1 to 25 of 39 Permanent Security Operations Centre Jobs in London

Role Description: Security Analyst - Network & Endpoint/SOC Security Specialist We are looking for a highly capable and technically skilled Security Analyst to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The successful candidate will … have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat detection, model tuning, and behavioural analysis. Investigate anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and … update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC team members to ensure timely resolution and documentation. Threat Intelligence & Insider Threat Monitoring: Monitor threat feeds and manage Indicators of Compromise More ❯

Role Description: Security Analyst - Network & Endpoint/SOC Security Specialist We are looking for a highly capable and technically skilled Security Analyst to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The successful candidate will … have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat detection, model tuning, and behavioural analysis. Investigate anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and … update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC team members to ensure timely resolution and documentation. Threat Intelligence & Insider Threat Monitoring: Monitor threat feeds and manage Indicators of Compromise More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! The Cyber Security Incident Response Team (CSIRT), part of Counter Threat & Engineering (CT&E), responds to digital security threats and incidents globally from bp hubs in Houston, Sunbury, Kuala Lumpur, Pune … and Singapore. The Security Operations Center (SOC) raises incidents to CSIRT, which conducts long-term investigations using digital forensics, advanced techniques, and collaborating across bp. Team members must understand bps business segments and address a broad range of security-related questions. You will help ensure enterprise security, enabling safe and secure business operations as part … of this global team. Key Accountabilities Support the bp SOC as an escalation point for security events and incidents. Conduct digital forensic investigations on high-priority incidents to include functions such as host (disk and memory) forensics, network forensics and log analysis. Work across Digital Security and the bp business functions to partner on incidents and to ensure More ❯

business, driving valuable insight, guidance and feedback back into Palo Alto Networks. You will work across product teams to deliver this feedback Your Impact Drive innovation within the modern Security Operations Center (SOC) by developing content and capabilities aligned with Cortex and detection-focused workflows. Collaborate with legal, sales, product, and customer-facing teams to translate security operations needs into actionable product improvements. Lead and coordinate cross-functional initiatives across product management, engineering, and field teams for high-impact security use cases. Build high-quality content for the Cortex Marketplace including detection rules, parsers, dashboards, and other SOC-enabling artifacts. Provide structured product feedback to influence roadmap decisions based on real-world SecOps challenges … and opportunities. Create detailed documentation and usage guides tailored for analysts, detection engineers, and security practitioners. Promote operational excellence by designing scalable detection and response workflows grounded in industry best practices and threat-informed defense. Qualifications Your Experience Ability to inspire and align teams across functions, paired with strong execution and delivery skills. 2+ years of experience in security More ❯

business, driving valuable insight, guidance and feedback back into Palo Alto Networks. You will work across product teams to deliver this feedback Your Impact Drive innovation within the modern Security Operations Center (SOC) by developing content and capabilities aligned with Cortex and detection-focused workflows. Collaborate with legal, sales, product, and customer-facing teams to translate security operations needs into actionable product improvements. Lead and coordinate cross-functional initiatives across product management, engineering, and field teams for high-impact security use cases. Build high-quality content for the Cortex Marketplace including detection rules, parsers, dashboards, and other SOC-enabling artifacts. Provide structured product feedback to influence roadmap decisions based on real-world SecOps challenges … and opportunities. Create detailed documentation and usage guides tailored for analysts, detection engineers, and security practitioners. Promote operational excellence by designing scalable detection and response workflows grounded in industry best practices and threat-informed defense. Qualifications Your Experience Ability to inspire and align teams across functions, paired with strong execution and delivery skills. 2+ years of experience in security More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Director in Unit 42 is a senior-level consulting position. The individual will be responsible for the day to day delivery of our threat-led and technology driven cyber security consulting services through leading and directly overseeing a team of Consultants. This person will have experience in developing teams and working with sales and domain leaders. The Consulting Director … and Customer Success Manager (CSM) to deliver pitches and prepare proposals to win new business and manage client relationships. We are seeking an individual who is passionate about cyber security and making a difference. You will be a continuous learner and have a sound knowledge of emerging cybersecurity trends and technologies. The individual serves as a trusted advisor to … cross-sector clients. Your Impact Oversee the delivery of our proactive consulting services, ensuring their consistency, quality and highest level of customer service Provide hands-on, expert-level proactive Security Operations Center (SOC) assessment and transformation services to clients and deliver findings to CxO and/or Board of Directors Work with the BDM and CSM to perform More ❯

Director in Unit 42 is a senior-level consulting position. The individual will be responsible for the day to day delivery of our threat-led and technology driven cyber security consulting services through leading and directly overseeing a team of Consultants. This person will have experience in developing teams and working with sales and domain leaders. The Consulting Director … and Customer Success Manager (CSM) to deliver pitches and prepare proposals to win new business and manage client relationships. We are seeking an individual who is passionate about cyber security and making a difference. You will be a continuous learner and have a sound knowledge of emerging cybersecurity trends and technologies. The individual serves as a trusted advisor to … cross-sector clients. Your Impact Oversee the delivery of our proactive consulting services, ensuring their consistency, quality and highest level of customer service Provide hands-on, expert-level proactive Security Operations Center (SOC) assessment and transformation services to clients and deliver findings to CxO and/or Board of Directors Work with the BDM and CSM to perform More ❯

SOC Engineer - Hybrid Location: Hybrid - 2 days per week onsite (London) Salary: Competitive + Benefits Employment Type: Permanent A fast-growing, global cyber security company is looking for a Security Operations Center (SOC) Engineer to join their team. This is an exciting opportunity to work with cutting-edge security technologies in a dynamic and collaborative environment. … Key Responsibilities: Monitor and respond to security alerts and incidents across cloud and on-prem environments. Perform threat hunting and analysis using SIEM, EDR, and other security tools. Collaborate with internal teams to improve detection and response capabilities. Support incident response activities and contribute to post-incident reviews. Maintain and tune security monitoring systems to ensure optimal … performance. What We're Looking For: 3+ years of experience in a SOC or similar security operations role. Strong understanding of security principles, threat landscapes, and incident response. Hands-on experience with SIEM platforms (e.g., Splunk, SentinelOne, Chronicle, etc.). Familiarity with cloud environments (AWS, Azure, GCP) and container security. Excellent analytical and communication skills. Why Join More ❯

Engineer to join the global IT team. The successful candidate will play a key role in designing, implementing, maintaining, and supporting the entire IT infrastructure, which supports the business operations across multiple international locations. This is a practical role requiring a combination of deep technical expertise in Microsoft, VMware, and Cloud technologies, strategic thinking, and the ability to work … and cloud-based systems. Manage and administer our hybrid cloud environment, with a strong focus on Microsoft Azure, Entra ID, and Azure MDM for modern device management. Ensure the security of our infrastructure and data by managing on-premises and cloud security controls and working closely with the Security Operations Centre (SoC) to action vulnerability … as well as core Microsoft services (AD, GPO, DNS, NPS/Radius, CA, SMTP Relay), and our extensive VMware vSphere/vCenter virtualisation platform. Administer and optimise our System Centre Configuration Manager (SCCM) hierarchy, including Primary/Secondary sites, Distribution Points, Cloud Management Gateway (CMG), and Azure integration for global software deployment and updates. Manage and maintain our VDI More ❯

forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business cybersecurity More ❯

forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business cybersecurity More ❯

forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business cybersecurity More ❯

forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business cybersecurity More ❯

one of Europe’s most respected financial organizations, a cornerstone of the continent’s financial stability and infrastructure. This is your opportunity to step into a mature, high-performing Security Operations Centre that plays a pivotal role in protecting the backbone of Europe’s financial systems. You’ll be part of a mission-driven environment where precision … SIEM use cases that strengthen the organization’s detection framework. Lead and guide technical initiatives within the Threat Detection team to ensure continuous improvement. Advise on SIEM architecture and security tooling, bringing deep technical insight to detection strategies. Manage and prioritize detection tasks, balancing proactive threat hunting with operational response needs. What You Bring Proven experience as a Threat … Detection Engineer or similar role within a SOC environment. Advanced hands-on experience with Splunk, including SPL development and Enterprise Security (ES). Demonstrated ability to create and enhance use cases that detect and mitigate evolving threats. Solid understanding of cybersecurity principles, frameworks, and best practices. Strong communication skills in English — you can translate technical detection logic into actionable More ❯

one of Europe’s most respected financial organizations, a cornerstone of the continent’s financial stability and infrastructure. This is your opportunity to step into a mature, high-performing Security Operations Centre that plays a pivotal role in protecting the backbone of Europe’s financial systems. You’ll be part of a mission-driven environment where precision … SIEM use cases that strengthen the organization’s detection framework. Lead and guide technical initiatives within the Threat Detection team to ensure continuous improvement. Advise on SIEM architecture and security tooling, bringing deep technical insight to detection strategies. Manage and prioritize detection tasks, balancing proactive threat hunting with operational response needs. What You Bring Proven experience as a Threat … Detection Engineer or similar role within a SOC environment. Advanced hands-on experience with Splunk, including SPL development and Enterprise Security (ES). Demonstrated ability to create and enhance use cases that detect and mitigate evolving threats. Solid understanding of cybersecurity principles, frameworks, and best practices. Strong communication skills in English — you can translate technical detection logic into actionable More ❯

one of Europe’s most respected financial organizations, a cornerstone of the continent’s financial stability and infrastructure. This is your opportunity to step into a mature, high-performing Security Operations Centre that plays a pivotal role in protecting the backbone of Europe’s financial systems. You’ll be part of a mission-driven environment where precision … SIEM use cases that strengthen the organization’s detection framework. Lead and guide technical initiatives within the Threat Detection team to ensure continuous improvement. Advise on SIEM architecture and security tooling, bringing deep technical insight to detection strategies. Manage and prioritize detection tasks, balancing proactive threat hunting with operational response needs. What You Bring Proven experience as a Threat … Detection Engineer or similar role within a SOC environment. Advanced hands-on experience with Splunk, including SPL development and Enterprise Security (ES). Demonstrated ability to create and enhance use cases that detect and mitigate evolving threats. Solid understanding of cybersecurity principles, frameworks, and best practices. Strong communication skills in English — you can translate technical detection logic into actionable More ❯

one of Europe’s most respected financial organizations, a cornerstone of the continent’s financial stability and infrastructure. This is your opportunity to step into a mature, high-performing Security Operations Centre that plays a pivotal role in protecting the backbone of Europe’s financial systems. You’ll be part of a mission-driven environment where precision … SIEM use cases that strengthen the organization’s detection framework. Lead and guide technical initiatives within the Threat Detection team to ensure continuous improvement. Advise on SIEM architecture and security tooling, bringing deep technical insight to detection strategies. Manage and prioritize detection tasks, balancing proactive threat hunting with operational response needs. What You Bring Proven experience as a Threat … Detection Engineer or similar role within a SOC environment. Advanced hands-on experience with Splunk, including SPL development and Enterprise Security (ES). Demonstrated ability to create and enhance use cases that detect and mitigate evolving threats. Solid understanding of cybersecurity principles, frameworks, and best practices. Strong communication skills in English — you can translate technical detection logic into actionable More ❯