Vulnerability Manager will manage and be responsible for the Threat and Vulnerability Management function within the SOC, by providing leadership on identification and … improvement opportunities, and ensuring service owners are aware of weaknesses in their security posture and are empowered with the right information to take appropriate actions. A healthy curiosity will be essential, to actively go out and discover items of potential interest to the team, ensuring that there is collaboration between the architects, SOC engineers and analysts, and risk managers More ❯

Manager to protect DIT and the wider UK government from cyber threats in a fast paced and exciting role, responsible for the Vulnerability Management and Threat Hunting of the Security Operations Centre (SOC) Target Operating Model (TOM). £62,534 to £82,200 (including allowances) London £66,257 to £82,200, National £62,534 to £78,580. … Manager you will be helping to protect DBT and the wider UK government from cyber threats in a fast paced and exciting role.? Reporting to the Head of Cyber Security Operations, the Cyber Threat and Vulnerability Manager will manage and be responsible for the Threat and Vulnerability Management function within the SOC, by providing leadership on identification and … improvement opportunities, and ensuring service owners are aware of weaknesses in their security posture and are empowered with the right information to take appropriate actions. A healthy curiosity will be essential, to actively go out and discover items of potential interest to the team, ensuring that there is collaboration between the architects, SOC engineers and analysts, and risk managers More ❯

SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high-severity cyber incidents … and escalated security events, leveraging your technical expertise, analytical mindset, and industry-standard tools to contain, eradicate, and recover from cyber threats. Your work will directly contribute to safeguarding my client's network systems, operational technology, and customer data from emerging and sophisticated cyber risks. Key Responsibilities As a senior member of the Security Operations team, you … and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration and effective alert correlation across cloud and on-prem environments. Support and develop the organisation's SOAR More ❯

SOC Operations Manager Hemel Hempstead (On-site) Security Clearance – Willing and Able to go through the DV process. Are you an experienced SOC Operations Manager ready to take the next step in your career? This is an exceptional opportunity to lead, shape, and elevate a Security Operations Centre that supports multiple high-profile customers … ll have the freedom to make a real impact—defining strategy, driving continual improvement, and mentoring talented analysts to deliver world-class detection and response capabilities. As the SOC Operations Manager, you will: Lead and develop a skilled SOC team, inspiring a culture of continuous learning and technical excellence. Oversee the full lifecycle of security incidents — from detection … Elastic) to enhance detection and automation capabilities. Drive continuous improvement through ITIL-aligned processes and adherence to CREST standards. Oversee vulnerability management, threat intelligence, and incident response plans. Communicate security posture, risks, and incident outcomes clearly to senior stakeholders. Ensure operational readiness and contribute to maintaining industry accreditations. Have held budgetary responsibility You will be able to bring a More ❯

SC Clearance Required) – Multiple UK Locations (Shift Work) - £55,000 - £58,000 – Permanent Are you passionate about cybersecurity and ready to make a real impact? We’re expanding our Security Operations Centre (SOC) team and looking for Level 2 SOC Analysts to join us across multiple UK locations.This is a fantastic opportunity to work with enterprise-scale … You’ll be part of a collaborative team using cutting-edge technologies like Microsoft Sentinel, Splunk, and MISP Threat Sharing to protect critical infrastructure. Key Responsibilities: Monitor and analyse security alerts and events, conduct initial investigations, and escalate complex incidents. Manage SOC incident queues and support asset baseline maintenance. Prepare reports for technical and non-technical audiences. Collaborate on … intelligence development and incident documentation. Shift Pattern: 2 days (6am–6pm), 2 nights (6pm–6am), followed by 4 days off. What We’re Looking For: Experience working in a Security Operations Centre. Familiarity with Microsoft Sentinel and Splunk. Understanding of the MITRE ATT&CK framework. Basic knowledge of networking, client-server applications, firewalls, VPNs, and antivirus products. Entry More ❯