226 to 250 of 361 Security Operations Jobs in England

strategic ownership of the organisation's core infrastructure and network operations. You will manage relationships with external service providers, lead internal infrastructure initiatives and ensure the stability, scalability and security of IT systems across multiple sites, whilst leading the infrastructure team. Key Responsibilities * Lead and manage the delivery of infrastructure and network services across offices and project sites, aligning … providers, ensuring performance, SLAs and service quality * Provide leadership to technical staff * Plan and coordinate infrastructure upgrades, migrations and integrations across a growing business portfolio * Manage network and server operations, ensuring uptime, resilience and business continuity. * Oversee the design and deployment of new site networks and connectivity solutions, ensuring standardisation and efficiency * Collaborate with the Security Operations Center and compliance teams to maintain a robust security posture * Develop and enforce infrastructure policies, processes and documentation to support consistent operations and future scalability * Maintain oversight of infrastructure assets, configuration management and software licensing * Contribute strategically to IT budgeting, vendor management and continuous service improvement initiatives * Provide high-level technical oversight and guidance in areas including More ❯

Senior Security Analyst – SOC/Incident Response I’m partnering with a fast-growing Cyber Defence function that’s strengthening its Security Operations Centre and looking for a talented Senior Security Analyst to join the team. You’ll take a leading role in detecting, analysing, and responding to cyber threats across diverse client environments, mentoring junior … a SOC, CSIRT, or cyber defence environment. Solid knowledge of SIEM and EDR platforms (Sentinel, Splunk, Defender, CrowdStrike, etc.). Understanding of MITRE ATT&CK and network/cloud security principles. Strong analytical and communication skills. Bonus points for: Scripting or automation experience (KQL, PowerShell, Python). Background in threat hunting or vulnerability management. Why apply? Hybrid flexibility, funded More ❯

for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams. What You’ll Be Doing 🕵️ Lead Investigations : Conduct host, network, and cloud … based forensic analysis to uncover the full scope of security incidents. 🛡️ Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies. ⚙️ Drive Innovation : Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities. 🔍 Threat Hunting : Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering More ❯

for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams. What You’ll Be Doing 🕵️ Lead Investigations : Conduct host, network, and cloud … based forensic analysis to uncover the full scope of security incidents. 🛡️ Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies. ⚙️ Drive Innovation : Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities. 🔍 Threat Hunting : Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering More ❯

for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams. What You’ll Be Doing 🕵️ Lead Investigations : Conduct host, network, and cloud … based forensic analysis to uncover the full scope of security incidents. 🛡️ Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies. ⚙️ Drive Innovation : Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities. 🔍 Threat Hunting : Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering More ❯

for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams. What You’ll Be Doing 🕵️ Lead Investigations : Conduct host, network, and cloud … based forensic analysis to uncover the full scope of security incidents. 🛡️ Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies. ⚙️ Drive Innovation : Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities. 🔍 Threat Hunting : Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering More ❯

for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams. What You’ll Be Doing 🕵️ Lead Investigations : Conduct host, network, and cloud … based forensic analysis to uncover the full scope of security incidents. 🛡️ Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies. ⚙️ Drive Innovation : Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities. 🔍 Threat Hunting : Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering More ❯

a high-impact transformation journey as our client builds a cutting-edge Group Shared Services model across the UK, Ireland, and the US. This is your chance to lead security operations, respond to real-world threats, and shape the future of cybersecurity in a dynamic, multi-entity environment. Requirements: Proven experience in incident response and vulnerability management. Hands … tools. Strong communicator—able to engage technical and non-technical stakeholders. Experience in distributed or franchisee-based environments is a major plus. Certifications like CISSP, CISM, GIAC, or Azure Security Engineer are highly valued. Responsibilities: Be the go-to expert for security incidents—detect, respond, and remediate across regions. Drive vulnerability management using top-tier tools like Tenable … Nessus, and Microsoft Defender. Collaborate with franchisees, vendors, and internal teams to close security gaps and elevate resilience. Translate complex threats into clear, actionable insights for senior leadership. Help build and evolve a security program that scales across geographies and business models. Join a security-first culture in a global enterprise. More ❯

a high-impact transformation journey as our client builds a cutting-edge Group Shared Services model across the UK, Ireland, and the US. This is your chance to lead security operations, respond to real-world threats, and shape the future of cybersecurity in a dynamic, multi-entity environment. Requirements: Proven experience in incident response and vulnerability management. Hands … tools. Strong communicator—able to engage technical and non-technical stakeholders. Experience in distributed or franchisee-based environments is a major plus. Certifications like CISSP, CISM, GIAC, or Azure Security Engineer are highly valued. Responsibilities: Be the go-to expert for security incidents—detect, respond, and remediate across regions. Drive vulnerability management using top-tier tools like Tenable … Nessus, and Microsoft Defender. Collaborate with franchisees, vendors, and internal teams to close security gaps and elevate resilience. Translate complex threats into clear, actionable insights for senior leadership. Help build and evolve a security program that scales across geographies and business models. Join a security-first culture in a global enterprise. More ❯

across complex, hybrid environments — from on-prem systems to modern cloud platforms. You’ll play a key part in advancing the company’s threat detection capabilities and ensuring that security operations stay one step ahead of emerging threats. What You’ll Do Lead the creation and optimization of detection rules, alerting logic, and use cases across SIEM, EDR … Drive threat hunting activities and develop hypotheses based on attacker TTPs and frameworks like MITRE ATT&CK. Collaborate with incident response, engineering, and intelligence teams to contain and resolve security incidents. Support continuous improvement of detection strategies and mentor analysts to uplift overall team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident … response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial tactics and techniques and how they translate to real-world detection logic. Excellent analytical and communication skills, with a calm and structured approach to More ❯

across complex, hybrid environments — from on-prem systems to modern cloud platforms. You’ll play a key part in advancing the company’s threat detection capabilities and ensuring that security operations stay one step ahead of emerging threats. What You’ll Do Lead the creation and optimization of detection rules, alerting logic, and use cases across SIEM, EDR … Drive threat hunting activities and develop hypotheses based on attacker TTPs and frameworks like MITRE ATT&CK. Collaborate with incident response, engineering, and intelligence teams to contain and resolve security incidents. Support continuous improvement of detection strategies and mentor analysts to uplift overall team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident … response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial tactics and techniques and how they translate to real-world detection logic. Excellent analytical and communication skills, with a calm and structured approach to More ❯

across complex, hybrid environments — from on-prem systems to modern cloud platforms. You’ll play a key part in advancing the company’s threat detection capabilities and ensuring that security operations stay one step ahead of emerging threats. What You’ll Do Lead the creation and optimization of detection rules, alerting logic, and use cases across SIEM, EDR … Drive threat hunting activities and develop hypotheses based on attacker TTPs and frameworks like MITRE ATT&CK. Collaborate with incident response, engineering, and intelligence teams to contain and resolve security incidents. Support continuous improvement of detection strategies and mentor analysts to uplift overall team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident … response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial tactics and techniques and how they translate to real-world detection logic. Excellent analytical and communication skills, with a calm and structured approach to More ❯

across complex, hybrid environments — from on-prem systems to modern cloud platforms. You’ll play a key part in advancing the company’s threat detection capabilities and ensuring that security operations stay one step ahead of emerging threats. What You’ll Do Lead the creation and optimization of detection rules, alerting logic, and use cases across SIEM, EDR … Drive threat hunting activities and develop hypotheses based on attacker TTPs and frameworks like MITRE ATT&CK. Collaborate with incident response, engineering, and intelligence teams to contain and resolve security incidents. Support continuous improvement of detection strategies and mentor analysts to uplift overall team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident … response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial tactics and techniques and how they translate to real-world detection logic. Excellent analytical and communication skills, with a calm and structured approach to More ❯

across complex, hybrid environments — from on-prem systems to modern cloud platforms. You’ll play a key part in advancing the company’s threat detection capabilities and ensuring that security operations stay one step ahead of emerging threats. What You’ll Do Lead the creation and optimization of detection rules, alerting logic, and use cases across SIEM, EDR … Drive threat hunting activities and develop hypotheses based on attacker TTPs and frameworks like MITRE ATT&CK. Collaborate with incident response, engineering, and intelligence teams to contain and resolve security incidents. Support continuous improvement of detection strategies and mentor analysts to uplift overall team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident … response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial tactics and techniques and how they translate to real-world detection logic. Excellent analytical and communication skills, with a calm and structured approach to More ❯

cyber threats, identifying patterns and trends. Apply the intelligence life cycle, from collection through to reporting. Ensure the Threat Intelligence Programme meets organisational aims. Influence and advise stakeholders on security-focused decisions. Work closely alongside other Security Operations teams such as SOC. Identify intelligence of concern across various sources and tools, and conduct analysis and assessment of … threats, threat actors, attack vectors, and vulnerabilities. Knowledge of information assurance standards and frameworks including CIS, NIST, ISO 27001, Cyber Essentials/Essentials Plus, GDPR. Knowledge of threat cyber security frameworks such as MITRE ATT&CK, Kill Chain and NIST CSF 2.0. The ideal candidate will combine strong technical expertise with a solid understanding of global events and their More ❯

Engineer to join the global IT team. The successful candidate will play a key role in designing, implementing, maintaining, and supporting the entire IT infrastructure, which supports the business operations across multiple international locations. This is a practical role requiring a combination of deep technical expertise in Microsoft, VMware, and Cloud technologies, strategic thinking, and the ability to work … and cloud-based systems. Manage and administer our hybrid cloud environment, with a strong focus on Microsoft Azure, Entra ID, and Azure MDM for modern device management. Ensure the security of our infrastructure and data by managing on-premises and cloud security controls and working closely with the Security Operations Centre (SoC) to action vulnerability management … preferably within a global or multi-site SME. Solid hands on expertise in: The Microsoft Stack: Cloud Technologies: System Centre Configuration Manager (SCCM): Virtualisation & VDI: Hardware Experience: Networking & Monitoring: Security & Asset Management: Server Operating Systems & Backups: Please get in touch for full details. More ❯

Cyber Security SOC Analyst – London/Remote Atrium EMEA is looking for an accomplished Cyber Security SOC Analyst to support the Security Incident Response Team. The team is growing, we require a strong individual contributor that will investigate, analyse, and contain security incidents. This is a fully remote role, with the occasional London office visit. You … controls and/or corrective actions for mitigating technical and business risk. • Integrate and collaborate with other subject matter experts throughout the organization. Essential: • Solid experience of Google Secops/Googlesecops • BS/BA in Computer Science, Computer Engineering, Cyber Security, Forensics and/or equivalent work experience. • Certification in cybersecurity (e.g. Security+, CCNA Cyber Ops, BTL1 and …/or BTL2, GCIH, CEH, CySA+, OSCP, CISSP, CCSP etc.) • IT Security or Cyber Security experience in any of the following areas: Incident Response & Digital Forensics. Cybersecurity Detection Engineering and Threat Hunting or Vulnerability Management • Experience analysing attack vectors, current threats, and security remediation strategies • Experience with SIEM technologies, EDR technologies, and/or Asset isolation tools More ❯

We are seeking a highly skilled and experienced SOC Incident Response & Threat Hunting Manager to join our growing Security Operations Centre. This pivotal role will be responsible for leading our Tier 3 Security and Incident Response Analysts, overseeing advanced incident response activities, driving proactive threat hunting initiatives, and providing strategic direction for the Cyber Threat Intelligence (CTI … play a key role in mentoring and developing a high-performing team, leading complex incident response engagements from initial detection through to post-incident review, and significantly enhancing the security posture of our diverse customer base. The role demands a unique blend of strategic leadership, deep technical expertise in digital forensics and incident response (DFIR), and a proactive mindset … to anticipate and neutralise sophisticated and evolving cyber threats. Key Responsibilities: Provide expert guidance and technical oversight on complex security incidents and threat hunting operations. Lead and coordinate high-severity incident response engagements, acting as the primary incident lead when required. This includes managing cross-functional teams, communications, and critical decision-making under pressure. Ensure all incident response and More ❯

About SPS: Special Projects and Services Limited (SPS) is a UK-based security and risk management company founded in 1991. Operating globally, SPS provides crisis response, risk assessment, medical operations support, and project management in high-risk or complex environments. Known for its expertise in global assistance and specialist security operations, SPS was acquired by Concentric … IT services across the UK business, assisting with technical support, device management, and ongoing tech ops projects. This role provides structured, hands-on training in IT systems administration, cyber security, and compliance, contributing to the smooth operation of business technology while developing core professional and technical skills. The apprentice will work closely with the Tech Ops Manager and the … of the company’s technology architecture. Research and suggest service enhancements to improve efficiency and user experience. Support the implementation and maintenance of the company’s ISO 27001 Information Security Management System and ISO 27701 Privacy Information Management System. Assist with cyber security initiatives such as endpoint management, access control, and awareness activities. Assist with privacy and cyber More ❯

On-site preferred) Salary: Up to £90,000 + Benefits + Bonus Employment Type: Permanent Overview We are seeking a highly skilled Red Team Specialist to join our clients security function. You will lead and execute offensive security operations, simulating real-world adversaries to identify weaknesses in our organisation's technology, processes, and human controls. This role … is ideal for an individual with deep technical expertise, strong threat-emulation experience, and the ability to translate complex findings into actionable security improvements. Key Responsibilities Plan, execute, and report on red team engagements including full-scope attack simulations Perform targeted adversary emulation across network, application, cloud, and physical domains Develop exploit chains and bypass advanced detection and security … attacker TTPs, threat actors, and exploit techniques Mentor junior team members and contribute to tooling, methodology, and lab development Required Skills & Experience 3+ years' experience in red teaming, offensive security, or advanced penetration testing Strong knowledge of attacker frameworks (e.g., MITRE ATT&CK, NIST adversary simulation guidelines) Highly proficient with red team tools and techniques (e.g., Cobalt Strike, Mimikatz More ❯

A global IT MSP is looking for an experienced SOC Incident Response & Threat Hunting Manager to join its expanding Security Operations Centre. This is a pivotal leadership role, overseeing Tier 3 Security and Incident Response Analysts while driving proactive threat hunting and cyber threat intelligence initiatives. This hands-on position combines technical depth, strategic leadership, and a More ❯

A global IT MSP is looking for an experienced SOC Incident Response & Threat Hunting Manager to join its expanding Security Operations Centre. This is a pivotal leadership role, overseeing Tier 3 Security and Incident Response Analysts while driving proactive threat hunting and cyber threat intelligence initiatives. This hands-on position combines technical depth, strategic leadership, and a More ❯

A global IT MSP is looking for an experienced SOC Incident Response & Threat Hunting Manager to join its expanding Security Operations Centre. This is a pivotal leadership role, overseeing Tier 3 Security and Incident Response Analysts while driving proactive threat hunting and cyber threat intelligence initiatives. This hands-on position combines technical depth, strategic leadership, and a More ❯

A global IT MSP is looking for an experienced SOC Incident Response & Threat Hunting Manager to join its expanding Security Operations Centre. This is a pivotal leadership role, overseeing Tier 3 Security and Incident Response Analysts while driving proactive threat hunting and cyber threat intelligence initiatives. This hands-on position combines technical depth, strategic leadership, and a More ❯

stand in as subject matter experts and consultants related programmes. Principal Preferred Requirements Cybersecurity Expertise: • Significant experience and proven technical depth within one of the following domains of cybersecurity; security operations & incident response, threat & vulnerability management, identity & access management, cryptography, infrastructure, network, application, data, cloud • Broad background across information technology with the ability to communicate clearly with non … security technical SMEs at a comfortable level • Excellent command of cybersecurity organisation practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies • Keen understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity • Experience and understanding of both the roles and interlock between enterprise & solution architecture • Experience … business outcomes • Ensures the design of the solutions are efficient, timely and cost effective throughout the project lifecycle • Clear understanding of both the motivations of the business and technical security • Promote strong documentation and clerkship Governance: • Ensures all high-level designs, architecture patterns, decision records, deviation requests, and technical risks or issue records undergo architectural and project governance processes More ❯