101 to 125 of 165 Security Operations Jobs in London

and hybrid working Innovation & Change: Be a key voice in digital transformation, performance intelligence, and process improvement Desirable Qualifications BCS Practitioner or equivalent in Data Protection, FOIA, or Information Security Degree or professional qualification in an information, business, or compliance-related subject Experience with reporting platforms, analytics tools, or CRM systems Background in change management and digital optimisation Whats … United Kingdom 3 weeks ago London, England, United Kingdom 1 week ago Wembley, England, United Kingdom 4 months ago Barnet, England, United Kingdom 4 months ago IT Service and Operations Manager/Head of IT Service and Operations London, England, United Kingdom 1 week ago Head of Technology Services, RAVENSBOURNE UNIVERSITY LONDON London, England, United Kingdom 6 days … ago Team Leader, Error Corrections SS&C Financial Services International - PA25SJPRQ3004 Basildon, England, United Kingdom 2 weeks ago Information Security Manager: Governance, Risk and Compliance (GRC) Information Security Manager: Security Operations London, England, United Kingdom 1 day ago Finance Crime Compliance Risk Assessment Lead City Of London, England, United Kingdom 65,000.00-80,000.00 4 weeks More ❯

Acquisition and Management Services. Our Contingent Workforce Solutions (CWS) service, partner with Deutsche Bank to support contingent recruitment processes. On behalf of Deutsche Bank, we are looking for a Security Solution Architect for a (Duration) month contract based in the banks London office on a hybrid working model of 3 days per week in the office and 2 from … home. Deutsche Bank is a global banking business with strong roots in Germany and operations in over 70 countries. Their large but focused footprint gives an established position in Europe plus a significant presence in the Americas and Asia Pacific. Together were sharing new perspectives and transforming what it means to be a bank. The Chief Security Office … CSO) comprises the Chief Information Security Office (CISO) and the Corporate Security unit. The CISO organization guarantees information security for Deutsche Bank. Deutsche Bank is looking for a Senior Solution Architect to lead the design and implementation of solution across the Insider Risk Management (IRM) and Ops tools. This is a strategic role focussed on shaping the More ❯

protection technologies, ensuring device compliance, threat detection, and automated response capabilities. The role combines strong technical leadership, deep expertise in endpoint protection platforms, and a collaborative approach to operationalize security across all user and device touchpoints globally. Key Responsibilities: Endpoint Security Strategy & Engineering: Define and lead the secure device strategy, ensuring strong protection across all device types and … Ensure devices meet internal policies and external regulatory standards through automation and audit-readiness. Drive policy enforcement through scalable automation and end-user experience design. Manage the lifecycle of security configuration across device fleets globally. Collaboration & Stakeholder Engagement: Work closely with IT support, mobility, infrastructure, and security operations teams. Partner with cyber, legal, and compliance stakeholders to … define and enforce device governance policies. Serve as a key contributor to global security programs and strategic initiatives. Leadership & Operational Excellence: Lead a global engineering team responsible for endpoint protection tooling and device compliance. Foster a culture of security, automation, transparency, and continuous improvement. Define and track SLAs, SLOs, and KPIs related to device health, compliance, and risk. More ❯

Senior Cyber Security Analyst (6 months contract) Save job Join a leading global investment bank as a Senior Cyber Security Analyst, where you'll play a critical role in safeguarding a world-class financial institution. What Youll Do: Responsible for end-to-end incident response operations, including triage, containment, root cause analysis, and post-incident reporting. Perform … playbooks, runbooks, and standard operating procedures to stay aligned with evolving threats and compliance requirements. Hands on with scripting/python to automate and improve the efficiency of the security function. Conduct in-depth technical security investigations and define appropriate mitigation strategies. What Youll Bring: Proven experience in security operations, with strong knowledge of networking, Windows … and Linux Hands-on with security automation; scripting in Python is a strong advantage. Solid understanding of incident response processes, threat intelligence, and security monitoring. Familiarity with frameworks such as MITRE ATT&CK, NIST, and OWASP. Exposure to secure coding practices and DevSecOps environments is a strong plus (not mandatory) Experience working in large enterprise environments and supporting More ❯

will provide high quality central services to the Improbable group and our network of venture businesses through the leadership and management of the IT Support, Tech Ops, and Technical Security functions. Your role will be to ensure that all company services are deployed, managed, and supported at the highest levels of compliance and service. Lead the internal IT support … team in our day-to-day IT operations and manage the planning, implementation, development, monitoring, maintenance, upgrading and support of organisational IT infrastructure, networks, systems and applications. Lead Technical Security operations and overseeing the planning, implementation, and maintenance of security infrastructure, systems, and applications. Maintain security controls aligned with recognised international standards, and conduct internal … and external audits. Own our service catalogue, internal processes, incident management and security controls. Manage IT budgets and ensure cost-effective allocation of technology resources and overseeing procurement. Ensure our suppliers and vendors are appropriately assessed against our security controls frameworks and comply with our security standards and any certification claims. We'd like to hear from More ❯

team provides timely , comprehensive intelligence that empowers high-fidelity detections, identifies known and emerging threats, and equips our customers with the knowledge to act decisively. Via our industry-leading security operations platform, GreyMatter , we produce operational, strategic, and tactical intelligence that delivers actionable insights into threat actor tactics, techniques, and procedures . Beyond this, we act as a … turnaround and long-form customer requests for information, including in incident response scenarios. Publish emergency customer advisories to alert on impactful developments requiring immediate action. Carry out research and operations on the clear, deep, and dark web , including active threat actor elicitations. Propose and author extended original research projects to strengthen ReliaQuest as a trusted voice and leader within … communication Experience working in online intelligence investigations and analysis, including strong OSINT skills What makes you uncommon? Understanding of cybersecurity and IT disciplines including networking, operating systems, authentication protocols, security incident response , and enterprise technical security solutions (SIEM, IDS/IPS, firewall solutions, offensive security tools ) Basic knowledge of Linux/Unix operating systems Certifications such as More ❯

Responsibilities (Text Only) - Architect and Develop Internal Security Tooling: Design, implement, and evolve secure systems architecture that supports the Regulated Industries internal tooling platform. Leverage automation and intelligent workflows to enhance observability, policy enforcement, and team productivity. - Implement AI-Powered Security Workflows: Integrate AI/ML agents-including Microsoft Security Copilot and LLM-based copilots-into operational … pipelines for tasks such as incident triage, control validation, and telemetry summarization. Ensure models and agents are used securely and responsibly. - Orchestrate Security Automation: Lead the design and development of automation solutions across platforms (Azure Monitor, Defender XDR, Entra, Purview). Create scripts, APIs, and orchestrations that reduce manual effort and improve speed and accuracy in security operations. … Tell Stories with Data: Use tools like Jupyter Notebooks, Kusto Query Language (KQL), and Python to query and visualize large-scale security datasets. Translate telemetry into insights and share narratives that influence decision-making across engineering and leadership teams. - Support Compliance and Audit Readiness: Build and maintain solutions that automate evidence gathering and real-time compliance monitoring across frameworks More ❯

will provide high quality central services to the Improbable group and our network of venture businesses through the leadership and management of the IT Support, Tech Ops, and Technical Security functions. Your role will be to ensure that all company services are deployed, managed, and supported at the highest levels of compliance and service. Your Opportunity: Lead the internal … IT support team in our day-to-day IT operations and manage the planning, implementation, development, monitoring, maintenance, upgrading and support of organisational IT infrastructure, networks, systems and applications. Lead Technical Security operations and overseeing the planning, implementation, and maintenance of security infrastructure, systems, and applications. Maintain security controls aligned with recognised international standards, and … conduct internal and external audits. Own our service catalogue, internal processes, incident management and security controls. Manage IT budgets and ensure cost-effective allocation of technology resources and overseeing procurement. Ensure our suppliers and vendors are appropriately assessed against our security controls frameworks and comply with our security standards and any certification claims. We'd like to More ❯

Join a leading global investment bank as a Senior Cyber Security Analyst, where you'll play a critical role in safeguarding a world-class financial institution. What You'll Do: Responsible for end-to-end incident response operations, including triage, containment, root cause analysis, and post-incident reporting. Perform threat hunting and proactive detection using frameworks like MITRE … playbooks, runbooks, and standard operating procedures to stay aligned with evolving threats and compliance requirements. Hands on with scripting/python to automate and improve the efficiency of the security function. Conduct in-depth technical security investigations and define appropriate mitigation strategies. What You'll Bring: Proven experience in security operations, with strong knowledge of networking … Windows and Linux Hands-on with security automation; scripting in Python is a strong advantage. Solid understanding of incident response processes, threat intelligence, and security monitoring. Familiarity with frameworks such as MITRE ATT&CK, NIST, and OWASP. Exposure to secure coding practices and DevSecOps environments is a strong plus (not mandatory) Experience working in large enterprise environments and More ❯

Description We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. We have an exciting opening for a skilled and experienced L2 Insider Threat- IRM Analyst. As part of the Cyber Defence department, this role will investigate Insider Risk Management (IRM) cases … that have been escalated by our L1 Insider Threat team. Reporting to the Insider Threat - IRM Operations Manager, the L2 Insider Threat- IRM Analyst role is suited to someone who has strong Microsoft Purview DLP and Insider Risk Management (IRM) analyst experience. It is a business facing role and requires working proactively with stakeholders and colleagues to investigate Insider … other data protection devices. Help Identify trends and drive requirements aimed at improving and enhancing existing IRM detection policies. Work closely with Cyber Defence teams such as the Global Security Operations Centre as well as Legal, Privacy and HR teams if necessary, during investigations and incidents. Prepare detailed reports on security incidents, investigations, and mitigation efforts. Contribute More ❯

Role We are looking for a passionate and experienced Vulnerability Lead to develop and oversee our vulnerability management program. This role offers a unique chance to establish a vital security function, define best practices, and improve our security posture. The role involves managing and enhancing the vulnerability management lifecycle, including defining scanning strategies, triaging risks, overseeing remediation, and … documentation to meet compliance standards like ISO 27001, PCI DSS, SOC 2, and NIST. Define scanning schedules, thresholds, and automation opportunities. Collaborate with DevSecOps and product teams to integrate security into CI/CD pipelines. Assess new tools and processes to improve automation and risk tracking. Essential Skills and Experience: Self-sufficient and a trusted escalation point. Understanding of … systemic risk and prioritization. Experience in vulnerability management, security operations, or infrastructure security (5+ years). Familiarity with vulnerability management lifecycle, tools, and platforms. Ability to coordinate remediation activities effectively. Knowledge of CVSS, OWASP Top 10, and MITRE ATT&CK. Comfort working with cloud environments, containers, and modern infrastructure. Organized with strong reporting skills. Ability to translate More ❯

day-to-day delivery of IT services across both shared and in-house environments, with a strong focus on ITIL disciplines - Incident, Problem, Change, and Asset Management - and Cyber Security risk management . The postholder will act as the customer-facing lead for operational IT, ensuring services are reliable, secure, and responsive to user needs. Key Responsibilities Manage the … Problem , Change , and Asset Management Act as the operational interface with the other organisation (the shared service provider) Maintain the CMDB and configuration item lifecycle tracking Lead on cyber security risk assessments , patch assurance , vulnerability management , and coordination with SOC/XDR providers Ensure compliance with cyber and data protection standards (e.g. Cyber Essentials) Monitor service level agreements (SLAs …/in-house/outsourced environment Deep knowledge of ITIL v4 practices, especially Incident, Problem, Change, and Asset Management Experience with service desk systems and CMDBs Familiarity with cybersecurity operations (e.g., vulnerability scanning, patch management, access reviews) Strong stakeholder engagement and supplier management skills Ability to maintain service performance under pressure and manage conflicting priorities A pragmatic, delivery-focused More ❯

An impressive multinational Telecoms business is looking for an accomplished Senior Information Security Engineer to join its team based in London. Please note, this role is hybrid so you will be required to work in the office 3 days per week. In this role of significant responsibility, you will operate at the cutting edge of technology, protecting the business … from cyber threats. You will design, implement, and maintain security solutions that protect networks, systems, and data. You will identify vulnerabilities, harden systems, respond to threats, and ensure compliance with security best practices and industry standards, including ISO27001. In order to be suitable for this role you must have demonstrable hands-on expertise with monitoring and securing enterprise … vulnerability management, network security, cloud security (AWS & Azure), firewalls and intrusion detection systems. You will monitor networks and systems for security breaches, enhance the performance of SecOps tools, perform regular threat analysis and act as a subject matter expert for mitigating cyber risks. This is an outstanding opportunity for an accomplished Information Security Engineer to join More ❯

Splunk is here to build a safer and more resilient digital world. The world's leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. While customers love our technology, it's our people that make Splunk stand out as an amazing career destination and why we've won so many awards … IT industry, with a focus on strategic accounts. Technical Skills: Proficiency in Splunk products or similar, data analytics, and operational intelligence. Strong knowledge of IT infrastructure, cloud technologies, and security protocols. Domain knowledge : Either, security operations, Observability, DevOps, IT operations, big data or log management. Communication: Excellent verbal and written communication skills, with the ability to More ❯

We are looking for a seasoned, detail-oriented Security Incident Manager to join our security team. The Cybersecurity Incident Manager is a senior role responsible for managing, documenting and communicating enterprise-level cybersecurity incidents. This crucial role involves the careful documentation and management of security incidents, ensuring our response is thorough and aligned with compliance and regulatory … requirements.The Security Incident Manager will act as a key liaison between the central Security Operations Center (SOC) and internal stakeholders, facilitating clear communication with senior leadership and driving incident resolution. This individual will drive teams to ensure timely detection, containment, eradication, and recovery from cyber threats while minimizing operational disruptions. Your Impact Incident Response Leadership Lead all … and Coordination Collaborate with Corporate CSIRT, Incident Command, Cyber legal, IT, risk management, Data Protection and other departments to ensure a unified response. Engage with third-party vendors, Managed Security Service Providers (MSSPs), and law enforcement when necessary. 4. Preparation and Readiness Develop, maintain, and test incident response plans, playbooks, and escalation procedures. Conduct regular tabletop exercises and simulations More ❯

Social network you want to login/join with: We are looking for a seasoned, detail-oriented Security Incident Manager to join our security team.The Cybersecurity Incident Manager is a senior role responsible for managing, documenting and communicating enterprise-level cybersecurity incidents. This crucial role involves the careful documentation and management of security incidents, ensuring our response … is thorough and aligned with compliance and regulatory requirements. The Security Incident Manager will act as a key liaison between the central Security Operations Center (SOC) and internal stakeholders, facilitating clear communication with senior leadership and driving incident resolution. This individual will drive teams to ensure timely detection, containment, eradication, and recovery from cyber threats while minimizing … and Coordination Collaborate with Corporate CSIRT, Incident Command, Cyber legal, IT, risk management, Data Protection and other departments to ensure a unified response. Engage with third-party vendors, Managed Security Service Providers (MSSPs), and law enforcement when necessary. 4. Preparation and Readiness Develop, maintain, and test incident response plans, playbooks, and escalation procedures. Conduct regular tabletop exercises and simulations More ❯

Palo Alto XSOAR Platform Engineer - Banking Client - London, Paris, Amsterdam or Brussels 6-12 month contract Hybrid: 8 days onsite per month (mandatory) Rate: 500 - 800 per day Security Operations Engineer (SOAR)/CISO Platform Security Your main task will be to maintain the security orchestration and automation platform. This platform is used by the security operation centre to manage security alerts. Our mission is to maintain and enrich this platform by integrating it with various tools. Depending on the domain and product these tasks can include: Day-2-day configuration updates to implement (customer) change requests following the clients formal change process. Check the compliance of the configuration and implementation against defined technical … security standards and product baselines. Problem resolution and support. Work together with other technical teams on 'operational incident responses'. As the process owner, initiate any configuration review/recertification process and work with the other stakeholders (business and technical) to periodically review product configurations and implementation to validate the accuracy and correctness. KPI delivery to report on the More ❯

Cyber Security SOC Support Analyst Location: London Hybrid (working from home 3 days per week) Salary: £30-35K plus excellent benefits package Company Overview Our client is an award-winning Managed Service Provider (MSP) offering bespoke IT solutions and specialist Cyber Security services to businesses across London. This is an exciting opportunity to further your career in … Cyber Security, joining a thriving and supportive team within a leading MSP. Key Requirements Essential Experience: Minimum 1 year proven experience in a Tier 1 Cyber Security SOC Support Analyst role Prior experience in a Managed Service Provider (MSP) environment preferred Working knowledge of Microsoft Defender XDR and Microsoft Sentinel (SIEM) Hands-on experience with the Microsoft Defender … suite , including Endpoint Detection and Response Solid understanding of Microsoft 365 Cloud Technologies , particularly from a threat landscape perspective Certifications: SC-200 Microsoft Certified: Security Operations Analyst Associate SC-900 Microsoft Certified: Security, Compliance and Identity Fundamentals Personal Attributes: Highly motivated , with a can-do attitude Exceptional attention to detail and communication skills Client-focused with a More ❯

Security Engineer | Hybrid | London | 6 – Months My client is looking for a Security Engineer to join their cybersecurity and SecOps division. The successful candidate with be maintaining and improving security infrastructure, while also maintaining BAU handling cybersecurity related tickets. The client doesn't use the traditional Microsoft suite and uses Google workspace for cloud-based productivity and … management of work. Key Responsibilities of the Security Engineer: Dealing with escalation of security related tickets and hands-on maintenance to solve the issues. Creating SIEM dashboards and detection rules using Splunk. Using CrowdStrike … to monitor and investigate security alerts. Management of identity, MDM, or directory services via Jump cloud. Conducting regular vulnerability scans and risk assessments using Qualys. Work within the SecOps team and collaboration with other IT teams to insure secure system configurations. Stay Informed on emerging threats, vulnerabilities and best practice within cyber security. Requirements and Experience of the Security More ❯

An impressive multinational Telecoms business is looking for a Senior Cyber Security Engineer to join its team based in London. Please note, this role is hybrid so you will be required to work in the office 3 days per week. In this role of significant responsibility, you will operate at the cutting edge of technology, protecting the business from … cyber threats. You will design, implement, and maintain security solutions that monitor and protect networks, systems, and data. You will identify vulnerabilities, harden systems, respond to threats, and ensure compliance with security best practices and industry standards, including ISO27001. In order to be suitable for this role you must have demonstrable expertise with monitoring and securing enterprise class … vulnerability management, network security, cloud security (AWS & Azure), firewalls and intrusion detection systems. You will monitor networks and systems for security breaches, enhance the performance of SecOps tools, perform regular threat analysis and act as a subject matter expert for mitigating cyber risks. This is an outstanding opportunity for an accomplished Cyber Security Engineer to join More ❯

is building a safer and more resilient digital world with an end-to-end full stack platform made for a hybrid, multi-cloud world. Leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. Our customers love our technology, but it's our caring employees that make Splunk stand out as an … AWS, GCP and/or Azure IT architecture concepts such as High Availability, Disaster Recovery Highly Desirable Knowledge and Experience; I have some or all of these too: UK Security clearance Experience of working in the aerospace and/or defence sector Domain knowledge in any of: security operations, observability, DevOps, IT operations, big data or More ❯

At Experian, our Cyber Fusion Centre (CFC) uses modern technology and a team of elite security professionals to detect and investigate threats worldwide across cybersecurity, insider threat, and physical risk domains. We are looking for a dynamic Global Security Programme Manager to lead programmes that create relevant improvements in security maturity and risk reduction. In this strategic … delivered. You will also establish scalable structures and best practices that empower CFC teams to align their efforts with broader organizational goals and contribute to the delivery of our security strategy roadmap. You will be an experienced programme management professional with a background in cybersecurity or security operations. You will engage partners across all levels of Experian. With … settings. This is a unique opportunity to join a world-class organization and collaborate with a global team of experienced professionals-helping us stay ahead of evolving threats and security challenges. This is a remote UK position (with expectations of international travel) reporting to Cyber Fusion Center SVP About Experian Experian is a global data and technology company, powering More ❯

to name a few! Job Description Your Career The Cortex Customer Success Architects are responsible for empowering our clients to prevent successful cyberattacks as well as simplify and strengthen security processes, automate and streamline security operations and attack surface management, the team is built by highly technical professionals that work together with customers, partners, and their awesome … Ensure technical knowledge of the team is translated into articles and guides for our customers to consume allowing our customer coverage to scale Qualifications Your Experience Experience as a Security Incident Responder or SOC analyst/manager Experience with development and maintenance of scripts in Python JavaScript or PowerShell is a plus Experience with security design and architecture More ❯

SC Cleared*** Required OUTSIDE I35 We are seeking a skilled and proactive SOC Engineer with strong expertise in Microsoft Sentinel and LogRhythm to join our Security Operations Center team. The ideal candidate will be responsible for monitoring, analyzing, and responding to security incidents, optimizing SIEM configurations, and contributing to threat detection and response strategies. This role requires … hands-on experience with both platforms and a deep understanding of cybersecurity principles and incident management. Key Responsibilities: Monitor and investigate security alerts from Microsoft Sentinel and LogRhythm . Analyze logs, network traffic, and other data sources to detect threats and suspicious activities. Develop and tune detection rules, analytics, and alerting logic in both SIEM platforms. Collaborate with incident … response teams to contain and remediate security incidents. Create dashboards, workbooks, and reports for stakeholders. Perform threat hunting activities and support continuous improvement of SOC processes. Maintain and enhance use cases, playbooks, and automation (e.g., with Logic Apps or SOAR). Ensure SIEM solutions are properly integrated with data sources (e.g., firewalls, endpoints, cloud services). Support compliance and More ❯

Job Description A long-established and trusted global brokerage is seeking a Head of IT to lead our technology strategy, infrastructure, and security operations. With over 30 years of industry presence, this firm has built a solid reputation for transparency, innovation, and client success, offering a broad range of CFD products including forex, commodities, indices, and more. Location : Hybrid … strategy aligned with business growth objectives. Lead, mentor, and scale a multi-location IT team, promoting a high-performance, service-oriented culture. Identify and implement emerging technologies to enhance operations, security, and digital transformation. Infrastructure & Security Oversight Manage core IT infrastructure including networks, cloud environments, and trading systems. Ensure best-in-class cybersecurity practices: threat detection, endpoint … troubleshoot and resolve technology challenges. Compliance & Risk Management Ensure IT policies and procedures meet financial industry regulations (e.g., FCA, GDPR, ISO). Assess and mitigate risks related to data security, system integrity, and vendor reliability. Project Delivery & Innovation Lead projects such as system upgrades, infrastructure scaling, software implementations, and platform optimizations. Work closely with business stakeholders to evolve platforms More ❯