51 to 75 of 100 Security Operations Centre Jobs in England

Are you looking for an exciting new opportunity? Join a trusted managed service and security provider that has been empowering businesses to work smarter with technology since 2000. With a focus on cyber security, connectivity, cloud and communications, enhanced by AI, automation and human-centric design, they continue to drive digital transformation that accelerates success. Their CREST and … CHECK-accredited cyber security division, alongside a 24/7 UK-based Security Operations Centre, supports a wide range of customers, from financial institutions and retail giants to NHS trusts, educational institutions and major brands like Greene King and NatWest. With over 30 locations across the UK, 950+ trained engineers and a team of more than … cyber incidents, offering reassurance and expert guidance Produce detailed incident reports with root cause analysis and actionable recommendations Perform forensic and log analysis using SIEM, EDR, SOAR, and other security tools Collaborate across teams to enhance response playbooks and internal processes Stay informed on emerging threats and tactics to strengthen response strategies Skills/Must have: Proven experience leading More ❯

Senior IR-SOC Engineer - Elite Law Firm - London Are you a security professional looking to step into a high-profile, enterprise environment? One of the world's most prestigious law firms is seeking a Senior Incident Response & SOC Engineer to join its global Information Security team, based in London . This is a rare opportunity to play a …/7 SOC , handling incident response and contributing to the development of detection, automation, and reporting tools. Key Responsibilities: Lead and support incident response (IR) and investigation of security threats across a complex enterprise estate. Manage, tune, and develop SIEM and EDR technologies to enhance threat detection and response capabilities. Implement and refine playbooks , automations , and alerting rules in … collaboration with security partners. Contribute to threat hunting and proactive detection strategies. Produce actionable reporting and metrics for stakeholders, including executive leadership. Desired Experience: Proven experience working in or alongside a 24/7 Security Operations Centre . Strong technical exposure to SIEM (ideally Splunk), EDR (CrowdStrike preferred), and SOAR tools. Expertise in incident handling , threat More ❯

Senior IR-SOC Engineer - Elite Law Firm - London Are you a security professional looking to step into a high-profile, enterprise environment? One of the world’s most prestigious law firms is seeking a Senior Incident Response & SOC Engineer to join its global Information Security team, based in London . This is a rare opportunity to play a …/7 SOC , handling incident response and contributing to the development of detection, automation, and reporting tools. Key Responsibilities: Lead and support incident response (IR) and investigation of security threats across a complex enterprise estate. Manage, tune, and develop SIEM and EDR technologies to enhance threat detection and response capabilities. Implement and refine playbooks , automations , and alerting rules in … collaboration with security partners. Contribute to threat hunting and proactive detection strategies. Produce actionable reporting and metrics for stakeholders, including executive leadership. Desired Experience: Proven experience working in or alongside a 24/7 Security Operations Centre . Strong technical exposure to SIEM (ideally Splunk), EDR (CrowdStrike preferred), and SOAR tools. Expertise in incident handling , threat More ❯

Ready to leverage your technical skills and knowledge in Cyber Security? Are you passionate about identifying, investigating, and resolving security incidents? We have a fantastic opportunity for a CSOC Analyst and make a meaningful impact in our client's Cyber Security Operations Centre (CSOC)! Be an active player within a multi-disciplined CSOC team and … work with cutting-edge security tools and technologies. Responsibilities: Work within a multi-disciplined CSOC team identifying, owning, progressing, and resolving security incidents. Perform the prompt and effective triage and investigation of security events and incidents applying sound problem-solving methods to determine scope, urgency, and potential impact. Provide technical support for the identification and response to … events or incidents of a suspicious or malicious nature, and apparent security breaches. Work with internal and external stakeholders to resolve computer security incidents and vulnerability compliance. Drive customer satisfaction and continuously seek to improve operational performance. Maintain a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs, and vulnerabilities. Skills/Must More ❯

combine cutting-edge automation with expert insight to safeguard mission-critical systems. Role Snapshot We’re looking for an Entry-Level Cybersecurity Analyst to join our 24/7 Security Operations Centre. This is your chance to launch a career in cyber defence—work alongside senior analysts, learn on the job, and help keep our clients safe. Your … e.g. Splunk, QRadar) and flag suspicious activity. Incident Triage: Conduct initial investigations and escalate confirmed threats. Vulnerability Testing: Assist with vulnerability scans and log reviews. Tool Support: Help configure security tools (firewalls, EDR agents) under guidance. Reporting: Document findings clearly and prepare basic incident summaries. Ongoing Learning: Join regular training sessions and contribute to team knowledge-shares. What We … re Looking For Bachelor’s degree in Cybersecurity, Computer Science, IT, or a related field (or equivalent practical experience). Basic understanding of networking (TCP/IP, firewalls) and security principles (threat detection, risk management). Familiarity with at least one security tool or willingness to learn (SIEM, EDR, vulnerability scanners). Strong analytical mindset and attention to More ❯

Security Analyst, Security Operations and Incident Response Meta is seeking a Security Analyst to join the Global Security Operations and Incident Response team. The Analyst will serve on the front lines of Meta's Security team and will lead and support security investigations across the company's global infrastructure as well as … respond to escalations from the Tier1 team. The analyst will leverage an armory of tools to investigate and respond to both external and internal security threats.Utilizing Meta's tooling, you will monitor security events in real-time, assess external and internal threats, and provide accurate and timely response. You will collaborate closely with technical teams, with a broad … set of skills to tackle the panoply of unique security challenges that we encounter at Meta scale. Security Analyst, Security Operations and Incident Response Responsibilities Investigate and respond to external and internal cybersecurity threats in a timely manner while communicating clearly and proactively until remediation. Act as an escalation point for Tier1 investigations, contribute to the More ❯

The team you'll be working with: Technical Security Service Delivery Manager We are currently recruiting for a dynamic Technical Security Service Delivery manager to join our growing Security Operations Centre business. About Us NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and … Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to do great things. We believe that by bringing everyone together … and experience, you will: Act as a bridge between the Customer and the Operational Delivery Teams Act as a primary escalation point of contact to the customer Coordinate the Security Operations, Incident Response Teams and other technical resources needed to troubleshoot major incidents to determine the affected/vulnerable systems, affected/vulnerable users Identify any business areas More ❯

The team you'll be working with: SOC Technical Security Service Delivery Manager We are currently recruiting for a dynamic Technical Security Service Delivery manager to join our growing Security Operations Centre business. This vacany is hybrid variabe based in Glasgow. About Us NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to … and experience, you will: Act as a bridge between the Customer and the Operational Delivery Teams Act as a primary escalation point of contact to the customer Coordinate the Security Operations, Incident Response Teams and other technical resources needed to troubleshoot major incidents to determine the affected/vulnerable systems, affected/vulnerable users Identify any business areas More ❯

Security Engineer, AWS SOC Incident Response Job ID: Amazon Data Services UK Limited The Amazon Web Services Security Operations Center AWS-SOC Team manages security issues across the globe. The team is looking for a highly motivated, technically inclined individual to work as a Security Engineer. A successful candidate will need to embody our … will work from the LHR14, London SOC location. You need to be comfortable working in a dynamic technical, and at times, ambiguous environment. Key job responsibilities - Monitor and analyze security alerts from various sources to detect and respond to potential threats in real-time. - Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. … Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. - Maintain and optimize security information and event management systems and other security tools used in the SOC. - Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide regular reports on security posture. A day in the life More ❯

digital services, and software development, with a presence in nearly 30 countries and a team of over 51,000 professionals. This is your opportunity to take ownership of critical security tooling that protects national infrastructure. You'll work alongside cross-functional teams to enhance analytics and monitoring capabilities, playing a key role in the expansion of a high-impact … cybersecurity function. Step into a role where your expertise supports national resilience, apply now! Responsibilities: Lead security activities for major client engagements, managing both internal and external stakeholders. Design, document, and implement security monitoring tools/platforms that integrate with the Security Operations Centre (SOC). Identify cyber risks, evaluate their impact, and develop effective … mitigation strategies. Collaborate with Security Architects on solution design for SOC/SIEM tools. Develop and maintain security strategies in line with business objectives. Innovate and apply technical solutions to meet client requirements and security challenges. Skills/Must have: Expertise in Splunk; ideally Splunk Cloud Certified Admin or Splunk Enterprise Certified Admin (strong experience considered if More ❯

a profound understanding of cybersecurity threats and solutions. The successful candidate will be responsible for leading a team of cybersecurity engineers, ensuring compliance with industry standards, and implementing robust security measures. If you are passionate about cybersecurity and thrive in a collaborative environment, we invite you to join our team and contribute to our mission of maintaining a secure … and resilient IT infrastructure. What you'll be doing: Manage and lead a team of cybersecurity engineers. Work closely with cyber personnel in other countries. Oversee the Security Operations Centre (SOC) function. Adhere to Service Level Agreements (SLAs) and Key Performance Indicators (KPIs). Plan, implement, and oversee cybersecurity changes in a structured manner. Oversee security incident management and resolution processes. Maintain and update documentation of security incident playbooks, common practices, process flow diagrams, and the knowledge base. Manage workloads and projects, ensuring they are completed on time and within budget. Report to senior management on the status of infrastructure projects and operations. Implement and maintain industry standard cybersecurity controls, testing and evidencing the More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

cyber incident investigations. Technical degree or equivalent knowledge of networks, software, and hardware. Experience in log analysis and digital forensics. Proven response experience to cyber-attacks. Experience within a Security Operations Centre. Fluent in English, both written and spoken. Excellent presentation and analytical skills. Preferred Skills and Qualifications Understanding of MITRE ATT&CK techniques and ability to explain More ❯

Cyber Security Engineer/Network Engineer who has experience working in cyber security, system engineering, or a similar role, with hands-on knowledge of security tools such as anti-malware, content filtering, SIEM and threat detection solutions is required to join our team at a well-established charity. SALARY: £45,000 - £48,000 per annum + Excellent … JOB TYPE: Full-Time, Permanent WORKING HOURS: 35 Hours per Week, Monday - Friday, 9:00am - 5:00pm JOB OVERVIEW We have a fantastic new job opportunity for a Cyber Security Engineer/Network Engineer who has experience working in cyber security, system engineering, or a similar role, with hands-on knowledge of security tools such as anti … malware, content filtering, SIEM and threat detection solutions. Working as the Cyber Security Engineer/Network Engineer which the organisation calls a Security Engineer, you'll be at the frontline of the cyber defence, working closely with the Security Operations Manager to monitor, maintain and enhance security tools and services. You'll collaborate with external More ❯

CyberSecurity Operations Engineer We are excited to be recruiting for a Operations Engineers role working for an industry-leading cybersecurity company based in London, providing the opportunity to work remotely. Already well-established within the cyber-security sector, they have experienced rapid sales in 2023 & 2024, which has opened up several career opportunities for cybersecurity professionals. This … for progression and an exciting career trajectory ahead. Location: Remote - Must be able to travel into London when needed Salary: £35,000 - £50,000 per annum Requirements for CyberSecurity Operations Engineer: Ideally, you will have at least one year of commercial experience in a client-facing role with a cybersecurity focus- i.e. Consultant, Account Manager, Customer Support, Service Delivery … a closely related subject, from a top-ranked University You achieved at least AAA at A Level or equivalent UCAS points Strong knowledge within cybersecurity Good knowledge of network security Any experience in SOC beneficial Brilliant communication skills – this role is going to involve interacting with both internal colleagues and external clients so this is key You love the More ❯

will manage processes to detect, prevent and correct vulnerabilities to devices in a customers environment. The SC-cleared analyst will aim to mitigate business risks arising from both regulatory & security noncompliance. What youll do Integrate with customer and third-party security operations centre reporting as well as integration with security incident procedures Build, manage and … Lifecycle Management Product Lists (VLMPLs) for all supported customers Responding to and helping to co-ordinate the response to Major Vulnerability incidents Sending out notifications and communications related to security vulnerabilities that affect multiple technologies Creation and ownership of vulnerability incidents providing a Start to Finish level of incident management Proactive identification of vulnerabilities Provide supporting information on potential … the VLMPLs Occasional site visits to meet stakeholders and to improve customer relationships Provide professional, business friendly communications, translating complex matters for various audiences Research the latest information technology security bulletins for Microsoft products and 3rd party applications Provide a repeatable process for assessing vulnerabilities detected through multiple sources within a business context, determining recommendations for how the vulnerabilities More ❯

will manage processes to detect, prevent and correct vulnerabilities to devices in a customers environment. The SC-cleared analyst will aim to mitigate business risks arising from both regulatory & security noncompliance. What youll do Integrate with customer and third-party security operations centre reporting as well as integration with security incident procedures Build, manage and … Lifecycle Management Product Lists (VLMPLs) for all supported customers Responding to and helping to co-ordinate the response to Major Vulnerability incidents Sending out notifications and communications related to security vulnerabilities that affect multiple technologies Creation and ownership of vulnerability incidents providing a Start to Finish level of incident management Proactive identification of vulnerabilities Provide supporting information on potential … the VLMPLs Occasional site visits to meet stakeholders and to improve customer relationships Provide professional, business friendly communications, translating complex matters for various audiences Research the latest information technology security bulletins for Microsoft products and 3rd party applications Provide a repeatable process for assessing vulnerabilities detected through multiple sources within a business context, determining recommendations for how the vulnerabilities More ❯

for a highly skilled and technically proficient Senior Cybersecurity Risk Analyst to join our team on an interim basis. This role is critical in identifying, assessing, and managing information security risks across the organization. The ideal candidate will have a strong technical background, the ability to translate threats into business risks, and experience working in fast-paced environments. Key … Responsibilities - Conduct in-depth security risk assessments across systems, applications, and infrastructure. - Identify and evaluate technical and operational risks, vulnerabilities, and control gaps. - Translate complex technical threats into clear, actionable business risks. - Maintain and update the Cybersecurity Risk Register. - Produce detailed risk assessment reports and present findings to stakeholders. - Collaborate with IT, SOC, and business units to ensure risks … are understood and mitigated. - Provide technical escalation support in the absence of a cybersecurity specialist, particularly in coordination with the Security Operations Centre (SOC). - Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). - Review security aspects of tenders and conduct third-party/vendor risk assessments to ensure alignment with organisational security More ❯

Are you an Information Security leader who could put their mark on the work at one of the UK's largest charity's? British Heart Foundation (BHF) is undergoing a digital transformation and seeking an Information Security Operations Manager, with excellent team management experience, to lead on implementing security protocols and procedures to ensure the safety … of BHF information. Joining a dynamic and growing information security team at an exciting point in the charities history youll collaborate with teams across British Heart Foundation (BHF) to protect BHFs objectives and integrity. BHF operates a hybrid security operations model leveraging an outsourced MDR service. Youll be responsible for our daily working relationship with the service … provider and will lead a team of security professionals, management of a Security Operations Centre (SOC), and coordinate responses to security incidents. Youll also collaborate with various teams to protect BHF's objectives and integrity. About you With previous line management experience, th is opportunity would suit a Security Operations professional who excels More ❯

Cyber security is critical to every organisation. We are shaping strategies and transforming the management of cyber risk and we need you to join us. You'll build strong relationships as one of the areas of our cyber practice with over 450 extremely talented individuals in the UK alone, as part of a Technology and Transformation practice of … people. Cyber security is a business problem, not just a technical problem, and we need people with a diverse array of backgrounds and skills sets to help our clients solve it. Join us and you will help our clients solve the latest cyber security challenges, in a business with very significant growth ambitions enjoying the kind of professional … action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity We are a team with a passion and curiosity, for cyber security and technology, comfortable with operating in fast-paced environments defining and leading the development of cyber strategy, cyber programmes and managing cyber risk. We are looking for likeminded individuals More ❯

Security Sale Specialist Salary: £75k/£80k basic (£150k/£160k OTE) Location: Remote (1x visit per month to London or Newark) Role To act as a security sales specialist and sales lead for cybersecurity services, including Managed Security Operations Centre (SOC), Security Information and Event Management (SIEM), and Secure Access Service Edge (SASE … solutions. You will support the wider sales team in building pipeline and closing opportunities, contributing to the growth of the Security Services practice and improving customer cybersecurity postures. Responsibilities To assist all sales teams in driving, securing, and delivering secure connectivity solutions, proposals, RFPs and RFIs. Work with Sales and Sales leaders to increase the pipeline through identifying white … within the customer base. Drive and own BDR activity with Digital Space's strategic vendors. Ensure continuous engagement on Whitespace opportunities through ADP planning, representing the practice as the Security SME. Lead and own key tender submissions in secure connectivity and network bids, own contract negotiations, and development of customer engagements. Skills Required Proven track record in security More ❯

Security Sale Specialist Salary: £75k/£80k basic (£150k/£160k OTE) Location: Remote (1x visit per month to London or Newark) Role To act as a security sales specialist and sales lead for cybersecurity services, including Managed Security Operations Centre (SOC), Security Information and Event Management (SIEM), and Secure Access Service Edge (SASE … solutions. You will support the wider sales team in building pipeline and closing opportunities, contributing to the growth of the Security Services practice and improving customer cybersecurity postures. Responsibilities To assist all sales teams in driving, securing, and delivering secure connectivity solutions, proposals, RFPs and RFIs. Work with Sales and Sales leaders to increase the pipeline through identifying white … within the customer base. Drive and own BDR activity with Digital Space's strategic vendors. Ensure continuous engagement on Whitespace opportunities through ADP planning, representing the practice as the Security SME. Lead and own key tender submissions in secure connectivity and network bids, own contract negotiations, and development of customer engagements. Skills Required Proven track record in security More ❯