1 to 25 of 32 Security Operations Jobs in the City of London

Head of Security Operations Center (SOC) (Interim) | Capital Markets | Central London (On-site) Robert Half International (an S&P 500 global staffing provider) is supporting a global consulting firm in sourcing an experienced Head of Security Operations Center to join a leading capital markets client during a key period of transition. The role focuses on maintaining … and enhancing the client’s existing Security Operations Centre, managing the external SOC provider, and ensuring continuity of operations while a permanent structure is established. Assignment Details Initial Duration: 3–6 months (with potential extension) to start ASAP by w/c 24 November Location: On-site minimum 3 days per week in Central London will be … leading or managing a SOC function within capital markets, FinTech, or smaller financial services environments. Strong technical experience with CrowdStrike and Elastic SIEM . Skilled across the Microsoft 365 Security Stack (Defender, Sentinel, Entra). Hands-on capability in incident response, threat hunting, and digital forensics . Demonstrated experience managing outsourced SOC providers and maintaining performance SLAs. Strong communication More ❯

Lead Cyber Security Engineer We're partnered with a global law firm who are looking to build a next-generation Security Operations (SecOps) function. They are looking for a Lead Cyber Security Engineer to drive innovation, strengthen resilience, and champion a zero-trust approach across their global network. *Hybrid working- 3 days in London per week … What You’ll Do Build the SecOps team from the ground up and manage/mentor the team. Lead the implementation, optimisation, and management of cutting-edge security tools like CrowdStrike, Palo Alto, and Mimecast. Take ownership of our cyber defence posture from incident response and vulnerability management to WAFs, DDoS protection, and encryption. Mentor junior engineers, elevate best … practices, and help us on our journey to ISO 27001 certification. What You Bring Deep hands-on expertise across EDR, SIEM, NAC, MFA, PAM, and cloud security environments. Proven experience with security frameworks such as ISO 27001, NIST, CIS, and PCI-DSS. Certifications like CISSP, CPSA, or Palo Alto Certified Security Operations Professional. A collaborative mindset More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … central) Familiarity with security tools: Azure security, cloud IAM, Defender, web proxy, endpoint detection (CrowdStrike or equivalents) Understanding of zero trust networks, SSO, and network segregation principles Strong communicator: able to advise IT teams on practical security steps, not just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized More ❯

Security Operations Lead - Fintech - Trading Hybrid Working - 3 days in London office The Role As SecOps Lead , you will act as the main liaison between internal security, engineering, and IT teams, and an external Managed Detection and Response (MDR) partner. You’ll oversee incident management, enhance detection and response processes, and strengthen the company’s overall security … posture. Key Responsibilities Serve as the primary contact for the MDR partner, managing the relationship, conducting service reviews, and ensuring SLAs are consistently met. Lead incident response efforts during security events — coordinating across teams to achieve fast containment and recovery. Review and fine-tune security alerts with the MDR provider, reducing false positives and improving detection accuracy. Develop … and monitor MDR performance metrics (KPIs) , presenting insights and trends to senior leadership. Maintain and evolve the security incident response plan (IRP) and playbooks in collaboration with the MDR provider. Translate technical security risks into actionable business recommendations for stakeholders at all levels. Contribute to broader cybersecurity initiatives , including vulnerability management, cloud security, data protection, and governance More ❯

New Exciting Opportunity ServiceNow SecOps Architect Duration: Contract (6 Months+) Day Rate: £600 (Inside IR35) Location: London/Gloucester, United Kingdom Job Purpose We are looking for a forward-thinking ServiceNow SecOps Architect to design, implement, and enhance enterprise-scale security operations capabilities on the ServiceNow platform. This role plays a key part in strengthening the cyber resilience … of the UK’s largest energy organisations, safeguarding critical infrastructure and renewable energy assets. Essential Skills & Experience Proven experience as a ServiceNow Architect , with strong hands-on delivery in SecOps and/or IRM modules . Deep understanding of security operations , incident response , and vulnerability management . Expertise in ServiceNow workflows , scripting , CMDB , Discovery , and system integrations (REST … communication skills. Background supporting critical infrastructure , preferably within the energy or utilities sector . Knowledge of security frameworks and compliance mandates (e.g., NIST, ISO 27001, NIS2). ServiceNow SecOps certification (Certified Implementation Specialist – SecOps or equivalent). Desirable Skills Knowledge of OT/ICS security and industrial communication protocols (e.g., Modbus, DNP3, IEC 61850). Familiarity with cloud More ❯

capabilities, integrations, and strategic customizations. Technical Advisory & Governance: Act as a subject matter expert and technical advisor to clients and internal teams, providing guidance on platform capabilities, performance optimization, security, and scalability. Establish technical governance to ensure solution integrity. Requirement Analysis & Solution Design: Collaborate with business stakeholders to gather and analyze complex requirements, translating them into comprehensive technical designs … broad range of ServiceNow modules, including but not limited to: Integrated Risk Management (IRM): Policy Management, Compliance & Audit Management, Vendor Risk Management, Business Continuity Management. Security Operations (SecOps): Vulnerability Response, Security Incident Response, Security Dashboards. IT Service Management (ITSM). IT Operations Management (ITOM). Customer Service Management (CSM). Integration Design: Design and oversee … a similar lead architectural role. Demonstrated ability to design and implement end-to-end ServiceNow solutions across multiple modules. Deep understanding of the ServiceNow platform architecture, data model, and security framework. Expertise in ServiceNow best practices, including platform governance, performance optimization, and security hardening. Proven experience with large-scale ServiceNow implementations and complex integrations. Strong analytical and problem More ❯

capabilities, integrations, and strategic customizations. Technical Advisory & Governance: Act as a subject matter expert and technical advisor to clients and internal teams, providing guidance on platform capabilities, performance optimization, security, and scalability. Establish technical governance to ensure solution integrity. Requirement Analysis & Solution Design: Collaborate with business stakeholders to gather and analyze complex requirements, translating them into comprehensive technical designs … broad range of ServiceNow modules, including but not limited to: Integrated Risk Management (IRM): Policy Management, Compliance & Audit Management, Vendor Risk Management, Business Continuity Management. Security Operations (SecOps): Vulnerability Response, Security Incident Response, Security Dashboards. IT Service Management (ITSM). IT Operations Management (ITOM). Customer Service Management (CSM). Integration Design: Design and oversee … technical and non-technical audiences. Experience with Agile development methodologies. Relevant ServiceNow certifications (e.g., Certified Master Architect, Certified Technical Architect, Certified Application Developer, Certified System Administrator). ServiceNow GRC & SecOps More ❯

Cyber Security & Centralised Services Manager Location: London Bridge Company: Managed Service Provider (MSP) This role will be office-based for the first 3–6 months, with the option to move to a hybrid working arrangement thereafter. Our client is a well-established MSP based in London Bridge. They are a close-knit team of 30 IT professionals delivering end … end technology services and support to a diverse range of clients, with a strong emphasis on cybersecurity, resilience and regulatory compliance. The Opportunity: We are seeking an experienced Cyber Security & Centralised Services Managerwith a strong cybersecurity focus to join our growing technical team. In this pivotal role, you will: Act as the primary escalation point for complex IT and … cybersecurity incidents. Manage and secure core client infrastructure and cloud environments. Ensure centralised security, monitoring, and incident response platforms operate effectively. You will collaborate closely with our Service Desk, Projects and Account Management teams to maintain high standards of service, document solutions and mentor junior engineers in line with cybersecurity best practices and frameworks such as ISO27001, NIST, and More ❯

Security Analyst (Network & Support) Location - London (Hybrid) Duration - 6 Months (Initially) Rate - £450 (A day) IR35 - Outside IR35 Summary To be part of Digital Services, actively contributing as a member of the Infrastructure and Operations Team to support and develop the Network Infrastructure, Services, and Security. Provide 3rd line support for all wired, Wi-Fi, and remote access … network services to staff, students, contractors, and visitors. Act as a key point of reference in network security, contributing to the implementation, development, provisioning, and operational support of network dependencies. The post holder will be expected to support the designing, implementation, and maintenance of our client's Network Security Infrastructure to protect against cyber threats. Accountabilities and Responsibilities … Security Operations Support Serve as a reference point for network security across IT teams, providing guidance and specialised expertise on security measures. Conduct vulnerability assessments, security audits, and continuous monitoring of network traffic for anomalies using advanced security tools. Collaborate with IT teams to ensure security measures are integrated into network architecture and More ❯

Security Analyst 3 months - with extensions London - hybrid £400 per day inside IR35 - Umbrella only Active or lapsed SC Security Clearance required The Role As a Cyber Security Analyst in the Cyber Operations workstream, you will report to the Operational Cyber Security Architect and support BAU cyber activities across the organisation. You will play a … helping the department detect, respond to, and manage cyber threats, vulnerabilities, and operational risks. You will work closely with technical teams, service owners, and delivery partners to ensure robust security controls are in place and actively monitored. The role is hands-on and well-suited to someone who is proactive, curious, and eager to go beyond the call of … predefined playbooks and processes Supporting vulnerability identification, triage, and remediation, including follow-up with relevant technical teams. Monitoring and analysing alerts and logs from LogRhythm, CyberArk, Semperis and other security tools, but experience with other cyber tools would also suffice. Participating in the change management process to ensure proposed changes are reviewed for security risk. Contributing to penetration More ❯

Sales Engineer: Solutions Architect LMNTRIX is a globally recognised MXDR (Managed Extended Detection & Response) vendor. We sit alongside or above existing technology to catch the threats which breach existing security controls. Scoring a near perfect 5 customer scores on Gartner Peer Reviews and G2 MDR reviews Our solution has recently been endorsed by the IDC MarketScape as a Leader … s journey. Be an active participant in discovery conversations with prospective customers to understand their needs and validate alignment with LMNTRIX solutions. Thoroughly understand and document customer environments including security tooling, network design, authentication, and cloud services. Effectively demonstrate key differentiators by understanding the competitive landscape across endpoint protection, network visibility, security logs and cloud security unified … initiatives such as process improvement, training, content creation, etc. Key Skills In depth knowledge of infrastructure components including Endpoint, Networking, Identity Management, SIEM, and Cloud Services. Technical understanding of security tools and strategies. E.g. security frameworks, security operations, incident response, SIEM, XDR, EDR/EPP, NDR, CSPM etc. Ability to articulate and demonstrate the business application More ❯

Infrastructure Security Engineer- Italian/Spanish speaking We are currently recruiting for a Infrastructure Security Engineer on a 6 month initial contract. Hybrid basis (2-3 days) London, Milton Keynes or Birmingham They are looking for a candidate to take responsibility for leading, guiding, supporting and delivering secure architectural design for the group cyber security maturity programme. … They are also looking for a candidate who is able to provide advice and recommendations for the programme. Key Skills Support the integration of new cyber security technologies that meets the next generation threats and can be adopted by the group globally You will be required to travel to the local sites, data centre or multiple offices location in … order to complete your tasks for off the network countries. Support global cyber security team to ensure open Continuous Security Improvement Programme (CSIP’s) are managed effectively up to closure Information Security Management System (Infrastructure Security Operations). Azure cloud infrastructure and configuration. System Centre Configuration Manager, Operations Manager and Virtual Machine Manager. Microsoft More ❯

the ability to engage both technical and business stakeholders UK-based, with full right to work in the UK Nice to Have Experience with ServiceNow Security Operations (SecOps) Please apply with a detailed CV to be contacted. More ❯

Information Security Officer – International Law Firm (London-Based) Permanent | Hybrid Working | Competitive Salary I am working with a leading international law firm to support their search for an experienced and proactive Information Security Officer (ISO) to lead their global information and data security programme. This senior-level role offers the opportunity to shape the firm’s long … term security strategy, drive ISO 27001 certification, and ensure the resilience of systems and data across offices in the UK, US, and Europe. The position reports to the Director of IT and works closely with regional IT teams and external partners. Key Responsibilities: Lead the firm’s information security governance framework across all offices and platforms Maintain and … enhance the ISO 27001-aligned Information Security Management System (ISMS) Ensure compliance with frameworks including CIS Controls, NIST, ISO 27701, and GDPR Oversee incident response, threat detection, and access governance across systems such as iManage, Intapp, Aderant, Microsoft 365, and Azure Drive firm-wide security awareness and training initiatives Monitor regulatory changes and emerging threats, and advise on More ❯

IT Cyber Security Analyst Ref: YC46941 A highly successful IT and telecommunications services company is currently recruiting an IT Cyber Security Analyst (Threat Intelligence Analyst) to work at their clients site in London. In this role, you will be responsible for identifying, analysing, and communicating cyber threats to support proactive defence strategies. The ideal candidate should have expertise … in threat intelligence analysis, collaboration across teams, familiarity with security tools, and strong analytical skills. ELIGIBLE APPLICANTS: (O) Eligible visa: Permanent residence, Spouse, Partner, Working holiday, Graduate (X) NOT eligible: Student visa, Requiring visa sponsorship, WORK TYPE: office-based VISA SUPPORT: No TYPE: 6 months rolling contract, full-time WORKING HOURS: Mon-Fri 9:00-17:00 SALARY: up … to £54k, depending on experience START: Nov-Dec 2025 LOCATION: London (office-based) Cyber Security Analyst Main Responsibilities: Monitor and analyse the global threat landscape to identify emerging risks, adversary tactics, and trends relevant to the organization's business and technology environment Collaborate with Red Team, Blue Team, and Penetration Testing teams to integrate threat intelligence into testing scenarios More ❯

various processes across functions. Gain access to endless learning opportunities. The Role As an MS Purview and M365 Defender XDR SME , you will be a proactive and skilled Microsoft Security Engineer or Analyst tasked with safeguarding digital assets by leveraging a comprehensive suite of Microsoft security technologies. The ideal candidate will have experience using Microsoft Defender XDR for … threats, implement Microsoft Purview to ensure data compliance, and secure identities and access through Microsoft Entra ID. Core responsibilities will include threat management, proactive hunting for vulnerabilities, data protection, security posture management, and incident response. All of these will be based on collaborating with other teams to maintain and improve the organization's overall security posture. Key responsibilities … policies (AIP/MPIP), such as sensitivity labels. Configure and monitor policies to detect, investigate, and act on malicious or unintentional activities that could lead to data leakage or security incidents. Monitor and investigate communications within the organization to detect and address potential violations of corporate policy or regulatory standards. Manage and secure user, group, and workload identities including More ❯

Head of Information Security - FinTech - £100K+ Our client is one of the country’s fastest growing FinTechs. Based in central London, hybrid working, they’re looking for a Head of InfoSec to join them, champion security and take the lead across DevSecOps, application security, ops and governance. You’ll have the chance to own security for … teams. This is an incredible opportunity to head up InfoSec for a growing, cutting-edge FinTech – Not something to miss! Requirements: Great AppSec experience and experience owning an Application Security program Strong knowledge of running Security Operations, monitoring, incident response etc Excellent GRC knowledge – GDPR, ISO etc Proven communication skills Experience of leadership around risk Track record More ❯

The role will involve working in their global security team and will be responsible of helping develop effective security controls. Key responsibilities will include: Working closely with the in-house security operations team to drive world class threat detection Building effective detection use cases within the chosen SIEM while minimizing false positives. Utilize online resources for … SOC’s abilities to detect cyber-attacks. Utilize telemetry available throughout the environment to build and improve detection capabilities. Testing of existing and new detection use cases Participation in security incidents/investigations Key skills needed for the role: Experience of SIEM administration – Splunk or Exabeam preferred but other SIEM tools considered Broad technical information security knowledge including … networking, malware analysis, incident response and Knowledge of information security protection, detection and authentication systems Understanding of tools, techniques and procedures that attackers use to compromise organizations, ideally from direct experience. Basic python\ AWS experience Please send your CV for immediate review More ❯

strategic ownership of the organisation's core infrastructure and network operations. You will manage relationships with external service providers, lead internal infrastructure initiatives and ensure the stability, scalability and security of IT systems across multiple sites, whilst leading the infrastructure team. Key Responsibilities * Lead and manage the delivery of infrastructure and network services across offices and project sites, aligning … providers, ensuring performance, SLAs and service quality * Provide leadership to technical staff * Plan and coordinate infrastructure upgrades, migrations and integrations across a growing business portfolio * Manage network and server operations, ensuring uptime, resilience and business continuity. * Oversee the design and deployment of new site networks and connectivity solutions, ensuring standardisation and efficiency * Collaborate with the Security Operations Center and compliance teams to maintain a robust security posture * Develop and enforce infrastructure policies, processes and documentation to support consistent operations and future scalability * Maintain oversight of infrastructure assets, configuration management and software licensing * Contribute strategically to IT budgeting, vendor management and continuous service improvement initiatives * Provide high-level technical oversight and guidance in areas including More ❯

for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams. What You’ll Be Doing 🕵️ Lead Investigations : Conduct host, network, and cloud … based forensic analysis to uncover the full scope of security incidents. 🛡️ Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies. ⚙️ Drive Innovation : Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities. 🔍 Threat Hunting : Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering More ❯

We're Hiring: GSOC Technical Adoption Manager/Technical Project Manager 📍 Location: London (Remote working available) 🌐 Company: KPMG International 🔐 Team: Global Information Security Group (GISG) Are you passionate about cybersecurity and technology adoption? Join KPMG International’s Global Security Operations Center (GSOC) as a Technical Adoption Manager and play a pivotal role in onboarding cutting-edge security … Track, report, and document adoption activities and processes. Contribute to the strategic direction of GSOC. What We’re Looking For Strong background in IT and cybersecurity. Experience in operational security environments and SOC dynamics. Familiarity with Microsoft Azure, Google Cloud Platform, and other cloud technologies. Proven ability to lead globally distributed teams. Excellent communication and documentation skills. Relevant certifications More ❯

high-quality threat briefings, risk assessments, and operational recommendations Participate in incident response, providing context, attributions, and support as required Required Skills & Experience: Extensive experience in threat intelligence, cybersecurity operations, or penetration testing Proven ability to work collaboratively with Red/Blue teams and Security Operations Centres (SOC) Hands-on experience with TIPs (Threat Intelligence Platforms), SIEM More ❯

Architect Salary: £70,000 - £80,000 base DOE Remote/Home-based role with infrequent travel to client sites as and when required. MUST be eligible for UK Government Security Clearance. We’re seeking an experienced Senior Cyber Architect to join a fast-paced consulting engagement within a complex, high-impact technology environment. This isn’t a purely advisory … position; it’s for someone who can design, build, and implement secure solutions across on-premise, cloud, and hybrid infrastructures . You’ll take ownership of key security projects, applying deep technical understanding to real-world challenges, and ensuring solutions are both secure and practical. We’re looking for someone who mirrors the blend of hands-on expertise and … dependencies. Proven hands-on experience in security architecture — not just advisory. You’ve designed, implemented, and delivered secure systems yourself (this is essential) Background in security engineering, SecOps, pen testing, or other hands-on technical roles. Excellent communication skills to engage both technical and non-technical audiences. Adaptability to work across varied industries and technologies. Experience in regulated More ❯

sound team and that an inclusive and diverse workplace moves us all forward. WHAT YOU’LL DO: Responsible for designing, deploying, and maintaining enterprise email systems to ensure reliability, security, and performance. Provides onsite support for the client’s IT and user teams, manages mail servers, troubleshoots email issues, and ensures compliance with corporate and legal standards. Exchange Online … Administrator role. Proven hands-on experience with Microsoft Exchange Online and Exchange Server 2016/2019/SE , including configuration, administration, troubleshooting, and version upgrades. Practical experience managing email security and continuity platforms Working knowledge of DNS, SPF, DKIM, and DMARC configuration and management, ideally using tools such as Valimail . Strong understanding of Intune for BYOD and corporate … Specialist (MD-102) (or legacy MD-101) SC-300 (Identity & Access) Mimecast or Proofpoint specialist cert ITIL v4 Foundation Microsoft 365 Certified: Enterprise Administrator Expert CompTIA Security+ or Microsoft Security Operations Analyst (SC-200) Desirable Expertise: Experience with Proofpoint Core Email DLP (Tessian) WHY YOU’LL LIKE WORKING HERE: • Medical benefits • 25 days paid holidays • Enjoyable and dynamic More ❯

record delivering structured change and engagement activities. Strong stakeholder management and communication skills. About the Company A major enterprise undergoing a significant transformation programme to enhance identity, access, and security operations across the business. ➡️ Interested? Apply today to learn more about this opportunity. More ❯