101 to 125 of 227 Security Operations Jobs in England

SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high-severity cyber incidents and … escalated security events, leveraging your technical expertise, analytical mindset, and industry-standard tools to contain, eradicate, and recover from cyber threats. Your work will directly contribute to safeguarding my client's network systems, operational technology, and customer data from emerging and sophisticated cyber risks. Key Responsibilities As a senior member of the Security Operations team, you will … and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration and effective alert correlation across cloud and on-prem environments. Support and develop the organisation's SOAR More ❯

. Do you have hands-on ISO-27001 and security tool We are expanding our Information Security team presence into the European Union. This is an opportunity to become a key member of our team, supporting our commercial business lines. With a large part of the Intellectual Property (IP) technology team residing in Farringdon, this will strengthen the … collaboration between Information Security and Technology, especially as IP focuses on modernization of their AI products with new features and functions to enrich the users' experience. About the Role: The Senior Security Engineer will conduct research, design, and engineering tasks for a dedicated project in the European Union. This role requires the ability to identify, investigate, and resolve … ISO-27001 security controls, along with hands-on expertise in Endpoint Detection & Response and Vulnerability and Compliance Management tools. Responsibilities: Security Requirements & Support: Define and document security requirements for new development efforts. Collaboration & Other Duties: Perform other duties as required. Requirements: Experience in information security or security operations, typically demonstrated over several years.Practical experience More ❯

IT Infrastructure and Security Engineer – Leeds/Hybrid, 3 days per week from home £45,000 - £55,000 + bonus, 37-hour work week and great benefits This successful company with multi-billion-pound yearly turnover are on the market for a skilled Infrastructure and Security Engineer to join their established IT team in Leeds. As an Infrastructure … and Security Specialist, you will implement, maintain and secure their multi-site core IT Infrastructure. You will have proven experience in IT operations, system administration or cyber security as this role will cover both on-premises and cloud environments, ensuring systems are reliable, secure, and aligned with business needs.As an Infrastructure/IT Security Engineer, you … in service + many more. Desired technical skills: Microsoft 365 (Entra ID, Exchange, Teams, SharePoint, Intune, Azure) Windows Server/Active Directory, Networking fundamentals (DNS, DHCP, VPNs, firewalls). Security tools, vulnerability management, and incident response Security technologies (firewalls, IDS/IPS, SIEM, vulnerability scanners) Familiarity with Microsoft Defender and Mimecast. Strong analytical and troubleshooting skills across complex More ❯

passionate and experienced Vulnerability Lead to shape and lead the creation and ongoing operation of our comprehensive vulnerability management program. This is a unique opportunity to establish a critical security function, define best practices, and significantly enhance our overall security posture. A key aspect of this role involves the end-to-end management and continuous improvement of the … vulnerability management programme. This includes defining scanning strategies, conducting risk-based triage and prioritisation, overseeing remediation efforts, and providing actionable reporting to enhance the Engine's security posture. What you'll get to do Conduct vulnerability scans regularly and proactively as needed. Validate findings and use a risk-based approach. Enrich findings with threat intelligence and business impact to … resolver groups by triaging and prioritising vulnerabilities to facilitate timely resolution of outstanding findings using a risk based approach Track and manage remediation through to closure with Technology and Security teams. Ensure timely patching of critical vulnerabilities in line with SLAs. Ensure visibility across the technology estate, including cloud environments. Coordinate scanning and coverage of data centre estate, cloud More ❯

Senior Azure Engineer/Cloud Operations Lead – Worthing/Hybrid £70,000 - £75,000 plus benefits/bonus – Hybrid working in Worthing office 2 days per week Core notes: Strength as a lead and strong technically. Azure/Azure Native Services. PaaS. IaaS. Terraform/Infrastructure as Code (IaC). Huge opportunity to grow. Overview of the Senior Azure … Engineer/Cloud Operations Lead position: A large organisation that has far reaching impacts on the environment, the community and our ecosystem, seek an experienced Senior Azure Engineer/Cloud Operations Lead to help play a critical role in the design, implementation, and ongoing operation of the companies cloud infrastructure, with a strong emphasis on Microsoft Azure. As … a key technical contributor within the Cloud Operations function, you will be responsible for ensuring that cloud-based services are available, secure, efficient, and cost-effective. This includes provisioning and managing compute, storage, networking, and identity services, as well as supporting the use of advanced PaaS capabilities and analytics platforms. You will be in a hands-on role that More ❯

knowledge of attacker tactics and telemetry sources to create and manage scalable, accurate, and resilient detection rules across SOC platforms. Operating as part of the SOC team, you support operations by expanding detection coverage, improving rule performance, and collaborating with threat intelligence, incident response, and platform engineering teams to operationalise threat insights. You also contribute to internal process improvement … engineering, including technical scoping, proof-of-concept design, demos, and webinars Participate in customer-facing workshops, design reviews, integration planning, testing, and documentation activities Collaboration with Other Teams SOC Operations – You collaborate with analysts to ensure that detections generate actionable, triage-ready alerts. You align detection content with emerging threats and operationalise threat intel into actionable rules. You work … closely with responders to validate detection outcomes and improve incident-handling efficiency Offensive Security –You develop and refine detection logic in response to simulated attacker techniques Sales and Pre-Sales – You provide detection engineering insight to support service demonstrations, bid responses, and scoping sessions Position Specifications Required Qualifications & Experience You may be required to hold or obtain UK Non More ❯

Job Title : IT Security Specialist Contract Type: Permanent, Part Time, Full Time, Job Share option available Salary Range: £37,600 - £56,400 Location: Eastleigh - hybrid Closing Date for applications: Friday 17th October IT Security Specialist: We have an exciting opportunity for an IT Security Specialist to join our Information Security team at Ageas, reporting directly to … the Counter Threat Unit Manager. As an IT Security Specialist, you will support the day-to-day operations of the Counter Threat Unit, applying your strong background in infrastructure engineering, cloud-based architectures, and solution delivery. You will contribute to maintaining our secure systems across hybrid environments, leveraging your expertise in both on-premises and cloud platforms such … as Azure, AWS, and GCP. Main Responsibilities as IT Security Specialist: Assist in gathering and analysing threat intelligence; monitor systems and networks to identify anomalies and support situational awareness. Follow established processes to help ensure compliance with legal, regulatory, and internal security requirements. Contribute to the investigation and resolution of security incidents, working in line with organisational More ❯

Senior Azure Engineer/Cloud Operations Lead - Worthing/Hybrid £70,000 - £75,000 plus benefits/bonus - Hybrid working in Worthing office 2 days per week Core notes: Strength as a lead and strong technically. Azure/Azure Native Services. PaaS. IaaS. Terraform/Infrastructure as Code (IaC). Huge opportunity to grow. Overview of the Senior Azure … Engineer/Cloud Operations Lead position: A large organisation that has far reaching impacts on the environment, the community and our ecosystem, seek an experienced Senior Azure Engineer/Cloud Operations Lead to help play a critical role in the design, implementation, and ongoing operation of the companies cloud infrastructure, with a strong emphasis on Microsoft Azure. As … a key technical contributor within the Cloud Operations function, you will be responsible for ensuring that cloud-based services are available, secure, efficient, and cost-effective. This includes provisioning and managing compute, storage, networking, and identity services, as well as supporting the use of advanced PaaS capabilities and analytics platforms. You will be in a hands-on role that More ❯

Information Security Officer* *Full-time, Permanent* *Basingstoke (hybrid)* *£85,000* *Reassured are looking for an Information Security Officer to lead and evolve our approach to protecting data, systems and customer trust.* If you're passionate about embedding security into business operations and driving awareness across teams, this is a brilliant opportunity to make a real impact. … You’ll be responsible for managing our information security operations, governance and certifications, including ISO27001 and Cyber Essentials Plus. Working closely with IT leadership and stakeholders across the business, you’ll ensure our systems and processes meet the highest standards while fostering a culture of security-first thinking. *What you'll be doing:* * Leading the development and … delivery of our information security strategy * Managing audits, certifications and risk assessments * Supporting secure system design and change * Driving company-wide security awareness and training * Acting as Incident Response Manager for security events *What we're looking for:* * 5+ years’ experience in information security * Strong knowledge of ISO27001, Cyber Essentials Plus and risk management * CISSP or More ❯

Network Security Engineer - SC Cleared (or Eligible) - £550 per day - Inside IR35 - Remote - 12 Months initial contract We are currently working with a leading client in the zero carbon energy sector who are looking to bring on board an experienced Security Engineer to join their security implementation and engineering delivery team. This is a fantastic opportunity to … work on large-scale, business-critical projects in a highly regulated environment. The Role - As part of the security engineering team, you'll be: Delivering on the security portfolio, with a focus on SASE and firewall estates. Working within a SAFe Agile framework, participating in sprints and stand-ups. Managing and tracking workloads via Jira. Triaging customer requirements … into actionable deliverables. Acting as an escalation engineer for the Security Support Team. Supporting and mentoring junior engineers. Producing documentation and knowledge base material, as well as delivering knowledge transfer sessions. Occasionally supporting out-of-hours work. Technical Skills We're Looking For - My client is looking for demonstrable experience in as many of the following as possible: Enterprise More ❯

Job Posting: Cyber Security Assurance Manager Location: Portsmouth (Hybrid) Salary: £50,000 - £65,000 DOE Are You Ready to Lead the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment. In this crucial role … you will ensure that the SOC maintains its commitment to best-in-class standards through internationally recognised security certifications and industry-wide assurance frameworks, delivering confidence to clients and meeting regulatory expectations. As a core team member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors to … showcase security credentials that differentiate our SOC from the competition. If you're skilled in blending technical insight with customer-focused communication while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST). More ❯

The Information Security Analyst will play a critical role in safeguarding the organisation's systems and data, ensuring compliance with security policies and regulations. Based in Hatfield, this role is ideal for individuals passionate about the life science industry and technology. Client Details The hiring company is a medium-sized organisation operating within the life science industry, with … and excellence in its field. The company is known for its commitment to leveraging technology to drive forward its mission. Description Implement and maintain ISMS aligning with ISO27001 Ensure security controls are in-place based on ISO27001 and NIST As the regional security representative in the global Security/Technology project Lead/execute phishing campaign Conduct … vulnerability assessments and implement measures to mitigate potential risks. Involve in global security operations process, analysis and escalate security alerts/tickets from global SOC team Maintain and update security policies, standards, and procedures in alignment with industry regulations. Collaborate with cross-functional teams to ensure secure system designs and implementations. Provide training and support to More ❯

Cyber Security Engineer- 3 months+ - £(Apply online only)pd Inside IR35 - Hybrid ( 1-2 days on site in London) The person will be joining the MIP team (Monitoring and Integration Platform) within Technology Services. The Technology Services team is responsible for all infrastructure, end user computing, onsite support and delivery of technology projects. It has responsibility for … devices and infrastructure across 900+ sites. The requirement is to deliver against the initial phase of the security monitoring project-onboarding 67 critical services and 72+ services proactively monitored by our in-house SOC (Security Operations Centre). Please note that this role requires a current SC Clearance Essential Criteria for the Role 2+ years in security platforms management (SIEM, SOAR). Expertise in enterprise-level monitoring and supporting large user bases (10,000+ users). Experience in creating/managing security playbooks and knowledge of public sector standards. Experience in Xsiam correlation/playbooks. Excellent communication skills, able to articulate technical concepts to diverse audiences. Technical requirements Proven experience with Cortex XDR, Cortex Data More ❯

Purple Team Analyst/Cyber Security Analyst - 90,000 base + bonus London - Canary Wharf - 2 days in the office Financial Services Purple Team Analyst/Cyber Security Analyst The Company This financial services business supports a truly global client base, managing trillions of dollars … each day. They are looking to hire a Purple Team Analyst/Cyber Security Analyst into a newly created role to support increased Purple Teaming activities within the SecOps Function Purple Team Analyst/Cyber Security Analyst The Role The successful applicant for the Purple Team Analyst/Cyber Security Analyst will be responsible for: Planning, managing … and running all Purple teaming activities across the SecOps and wider technology estate Producing playbooks and other documentation relevant to both Purple Teaming and the wider SecOps team Supporting the Threat hunting teams with related activities Engage in security reviews for integrations and new service s Assist with escalations from the SOC team Support with Security risk assessments More ❯

Purple Team Analyst/Cyber Security Analyst - £90,000 base + bonus London - Canary Wharf - 2 days in the office Financial Services Purple Team Analyst/Cyber Security Analyst The Company This financial services business supports a truly global client base, managing trillions of dollars … each day. They are looking to hire a Purple Team Analyst/Cyber Security Analyst into a newly created role to support increased Purple Teaming activities within the SecOps Function Purple Team Analyst/Cyber Security Analyst The Role The successful applicant for the Purple Team Analyst/Cyber Security Analyst will be responsible for: Planning, managing … and running all Purple teaming activities across the SecOps and wider technology estate Producing playbooks and other documentation relevant to both Purple Teaming and the wider SecOps team Supporting the Threat hunting teams with related activities Engage in security reviews for integrations and new service s Assist with escalations from the SOC team Support with Security risk assessments More ❯

Security Engineer - SC Cleared (or Eligible) - £550 per day - Inside IR35 - Remote - 12 Months initial contract We are currently working with a leading client in the zero carbon energy sector who are looking to bring on board an experienced Security Engineer to join their security implementation and engineering delivery team. This is a fantastic opportunity to work … on large-scale, business-critical projects in a highly regulated environment. The Role - As part of the security engineering team, you'll be: Delivering on the security portfolio, with a focus on SASE and firewall estates. Working within a SAFe Agile framework, participating in sprints and stand-ups. Managing and tracking workloads via Jira. Triaging customer requirements into … actionable deliverables. Acting as an escalation engineer for the Security Support Team. Supporting and mentoring junior engineers. Producing documentation and knowledge base material, as well as delivering knowledge transfer sessions. Occasionally supporting out-of-hours work. Technical Skills We're Looking For My client is looking for demonstrable experience in as many of the following as possible: Enterprise firewalls More ❯

SOC Operations Manager - Active SC, Azure, ISO27001, Energy Up to £800 per day - Inside IR35 Primarily remote - Occasional travel 3 - 6 months My client is an instantly recognisable consultancy who require a SOC Operations Manager with Active Security Clearance (SC), to lead the day-to-day operations of a Security Operations Centre. This is … measurable value to a well-known end client within the Energy Sector. Key Requirements: Proven experience working within SOC management, within Energy/Construction/Utilities Holds an Active Security Clearance (SC) Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC/SIEM/XDR). Strong working knowledge of M365 security features. Familiarity More ❯

SOC Operations Manager - Active SC, Azure, ISO27001, Energy Up to £800 per day - Inside IR35 Primarily remote - Occasional travel 3 - 6 months My client is an instantly recognisable consultancy who require a SOC Operations Manager with Active Security Clearance (SC), to lead the day-to-day operations of a Security Operations Centre. This is … measurable value to a well-known end client within the Energy Sector. Key Requirements: Proven experience working within SOC management, within Energy/Construction/Utilities Holds an Active Security Clearance (SC) Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC/SIEM/XDR). Strong working knowledge of M365 security features. Familiarity More ❯

Team Lead is responsible for defining, developing, and leading the strategic direction for safeguarding the organisation's infrastructure and applications. This is achieved by proactively identifying, assessing, and remediating security vulnerabilities. The role sits within the Digital Engineering Services & Solutions (DES) department of the Technology Division. The role is part of the Digital Engineering Services & Solutions (DES) department, which … with service transition processes to ensure compliance with internal controls and regulatory standards. It plays a critical role in governance, audit readiness, and the continuous improvement of MUFG's security posture, while also serving as the central coordination point for all vulnerability-related activities across DES. The successful candidate must demonstrate proven experience in leading teams and fostering a … OEL Linux PowerShell and Python scripting Proven experience leading strategic security initiatives and process automation in large-scale environments Desirable Additional certifications: CCSP Familiarity with: CyberArk PAM, ServiceNow SecOps Vulnerability Response/Application Vulnerability Response. VMWare, Nutanix, Java VM MSSQL, Oracle, MongoDB Red Hat Satellite, Active Directory, LDAP, Kerberos Confluence, JIRA GDPR and SOX compliance frameworks Personal Requirements Excellent More ❯

SC Cleared Cyber Security Engineer- 3 months+ - £600-650pd Inside IR35 - Hybrid ( 1-2 days on site in London) The person will be joining the MIP team (Monitoring and Integration Platform) within Technology Services. The Technology Services team is responsible for all infrastructure, end user computing, onsite support and delivery of technology projects. It has responsibility for … devices and infrastructure across 900+ sites. The requirement is to deliver against the initial phase of the security monitoring project-onboarding 67 critical services and 72+ services proactively monitored by our in-house SOC (Security Operations Centre). Essential Criteria for the Role 2+ years in security platforms management (SIEM, SOAR). Expertise in enterprise-level … monitoring and supporting large user bases (10,000+ users). Experience in creating/managing security playbooks and knowledge of public sector standards. Experience in Xsiam correlation/playbooks. Excellent communication skills, able to articulate technical concepts to diverse audiences. Technical requirements Proven experience with Cortex XDR, Cortex Data Lake, and Cortex XSOAR. Solid understanding of cloud security More ❯

You don't become the industry leader with average IT hires. We're on the hunt for a hands-on Cyber Security Engineer - someone who lives and breathes security and is ready to protect, monitor, and strengthen our IT landscape. You'll play a key role in safeguarding our AWS cloud environment , ensuring our systems stay secure, resilient … and fully compliant with financial regulations. You'll bring real-world experience with security tools, threat detection, and incident response , helping us evolve and harden our defences every day. A background in a regulated industry (like financial services) is important, as is a strong grasp of infrastructure fundamentals across networks, servers, and cloud platforms. If you're ready to … take ownership of our security posture and make a measurable impact, we'd love to have you on the team. What you will do: Operate and optimise a wide range of security platforms, including SIEM, XDR, EDR, IAM, DLP, PAM, ZTNA, and vulnerability management tools Take ownership of the detection and response lifecycle - triaging alerts, investigating incidents, identifying More ❯

tools such as Google Chronicle & implementing UEBA/SOAR (Security Orchestration, Automation, and Response/User and Entity Behaviour Analytics) built on GCP/Google Cloud so Google SecOps/Security Operations experience is highly desirable. Key Responsibilities; - Enable and validate UEBA alerting within Chronicle SIEM, based on log sources - Deliver a minimum viable UEBA capability with … tested detection logic - Provide engineering support to accelerate onboarding of log sources required for UEBA enrichment and detection fidelity - Demonstrate the ability to work with Google Chronicle and SecOps APIs, specifically for the purpose of updating and managing reference data - Conduct current state assessment of detection engineering capabilities and log source coverage - Design and implement detection use cases aligned to … MITRE ATT&CK framework - Enable SOAR integration by identifying high-fidelity detections and mapping Key Technical/IT Security Skills; - Chronicle SIEM - Google SecOps - UEBA Tooling - Windows Event Logs - BindPlane - MITRE ATT&CK - Strong SOC background - SOAR playbooks - GCP Finer Details; - Outside IR35 - Contract until End of December, possibly longer - Hybrid, 4 times a month in the London office More ❯

tools such as Google Chronicle & implementing UEBA/SOAR (Security Orchestration, Automation, and Response/User and Entity Behaviour Analytics) built on GCP/Google Cloud so Google SecOps/Security Operations experience is highly desirable. Key Responsibilities; - Enable and validate UEBA alerting within Chronicle SIEM, based on log sources - Deliver a minimum viable UEBA capability with … tested detection logic - Provide engineering support to accelerate onboarding of log sources required for UEBA enrichment and detection fidelity - Demonstrate the ability to work with Google Chronicle and SecOps APIs, specifically for the purpose of updating and managing reference data - Conduct current state assessment of detection engineering capabilities and log source coverage - Design and implement detection use cases aligned to … MITRE ATT&CK framework - Enable SOAR integration by identifying high-fidelity detections and mapping Key Technical/IT Security Skills; - Chronicle SIEM - Google SecOps - UEBA Tooling - Windows Event Logs - BindPlane - MITRE ATT&CK - Strong SOC background - SOAR playbooks - GCP Finer Details; - Outside IR35 - Contract until End of December, possibly longer - Hybrid, 4 times a month in the London office More ❯

tools such as Google Chronicle & implementing UEBA/SOAR (Security Orchestration, Automation, and Response/User and Entity Behaviour Analytics) built on GCP/Google Cloud so Google SecOps/Security Operations experience is highly desirable. Key Responsibilities; - Enable and validate UEBA alerting within Chronicle SIEM, based on log sources - Deliver a minimum viable UEBA capability with … tested detection logic - Provide engineering support to accelerate onboarding of log sources required for UEBA enrichment and detection fidelity - Demonstrate the ability to work with Google Chronicle and SecOps APIs, specifically for the purpose of updating and managing reference data - Conduct current state assessment of detection engineering capabilities and log source coverage - Design and implement detection use cases aligned to … MITRE ATT&CK framework - Enable SOAR integration by identifying high-fidelity detections and mapping Key Technical/IT Security Skills; - Chronicle SIEM - Google SecOps - UEBA Tooling - Windows Event Logs - BindPlane - MITRE ATT&CK - Strong SOC background - SOAR playbooks - GCP Finer Details; - Outside IR35 - Contract until End of December, possibly longer - Hybrid, 4 times a month in the London office More ❯

tools such as Google Chronicle & implementing UEBA/SOAR (Security Orchestration, Automation, and Response/User and Entity Behaviour Analytics) built on GCP/Google Cloud so Google SecOps/Security Operations experience is highly desirable. Key Responsibilities; - Enable and validate UEBA alerting within Chronicle SIEM, based on log sources - Deliver a minimum viable UEBA capability with … tested detection logic - Provide engineering support to accelerate onboarding of log sources required for UEBA enrichment and detection fidelity - Demonstrate the ability to work with Google Chronicle and SecOps APIs, specifically for the purpose of updating and managing reference data - Conduct current state assessment of detection engineering capabilities and log source coverage - Design and implement detection use cases aligned to … MITRE ATT&CK framework - Enable SOAR integration by identifying high-fidelity detections and mapping Key Technical/IT Security Skills; - Chronicle SIEM - Google SecOps - UEBA Tooling - Windows Event Logs - BindPlane - MITRE ATT&CK - Strong SOC background - SOAR playbooks - GCP Finer Details; - Outside IR35 - Contract until End of December, possibly longer - Hybrid, 4 times a month in the London office More ❯