51 to 75 of 93 Security Operations Jobs in London

Security Engineer - SC Cleared (or Eligible) - £550 per day - Inside IR35 - Remote - 12 Months initial contract We are currently working with a leading client in the zero carbon energy sector who are looking to bring on board an experienced Security Engineer to join their security implementation and engineering delivery team. This is a fantastic opportunity to work … on large-scale, business-critical projects in a highly regulated environment. The Role - As part of the security engineering team, you'll be: Delivering on the security portfolio, with a focus on SASE and firewall estates. Working within a SAFe Agile framework, participating in sprints and stand-ups. Managing and tracking workloads via Jira. Triaging customer requirements into … actionable deliverables. Acting as an escalation engineer for the Security Support Team. Supporting and mentoring junior engineers. Producing documentation and knowledge base material, as well as delivering knowledge transfer sessions. Occasionally supporting out-of-hours work. Technical Skills We're Looking For - My client is looking for demonstrable experience in as many of the following as possible: Enterprise firewalls More ❯

Security Engineer Are you the right candidate for this opportunity Make sure to read the full description below. - SC Cleared (or Eligible) - £550 per day - Inside IR35 - Remote - 12 Months initial contract We are currently working with a leading client in the zero carbon energy sector who are looking to bring on board an experienced Security Engineer to … join their security implementation and engineering delivery team. This is a fantastic opportunity to work on large-scale, business-critical projects in a highly regulated environment. The Role - As part of the security engineering team, you'll be: Delivering on the security portfolio, with a focus on SASE and firewall estates. Working within a SAFe Agile framework … participating in sprints and stand-ups. Managing and tracking workloads via Jira. Triaging customer requirements into actionable deliverables. Acting as an escalation engineer for the Security Support Team. Supporting and mentoring junior engineers. Producing documentation and knowledge base material, as well as delivering knowledge transfer sessions. Occasionally supporting out-of-hours work. Technical Skills We're Looking For - My More ❯

Growing International Commercial company seeks a Head of Security Operations to lead a team of 5. This role will see you setting strategy and delivering a roadmap for the transformation of security operations across the group. This is a leadership position that will require you to directly manage a team, lead incidents and manage senior stakeholders. More ❯

Are you a hands-on security operations expert ready to take ownership of a cutting-edge Microsoft security environment? We're hiring a Group SecOps Engineer to play a pivotal role in securing a global digital estate. Why This Role Stands Out Own the Microsoft Security Stack - Defender, Sentinel, Intune, Entra ID Lead security configuration … innovation by evaluating and implementing new Microsoft features Contribute to strategic projects like SIEM replacement and Zero Trust adoption What You'll Be Doing Configure and maintain Microsoft 365 security tools Monitor and respond to security alerts and incidents Review and optimize Entra ID and Intune environments Work closely with the Cyber SOC and wider IT teams Present … security recommendations to senior stakeholders Learn and manage additional security tools beyond Microsoft What We're Looking For Proven experience with Microsoft Security Stack (Defender, Sentinel, Intune, Entra ID) Strong grasp of Conditional Access, PIM/PAM, vulnerability remediation, and Zero Trust Background in server/network infrastructure (Windows & Linux) Familiarity with SIEM, endpoint protection, and remediation More ❯

Product Delivery Manager - Platform Security Location London Business Area Engineering and CTO Ref # Description & Requirements Bloomberg is the industry standard for financial data. It's our business and our product. From the biggest banks to the most elite hedge funds, financial institutions need timely, accurate data to capture opportunities and evaluate risk in fast-moving markets. The Product … engineering, product and data groups to build empowered, autonomous and multi-disciplinary teams delivering the right product, in the right way, as quickly and efficiently as possible. The Platform Security group, in conjunction with our Information Security thought leadership in CTO, and Security Operations groups, aims to keep the company's information and products secure, enables … technological solutions they build, provides the data and intelligence needed to ensure our systems are protected at all times, and enables workplace agility without compromising security. In addition, Platform Security is also the home for our Public Cloud Centre of Excellence, enabling our company to leverage the Public Cloud for various business opportunity while promoting the best practices involved More ❯

a recently lapsed clearance will be prioritised. Our client, one of the UKs largest producers of zero carbon energy, is looking for 2 Senior SOC Analysts to join their Security Operations Centre. This is an excellent opportunity for an experienced SOC professional to step into a senior role, leading on complex investigations and incident response within a high … The Senior SOC Analyst will act as the technical expert within the SOC, responsible for handling escalations from Tier 1 and Tier 2 analysts and managing the most complex security incidents. You will lead deep-dive investigations, improve detection and response processes, and play a key role in stakeholder engagement. Key responsibilities include: Analysing advanced security incidents, determining … technology stack, including: SIEM: Microsoft Sentinel EDR/XDR: Microsoft Defender for Endpoint Threat Intel: Recorded Future Network Analysis: Wireshark/tcpdump SOAR & Automation: Palo Alto Cortex XSOAR, ServiceNow SecOps Vulnerability Management: Tenable Nessus/Tenable.io Other nice to have tools: Shodan, Censys, BloodHound, Metasploit, Cobalt Strike, MITRE ATT&CK Navigator Cloud Security (advantageous): AWS GuardDuty, Security Hub More ❯

a recently lapsed clearance will be prioritised. Our client, one of the UKs largest producers of zero carbon energy, is looking for 2 Senior SOC Analysts to join their Security Operations Centre. This is an excellent opportunity for an experienced SOC professional to step into a senior role, leading on complex investigations and incident response within a high … The Senior SOC Analyst will act as the technical expert within the SOC, responsible for handling escalations from Tier 1 and Tier 2 analysts and managing the most complex security incidents. You will lead deep-dive investigations, improve detection and response processes, and play a key role in stakeholder engagement. Key responsibilities include: Analysing advanced security incidents, determining … technology stack, including: SIEM: Microsoft Sentinel EDR/XDR: Microsoft Defender for Endpoint Threat Intel: Recorded Future Network Analysis: Wireshark/tcpdump SOAR & Automation: Palo Alto Cortex XSOAR, ServiceNow SecOps Vulnerability Management: Tenable Nessus/Tenable.io Other nice to have tools: Shodan, Censys, BloodHound, Metasploit, Cobalt Strike, MITRE ATT&CK Navigator Cloud Security (advantageous): AWS GuardDuty, Security Hub More ❯

Overview Responsible for deploying, managing, and supporting both in-house and client facing security solutions for CyberCX. This role is a hybrid position based in London. In this role, you will: Install, configure, manage, and troubleshoot security solutions and infrastructure internally and in customer locations to support CyberCX Security Operations Centre services such as SIEM and … security case management, endpoint detection and response, and vulnerability management tools Maintain and upgrade managed systems Investigate security incidents, validate alarms, and escalate issues to the appropriate teams for resolution Identify and raise opportunities to improve managed system reliability and performance Provide Level 1 and 2 support for internal and customer housed security systems Assist with client … management, client briefings, process and governance improvement, audit compliance, and provide general project support Prepare internal and client communications around system security issues About you: Tertiary qualification in Information technology or similar field (preferred) Suitable vendor certifications desirable 1-3 years' experience in similar role preferred IT support experience desirable (doesn't have to be security related) Proficiency More ❯

protection technologies, ensuring device compliance, threat detection, and automated response capabilities. The role combines strong technical leadership, deep expertise in endpoint protection platforms, and a collaborative approach to operationalize security across all user and device touchpoints globally. Key Responsibilities: Endpoint Security Strategy & Engineering: Define and lead the secure device strategy, ensuring strong protection across all device types and … Ensure devices meet internal policies and external regulatory standards through automation and audit-readiness. Drive policy enforcement through scalable automation and end-user experience design. Manage the lifecycle of security configuration across device fleets globally. Collaboration & Stakeholder Engagement: Work closely with IT support, mobility, infrastructure, and security operations teams. Partner with cyber, legal, and compliance stakeholders to … define and enforce device governance policies. Serve as a key contributor to global security programs and strategic initiatives. Leadership & Operational Excellence: Lead a global engineering team responsible for endpoint protection tooling and device compliance. Foster a culture of security, automation, transparency, and continuous improvement. Define and track SLAs, SLOs, and KPIs related to device health, compliance, and risk. More ❯

accessible to London adhoc (4-6 days per month) Pay: negotiable, INSIDE IR35 We're looking for a highly skilled SOC Engineer to support the delivery of a major Security Operations Centre (SOC) uplift programme. This role will focus on enhancing existing capabilities, introducing new security detection services, and improving operational efficiency through automation and integration. You … capabilities to improve cyber threat visibility. - Refine and optimise detection rules and analytics. - Contribute to the automation of SOC workflows and response tasks. - Enhance tools and processes to support security investigations. - Develop performance metrics and monitoring solutions to assess SOC health and maturity. - Align SOC operations with broader organisational security services (e.g., personnel, physical). - Ensure all … new capabilities are successfully embedded into the live SOC environment. Essential Skills & Experience: - In-depth knowledge and hands-on experience in SOC operations within a cyber security setting. - Willingness to participate in an out-of-hours on-call rota (where applicable). - Strong stakeholder engagement skills, with the ability to communicate clearly across teams and levels. - Analytical thinker More ❯

in the 1st Line of Defense, ensuring IT governance and ri View job & apply Location: Frankfurt Salary: 125,000 + Benefits Job type: Permanent Join our second-line Information Security function as a Senior Manager for SIEM & Security Mo View job & apply Location: Surrey Salary: £55,000 + excellent bonus and pension Job type: Permanent Financial Service firm … is seeking a Data Loss Prevention Analyst to join its Cyber Security team View job & apply Location: Surrey Job type: Permanent Sector: Commerce and Industry Managed Service provider seeks a SOC Lead to join the Cyber Security function. This role will pla View job & apply Senior Manager - BCM Second Line Location: Frankfurt Salary: 125,000 + Benefits Job … base + benefits and bonus Job type: Permanent Leading Consultancy continues to expand its EMEA presence and seek an Associate Director to join View job & apply Information Security Manager - 2nd line Location: Frankfurt Salary: 110,000 + Benefits Job type: Permanent Sector: Banking We're looking for a Manager-level Information Security Assessor to join the Second Line More ❯

i need a BA will strong experience of working on ServiceNow and specifically implementing the 'Security Operations' or 'SecOps' module of ServiceNow. This SecOps module integrates with multiple cyber monitoring tools like Sentinel, Defender and Mend that the client use. Currently each of these tools create their own separate reports and create their own different tickets for resolutions … however the SecOps module of ServiceNow integrates all of this into a single report, with a single integrated ticketing system. This BA will do a current state analysis of all of the existing tools, then document a future state with the ServiceNow SecOps module including integrations, and also document the gap analysis and design the roadmap. Reasonable Adjustments: Respect and More ❯

An impressive multinational Telecoms business is looking for an accomplished Senior Information Security Engineer to join its team based in London. Please note, this role is hybrid so you will be required to work in the office 3 days per week. In this role of significant responsibility, you will operate at the cutting edge of technology, protecting the business … from cyber threats. You will design, implement, and maintain security solutions that protect networks, systems, and data. You will identify vulnerabilities, harden systems, respond to threats, and ensure compliance with security best practices and industry standards, including ISO27001. In order to be suitable for this role you must have demonstrable hands-on expertise with monitoring and securing enterprise … vulnerability management, network security, cloud security (AWS & Azure), firewalls and intrusion detection systems. You will monitor networks and systems for security breaches, enhance the performance of SecOps tools, perform regular threat analysis and act as a subject matter expert for mitigating cyber risks. This is an outstanding opportunity for an accomplished Information Security Engineer to join More ❯

Remote (UK) Up to £95,000 Benefits An opportunity has arisen for a Principal Security Analyst with a strong technical background and a passion for problem solving to join a growing UK MSSP. Interested in this role You can find all the relevant information in the description below. This role has no line management responsibility. Instead, the position is … being an escalation point for Senior Analysts, dealing with more complex alerts as well as identifying opportunities to tune, optimise, automate and improve relevant systems. The Role The Principal Security Analyst will support busy pods on more complex issues, lead and coordinate threat hunting activities, perform and lead vulnerability assessment activities and perform SIEM-based event analysis, incident triage … and coordinate incident response activities. Furthermore, the Principal Security Analyst will actively collaborate with other analysts and enhance the teams effectiveness through ownership of relevant issues and contribute to a culture of continual improvement. Skills Required This role would suit an experienced, highly technical analyst with an engineering mindset who is comfortable tackling complex problems and has experience in More ❯

Remote (UK) Up to £95,000 + Benefits An opportunity has arisen for a Principal Security Analyst with a strong technical background and a passion for problem solving to join a growing UK MSSP. This role has no line management responsibility. Instead, the position is focused on being an escalation point for Senior Analysts, dealing with more complex alerts … as well as identifying opportunities to tune, optimise, automate and improve relevant systems. The Role The Principal Security Analyst will support busy pods on more complex issues, lead and coordinate threat hunting activities, perform and lead vulnerability assessment activities and perform SIEM-based event analysis, incident triage and coordinate incident response activities. Furthermore, the Principal Security Analyst will … is comfortable tackling complex problems and has experience in a SOC/MSSP environment. Essential -Sentinel (specialist) -SOC experience in an MSP/MSSP environment -In depth understanding of security and analytical concepts -Exposure to IT Security Operations in large and complex organisations -Some coding ability Beneficial -Splunk -Palo Alto (XDR/XSIAM) -Skills in Forensics -Experience More ❯

sources are onboarded into the SIEM solution and create use cases to identify suspicious activity. - Incident Response: Lead escalated incident responses, oversee remediation, and report on high-severity incidents. - Security Automation: Develop and automate workflows using SOAR tools to enhance operational playbooks and streamline responses. - Digital Forensics: Conduct forensic analysis of serious incidents and implement containment strategies. - Cyber Crisis … Testing: Participate in cyber-attack simulations to test and improve organisational resilience. - Reporting & Metrics: Enhance security operations reporting and develop performance metrics dashboards. - Audit & Compliance: Support security audits and ensure compliance with relevant regulations and standards. Essential Experience: - Significant experience in a SOC Level 2 or 3 role, with a strong track record in advanced threat hunting … and incident response. - Qualifications in Cybersecurity or IT (Bachelor's degree or equivalent), ideally with industry-recognized certifications such as CISSP, GIAC, CEH, or CompTIA CASP. - Deep knowledge of security technologies (SIEM, SOAR, EDR, IDS/IPS, DLP, etc.), adversarial tactics (e.g., MITRE ATT&CK), and experience with incident response and security architecture. - Hands-on experience with security More ❯

Focus on continuing to develop dashboards, direct alerting, risk-based alerting, reports, and other objects as needed in Splunk. Continue to maintain a depth of knowledge within the cyber security field. This entails following threat actor activity targeting the industry and speaking knowledgeably at regular internal threat intelligence briefings. Leveraging threat intelligence, experience, and other inputs to perform active … advocate for improvements to configurations or technologies. Continue to develop and improve the Cyber Incident Response Plan and advocate for the program. Participate in on-call rotation for escalated security events.# QUALIFICATIONS Experience in having worked in a Security Operations, CSIRT, or similar role and able to demonstrate a passion in Cyber Security. Experience building out functions … Team such as an insider risk, threat intelligence, breach attack simulation, or similar programs. Strong understanding of the fundamentals such as packet, file, and log analysis. Knowledgeable with various security infrastructure tools such as firewalls, intrusion prevention/detection systems, proxy servers, email controls, anonymizing technology, data loss prevention, Endpoint Detection and Response (EDR), and SIEM (Splunk) Strong understanding More ❯

Overview IT Security Lead - Global Law Firm. Salary: up to £80,000. Our client, a leading international law firm, is looking for an IT Security Lead to join their London office. This is a key role within their IT function, protecting critical systems, data and infrastructure while shaping security strategy. Reporting to the Infrastructure Manager, you'll … be the go-to SME for security operations, incident response, architecture and vendor management. This is a hybrid opportunity, 2 days per week in the central London office. Responsibilities Monitoring and analysing network traffic and logs for threats Managing security tools - Firewalls, IDS/IPS, endpoint protection Driving vulnerability assessments and audits Leading on incident response and … remediation Developing security policies, standards and best practice Acting as an escalation point for the business and projects More ❯

work for you". What you will be doing Manage the provisioning and de-provisioning of access rights for users, systems, and applications in alignment with business policies and security standards. Maintain and enhance IAM tools and infrastructure, including role-based access controls (RBAC), single sign-on (SSO), multi-factor authentication (MFA), and privileged access management (PAM). Perform … access reviews and recertifications to ensure compliance with internal governance and external regulatory requirements. Identify, assess, and respond to IAM-related risks and incidents in collaboration with the cybersecurity operations team. Develop and maintain documentation, including access management policies, processes, procedures, and system configurations. Ensure effective onboarding and offboarding processes are executed in accordance with HR and business policies. … in IAM systems integration during projects and audits. Contribute to continuous improvement by identifying process automation and efficiency gains. Manage user accounts, permissions, and group memberships. Execute daily IAM operations and service requests. Conduct audit logging and reporting activities. Implement and enforce access control policies aligned with corporate governance. Design and review workflows for joiners, movers, and leavers. Maintain More ❯

DOE + Benefits Clearance: Must hold or be eligible for SC Clearance Sponsorship: Not available We're seeking a highly skilled SOC Solutions Engineer to enhance security operations and strengthen detection & response strategies. This is a hands-on engineering role focused on IBM QRadar, playbook automation, and advanced threat modelling to deliver cutting-edge security solutions. What … logic with threat intel, coordinate incident response. Threat Modelling & Use Case Development: Apply MITRE ATT&CK, STRIDE, and Kill Chain frameworks to build detection use cases. Reporting & Collaboration: Build security dashboards, produce reporting packs, and guide junior analysts and engineers. Client & Project Support: Support presales, contribute to new SOC solution scoping, and lead demos where required. What we're … looking for: Must hold or be eligible for SC Clearance (essential). Expertise with IBM QRadar (configuration, rule development, playbooks). 3-5 years+ experience in IT security (SOC/NOC environment preferred). Strong knowledge of log parsing, SIEM query languages (KQL, SPL, AQL), and automation with Python/PowerShell. Deep understanding of incident response, threat detection, and More ❯

Overview We're looking for a hands-on senior infrastructure and security manager to lead and manage Breast Cancer Now's IT infrastructure and security operations. This is a delivery focused role where you'll take responsibility for building, configuring and maintaining infrastructure while also implementing and managing security governance controls. You'll ensure our systems are … from on-premises to Microsoft Azure, modernising our infrastructure to ensure it is secure, scalable and cost-efficient. Alongside this transformation, you'll manage day-to-day infrastructure and security operations across our hybrid environment. In addition, you'll also take ownership for the delivery of key governance activities including risk assessments, audits, compliance checks, vulnerability management and … quality infrastructure services. About you You'll be an experienced infrastructure professional with strong hands-on expertise in designing, implementing and managing: Microsoft Azure (IaaS, PaaS, networking, storage, compute, security and monitoring) Networking technologies (firewalls, VPNs, LAN/WAN, DNS/DHCP, TCP/IP, virtualisation) Enterprise security tools (SIEM, endpoint protection, vulnerability management, XDR, MDM, IDPS) Backup More ❯

to name a few! Job Description Your Career The Cortex Customer Success Architects are responsible for empowering our clients to prevent successful cyberattacks as well as simplify and strengthen security processes, automate and streamline security operations and attack surface management, the team is built by highly technical professionals that work together with customers, partners, and their awesome … Ensure technical knowledge of the team is translated into articles and guides for our customers to consume allowing our customer coverage to scale Qualifications Your Experience Experience as a Security Incident Responder or SOC analyst/manager Experience with development and maintenance of scripts in Python JavaScript or PowerShell is a plus Experience with security design and architecture More ❯

IT Security Engineer/Lead London - £75,000 - £85,000 pa + Bonus + Benefits JNC are working with a growing professional services company in London that are looking to bring on a talented IT Security Engineer who will help lead them into the next phase of their security operations journey. This is a really exciting … opportunity for someone who has experience being the go-to IT security person in a growing IT department, as well as being able to take the lead on new and exciting security driven projects. This could be anything from helping create a new outsourced SOC or furthering the organisations cloud and 365 offerings. The ideal person for this … role will have a strong background in networking and firewalls as well as some recent experience in security architecture. Technical Experience: Must have strong networking, switching and firewalls experience. Ideally Checkpoint and Extreme networks. Experience with SolarWinds or similar Experience with url filtering (Censornet or similar) Any experience with SOC solutions is desirable but not essential. Artic Wolf of More ❯

Day rate: Up to £550 p/d Outside IR35 Overview We're seeking a hands-on Head of Cyber to lead a small team and strengthen organisational cyber security capability. You'll oversee delivery of key audit driven projects while developing in-house talent and shaping the organisation's long term security posture. Key Responsibilities Lead and … of 5 with a focus on pastoral care, proactive upskilling, and developing technical skills. Oversee the implementation of a SIEM platform and the procurement/onboarding of an outsourced Security Operations Centre (SOC) Manage and prioritise a significant remediation to do list arising from recent internal and external audits. Maintain and evolve incident response and governance processes, ensuring … the Disaster Recovery project stays on track. Negotiate and communicate with senior management to agree priorities and resources. Provide project planning and vendor management oversight for key security initiatives. Essential Skills & Experience Proven leadership in cyber security within a public-sector or similarly complex environment. Experience mentoring and developing teams with mixed skill levels. Excellent stakeholder engagement, planning More ❯

The Opportunity As part of our continuous improvement and expansion of the vulnerability management function, we are seeking a highly motivated Vulnerability Management Data Analyst to join our Global Security Operations Centre. This permanent, hybrid role is based out of our London office and reports to the Threat & Vulnerability Manager. The successful candidate will play a key role … in strengthening QBE’s cyber resilience by turning complex security data into meaningful insights. This role will directly support the identification, prioritisation, remediation and reporting of vulnerabilities—helping QBE stay ahead of emerging threats. Your New Role As a Vulnerability Management Data Analyst, you’ll collaborate with teams across security engineering, vulnerability management, service management, cyber governance, risk … making a tangible impact on QBE’s risk minimisation efforts. Main Responsibilities Develop and maintain dashboards, reports and metrics to support vulnerability identification, management and remediation activities Collaborate with security, infrastructure, application and governance teams to support vulnerability data quality Ensure a risk-based approach is applied when prioritising vulnerabilities Analyse vulnerability data from multiple sources to identify patterns More ❯