1 to 25 of 42 Permanent Security Operations Centre Jobs in the UK

Senior Manager/Associate Director Cyber Security Operations Basic information Location Bristol, Cardiff, Edinburgh, Glasgow, London, Manchester Business Line Job Type Permanent/FTC Date published 28-Aug-2025 20259 Connect to your Industry Cyber security is critical to every organisation. We are shaping strategies and transforming the management of cyber risk and we need you to … of the areas of our cyber practice with over 450 extremely talented individuals in the UK alone, as part of a Technology and Transformation practice of 7500 people. Cyber security is a business problem, not just a technical problem, and we need people with a diverse array of backgrounds and skills sets to help our clients solve it. Join … us and you will help our clients solve the latest cyber security challenges, in a business with very significant growth ambitions enjoying the kind of professional development that will set your potential free. Connect to your career at Deloitte Deloitte drives progress. Using our vast range of expertise, we help our clients' become leaders wherever they choose to compete. More ❯

SOC Lead - Defence & National Security Location: Farnborough (Hybrid) Salary: £65,000 or £450 per day outside IR35 Clearance: Must be eligible for UK SC clearance and Sole British Citizen This is a fantastic opportunity for an experienced SOC Lead to take ownership of a high-performing Security Operations Centre working on critical defence and national security projects. You'll lead day-to-day SOC operations, drive incident response, and mentor analysts to strengthen detection and response capability against evolving threats. If you want to combine technical depth with leadership responsibility, this role offers both the challenge and the opportunity to shape how cyber resilience is delivered in secure environments. What you'll be doing … Leading daily SOC operations, task prioritisation and shift management Acting as the escalation point for complex incidents and investigations Reviewing, tuning and enhancing detection rules, alerts and playbooks in SIEM/SOAR tools Providing mentorship and technical guidance to SOC analysts Driving post-incident reviews, root cause analysis and continuous improvement Conducting proactive threat hunting and supporting compliance/ More ❯

Role title: Information Security Manager Reports to: Head of Operational Resilience Location: Hub Location Hours of work: Full time, with 3 days per week in the office SMCR Function: Conduct Purpose of role Information Security Manager you will define and drive the information security strategy across our financial services business. You will lead a growing team of … security professionals to safeguard customer data, ensure compliance with regulatory frameworks, and build a culture of security awareness throughout the organisation. Your strategic vision and hands-on expertise will protect critical systems and support business growth. Key Responsibilities Develop and maintain the enterprise information security strategy aligned with business goals Lead the implementation and oversight of a … 3rd party managed Security Operations Centre (SOC) ensuring effective integration. Baseline and conduct regular reviews with an incoming 3rd party managed SOC and the security tools in the Cloud environment (Defender and Sentinel) Oversee security architecture, vulnerability management, incident response, and threat intelligence Lead security risk assessments and manage remediation plans for identified gaps More ❯

We're now recruiting a senior cyber security analyst support the Security Operations Manager in responding, managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bells systems and services.Key to this is maintaining the confidentiality, integrity and availability of the data that resides upon those systems. This role will be … key to understanding the threats targeting AJ Bell and ensuring our defences provide and effective response. Key responsibilities: Reviewing and assessing Security Operations Centre alerts to ensure an appropriate response taken. Overseeing vulnerability scanning to confirm the effectiveness of patching Monitoring systems for compliance with policy and supporting remediation where required. Track and manage penetration testing programs. … Investigate and respond to security breaches and incidents. Supporting the administration of email and web gateways Develop our threat intelligence and provide monitoring of external information sources to make recommendations on latest security threats and vulnerabilities that affect our technical estate Collaborate with IT and other departments to ensure security best practices are followed. Stay up-to More ❯

lead from the front, joining in our success. This new position of SOC Shift Lead will be to conduct monitoring and triage of alerts associated with host and network security events for clients critical infrastructure. You will support the SOC through both delivery of client work and adding skills and ideas to the already diverse team. This role is … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

A leading international specialty insurance and reinsurance group is seeking an experienced and forward-thinking Chief Information Security Officer (CISO) to lead and modernize its global cyber security function. The CISO will drive the evolution of its security strategy-from a compliance and risk-led model to a proactive, preventative, and business-aligned cyber program. What you … ll do: Develop and execute a comprehensive global information security strategy aligned with business goals and growth plans, ensuring a proactive and preventative security posture. Establish and mature a global Security Operations Centre (SOC) to strengthen detection, monitoring, and incident response capabilities. Lead enterprise-wide threat management initiatives , addressing vulnerabilities, mitigating risks, and reducing the … likelihood and impact of cyber threats and attacks. Act as the principal security SME , providing leadership and oversight across Cloud Security, Product Security, GRC, Enterprise Security, and IT. Partner with senior IT leadership and business executives to embed security principles within operations, digital transformation, and corporate strategy. Cyber Governance & Risk Management: Enhance and maintain More ❯

our overall success. We invite you to share your perspectives, cultural backgrounds, and innovative ideas; we look forward to your contributions. Join the Vix team as an experienced Cloud Security Engineer! This on-site position in Manchester involves collaborating with our Cloud Operations team and the Security team to maintain robust security protocols. You'll play … a crucial role in guiding our technical teams to meet security standards, successfully passing security audits, and safeguarding both company and customer data. As the first point of contact for security incidents, your expertise will be essential in keeping our systems secure. We regret that this position is only available for UK citizens/Residents with indefinite … the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in Manchester. Responsibilities Evaluate and strengthen our overall security posture by performing continuous audits, risk assessments, threat modelling, and architecture reviews to ensure effective controls and adherence to regulatory standards. Consistently monitor and assess cloud environments for vulnerabilities More ❯

individual diversity brings to the collective. Bring your individual orientation, cultural heritage and distinctive thinking and experience - we want to hear from you! We are looking for an experienced Security Engineer to join the Vix team. This role is on-site in Manchester, working within the greater Vix Security team. The role will see you ensuring Vix technical … teams meet relevant security standards, pass security audits, and protect company and customer data. You'll be a first point of contact for responding to security incidents. We regret that this position is only available for UK citizens/Residents with indefinite leave to remain in the UK, with current full time work rights for the United … Kingdom, currently residing in the UK. The position is located in Manchester. What you'll be doing: Assess and evaluate the effectiveness of existing security controls. Design and implement security solutions to mitigate identified risks. Implement, and manage security systems, including firewalls, intrusion detection/prevention systems, DLP, endpoint protection, MDM, SIEM, IAM, vulnerability management etc. Respond More ❯

Are you in a Security Operations Centre and every day is the same? We can assure you that there is no boredom in our role. We have a growing Cyber practice in our Defence sector and support enterprise scale clients. Now we have opportunities for L2 SOC Analysts to join in our success and work with multiple … can offer great career progression opportunities, benefits which you can flex to meet your needs and training and development opportunities. What you will be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain, improve … and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical and non-technical audiences and continuously improve their content and presentation. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. What you will bring : Experience in Security Operations Centre. Demonstrable More ❯

Senior Cyber Security Analyst - Leeds About the job Job summary Discover a career in your hands at HMRC. Whether you're seeking purpose, growth, or a workplace that gives you a true sense of belonging, hear from some of our employees as they share their story about what it's really like to work at HMRC. Visit our YouTube … channel to watch the full series and come and discover your potential. Primarily working within the Investigation and Response element of Cyber Security Incident Management team, you'll get to investigate and respond to cyber security incidents across HMRC. This is varied, interesting and vital work so if you're looking for a new challenge, putting your experience … from all backgrounds with the experience and skills needed to perform this role. Job description The Incident Management Team are the front-line operational arm of the HMRC Cyber Security Team, responsible for protecting the confidentiality, integrity and availability of HMRC online services and data assets. The team and the successful individual undertake the following 3 core activities: Detect More ❯

Senior Cyber Security Analyst - Leeds About the job Job summary Discover a career in your hands at HMRC. Whether you're seeking purpose, growth, or a workplace that gives you a true sense of belonging, hear from some of our employees as they share their story about what it's really like to work at HMRC. Visit our YouTube … channel to watch the full series and come and discover your potential. Primarily working within the Investigation and Response element of Cyber Security Incident Management team, you'll get to investigate and respond to cyber security incidents across HMRC. This is varied, interesting and vital work so if you're looking for a new challenge, putting your experience … from all backgrounds with the experience and skills needed to perform this role. Job description The Incident Management Team are the front-line operational arm of the HMRC Cyber Security Team, responsible for protecting the confidentiality, integrity and availability of HMRC online services and data assets. The team and the successful individual undertake the following 3 core activities: Detect More ❯

Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst 2-3 Days onsite - Crawley 6-9 Month duration Reporting line: The Analyst will report to the Cyber Security Response Manager and work within the Information Systems directorate, based in the Crawley office. Job purpose: The role of an Incident Response (CSIRT)/SOC Level … eradication, and recovery strategies that minimise business impact and protect network systems and customer data from cyber threats. Dimensions People - Work collaboratively in a team of around 14 cyber security operations staff. Mentor Level 1 and Level 2 SOC Analysts, providing guidance and training. Suppliers - Regular interaction with technical resources from outsourced Managed Security Service Providers (MSSPs … and cyber security tooling vendors. Communication - Communicate technical cybersecurity concepts to both technical and non-technical colleagues across all levels of seniority. Stakeholders - Build and maintain collaborative working relationships with internal technology teams, external partners, suppliers, and providers to drive outcomes and agree on courses of action. Principal Responsibilities Advanced Threat Hunting: Analyse and assess multiple threat intelligence sources More ❯

Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst 2-3 Days onsite - Crawley 6-9 Month duration Reporting line: The Analyst will report to the Cyber Security Response Manager and work within the Information Systems directorate, based in the Crawley office. Job purpose: The role of an Incident Response (CSIRT)/SOC Level … eradication, and recovery strategies that minimise business impact and protect network systems and customer data from cyber threats. Dimensions People - Work collaboratively in a team of around 14 cyber security operations staff. Mentor Level 1 and Level 2 SOC Analysts, providing guidance and training. Suppliers - Regular interaction with technical resources from outsourced Managed Security Service Providers (MSSPs … and cyber security tooling vendors. Communication - Communicate technical cybersecurity concepts to both technical and non-technical colleagues across all levels of seniority. Stakeholders - Build and maintain collaborative working relationships with internal technology teams, external partners, suppliers, and providers to drive outcomes and agree on courses of action. Principal Responsibilities Advanced Threat Hunting: Analyse and assess multiple threat intelligence sources More ❯

Were looking for a skilled Service Delivery Analyst - Security Operations to join a dynamic service delivery team. This role is ideal for someone with a strong background in IT service management anda knowledge of cybersecurity and SOC tooling. Someone who excels at managing stakeholder relationships and translating technical insights into business value. Key Responsibilities: Act as a liaison … between the Security Operations Centre (SOC) and your customer portfolio Deliver regular Service Reviews , performance reporting, and client-facing updates Use ITSM tooling Report onweekly and monthly tasks and actions, ensuring remediation actions are tracked and communicated Essential Skills & Experience: Knowledge of Cybersecurity and SOC tools (e.g. Microsoft Defender) Strong knowledge of ITIL , Agile , and ITSM best More ❯

The Role: Leidos, a Global IT Solutions Provider specialising in large scale implementations involving science, engineering, and technology, require a Cyber Defence Analyst to work in their CSOC (Cyber Security Operations Centre) Team. The Cyber Defence Analyst will be expected to contribute to the growth and development of the CSOC. You will work with a wide variety … of stakeholders to ensure, the Leidos CSOC, a Defensive Cyber Security capability, can support a customers Cyber Resilience, protecting them with a 24 x 7 Threat Detection and Response service, mitigating their risk of Cyber Attack. The successful candidate will be able to demonstrate experience from a CSOC background or be able to demonstrate sufficient transferable Cyber Security … succeed in the role the candidate must be capable of working under pressure, delivering on multiple customer accounts and have an appetite to progress and develop their own Cyber Security career. The role will be working within the CSOC, adhering to a matrix managed environment, reporting operationally to the CSOC Lead and accountable to the CSOC Manager. What will More ❯

securing the digital future of our clients. As a SOC Analyst, you’ll be at the forefront of protecting critical systems, working within a CGI team to strengthen defence operations and respond to evolving cyber threats. Based on-site in Chippenham, this role is central to maintaining compliance with Defence standards and supporting a 24/7 security … you in taking your career wherever you want it to go. Due to the secure nature of the programme, you will need to hold the highest level of UK Security Clearance for this position. Your future duties and responsibilities In this role, you will be a key member of the Security Operations Centre, monitoring, analysing, and … and client environment, you’ll contribute to testing, assurance, and compliance activities while helping to shape the future of the service offering. Your expertise will help ensure alignment with security standards, while your creativity will support innovation in the use of SIEM/SOAR tools and automation. You’ll be part of a collaborative environment where ownership of solutions More ❯

Job Posting: Cyber Security Assurance Manager Location: Portsmouth (Hybrid) Salary: £50,000 - £65,000 DOE Are You Ready to Lead the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment. In this crucial … role, you will ensure that the SOC maintains its commitment to best-in-class standards through internationally recognised security certifications and industry-wide assurance frameworks, delivering confidence to clients and meeting regulatory expectations. As a core team member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors … to showcase security credentials that differentiate our SOC from the competition. If you're skilled in blending technical insight with customer-focused communication while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST More ❯

Network Engineer Network Security Specialist Location: Leeds City Centre (Hybrid: 3 days in the office, 2 days remote) Job Type: Full-Time Reports To: Security Operations Manager Salary: £30,000 £45,000 + On-Call Allowance + Benefits Working Hours: 09:3018:00 (core business hours are 08:0018:00) On-Call: 1-in-4 rotation … with allowance, providing 24/7 coverage Company Overview A trusted cybersecurity reseller and managed services provider (MSP) delivering end-to-end security solutions to organizations of all sizes. The team supports a broad range of cutting-edge security technologies, helping customers secure their networks, applications, and infrastructure through proactive monitoring, management, and incident response. As demand for … managed firewall and security services grows, my client is looking for a Network Engineer with strong networking fundamentals and a willingness to learn advanced security technologies. This role is ideal for someone with 12 years of experience who wants to develop their skills in a supportive, growth-focused environment. Role Overview As a Network Engineer within the Security More ❯

Role title: Head of Information Security Reports to: CTOO Location: Hub Location Hours of work: Full time, with 3 days per week in the office SMCR Function: Certified Purpose of role As Head of Information Security you will define and drive the information security strategy across our financial services business. You will lead a team of security professionals to safeguard customer data, ensure compliance with regulatory frameworks, and build a culture of security awareness throughout the organisation. Your strategic vision and hands-on expertise will protect critical systems and support business growth. Key Responsibilities Develop and maintain the enterprise information security strategy aligned with business goals Oversee security architecture, vulnerability management, incident response … and threat intelligence Lead security risk assessments and manage remediation plans for identified gaps Ensure compliance with financial regulations (e.g. GDPR, PCI DSS, SOX, FCA requirements) Establish and enforce security policies, standards, and procedures Report security posture, incidents, and key metrics to senior leadership and the board Drive security awareness and training programmes for all employees More ❯

Director in Unit 42 is a senior-level consulting position. The individual will be responsible for the day to day delivery of our threat-led and technology driven cyber security consulting services through leading and directly overseeing a team of Consultants. This person will have experience in developing teams and working with sales and domain leaders. The Consulting Director … and Customer Success Manager (CSM) to deliver pitches and prepare proposals to win new business and manage client relationships. We are seeking an individual who is passionate about cyber security and making a difference. You will be a continuous learner and have a sound knowledge of emerging cybersecurity trends and technologies. The individual serves as a trusted advisor to … cross-sector clients. Your Impact Oversee the delivery of our proactive consulting services, ensuring their consistency, quality and highest level of customer service Provide hands-on, expert-level proactive Security Operations Center (SOC) assessment and transformation services to clients and deliver findings to CxO and/or Board of Directors Work with the BDM and CSM to perform More ❯

Director in Unit 42 is a senior-level consulting position. The individual will be responsible for the day to day delivery of our threat-led and technology driven cyber security consulting services through leading and directly overseeing a team of Consultants. This person will have experience in developing teams and working with sales and domain leaders. The Consulting Director … and Customer Success Manager (CSM) to deliver pitches and prepare proposals to win new business and manage client relationships. We are seeking an individual who is passionate about cyber security and making a difference. You will be a continuous learner and have a sound knowledge of emerging cybersecurity trends and technologies. The individual serves as a trusted advisor to … cross-sector clients. Your Impact Oversee the delivery of our proactive consulting services, ensuring their consistency, quality and highest level of customer service Provide hands-on, expert-level proactive Security Operations Center (SOC) assessment and transformation services to clients and deliver findings to CxO and/or Board of Directors Work with the BDM and CSM to perform More ❯

Head of IT Security Incident and Threat Management Package to £117k DOE + 15% Bonus + Benefits Based Birmingham This is an exciting opportunity to take a strategic leadership role at the forefront of cybersecurity. As Head of IT Security Incident and Threat Management, you will shape and lead the organization s global response to cyber threats ensuring … and incident response strategy, working with innovative cutting-edge tools, partners, and experts. The successful candidate will lead and develop a talented in-house team, while managing the external Security Operations Centre (SOC) to ensure proactive defence and rapid response to incidents. Key Responsibilities Develop and execute incident response and threat management strategies. Lead investigations, resolution, and … post-incident analysis of security incidents. Oversee and mentor a team of three direct reports, ensuring their growth and performance. Conduct security audits and vulnerability assessments to strengthen defences. Collaborate across departments to embed robust security practices. Manage the relationship with the external SOC, ensuring proactive threat detection and response. Stay updated on industry trends and represent More ❯

Head of IT Security Incident and Threat Management Package to £117k DOE + 15% Bonus + Benefits Based Birmingham This is an exciting opportunity to take a strategic leadership role at the forefront of cybersecurity. As Head of IT Security Incident and Threat Management, you will shape and lead the organization’s global response to cyber threats — ensuring … and incident response strategy, working with innovative cutting-edge tools, partners, and experts. The successful candidate will lead and develop a talented in-house team, while managing the external Security Operations Centre (SOC) to ensure proactive defence and rapid response to incidents. Key Responsibilities Develop and execute incident response and threat management strategies. Lead investigations, resolution, and … post-incident analysis of security incidents. Oversee and mentor a team of three direct reports, ensuring their growth and performance. Conduct security audits and vulnerability assessments to strengthen defences. Collaborate across departments to embed robust security practices. Manage the relationship with the external SOC, ensuring proactive threat detection and response. Stay updated on industry trends and represent More ❯

Junior SOC Analyst Up to 34kHybrid (London) Overview: We are seeking an enthusiastic Junior Cyber Security Analyst to join our client's dedicated SOC team. In this role, you will help monitor and defend networks, systems, and applications against evolving threats. You'll work as part of a team that provides 24/7 monitoring, detection, response, and remediation … services for a diverse client base. Key Responsibilities: Support the Managed Extended Detection & Response (MXDR) service. Monitor security alerts and events to identify potential incidents. Assist in investigating security incidents, determining root causes, and supporting remediation plans. Collaborate with internal teams and external stakeholders to ensure security controls are effectively maintained. Generate and review reports on events … incidents, and trends to drive continual improvement. Stay current with security developments, tools, and techniques to strengthen the service. Qualifications & Requirements: Bachelor's degree in Computer Science, Cybersecurity, or a related field (or equivalent experience) Evidence of self-learning and continual development outside of a university degree 1+ years of experience in cybersecurity (SOC or MSSP experience preferred) is More ❯

Glasgow, Scotland - United Kingdom Type: Permanent Senior SOC Analyst Location: Glasgow (hybrid) Salary: Up to £57,000 + package NOTE: Candidates for this role must be eligible for UK Security Clearance (SC). We are seeking a Senior SOC Analyst to join a growing Security Operations Centre team. This is a hybrid role based in Glasgow … offering the opportunity to take a leading role in incident response and advanced security monitoring within a dynamic environment. As a Senior SOC Analyst, you will take ownership of escalated incidents from L1 and L2 analysts, leading investigations, performing root cause analysis, and guiding appropriate remediation actions. You will play a key role in developing SOC use cases, enhancing … interaction, and leadership, requiring someone who thrives in a fast-moving environment and is comfortable working with both technical and non-technical stakeholders. Key Responsibilities Lead investigations into escalated security incidents, including detailed analysis and root cause identification. Monitor and optimise SIEM tools (Splunk, QRadar, or similar), ensuring accurate detection and effective alerting. Perform malware analysis, reverse engineering, and More ❯