51 to 75 of 157 Security Operations Jobs in England

Job Title: Security Consulting Lead Location: Remote Type of employment: 06 months contract Active ready to transfer SC Clearance Required Responsibilities: As a Security Lead, you will be responsible for: Leading the effort and teams to enable development and implementation of proprietary and innovative security solutions. Assess, manage, and ensure compliance to risk-reducing behaviours and processes. … perform. Responsible for team decisions. Engage with multiple teams and contribute on key decisions. Provide solutions to problems for their immediate team and across multiple teams. Advanced proficiency in Security Capability Current State Assessment is required. Advanced level of proficiency in Security Metrics Development is recommended. Security Strategy & Planning, Security Planning, and Security Compliance Assessment … skills are suggested at an advanced proficiency level. Develop and implement security strategies to enhance risk management processes Lead security compliance assessments and provide recommendations for improvement Collaborate with cross-functional teams to ensure security solutions meet client requirements Conduct security capability current state assessments and provide actionable insights for enhancement Stay updated on industry trends More ❯

Role: Cyber Security Manager Location: London (Hybrid) Salary: £65,000 - £75,000 Summary Oscar Technology are working with a technology-focused organisation that is enhancing its internal security capability and looking for an experienced Cyber Security Manager to lead their cyber defence function. This position is suited to someone with a strong technical security background who … can drive strategy, uplift security maturity, and oversee incident response activities. You will be responsible for safeguarding the business's infrastructure, digital assets, and data by shaping security processes, managing risk, and leading a team of cyber security engineers. The role involves close collaboration with IT, network teams, and senior stakeholders to identify vulnerabilities, mature detection capabilities … and ensure compliance with recognised security frameworks. Key Responsibilities Lead and develop a team of cyber security engineers, providing technical and strategic direction. Oversee security operations including monitoring, incident management, and threat response. Conduct assessments across the IT estate to identify risks and emerging threats. Manage security events from detection through to remediation, ensuring timely More ❯

standardising infrastructure deployment. This includes creating robust PowerShell and Python Runbooks within Azure Automation for routine configuration management, scheduled maintenance, and automated incident remediation actions. Security Operations (SecOps) and Threat Response: Implementing proactive threat detection and automated security response capabilities. This involves active utilisation of Microsoft Defender for Cloud (for CSPM and CWPP) and Microsoft Sentinel, developing … automated security workflows and playbooks using Azure Logic Apps to enforce security policy. Financial Operations (FinOps) and Cost Governance: Accountability for continuous Usage Optimisation, including reviewing resource sizing and implementing cost allocation policies. The engineer will enforce budget controls and governance via Azure Policy, working collaboratively with Finance and Procurement teams to ensure efficientand auditable use of … public funds. The role of an Interim Azure Cloud Operations Engineer is a highly specialised senior position that demands expertise across traditional operations, Site Reliability Engineering, and Financial Operations. More ❯

standardising infrastructure deployment. This includes creating robust PowerShell and Python Runbooks within Azure Automation for routine configuration management, scheduled maintenance, and automated incident remediation actions. Security Operations (SecOps) and Threat Response: Implementing proactive threat detection and automated security response capabilities. This involves active utilisation of Microsoft Defender for Cloud (for CSPM and CWPP) and Microsoft Sentinel, developing … automated security workflows and playbooks using Azure Logic Apps to enforce security policy. Financial Operations (FinOps) and Cost Governance: Accountability for continuous Usage Optimisation, including reviewing resource sizing and implementing cost allocation policies. The engineer will enforce budget controls and governance via Azure Policy, working collaboratively with Finance and Procurement teams to ensure efficient and auditable use … of public funds. The role of an Interim Azure Cloud Operations Engineer is a highly specialised senior position that demands expertise across traditional operations, Site Reliability Engineering, and Financial Operations. More ❯

We are looking for a dynamic and experienced SOC Operations Manager to lead and shape the delivery of our Security Operations Centre (SOC) services. In this pivotal role, you will be responsible for ensuring the SOC operates at peak performance while driving continual improvement, with a strong focus on ITIL service management principles and full alignment with … CREST standards. Based on-site in Hemel Hempstead, this is an outstanding opportunity for a SOC Operations Manager with proven experience in monitoring and analysing security threats for multiple customers.You will oversee and mentor a skilled team of analysts, fostering a culture of continuous learning, champion best practices in threat detection and incident management, and play a key … vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews, and foster continuous improvement. Oversee full lifecycle of security incidents from detection to resolution. Ensure compliance with SLAs and escalation protocols. Maintain and enhance incident response plans and procedures. Direct threat intelligence collection and analysis. Manage vulnerability assessments More ❯

user-friendly app-based bank. The Technology team has end to end responsibility for all aspects of our Technology, from architecting the future, engineering solutions, and design, implementation of security requirements across internal projects and security operations. Atom is a digital Bank, which brings with it a set of risks from a security perspective. The role holder … is a key member of the Security Operations team to protect, detect, respond, and recover to Atom’s customers, brand, people, and reputation. And be an advocate of best-in-class security practice influencing at all levels, provide practical advice and guidance and remain approachable to all of Atom’s people. The role holder is a key … member of the Security team, responsible for protecting Atom and its customers, staying ahead of evolving threats, and ensuring regulatory compliance. A critical thinker, collaborative, and thrives in a fast-paced environment to make a tangible impact. The role holder will spend a significant amount of time with the Atom AI and Automation team to develop and deploy solutions More ❯

Security Analyst – 5-week Contract – Fully Remote My Customer is seeking a proactive and technically skilled Security Analyst to join their growing cybersecurity function. This role acts as the critical bridge between the SOC (Security Operations Centre) team and the wider management group — ensuring that security incidents are not only investigated and remediated effectively but … also translated into actionable insights and long-term improvements across the business. Skills required from the Security Analyst: Proven experience in a Security Analyst , Incident Response , or SOC environment (2nd line or similar). Strong hands-on experience in threat investigation, log analysis, and remediation . Good understanding of common security frameworks and practices (e.g., MITRE ATT … CK, NIST, ISO 27001). Familiarity with a range of security tools and platforms – experience with Microsoft Sentinel is desirable but not essential. Excellent communication skills – able to liaise confidently between technical and non-technical teams. A consultative mindset with the ability to translate technical findings into meaningful business recommendations. Key Responsibilities from the Security Analyst: Act as More ❯

Robert Half are working with a long standing client to recruit a Cyber Security Manager on a permanent basis. Key Responsibilities: Provide expert cyber security guidance, translating control requirements into technical standards and secure baselines. Support architectural governance, project reviews, and digital assurance. Maintain the technical security roadmap and drive improvements across tooling and capabilities. Operate and … optimise core security tools (Defender, Sentinel, Tenable, CASB) and track control adoption through KPIs and dashboards. Lead and document security initiatives, including hardening guides, architecture diagrams, and evidence packs. Chair the Cyber Security Working Group and support regional security leads. Assist the Security Architect with deploying new controls. Deliver incident response: triage escalations, coordinate crisis … manage multiple projects independently. Strong analytical and problem-solving ability, with clear and professional documentation skills. Commitment to ongoing professional development. Required Experience: Degree or equivalent experience plus relevant security certifications (Security+, CEH, CySA+, Cloud Security Engineer). Significant experience in cyber security operations or incident response. Hands-on expertise with Microsoft Defender, Sentinel, Tenable, CASB More ❯

IT Engineer - Microsoft Defender Security Operations 3 months London - onsite Inside IR35 - Umbrella only Role Overview We are seeking an accomplished IT Engineer with specialist expertise in the Microsoft Defender security ecosystem. The successful candidate will strengthen cyber defence across endpoints, identities, cloud services, and hybrid infrastructure. Key Responsibilities Security operations and threat defence Manage … and optimise Microsoft Defender across Endpoint, Identity, Cloud Apps, Office 365, and Cloud Security Posture Management. Monitor alerts and conduct threat investigations. Support incident response with containment and remediation. Conduct proactive threat hunting. Platform administration and governance Configure policy baselines and protection profiles. Maintain governance and compliance alignment. Lead version management and capability tuning. Maintain documentation for configurations and … processes. Stakeholder engagement and improvement Collaborate with Infrastructure, Cloud, and Cyber Security teams. Provide security insights to projects. Produce reporting for stakeholders. Identify automation and workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where your expertise will help … implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work closely with clients to strengthen their security operations and response capabilities. This is a technically advanced role that combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and … clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to analyse and visualise raw security data. Integrate third-party tools (firewalls, IAM, telemetry) into Sentinel. Use MITRE ATT&CK to anticipate and counter adversarial activity. Apply cost-optimisation principles (data tiering, filtering). Collaborate More ❯

day per week minimum *Tuesday* 4C are recruiting on behalf of our client for an experienced Technical Lead, to lead and manage our Infrastructure projects team, focusing on specific security remediation workstreams across our enterprise systems and shared infrastructure services. You will act as the primary technical lead and solutions architect for these workstreams ensuring scalable, secure and resilient … solutions that align with organisational objectives. This role will be within the infrastructure projects team and act as the technical lead for all security/vulnerability remediation activities of the current Windows endpoint and server estate, with an initial focus of Cyber Essentials compliance. The role will also be responsible for the allocation and management of tasks/work … packages for a team of Senior System Analysis who will also be focused on security/vulnerability remediation activities of the current Windows estate. The overall objective is to assist with security/venerability patching, applications packaging other areas of support for the University’s estate of approximately 4,500 Windows 11 devices, plus the University’s current More ❯

Infrastructure & Security Operations Lead Slough (Onsite with Flexibility) | Up to £70,000 Basic + £6k Car Allowance + Up to 20% Bonus An Infrastructure Manager role for a hands-on, multi-domain generalist who can take ownership of a live IT estate spanning network, infrastructure, and cybersecurity. You’ll be the operational glue – managing third-party vendors, owning … high-priority incidents, and driving platform consistency, performance, and security across a complex multi-site business. Ideal for someone calm under pressure, confident managing internal and external teams, and comfortable switching between technical detail and high-level oversight. What’s on offer: Up to 20% performance bonus, private healthcare, generous Christmas hamper, optional car allowance, and entry into a … company-wide partnership scheme after 12 months (profit share model). What we’re looking for: 5–10 years in infrastructure or IT operations, ideally in a multi-site environment Strong knowledge of Microsoft tech – Entra ID, Intune, Azure, Active Directory, Office 365 Skilled in DNS, VPNs, Citrix, scripting (PowerShell), monitoring, and firewall management Calm and structured under pressure More ❯

We're now recruiting a Head of Security Operations to support the Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bells systems and services. Key to this is maintaining the confidentiality, integrity and availability of the data that resides upon those systems click apply More ❯

secure and efficient services that directly impact staff and student experience. This role will be within the infrastructure projects team and be directly responsible for undertaking a range of security/vulnerability remediation activities of the current Windows endpoint and server estate, with an initial focus of Cyber Essentials compliance. Candidates may also be expected to provide general support … activities for the current Windows estate and related on-going Windows infrastructure maintenance tasks. The overall objective is to assist with security/venerability patching, applications packaging other areas of support for the University’s estate of approximately 4,500 Windows 11 devices, plus the University’s current Windows server estates. The initial engagement is for a fix term … part of a team Excellent communication, engagement, proactive, positive, can-do attitude Strong experience with MS Active Directory, SCCM, Intune AD Group Policy configuration and troubleshooting Solid understanding of security requirements for Windows endpoints/applications to meet Cyber Essentials compliance Specific experience of conducting security/vulnerability patching and remediation at scale Application packaging/deployment via More ❯

a lot to offer! Our new position of Lead SOC Analyst will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our clients critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. Come and make … Clearance for this role. What you'll be doing: Lead and empower a team of SOC analysts, providing mentoring, performance management, and career progression opportunities. Monitor, triage, and investigate security incidents on critical client infrastructure. Perform in-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain … improve and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical and non-technical audiences. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Represent the SOC within Stakeholders meetings. Ability to work in a hybrid approach from home and More ❯

We have opportunities for L1 SOC Analysts to be a part of our success and work with multiple, high profile clients. You should showcase your proficiency in a busy Security Operations Center with a technology-oriented attitude and the capacity to assume control. From a technical perspective we are using Microsoft Sentinel, Splunk and MISP Threat sharing so … days off. You do need to be eligible for DV Clearance for this role, and cannot start until your clearance is through. What you'll be doing: Monitor, analyse security alerts and events, conduct initial investigations, and determine the appropriate response. Raise complex incidents to Senior Analysts. Manage SOC Incident queues. Support the maintenance of monitored asset baselines of … informed defense. Participate in a team effort to guarantee that corporate data and technology platform components are shielded from known threats. Collaborate with team members to maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Aid the development and use of threat intelligence throughout the service. Ability to work shifts from our office More ❯

Infrastructure Security Engineer- Spanish speaking We are currently recruiting for a Infrastructure Security Engineer on a 6 month initial contract. Hybrid basis (2-3 days) They are looking for a candidate to take responsibility for leading, guiding, supporting and delivering secure architectural design for the group cyber security maturity programme. They are also looking for a candidate … who is able to provide advice and recommendations for the programme. Key Skills Support the integration of new cyber security technologies that meets the next generation threats and can be adopted by the group globally You will be required to travel to the local sites, data centre or multiple offices location in order to complete your tasks for off … the network countries. Support global cyber security team to ensure open Continuous Security Improvement Programme (CSIP's) are managed effectively up to closure Information Security Management System (Infrastructure Security Operations). Azure cloud infrastructure and configuration. System Centre Configuration Manager, Operations Manager and Virtual Machine Manager. Microsoft Exchange online Azure and on-premises Active More ❯

SC Clearance Required) – Multiple UK Locations (Shift Work) - £55,000 - £58,000 – Permanent Are you passionate about cybersecurity and ready to make a real impact? We’re expanding our Security Operations Centre (SOC) team and looking for Level 2 SOC Analysts to join us across multiple UK locations.This is a fantastic opportunity to work with enterprise-scale clients … You’ll be part of a collaborative team using cutting-edge technologies like Microsoft Sentinel, Splunk, and MISP Threat Sharing to protect critical infrastructure. Key Responsibilities: Monitor and analyse security alerts and events, conduct initial investigations, and escalate complex incidents. Manage SOC incident queues and support asset baseline maintenance. Prepare reports for technical and non-technical audiences. Collaborate on … intelligence development and incident documentation. Shift Pattern: 2 days (6am–6pm), 2 nights (6pm–6am), followed by 4 days off. What We’re Looking For: Experience working in a Security Operations Centre. Familiarity with Microsoft Sentinel and Splunk. Understanding of the MITRE ATT&CK framework. Basic knowledge of networking, client-server applications, firewalls, VPNs, and antivirus products. Entry More ❯

Technical Security Consultant When registering to this job board you will be redirected to the online application form. Please ensure that this is completed in full in order that your application can be reviewed. Come and join the Littlefish team! Work location: Nottingham or Sheffield: Hybrid, 1-2 office days per week. Salary: Up to: £55,000 Must be … people- we would love to hear from you. The role and what youll be getting up to on a day to day basis: Littlefish is looking for a Technical Security Consultant to help shape the future of our security services. This role combines deep technical expertise with strategic influence, focusing on innovation, automation, and AI-driven enhancements. Youll … work at the forefront of cyber defence, helping to design and deliver solutions that strengthen resilience and enable smarter security operations. You will: Architect & Design : Build and evolve secure frameworks using Microsoft Security (Defender, Sentinel, Purview, Entra) and integrate Qualys vulnerability management for continuous threat detection and remediation. Automate & Innovate: Lead the charge on automation (SOAR, IaC, workflow More ❯

are strengthening their cyber and cryptography capabilities to enhance the resilience of their platforms. As part of this expansion, they are seeking a Cryptography Analyst to join their established security operations function. THE BENEFITS Hybrid working for a better work-life balance Work with market-leading cryptographic technologies Exposure to enterprise-level environments and global teams THE CRYPTOGRAPHY … involves collaborating with multiple teams to maintain secure and compliant cryptographic services and to continuously improve processes and documentation. CRYPTOGRAPHY ANALYST ESSENTIAL SKILLS Strong background in cryptography or information security Hands-on experience managing HSMs (Thales, Entrust, or Gemalto) Proficiency with HSM monitoring tools and automation Coding skills in Python or similar scripting languages Knowledge of SSH key and … us to process and submit (subject to required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS: Cryptography Analyst, HSM Management, Python, Automation, Information Security, ITIL, Certificate Management, Key Management, Security Operations, Risk and Compliance, NSD More ❯

on a temporary basis until a permanent position can be filled. Scope and Objectives To Work alongside an existing team of Cyber Engineer and Cyber Analysts within an established Security Operations Centre to provide level 1 triage analysis duties which include: Monitor, triage and investigate Security Alerts on the various monitoring tools to identify potential Security Incidents. Escalate suspected Security Incidents to the Lead Analysts. Assist Lead Analysts and Incident Response team with investigation and containment. Maintain knowledge of technology and cyber threats by reading Threat Intel, reports, attending Threat Intel briefings and self-study. Perform analysis of Security Event Data/Security Alerts to support Customers in responding to Security … of the team to ensure best practice and that their knowledge is up to date. In association with other colleagues provide an on-Call service to investigate and remedy security and technical issues in relation to the SOC service on a 24/7 basis . Skills and Experience Working knowledge of Various Operating systems including Windows and Linux. More ❯

on a temporary basis until a permanent position can be filled. Scope and Objectives To Work alongside an existing team of Cyber Engineer and Cyber Analysts within an established Security Operations Centre to provide level 1 triage analysis duties which include: Monitor, triage and investigate Security Alerts on the various monitoring tools to identify potential Security Incidents. Escalate suspected Security Incidents to the Lead Analysts. Assist Lead Analysts and Incident Response team with investigation and containment. Maintain knowledge of technology and cyber threats by reading Threat Intel, reports, attending Threat Intel briefings and self-study. Perform analysis of Security Event Data/Security Alerts to support Customers in responding to Security … of the team to ensure best practice and that their knowledge is up to date. In association with other colleagues provide an on-Call service to investigate and remedy security and technical issues in relation to the SOC service on a 24/7 basis . Skills and Experience Working knowledge of Various Operating systems including Windows and Linux. More ❯

Information Security Officer Warrington/Hybrid £40 -£45K + Benefits An experienced Information Security Officer (ISO) is required for our client to lead and enhance the security posture across cloud-hosted SaaS products and internal systems. This is a key role within the organisation’s technical and governance team, ensuring the confidentiality, integrity, and availability of solutions … trusted by the transport sector. Key Responsibilities- Develop and implement the company’s information security strategy, policies, and standards. Conduct risk assessments, manage audits, and ensure compliance with GDPR and ISO 27001. Oversee security operations, including monitoring, threat detection, and incident response. Manage security tools and processes: SIEM (Azure Sentinel), firewalls, endpoint protection, and identity management. … Ensure secure configuration, patch management, and vulnerability remediation. Lead incident response and recovery, including investigations and post-incident reviews. Deliver security training and awareness programs across the business. Assess and monitor vendor and third-party security compliance. Skills/Technologies- 3–7+ years in cybersecurity, IT security, or risk management. Strong knowledge of cybersecurity frameworks (Cyber Essentials More ❯

The Information Security Analyst will play a critical role in safeguarding the organisation's systems and data, ensuring compliance with security policies and regulations. Based in Hatfield, this role is ideal for individuals passionate about the life science industry and technology. Client Details The hiring company is a medium-sized organisation operating within the life science industry, with … and excellence in its field. The company is known for its commitment to leveraging technology to drive forward its mission. Description Implement and maintain ISMS aligning with ISO27001 Ensure security controls are in-place based on ISO27001 and NIST As the regional security representative in the global Security/Technology project Lead/execute phishing campaign Conduct … vulnerability assessments and implement measures to mitigate potential risks. Involve in global security operations process, analysis and escalate security alerts/tickets from global SOC team Maintain and update security policies, standards, and procedures in alignment with industry regulations. Collaborate with cross-functional teams to ensure secure system designs and implementations. Provide training and support to More ❯

Organisation based in Stevenage, Hertfordshire is currently looking to recruit 8x SOC Threat Detection Analyst subcontractors on an initial 6 month contract. This role can start on an SC Security Clearance basis, however DV Clearance will be required down the line. This role would suit someone from a Cyber Security Analyst, SOC Analyst or Threat Detection Analyst background. … x 8 = 28 hours per weekInitially may not be expected to do nights until team grows. SOC Threat Detection Analyst Job Description: An opportunity has arisen in the cyber security operations centre (SOC) within Information Management (IM) for a SOC Threat Detection Analyst. Supporting the Senior SOC analysts in assisting IM meet the challenges and demands of countering … the Cyber Threat. The successful applicant will drive a proactive ethos in an ever-changing cyber security environment and provide robust threat detection and analysis within the 24x7 SOC. Responsibilities: To support the SOC Manager in assisting Information Management UK meet the challenges and demands of countering the Cyber Threat. Support for the operational functions of the UK SOC. More ❯