76 to 100 of 119 Security Operations Jobs in London

protection technologies, ensuring device compliance, threat detection, and automated response capabilities. The role combines strong technical leadership, deep expertise in endpoint protection platforms, and a collaborative approach to operationalize security across all user and device touchpoints globally. Key Responsibilities: Endpoint Security Strategy & Engineering: Define and lead the secure device strategy, ensuring strong protection across all device types and … Ensure devices meet internal policies and external regulatory standards through automation and audit-readiness. Drive policy enforcement through scalable automation and end-user experience design. Manage the lifecycle of security configuration across device fleets globally. Collaboration & Stakeholder Engagement: Work closely with IT support, mobility, infrastructure, and security operations teams. Partner with cyber, legal, and compliance stakeholders to … define and enforce device governance policies. Serve as a key contributor to global security programs and strategic initiatives. Leadership & Operational Excellence: Lead a global engineering team responsible for endpoint protection tooling and device compliance. Foster a culture of security, automation, transparency, and continuous improvement. Define and track SLAs, SLOs, and KPIs related to device health, compliance, and risk. More ❯

Responsibilities (Text Only) - Architect and Develop Internal Security Tooling: Design, implement, and evolve secure systems architecture that supports the Regulated Industries internal tooling platform. Leverage automation and intelligent workflows to enhance observability, policy enforcement, and team productivity. - Implement AI-Powered Security Workflows: Integrate AI/ML agents-including Microsoft Security Copilot and LLM-based copilots-into operational … pipelines for tasks such as incident triage, control validation, and telemetry summarization. Ensure models and agents are used securely and responsibly. - Orchestrate Security Automation: Lead the design and development of automation solutions across platforms (Azure Monitor, Defender XDR, Entra, Purview). Create scripts, APIs, and orchestrations that reduce manual effort and improve speed and accuracy in security operations. … Tell Stories with Data: Use tools like Jupyter Notebooks, Kusto Query Language (KQL), and Python to query and visualize large-scale security datasets. Translate telemetry into insights and share narratives that influence decision-making across engineering and leadership teams. - Support Compliance and Audit Readiness: Build and maintain solutions that automate evidence gathering and real-time compliance monitoring across frameworks More ❯

will provide high quality central services to the Improbable group and our network of venture businesses through the leadership and management of the IT Support, Tech Ops, and Technical Security functions. Your role will be to ensure that all company services are deployed, managed, and supported at the highest levels of compliance and service. Your Opportunity: Lead the internal … IT support team in our day-to-day IT operations and manage the planning, implementation, development, monitoring, maintenance, upgrading and support of organisational IT infrastructure, networks, systems and applications. Lead Technical Security operations and overseeing the planning, implementation, and maintenance of security infrastructure, systems, and applications. Maintain security controls aligned with recognised international standards, and … conduct internal and external audits. Own our service catalogue, internal processes, incident management and security controls. Manage IT budgets and ensure cost-effective allocation of technology resources and overseeing procurement. Ensure our suppliers and vendors are appropriately assessed against our security controls frameworks and comply with our security standards and any certification claims. We'd like to More ❯

Join a leading global investment bank as a Senior Cyber Security Analyst, where you'll play a critical role in safeguarding a world-class financial institution. What You'll Do: Responsible for end-to-end incident response operations, including triage, containment, root cause analysis, and post-incident reporting. Perform threat hunting and proactive detection using frameworks like MITRE … playbooks, runbooks, and standard operating procedures to stay aligned with evolving threats and compliance requirements. Hands on with scripting/python to automate and improve the efficiency of the security function. Conduct in-depth technical security investigations and define appropriate mitigation strategies. What You'll Bring: Proven experience in security operations, with strong knowledge of networking … Windows and Linux Hands-on with security automation; scripting in Python is a strong advantage. Solid understanding of incident response processes, threat intelligence, and security monitoring. Familiarity with frameworks such as MITRE ATT&CK, NIST, and OWASP. Exposure to secure coding practices and DevSecOps environments is a strong plus (not mandatory) Experience working in large enterprise environments and More ❯

Role We are looking for a passionate and experienced Vulnerability Lead to develop and oversee our vulnerability management program. This role offers a unique chance to establish a vital security function, define best practices, and improve our security posture. The role involves managing and enhancing the vulnerability management lifecycle, including defining scanning strategies, triaging risks, overseeing remediation, and … documentation to meet compliance standards like ISO 27001, PCI DSS, SOC 2, and NIST. Define scanning schedules, thresholds, and automation opportunities. Collaborate with DevSecOps and product teams to integrate security into CI/CD pipelines. Assess new tools and processes to improve automation and risk tracking. Essential Skills and Experience: Self-sufficient and a trusted escalation point. Understanding of … systemic risk and prioritization. Experience in vulnerability management, security operations, or infrastructure security (5+ years). Familiarity with vulnerability management lifecycle, tools, and platforms. Ability to coordinate remediation activities effectively. Knowledge of CVSS, OWASP Top 10, and MITRE ATT&CK. Comfort working with cloud environments, containers, and modern infrastructure. Organized with strong reporting skills. Ability to translate More ❯

An impressive multinational Telecoms business is looking for an accomplished Senior Information Security Engineer to join its team based in London. Please note, this role is hybrid so you will be required to work in the office 3 days per week. In this role of significant responsibility, you will operate at the cutting edge of technology, protecting the business … from cyber threats. You will design, implement, and maintain security solutions that protect networks, systems, and data. You will identify vulnerabilities, harden systems, respond to threats, and ensure compliance with security best practices and industry standards, including ISO27001. In order to be suitable for this role you must have demonstrable hands-on expertise with monitoring and securing enterprise … vulnerability management, network security, cloud security (AWS & Azure), firewalls and intrusion detection systems. You will monitor networks and systems for security breaches, enhance the performance of SecOps tools, perform regular threat analysis and act as a subject matter expert for mitigating cyber risks. This is an outstanding opportunity for an accomplished Information Security Engineer to join More ❯

Splunk is here to build a safer and more resilient digital world. The world's leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. While customers love our technology, it's our people that make Splunk stand out as an amazing career destination and why we've won so many awards … IT industry, with a focus on strategic accounts. Technical Skills: Proficiency in Splunk products or similar, data analytics, and operational intelligence. Strong knowledge of IT infrastructure, cloud technologies, and security protocols. Domain knowledge : Either, security operations, Observability, DevOps, IT operations, big data or log management. Communication: Excellent verbal and written communication skills, with the ability to More ❯

Cyber Security SOC Support Analyst Location: London Hybrid (working from home 3 days per week) Salary: £30-35K plus excellent benefits package Company Overview Our client is an award-winning Managed Service Provider (MSP) offering bespoke IT solutions and specialist Cyber Security services to businesses across London. This is an exciting opportunity to further your career in … Cyber Security, joining a thriving and supportive team within a leading MSP. Key Requirements Essential Experience: Minimum 1 year proven experience in a Tier 1 Cyber Security SOC Support Analyst role Prior experience in a Managed Service Provider (MSP) environment preferred Working knowledge of Microsoft Defender XDR and Microsoft Sentinel (SIEM) Hands-on experience with the Microsoft Defender … suite , including Endpoint Detection and Response Solid understanding of Microsoft 365 Cloud Technologies , particularly from a threat landscape perspective Certifications: SC-200 Microsoft Certified: Security Operations Analyst Associate SC-900 Microsoft Certified: Security, Compliance and Identity Fundamentals Personal Attributes: Highly motivated , with a can-do attitude Exceptional attention to detail and communication skills Client-focused with a More ❯

Security Engineer | Hybrid | London | 6 – Months My client is looking for a Security Engineer to join their cybersecurity and SecOps division. The successful candidate with be maintaining and improving security infrastructure, while also maintaining BAU handling cybersecurity related tickets. The client doesn't use the traditional Microsoft suite and uses Google workspace for cloud-based productivity and … management of work. Key Responsibilities of the Security Engineer: Dealing with escalation of security related tickets and hands-on maintenance to solve the issues. Creating SIEM dashboards and detection rules using Splunk. Using CrowdStrike … to monitor and investigate security alerts. Management of identity, MDM, or directory services via Jump cloud. Conducting regular vulnerability scans and risk assessments using Qualys. Work within the SecOps team and collaboration with other IT teams to insure secure system configurations. Stay Informed on emerging threats, vulnerabilities and best practice within cyber security. Requirements and Experience of the Security More ❯

An impressive multinational Telecoms business is looking for a Senior Cyber Security Engineer to join its team based in London. Please note, this role is hybrid so you will be required to work in the office 3 days per week. In this role of significant responsibility, you will operate at the cutting edge of technology, protecting the business from … cyber threats. You will design, implement, and maintain security solutions that monitor and protect networks, systems, and data. You will identify vulnerabilities, harden systems, respond to threats, and ensure compliance with security best practices and industry standards, including ISO27001. In order to be suitable for this role you must have demonstrable expertise with monitoring and securing enterprise class … vulnerability management, network security, cloud security (AWS & Azure), firewalls and intrusion detection systems. You will monitor networks and systems for security breaches, enhance the performance of SecOps tools, perform regular threat analysis and act as a subject matter expert for mitigating cyber risks. This is an outstanding opportunity for an accomplished Cyber Security Engineer to join More ❯

for in London , Top 75 in the UK , and Top 50 Best Technology Companies to Work for . As part of their continued growth, they are seeking a Cyber Security SOC Support Analyst to join their expanding Service Desk Team. About the Role This is an exciting opportunity for a motivated individual with at least 1 years of experience … defence, monitoring systems and responding to alerts received through support tickets or telephone calls. Key Responsibilities Monitor and categorise potential threats based on priority and severity Triage all cyber security incidents as part of the first response team Take ownership of incidents, providing initial remedial actions per established playbooks Liaise with third-party service providers and log support tickets … as required Provide operational support to the wider Cyber Security Team during incident response Maintain accurate documentation of all actions and resolutions Essential Experience Working knowledge of Microsoft Defender XDR and Microsoft Sentinel SIEM technologies Working knowledge of Microsoft Defender suite including Endpoint Detection and Response Understanding of key Microsoft 365 Cloud Technologies from a threat landscape perspective Essential More ❯

At Experian, our Cyber Fusion Centre (CFC) uses modern technology and a team of elite security professionals to detect and investigate threats worldwide across cybersecurity, insider threat, and physical risk domains. We are looking for a dynamic Global Security Programme Manager to lead programmes that create relevant improvements in security maturity and risk reduction. In this strategic … delivered. You will also establish scalable structures and best practices that empower CFC teams to align their efforts with broader organizational goals and contribute to the delivery of our security strategy roadmap. You will be an experienced programme management professional with a background in cybersecurity or security operations. You will engage partners across all levels of Experian. With … settings. This is a unique opportunity to join a world-class organization and collaborate with a global team of experienced professionals-helping us stay ahead of evolving threats and security challenges. This is a remote UK position (with expectations of international travel) reporting to Cyber Fusion Center SVP About Experian Experian is a global data and technology company, powering More ❯

to name a few! Job Description Your Career The Cortex Customer Success Architects are responsible for empowering our clients to prevent successful cyberattacks as well as simplify and strengthen security processes, automate and streamline security operations and attack surface management, the team is built by highly technical professionals that work together with customers, partners, and their awesome … Ensure technical knowledge of the team is translated into articles and guides for our customers to consume allowing our customer coverage to scale Qualifications Your Experience Experience as a Security Incident Responder or SOC analyst/manager Experience with development and maintenance of scripts in Python JavaScript or PowerShell is a plus Experience with security design and architecture More ❯

SC Cleared*** Required OUTSIDE I35 We are seeking a skilled and proactive SOC Engineer with strong expertise in Microsoft Sentinel and LogRhythm to join our Security Operations Center team. The ideal candidate will be responsible for monitoring, analyzing, and responding to security incidents, optimizing SIEM configurations, and contributing to threat detection and response strategies. This role requires … hands-on experience with both platforms and a deep understanding of cybersecurity principles and incident management. Key Responsibilities: Monitor and investigate security alerts from Microsoft Sentinel and LogRhythm . Analyze logs, network traffic, and other data sources to detect threats and suspicious activities. Develop and tune detection rules, analytics, and alerting logic in both SIEM platforms. Collaborate with incident … response teams to contain and remediate security incidents. Create dashboards, workbooks, and reports for stakeholders. Perform threat hunting activities and support continuous improvement of SOC processes. Maintain and enhance use cases, playbooks, and automation (e.g., with Logic Apps or SOAR). Ensure SIEM solutions are properly integrated with data sources (e.g., firewalls, endpoints, cloud services). Support compliance and More ❯

Job Description A long-established and trusted global brokerage is seeking a Head of IT to lead our technology strategy, infrastructure, and security operations. With over 30 years of industry presence, this firm has built a solid reputation for transparency, innovation, and client success, offering a broad range of CFD products including forex, commodities, indices, and more. Location : Hybrid … strategy aligned with business growth objectives. Lead, mentor, and scale a multi-location IT team, promoting a high-performance, service-oriented culture. Identify and implement emerging technologies to enhance operations, security, and digital transformation. Infrastructure & Security Oversight Manage core IT infrastructure including networks, cloud environments, and trading systems. Ensure best-in-class cybersecurity practices: threat detection, endpoint … troubleshoot and resolve technology challenges. Compliance & Risk Management Ensure IT policies and procedures meet financial industry regulations (e.g., FCA, GDPR, ISO). Assess and mitigate risks related to data security, system integrity, and vendor reliability. Project Delivery & Innovation Lead projects such as system upgrades, infrastructure scaling, software implementations, and platform optimizations. Work closely with business stakeholders to evolve platforms More ❯

Job Description A long-established and trusted global brokerage is seeking a Head of IT to lead our technology strategy, infrastructure, and security operations. With over 30 years of industry presence, this firm has built a solid reputation for transparency, innovation, and client success, offering a broad range of CFD products including forex, commodities, indices, and more. Location : Hybrid … strategy aligned with business growth objectives. Lead, mentor, and scale a multi-location IT team, promoting a high-performance, service-oriented culture. Identify and implement emerging technologies to enhance operations, security, and digital transformation. Infrastructure & Security Oversight Manage core IT infrastructure including networks, cloud environments, and trading systems. Ensure best-in-class cybersecurity practices: threat detection, endpoint … troubleshoot and resolve technology challenges. Compliance & Risk Management Ensure IT policies and procedures meet financial industry regulations (e.g., FCA, GDPR, ISO). Assess and mitigate risks related to data security, system integrity, and vendor reliability. Project Delivery & Innovation Lead projects such as system upgrades, infrastructure scaling, software implementations, and platform optimizations. Work closely with business stakeholders to evolve platforms More ❯

Digital threats are evolving rapidly while our solutions are growing in complexity . We are strengthening our SecOps function within our Software department! Are you an accomplished software engineer passionate about cyber security? Then this might be the opportunity for you. "I can quickly see the impacts of my work on our products. I'm grateful to work side … by-side with passionate people from a range of disciplines who see security as an enabler for the future of our brand" - Åsmund Sand, Principal Security Engineer About the role We are now looking for a Senior Cloud Security Engineerwho can take ownership in the cyber security area. In the first year you can expect to … focus on identity and access management challenges to scale our current CIAM infrastructure, while also implementing new workflows. You will play a key role ensuring our solutions meet the security expectations of our customers, as well as the company's security requirements. At reMarkable, you will be challenged by a diverse technical landscape. We use GCP as our More ❯

Press Tab to Move to Skip to Content Link Job Title: Principal Software Engineer - Security Engineer Job Reference: Band: BAND D Salary: £80,000-£90,000k depending on relevant skills, knowledge and experience. The expected salary range for this role reflects internal benchmarking and external market insights. Contract type: Permanent role Location: This is a hybrid role, and the … people every week and are trusted globally as a source of news, entertainment and education. That trust is built not only on our editorial standards, but also on the security, reliability and resilience of the systems behind every stream, story and service. In Engineering Enablement , we're the team that makes secure, high-velocity delivery possible. We build shared … cloud platforms, developer tooling and guardrails that let hundreds of product teams ship confidently and sustainably. We're hiring a Principal Software Engineer - Security Engineer to help us embed secure-by-design thinking across the BBC. You'll work hands-on with engineering teams, applying InfoSec-led policies and architecture in delivery contexts. You'll support threat modelling, promote More ❯

Senior IR-SOC Engineer - Elite Law Firm - London Are you a security professional looking to step into a high-profile, enterprise environment? One of the world’s most prestigious law firms is seeking a Senior Incident Response & SOC Engineer to join its global Information Security team, based in London . This is a rare opportunity to play a …/7 SOC , handling incident response and contributing to the development of detection, automation, and reporting tools. Key Responsibilities: Lead and support incident response (IR) and investigation of security threats across a complex enterprise estate. Manage, tune, and develop SIEM and EDR technologies to enhance threat detection and response capabilities. Implement and refine playbooks , automations , and alerting rules in … collaboration with security partners. Contribute to threat hunting and proactive detection strategies. Produce actionable reporting and metrics for stakeholders, including executive leadership. Desired Experience: Proven experience working in or alongside a 24/7 Security Operations Centre . Strong technical exposure to SIEM (ideally Splunk), EDR (CrowdStrike preferred), and SOAR tools. Expertise in incident handling , threat analysis More ❯

We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. As part of a business wide transformation, we have an exciting opening for a new role of Global Head of Threat Intelligence. As part of the Cyber Defence and Security Operations … with other team members around the globe You will need to work with technical contacts throughout the business and with multiple third parties You will need to brief the security leadership team, board member and other internal business units on threat related criteria The Requirements What you will need: It is essential that you have extensive experience as a More ❯

time and you will be enjoying the kind of professional development where you can explore your potential. Team Summary This is a Network Infrastructure support role within the IT Operations function at Deloitte. Reporting to the Network & Security Operations Manager and working closely with other internal ITS teams, the Network support engineer will provide internal technical consultancy … issues Work closely with technology services teams and put-up action plan for firewall OS/patch upgrades, rebuild etc. Service request fulfillment for firewall global policy and other security extension changes (VPN, IPS, URL Filtering, Application Control, etc.) Providing technical network infrastructure assistance and guidance to business relationship managers, project managers, infrastructure managers and other technical and non … Change records (RFCs) Technical governance and approval of change requests, ensuring RFCs are within technical standards and underpin a cohesive support framework Providing guidance and support to the Infrastructure Operations Centre (IOC) and NSP for major incidents, including attendance on emergency Change Approval Board (CAB) meetings Working with Problem Management team and NSP to identify problems and assist in More ❯

time and you will be enjoying the kind of professional development where you can explore your potential. Team Summary This is a Network Infrastructure support role within the IT Operations function at Deloitte. Reporting to the Network & Security Operations Manager and working closely with other internal ITS teams, the Network support engineer will provide internal technical consultancy … issues Work closely with technology services teams and put-up action plan for firewall OS/patch upgrades, rebuild etc. Service request fulfillment for firewall global policy and other security extension changes (VPN, IPS, URL Filtering, Application Control, etc.) Providing technical network infrastructure assistance and guidance to business relationship managers, project managers, infrastructure managers and other technical and non … Change records (RFCs) Technical governance and approval of change requests, ensuring RFCs are within technical standards and underpin a cohesive support framework Providing guidance and support to the Infrastructure Operations Centre (IOC) and NSP for major incidents, including attendance on emergency Change Approval Board (CAB) meetings Working with Problem Management team and NSP to identify problems and assist in More ❯

cyber incident investigations. Technical degree or equivalent knowledge of networks, software, and hardware. Experience in log analysis and digital forensics. Proven response experience to cyber-attacks. Experience within a Security Operations Centre. Fluent in English, both written and spoken. Excellent presentation and analytical skills. Preferred Skills and Qualifications Understanding of MITRE ATT&CK techniques and ability to explain More ❯

We are working with a fund that is number one in their specialist area and is currently rebuilding their entire pricing & risk management platform from scratch. Responsibilities: Evaluate new security technologies and tools. Improve threat detection and response capabilities with a code-first approach. Automate manual processes utilizing Infrastructure as Code (IaC). Collaborate and co-develop with external … understanding of the latest security threats, threat actors, and the tactics and techniques adopted. Proven experience with programming languages such as Python, Rust, C++, or others. Knowledge of SecOps tooling (SIEM, SOAR, Threat Intelligence). More ❯

We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. As part of a business wide transformation, we have an exciting opening for a new role of Global Head of Cyber Detections. As part of the Cyber Defence and Security Operations … for global organisations and are used to working in a high-pressure environment with geographically dispersed teams across different time-zones. The Role To detect and investigate all cyber security related incidents across WTW and escalate cases to relevant Incident Response teams Manage a geographically dispersed team supporting SOC based detection services on a 24/7/… continuous improvements in the current capabilities Manage the case manager to ensure suitability for SOC services and request improvements from various support teams when required Integrate with the SOC Operations team to ensure detection rules are correct and have associated SOC playbooks Ensure playbooks and operating procedures within the SOC are adequate and effectively identify, triage and investigate cyber More ❯