1 to 25 of 512 Security Operations Jobs in the UK

We have an exciting new opportunity for aCyber Defence and Security Operations Managerto join the A&O Shearman Belfast office. Apply today via the link below or contact for more information. About the team The firm's ability to keep our clients' data secure is a bedrock for our reputation as a trustworthy professional services partner to many … of the world's large and prestigious organisations. Information security is not an afterthought; it is core to all that we do, to protect not only our data but that of our clients, and has the unwavering support of the Board. Led by our new CISO, the in-house Information Security team is a core part of our … technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearman's strategy to lead where global complexity creates opportunity. More ❯

The team you'll be working with: Senior SOC Analyst We are currently recruiting for a Senior SOC Anslyst to join our growing Security Operations Centre business. This role will be based in Glasgow, and requires a willingness to work in a job that involves 24/7 operations or on call, this will probably be … days on, 4 days off in shift patterns. About Us NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In … be doing; The primary function of the Senior SOC Analyst is to manage any incidents escalated by the SOC Analyst (L1 & L2) and undertake the detailed investigation of the Security Event. The Senior SOC Analyst shall be able to look at all the evidence available and support the client on the appropriate action to contain and remediate any security More ❯

The team you'll be working with: P3 Senior SOC Analyst (L3) We are currently recruiting a Senior SOC Analyst L3 Managed Detection and Responseto join our growing Security Operations Centre business. ThisrolewillbebasedonsiteinBirmingham,youwillneedtobewillingtoworkinshiftpatters,probably4dayson,4daysoff,asthisisa24/7securityoperationscentre. About Us NTT DATA is one of the world's largest Global Security services providers with over … Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to do great things. We believe that … be doing; The primary function of the SeniorSOC Analyst L3 is to manage any incidents escalated by the SOC Analyst (L1 & L2) and undertake the detailed investigation of the Security Event. The Senior SOC Analyst shall be able to look at all the evidence available and support the client on the appropraite action to contain and remediate any security More ❯

Full time Start: ASAP Location: Reading – Hybrid Languages: English We are seeking an experienced and highly capable SOC Tier 3 Analyst to serve as a senior member of our Security Operations Center (SOC). You will lead advanced incident response efforts, conduct proactive threat hunting, perform digital forensics, and collaborate cross-functionally to safeguard our digital assets and … Threat Hunting & Analysis Proactively identify emerging threats through behavioral analytics and threat intelligence. Analyze log data, network activity, and endpoints to uncover hidden anomalies or malicious behavior. Partner with security engineering teams to build detection capabilities based on evolving threats. 🔬 Digital Forensics & Investigation Conduct detailed forensic investigations to determine incident scope, root cause, and impact. Collect and preserve digital … and support threat blocking strategies. 🤝 Collaboration & Knowledge Sharing Mentor junior SOC analysts and share knowledge across incident response workflows. Engage with stakeholders across IT, DevOps, and legal to enhance security posture. Contribute to post-incident reviews and continuous process improvement. 📚 Security Research & Intelligence Stay ahead of industry developments, vulnerabilities, and attacker methodologies. Create detection rules and playbooks to More ❯

month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps pipelines and Infrastructure as Code … IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. … Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code. DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines More ❯

Cyber Security Analyst | London | Hybrid | £40K–£50K DOE 🔐 Gravitas is proud to partner with a leading international specialist based in London, currently expanding its Cyber Security function. We're on the lookout for a Cyber Security Analyst ready to take the next step in their career. 📍 Location: London (Hybrid – 3 days onsite) 💼 Salary … Depending on Experience) 🚫 Please note: Sponsorship is not available for this role. What We're Looking For: You’ll bring 18+ months of experience in a Cyber Security Analyst or SOC Level 1 role, and hands-on exposure to tools and technologies such as: 🛠️ SOC Tools across: SIEM: Splunk, IBM QRadar, ArcSight, Rapid7 EDR: CrowdStrike, Carbon Black, SentinelOne IDS … Cisco ASA SOAR Platforms: Demisto, Phantom Web Proxy Tools: Zscaler, Forcepoint, Netskope 💡 Technical Skills: Strong OS knowledge (Windows, Linux) Network protocol analysis (Wireshark, TCPDump) Scripting (Python, Bash, PowerShell) Cloud security monitoring (AWS, Azure, GCP) Familiarity with NIST, MITRE ATT&CK frameworks What You’ll Get: ✨ Competitive salary ✨ Hybrid working flexibility ✨ Bonus & benefits ✨ Career growth in a high-impact, international More ❯

Cyber Security Analyst | London | Hybrid | £40K–£50K DOE 🔐 Gravitas is proud to partner with a leading international specialist based in London, currently expanding its Cyber Security function. We're on the lookout for a Cyber Security Analyst ready to take the next step in their career. 📍 Location: London (Hybrid – 3 days onsite) 💼 Salary … Depending on Experience) 🚫 Please note: Sponsorship is not available for this role. What We're Looking For: You’ll bring 18+ months of experience in a Cyber Security Analyst or SOC Level 1 role, and hands-on exposure to tools and technologies such as: 🛠️ SOC Tools across: SIEM: Splunk, IBM QRadar, ArcSight, Rapid7 EDR: CrowdStrike, Carbon Black, SentinelOne IDS … Cisco ASA SOAR Platforms: Demisto, Phantom Web Proxy Tools: Zscaler, Forcepoint, Netskope 💡 Technical Skills: Strong OS knowledge (Windows, Linux) Network protocol analysis (Wireshark, TCPDump) Scripting (Python, Bash, PowerShell) Cloud security monitoring (AWS, Azure, GCP) Familiarity with NIST, MITRE ATT&CK frameworks What You’ll Get: ✨ Competitive salary ✨ Hybrid working flexibility ✨ Bonus & benefits ✨ Career growth in a high-impact, international More ❯

Security (SOC) Engineer Manchester/Remote (On site once a month) £35K- £55K (depending on experience) + Great Benefits A SOC Engineer is required for our medical client who are based in Manchester. The successful candidate will be responsible for delivering hands-on technical expertise to support in defending the organisation's systems from attack whilst ensuring they operate … seamlessly and are secure, enabling the team to deliver effective cybersecurity. You will work within the Security Operations Centre (SOC), supporting the engineering lead in configuring, implementing, and maintaining the tools that support all SOC functions. You will assess, implement, configure, and optimise our technical security controls, tools, and data feeds to maintain and continuously improve the … visibility across our environments. You will also lead initiatives to improve the security posture and respond to incidents, problems and change requests from a security operations perspective. Essential skills- Practical experience working within a SOC (Security Operations Centre) or in a cyber security focused role - Ideally 1- 2 years working as an engineer. Knowledge More ❯

for, it’s something to build. We don’t just invest, we create. Bringing together strategic insight and technical horsepower to deliver outcomes that endure. The Position The IT Security team is responsible for the oversight and execution of a “cloud-first” Cyber Defense, Business Continuity and Risk Management programs to support our business goals. This includes, but is … not limited to security operations, vulnerability and patch management, incident response, disaster recovery, business continuity, risk identification and mitigation planning/implementation, identity management, network security, privacy, and compliance. In the Cyber Defense Security Analyst role, you will be working to help build and maintain security programs at a rapidly growing investment company as well … as its associated holdings. You will report to the Manager, Cyber Defense Operations and will be responsible for monitoring, detecting, analyzing, and responding to cybersecurity incidents and executing strategies to detect and deter insider threats. This position will serve as a project member on multiple projects simultaneously and will interact regularly with technical subject matter experts. The ideal candidate More ❯

for, it’s something to build. We don’t just invest, we create. Bringing together strategic insight and technical horsepower to deliver outcomes that endure. The Position The IT Security team is responsible for the oversight and execution of a “cloud-first” Cyber Defense, Business Continuity and Risk Management programs to support our business goals. This includes, but is … not limited to security operations, vulnerability and patch management, incident response, disaster recovery, business continuity, risk identification and mitigation planning/implementation, identity management, network security, privacy, and compliance. In the Cyber Defense Security Analyst role, you will be working to help build and maintain security programs at a rapidly growing investment company as well … as its associated holdings. You will report to the Manager, Cyber Defense Operations and will be responsible for monitoring, detecting, analyzing, and responding to cybersecurity incidents and executing strategies to detect and deter insider threats. This position will serve as a project member on multiple projects simultaneously and will interact regularly with technical subject matter experts. The ideal candidate More ❯

As a Cyber Defence Analyst, you will join the Cyber Fusion Center, performing in-depth analysis, assessment, and response to security threats by following documented policies to meet Service Level Goals. The team provides global 24x7 security operations and monitoring for cybersecurity events affecting Experian. You will be a part of the first line of defence in … handling of potential threats and plays a part in improving security operations. This is a home based role reporting to the Director of Security Operations for SecOps & Threat Detection. Please note that in this role, you will have an 8x5 Monday-Friday schedule, with flexibility to respond to after-hours pages for potentially major security incidents … across common Incident Response and Security Monitoring applications such as SIEM (e.g., Qradar, Splunk), EDR (e.g., FireEye HX, CrowdStrike Falcon, Microsoft Defender), and SOAR (Palo Alto XSOAR, Google Secops/Chronicle) Desire to build technical skills and hands-on knowledge in the following areas of security operations and incident response In-depth packet analysis skills, core forensic More ❯

SOAR Engineer/Analyst (Security Orchestration, Automation, and Response) Duration: 12 months Pay: £360.26/day PAYE or £495.15/day via umbrella Location: Remote (UK) Role Purpose The SOAR Engineer/Analyst is responsible for designing, developing, implementing, and maintaining automation playbooks to improve incident response efficiency within the Security Operations Centre. This role integrates multiple … threat detection and response mechanisms. Key Responsibilities Playbook Development: Design, implement, and maintain SOAR playbooks for automated response and alert enrichment. Tool Integration: Develop and manage integrations with: Google SecOps (Chronicle, Security Command Center) Darktrace (Threat Visualizer, Antigena) CrowdStrike Falcon (EDR, threat intelligence, APIs) Other security platforms such as SIEMs, ticketing systems, and firewalls. Automation & Enrichment: Automate repetitive … of experience in security operations or security engineering. Hands-on experience with SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, IBM Resilient). Strong familiarity with: Google SecOps/Chronicle Darktrace (AI-based threat detection) CrowdStrike Falcon platform Scripting experience in Python , PowerShell , or Bash . Experience with REST APIs and JSON for tool integration. Working knowledge of More ❯

At Tombola, we take security seriously - but we also like to have a bit of fun while we're at it! As our Cloud Security Engineer, you'll be building on our existing operational security, with a special focus on protecting our cloud infrastructure. You'll be hands-on, designing, implementing, and managing top-notch security … all while sticking to regulations and industry best practices. Collaboration: You'll work hand-in-hand with our Infrastructure, Platform, and IT Services teams, making the most of a SecOps approach. Mentoring: You'll provide guidance and support to less experienced team members, helping them grow. Data Loss Prevention (DLP): You'll monitor, maintain, and enhance our DLP controls across … SIEM solutions, vulnerability management tools, and secure configuration tooling. Ability to use PowerShell and Python scripting for security automation. Experience working in or with agile and/or SecOps oriented teams. A proven track record of analysing security requirements and applying architectural best practices. Previous work experience in an IT, InfoSec, or system administration role. Commercial awareness and More ❯

Ready to be our next Cloud Security Engineer ? We're on the lookout for a tech whiz to join our brilliant team in Sunderland and help us keep things super secure for our players and our business. If you're passionate about cloud security and love a challenge, you're in the right place! Cloud Security Engineer … all while sticking to regulations and industry best practices. Collaboration: You'll work hand-in-hand with our Infrastructure, Platform, and IT Services teams, making the most of a SecOps approach. Mentoring: You'll provide guidance and support to less experienced team members, helping them grow. Data Loss Prevention (DLP): You'll monitor, maintain, and enhance our DLP controls across … SIEM solutions , vulnerability management tools, and secure configuration tooling. Ability to use PowerShell and Python scripting for security automation. Experience working in or with agile and/or SecOps oriented teams . A proven track record of analysing security requirements and applying architectural best practices. Previous work experience in an IT, InfoSec, or system administration role. Commercial awareness More ❯

UK HQ, 40 High Street, Street, Somerset, United Kingdom Req PURPOSE To work with multidisciplinary teams across Clarks Technology and business areas to identify, design, and build security controls to protect Clarks' applications, networks, and data from security risks. To develop and embed best-practice security processes and knowledge into technical teams aligned to Zero Trust principles … industry standards and frameworks (e.g. NIST, PCI DSS). To identify opportunities for automation and optimization and drive maximum value from existing technologies and services to strengthen Clarks' overall security posture. DIMENSIONS Financial : No direct financial responsibilities, though the role may be required to assist ITLT and other Clarks Technology managers in strategic planning linked to budgeting linked to … improve Clarks' cyber resilience Support of security incident response activities, including providing expertise in triaging and resolving key issues, engaging with outsourced security operations and internal SecOps teams to ensure standards and policies are appropriately applied, and assisting in the creation and updating of relevant run books to help ensure effective incident management planning and execution Support More ❯

Experience Years: 3-5 Years of Experience Employee Type: Regular Remote Type: Onsite About the Opportunity The role of Information Security Engineer will be responsible for identifying, investigating, and managing cybersecurity related events and incidents. As an Information Security Engineer, you will be responsible for security operations, using and managing security systems, identifying and managing … risks and threats, and developing and following operating procedures. The ideal candidate will have a deep understanding of cyber security risks and threats, incident handling, and will possess excellent analytical, communication, and leadership skills. About the Opportunity The role of Information Security Engineer will be responsible for identifying, investigating, and managing cybersecurity related events and incidents. As an … Information Security Engineer, you will be responsible for security operations, using and managing security systems, identifying and managing risks and threats, and developing and following operating procedures. The ideal candidate will have a deep understanding of cyber security risks and threats, incident handling, and will possess excellent analytical, communication, and leadership skills. Responsibilities Strong collaboration More ❯

on Head of InfoSec to lead our cybersecurity initiatives with a strong emphasis on governance, risk management, and compliance (GRC) . This role is critical in shaping and enforcing security policies, driving enterprise-wide risk management, and ensuring ongoing compliance with frameworks such as SOC 2, ISO 27001, and other regulatory requirements . The ideal candidate is not only … a technical expert but also a business-savvy leader who can align security strategy with organizational goals. Key Responsibilities & Duties Governance, Risk & Compliance: Develop, implement, and maintain the company's information security governance framework. Lead the strategy and execution for security compliance initiatives including SOC 2 , ISO 27001 , NIST , and other relevant standards. Oversee and manage the … enterprise risk management program , including identification, assessment, and mitigation of information security risks. Regularly report to executive leadership and the board on security risks, compliance status, and incident responses. External Engagement: Confidently represent Talos in security conversations with tier-one financial institutions, prospects, and auditors. Lead responses to DDQs, participate in client security reviews, and act More ❯

Information Security Analyst - Audit, Compliance & Cybersecurity United Kingdom - Southampton At NICE, we don't limit our challenges. We challenge our limits. Always. We're ambitious. We're game changers. And we play to win. We set the highest standards and execute beyond them. And if you're like us, we can offer you the ultimate career opportunity that will … if you're like us, we can offer you the ultimate career opportunity that will light a fire within you. So, what's the role all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This … role focuses on internal audits, regulatory compliance, and readiness for external audits while also contributing to Cybersecurity Operations Center (CSOC) activities, including incident monitoring and response. How will you make an impact? Internal Audit Execution: Conduct internal audits to evaluate and enhance IT controls, compliance with standards, and risk management processes. Audit Preparation: Assist internal control owners in scoping More ❯

The Role The Head of Information Security, Europe reports directly to the Chief Information Security Officer, TMX Group and has a dotted line reporting relationship to the Chief Technology Officer, Trayport. The Head of Information Security will be responsible for defining, implementing, and managing the organization's information security strategy and framework for Europe. This critical … role involves overseeing all aspects of information security, including a strong focus on application security, ensuring compliance with ISO27001 standards, financial services regulations, and other relevant legal and contractual requirements. As a senior leader of the Enterprise Information Security team, the role will also be accountable to provide information security oversight, through leadership and guidance across … the TMX Group. The successful candidate will be a strategic leader with a strong technical background, including deep application security knowledge, and the ability to effectively communicate security risks and requirements across all levels of the business. Key Responsibilities Information Security Strategy and Governance: Develop, implement, and maintain a comprehensive information security strategy aligned with business More ❯

The Role The Head of Information Security, Europe reports directly to the Chief Information Security Officer, TMX Group and has a dotted line reporting relationship to the Chief Technology Officer, Trayport. The Head of Information Security will be responsible for defining, implementing, and managing the organization's information security strategy and framework for Europe. This critical … role involves overseeing all aspects of information security, including a strong focus on application security, ensuring compliance with ISO27001 standards, financial services regulations, and other relevant legal and contractual requirements. As a senior leader of the Enterprise Information Security team, the role will also be accountable to provide information security oversight, through leadership and guidance across … the TMX Group. The successful candidate will be a strategic leader with a strong technical background, including deep application security knowledge, and the ability to effectively communicate security risks and requirements across all levels of the business. Key Responsibilities Information Security Strategy and Governance: Develop, implement, and maintain a comprehensive information security strategy aligned with business More ❯

see why Glassdoor and Comparably have recognized CaptivateIQ as a best place to work! About the role: Join our Cybersecurity Team and play a pivotal role in strengthening the security of our infrastructure, applications, and services. As a Security Engineer, you will apply your technical expertise across engineering, application security, and incident response to help scale and … mature our security posture. This is a hands-on role that requires a collaborative mindset, strong problem-solving skills, and the ability to identify and respond to security challenges across attack surfaces. You'll work closely with Engineering, Product, and IT teams to embed security across the product lifecycle, triage and mitigate vulnerabilities, and proactively respond to … security threats. If you're passionate about building secure systems, working cross-functionally, and making meaningful impact in a fast-moving, product-led environment-this role is for you. Responsibilities: Design and implement scalable security controls across cloud infrastructure, applications, and enterprise systems. Partner with engineering teams to design secure architectures and assist in system and product development More ❯

Senior Security Operations Centre Analyst Location: Gosport Hours: 9-5:30pm (on-site) Security Clearance Level: Must be eligible for DV Clearance . Due to the highly secure nature of this work, all applicants will be required to gain UK Security Clearance to the highest level. You must be a British National who has been resident … health cash plan, life assurance, pension scheme, and a generous flexible benefits fund. Key Requirements: We are seeking an experienced Senior SOC Analyst who brings a strong background in security operations , threat detection, and incident response. This is a critical role that supports the defence of national infrastructure through proactive monitoring, analysis, and improvement of cybersecurity postures. Essential … Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment. Strong hands-on expertise with SIEM tools such as Microsoft Sentinel and Splunk . Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ). Skilled in incident response and threat intelligence analysis . Familiarity with Mitre Att&ck framework and advanced threat More ❯

Senior SOC Analyst Location: Gosport (Predominantly site-based with some flexibility for remote working) Salary: Highly competitive with excellent benefits package Security Clearance Level: Must be eligible for DV Clearance . Due to the highly secure nature of this work all applicants will be required to gain UK Security Clearance to the highest level. You must be a … health cash plan, life assurance, pension scheme, and a generous flexible benefits fund Key Requirements We are seeking an experienced Senior SOC Analyst who brings a strong background in security operations , threat detection, and incident response. This is a critical role that supports the defence of national infrastructure through proactive monitoring, analysis, and improvement of cybersecurity postures. Essential … Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment Strong hands-on expertise with SIEM tools such as Microsoft Sentinel and Splunk Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ) Skilled in incident response and threat intelligence analysis Familiarity with Mitre Att&ck framework and advanced threat detection techniques Excellent More ❯

you'll be working with: SOC Analyst (L2) We are currently recruiting for a Senior Associate level Managed Detection and Response SOC Analyst Level 2 to join our growing Security Operations Centre business. This role will be based on-site in Birmingham, and we need candidates who are able to work in a job that involves 24/… operations, likely in shift patterns of 4 days on, 4 days off. About Us NTT DATA is one of the world's largest global security services providers with over 7,500 security SMEs and an integration partner to many of the world's most recognized security technology providers. We strive to hire exceptional, innovative, and passionate … doing: What you will be doing; The primary function of the SOC Analyst (L2) is to analyze incidents escalated by the SOC Analyst (L1) and undertake detailed investigation of security events. The Security Analyst (L2) will determine whether a security event qualifies as an incident and will coordinate with the customer's IT and security teams More ❯

team you'll be working with: SOC Analyst (L1) We are currently recruiting for an Associate level Managed Detection and Response SOC Analyst Level 1 to join our growing Security Operations Centre business. This role will be based on-site in Birminham, we need canddiates that are able towork in a job that involves 24/7 operations, this will probably be inshift patterns of 4 days on, 4 days off. About Us NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who … you'll be doing: What you will be doing; The primary function of the SOC Analyst (L1) is to analyse any incidents and undertake the detailed investigation of the Security Event. The role is a 'hands-on' shift-based roles, working as part of a 24/7 operation working in a standard rotation shift pattern. They are responsible More ❯