20 of 20 Blue Team Jobs in England

our software-and it turns out that people love working here too. We've been recognized as a "Best Company to Work For," and we're proud of our team for receiving awards for workplace effectiveness and flexibility. What You'll Do As our Security Engineer, you'll be responsible for managing our security posture as well as keeping …/HIPS configuration, log monitoring, and audit compliance (SOC II). You will ensure that our software application is both manually and automatically pentested for security vulnerabilities (including Red Team and Blue Team exercises), and be a decision-maker in all things security management-able to "pull the plug" on a feature, application, or other business … Need to Get the Job Done 3+ years experience performing penetration testing (against web applications) Experience securing cloud-based infrastructures and solutions Previous experience working on an information security team Advanced knowledge of common security vulnerabilities (OWASP) and best practices Familiarity with SOC II controls and how to review them Experience in other technical roles (SysAdmin, Helpdesk, etc.) Strong More ❯

just responding to security incidents-you're revolutionising how it's done. At Maersk, one of the world's largest and most respected logistics and shipping companies, our Cyber team is pioneering a whole new approach to incident response. This isn't your typical SOC/CERT role: our combined fire team approach team is built on … cutting-edge research and designed to drive change, resilience, and agility in ways the industry has never seen before. Here, you'll be part of a dynamic team that works together to defend, adapt, and innovate with freedom and purpose. You won't just work on IR; you'll help improve how it's done. Dive into purple teaming … through Capture the Flag (CTF) exercises and direct opportunities to bring your ideas to life. Are you ready to be part of something transformational at Maersk and join a team that's setting a new standard in cybersecurity? Join a World-Class Cyber Team: Be part of an elite cyber operation at one of the globe's most More ❯

the role Node4 have an exciting opportunity within our Security Operations Center (SOC) for an individual looking to progress their career in cybersecurity. As a member of our Security Team you're responsible for securing both Node4 and our customers against attacks, compromises and breaches. Internally you will work as part of the corporate services department, collaborating with other … teams such as network specialists and infrastructure engineers to mature and maintain our internal security posture. Externally you will work closely with our account-managers and pre-sales team to deliver managed security services to customers and provide a consistently high-quality standard of service. We are looking for a passionate, driven individual who is keen to learn more … and Azure Experience using and developing playbooks for SOC processes and incident response Strong understanding of IT & networking fundamentals (eg TCP, DNS, TLS) Able to work effectively in a team as well as confident working independently and taking accountability for tasks/projects. Robust time/project management skills to prioritise and organise multiple ongoing tasks. Understanding of Windows More ❯

analysis and reverse engineering Active DV Clearance Scripting or programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities As a SOC Shift Lead , you will ensure the smooth operation and continual enhancement of SOC processes and … personnel. You will play a pivotal role in protecting client systems and guiding the team through sophisticated cyber defence challenges. Your responsibilities will include: Monitoring, triaging, and investigating alerts across host and network security systems Performing deep analysis of traffic, logs, and system events to identify threats and vulnerabilities Providing line management to SOC Analysts developing capability and supporting … career progression Enhancing team knowledge across SOC tooling , detection methodologies , and threat triage Analysing and optimising detection rules and use cases based on Mitre Att&ck Maintaining detailed and up-to-date incident documentation , findings, and mitigation strategies Acting as a representative of the SOC in key meetings and internal stakeholder engagements Working shifts from the on-site Security More ❯

Officer (BISO) for TMHCC International, the Cloud Security Lead is part of the BISO function established within in the CIO organisation of the International division. You'll join the team as someone who is passionate about Cloud Security and Cyber Risk management. The Cloud Security Lead is responsible for maintaining secure cloud architectures, policies, and practices to protect critical … to explain complex security issues to non-technical stakeholders. Knowledge of Zero Trust architecture and security frameworks (e.g., MITRE ATT&CK). Experience in red/blue team exercises. Familiarity with cloud-native security tools and infrastructure-as-code (e.g., Azure Policy, ARM/Bicep, Terraform). Experience of the Specialty and Lloyd's/Companies market … of Companies offers a competitive salary and employee benefit package. We are a successful, dynamic organization experiencing rapid growth and are seeking energetic and confident individuals to join our team of professionals. The Tokio Marine HCC Group of companies is an equal opportunity employer. Please visit for more information about our companies. The Tokio Marine HCC Group of companies More ❯

the SOC in partner and stakeholder meetings. Contribute to SOC process improvement, skills development, and knowledge sharing. Skills/Must Have: Strong experience working in a SOC environment. Proven team leadership or people management experience. Expertise in Microsoft Sentinel and Splunk. Familiarity with the MITRE ATT&CK framework. Sound understanding of network protocols (TCP/IP, HTTP, SMTP, etc. … enterprise infrastructure. Desirable skills: Skills in malware analysis or reverse engineering. Experience with scripting or programming (Python, PowerShell, Bash, etc.). Relevant SOC certifications (e.g., CREST, Blue Team Level 1). Exposure to additional SIEM tools such as QRadar. Shift Pattern: 2 Days, 2 Nights, 4 Off Benefits: 25 days annual leave (plus option to purchase more More ❯

threat intelligence capabilities. Support and mature security monitoring use cases (SIEM, packet inspection, IOCs). Coordinate cross-functional security incident response with SOC, Threat Intelligence, and Red/Blue teams. Engage with technical and business teams on cyber risk reduction strategies. Contribute to vulnerability management and remediation plans. Required Skills & Experience Proven experience managing DFIR or cyber incident More ❯

to Fuse's risk profile. Directly contribute to architecture reviews, threat modelling sessions, and key design decisions across product and platform teams. Build and mentor a high-performing security team, including hiring, coaching, and managing performance. Develop KPIs and reporting structures to measure and communicate security posture to leadership and the board. Advise the executive team on security … management. Excellent leadership, communication, and stakeholder skills. Bachelor's or advanced degree in Computer Science, Information Security, or related field. Bonus: Experience with CTFs, red/blue team exercises, or offensive security. Competitive salary and a stock options sign-on bonus Biannual bonus scheme Fully expensed tech to match your needs! Paid annual leave Breakfast and dinner More ❯

XDR, and tools such as Wiz, Darktrace, Microsoft Defender, Intune, and Sentinel. You will also bring hands-on experience in threat hunting, log analysis, red/blue team operations, and incident response coordination-building tooling and processes that respond to real-world threats at scale. You will report directly into the CISO, with a clear mandate to More ❯

activities. The successful candidate will be a hands-on, technically skilled security professional with experience across a broad range of cybersecurity disciplines (red/purple and blue team), this experience will enable you to successfully help shape, implement, and maintain effective security controls and infrastructure across the firm. This is a hybrid role (3 days in office More ❯

Our Cyber team look after some complicated and compelling areas within Aero, Defence and Security. If you want to lead from the front, gain experience working with multiple clients, and always have access to the latest technologies, then join the team who are on the cusp of continued growth and known as leaders in their field. Our new … position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our clients critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role is based on site Hemel Hempstead and … security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update More ❯

Our Cyber team look after some complicated and compelling areas within Aero, Defence and Security. If you want to lead from the front, gain experience working with multiple clients, and always have access to the latest technologies, then join the team who are on the cusp of continued growth and known as leaders in their field. Our new … position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our client’s critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role is based on site Hemel Hempstead … security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update More ❯

multi-cloud or hybrid (Azure/GCP/on-prem) environments. Container security and supply-chain SBOM tooling. Cloud incident response or red/blue/purple-team experience. Contributions to open-source security tools or AWS community forums. Reply provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of More ❯

/day Outside IR35 I am working with an exceptional Microsoft Security Solution Provider, and they have an urgent requirement for a Sentinel SecOps Engineer to join their onsite team at one of their longest standing Financial Services clients in the Bank area of London. They have recently rolled out Sentinel as the SIEM including for Endpoint and they … Previous experience working within financial services Experience using ITSM tools Knowledge of the phases in incident response and Cyber Kill Chain Good blue/purple/red team experience Please hit the button to Apply and/or call Will Martin at at InfraView for further info. If this role is not for you, please register with More ❯

Serve as the point of escalation for intrusion analysis, forensics, and incident response queries. Provide root cause analysis for complex, non-standard findings and anomalies without existing playbooks. Mentor team members and share knowledge proactively. Contribute to the SOC Knowledge Repository by creating and updating documentation independently. Build relationships externally with other SOCs and cybersecurity researchers to identify analytics … threats affecting cloud services and VMs, prioritizing and implementing relevant findings. Research vulnerabilities, produce proof-of-concept exploits, and emulate adversary TTPs for training and detection evaluation. Review red team and pentest findings to improve detection rules. Provide forensic support and threat emulation to improve alert triage and accuracy. Identify gaps in SOC processes, data collection, and analysis, demonstrating … world risks. Architect detection programs to identify unusual behaviors, reduce dwell time, and optimize resource use. Oversee practices that enhance daily operations, including quality reviews. Lead operational strategy and team exercises, collaborating across functions. Contribute to team requirements, including engineering and continuous improvement. Design and conduct technical interviews, evaluating candidate responses. Experience Proven experience in security testing practices More ❯

Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter and our customers delivered services. As a highly skilled and motivated Penetration Tester, you will join our dynamic Cybersecurity team. In this role, you will be … own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In … cloud security assessments, and social engineering simulations. Vulnerability identification and analysis: Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries More ❯

UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter … own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In … cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries More ❯

UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter … own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In … cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries More ❯

UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter … own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In … cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries More ❯

UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration testing services to Computacenter … own people and will look at individuals, you will be involved in so many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In … cloud security assessments, and social engineering simulations. Vulnerability identification and analysis : Research, identify, and exploit security vulnerabilities in a variety of systems and applications. Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive. Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries More ❯