10 of 10 Permanent Blue Team Jobs in the UK

more hunting-led environment. This position is well suited to analysts who enjoy thinking like an attacker, have worked alongside or supported red team or purple team activities, and want to deepen their expertise in threat detection and detection engineering. Skills & Experience We're Seeking Experience in threat … hunting, cyber threat detection, SOC, blue team, or cyber defence environments, with ideally around five years hands on experience. Strong hands-on experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker ...

Role We're looking for experienced incident responders and blue team practitioners to join our Content Engineering team. Your job is simple in concept: take what you know from real world IR work and turn it into world class training content. You’ll take your years … attacks actually unfold in enterprise Windows environments. Develop and configure virtual machines and sample datasets for realistic cybersecurity labs. Collaborate closely with your team by sharing expertise, reviewing each other's work, and raising the quality bar collectively. Take charge of planning and designing portions of the content development ...

high-growth, high-impact cyber practice? We're supporting a top-tier consulting organisation (name anonymised) that is expanding its Blue Team and looking for a technical, curious and detail-driven Senior Cyber Operations Analyst to join their team. This is a fantastic opportunity to work with ...

+ on-call compensation We are seeking an accomplished Senior Cyber Operations Analyst to join a high-performing Blue Team operating at the forefront of modern security operations. This is a technical role suited to an experienced analyst with strong engineering instincts, hands-on coding capabilities ...

design principles are embedded across all IT changes and lead on security input at the Change Advisory Board. Work closely with Senior Management Team IT & Change colleagues to prioritise security improvements and reduce organisational risk. Ensure security-related changes and risks are communicated clearly and promptly to the wider … manager. Experience (Essential) 5+ years experience in an IT Engineer or security-focused role. Hands-on experience in security engineering, SOC, blue team, or infrastructure security. Experience producing and maintaining security documentation (standards, procedures, runbooks). Experience supporting Cyber Essentials, ISO27001, or similar frameworks, including audit readiness. ...

SOAR platforms Networking fundamentals including firewalls and protocols Strong analytical and problem-solving ability Certifications (Desirable) Microsoft SC-200 CompTIA Security+ Blue Team Labs Level 1 Check Point CCSA Fortinet NSE4 ...

SOAR platforms Networking fundamentals including firewalls and protocols Strong analytical and problem-solving ability Certifications (Desirable) Microsoft SC-200 CompTIA Security+ Blue Team Labs Level 1 Check Point CCSA Fortinet NSE4 ...

protocols) Strong analytical and problem-solving skills Excellent written and verbal communication skills Ability to manage multiple incidents effectively Desirable Certifications Blue Team Labs Level 1 Microsoft SC-200 (or equivalent) CompTIA Security+ Check Point CCSA Fortinet NSE4 (or equivalent ...

looking to take on a new Security Analyst (CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender) to join their team on a permanent basis. The firm are an extremely modern law firm which offer a healthy hybrid working solution 2-3 days per week … servers, network devices). Interpret results and resolve issues identified. Investigate security alerts and provide incident response if and when required, working with global team to help mitigate and resolve incidents. Support and contribute to red/blue team testing and cyber threat based table ...

technical audiences, Collaborate on improving detection rules and use cases aligned with Mitre Att&ck and threat-informed defense. Participate in a team effort to guarantee that corporate data and technology platform components are shielded from known threats. Collaborate with team members to maintain and update security incident … such as SMTP, HTTP, FTP, POP, LDAP. Entry level cyber security certification (e.g. CompTIA Security+, CEH, CPSA). CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Completed an academic module in cyber security or a related subject It would be great ...