1 to 25 of 47 Security Operations Centre Jobs in London

Role Description: Security Analyst - Network & Endpoint/SOC Security Specialist We are looking for a highly capable and technically skilled Security Analyst to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The successful candidate will … have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat detection, model tuning, and behavioural analysis. Investigate anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and … update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC team members to ensure timely resolution and documentation. Threat Intelligence & Insider Threat Monitoring: Monitor threat feeds and manage Indicators of Compromise More ❯

Role Description: Security Analyst - Network & Endpoint/SOC Security Specialist We are looking for a highly capable and technically skilled Security Analyst to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The successful candidate will … have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat detection, model tuning, and behavioural analysis. Investigate anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and … update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC team members to ensure timely resolution and documentation. Threat Intelligence & Insider Threat Monitoring: Monitor threat feeds and manage Indicators of Compromise More ❯

Contract Role – Security Analyst (Network & Endpoint) – England/Remote – 4+ Months Initial We are looking for a highly capable and technically skilled Security Analyst (Network & Endpoint) to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The … successful candidate will have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Role Overview: Job Title: Security Analyst (Network & Endpoint) Location: England/Remote Contract Type: Contract Duration: Contract till 31st Mar 26 Sector: Healthcare . Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat … anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

CYBER SECURITY ANALYST | SECURITY OPERATIONS CENTER (SOC). Summer-Browning Associates is supporting our client in the Central Government who is seeking a Cyber Security Analyst for an initial 12-month assignment, with the possibility of extension. Location: London | Hybrid| Remote The ideal candidates will hold active DV clearance and have a proven background in Cyber … Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform triage of security events to determine their … scope, priority, and impact, while making recommendations for efficient remediation. Experience in network security principles, firewalls, and access control mechanisms. Preferred Qualifications: - Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable. To apply, please submit your latest CV for review. More ❯

and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! The Cyber Security Incident Response Team (CSIRT), part of Counter Threat & Engineering (CT&E), responds to digital security threats and incidents globally from bp hubs in Houston, Sunbury, Kuala Lumpur, Pune … and Singapore. The Security Operations Center (SOC) raises incidents to CSIRT, which conducts long-term investigations using digital forensics, advanced techniques, and collaborating across bp. Team members must understand bps business segments and address a broad range of security-related questions. You will help ensure enterprise security, enabling safe and secure business operations as part … of this global team. Key Accountabilities Support the bp SOC as an escalation point for security events and incidents. Conduct digital forensic investigations on high-priority incidents to include functions such as host (disk and memory) forensics, network forensics and log analysis. Work across Digital Security and the bp business functions to partner on incidents and to ensure More ❯

Manager to protect DIT and the wider UK government from cyber threats in a fast paced and exciting role, responsible for the Vulnerability Management and Threat Hunting of the Security Operations Centre (SOC) Target Operating Model (TOM). £62,534 to £82,200 (including allowances) London £66,257 to £82,200, National £62,534 to £78,580. … role You will be helping to protect DBT and the wider UK government from cyber threats in a fast paced and exciting role. Reporting to the Head of Cyber Security Operations, you will manage and be responsible for the Threat and Vulnerability Management function within the SOC, by providing leadership on identification and improvement opportunities, and ensuring service … owners are aware of weaknesses in their security posture and are empowered with the right information to take appropriate actions. A healthy curiosity will be essential, to actively go out and discover items of potential interest to the team, ensuring that there is collaboration between the architects, SOC engineers and analysts, and risk managers to deliver a documented risk More ❯

business, driving valuable insight, guidance and feedback back into Palo Alto Networks. You will work across product teams to deliver this feedback Your Impact Drive innovation within the modern Security Operations Center (SOC) by developing content and capabilities aligned with Cortex and detection-focused workflows. Collaborate with legal, sales, product, and customer-facing teams to translate security operations needs into actionable product improvements. Lead and coordinate cross-functional initiatives across product management, engineering, and field teams for high-impact security use cases. Build high-quality content for the Cortex Marketplace including detection rules, parsers, dashboards, and other SOC-enabling artifacts. Provide structured product feedback to influence roadmap decisions based on real-world SecOps challenges … and opportunities. Create detailed documentation and usage guides tailored for analysts, detection engineers, and security practitioners. Promote operational excellence by designing scalable detection and response workflows grounded in industry best practices and threat-informed defense. Qualifications Your Experience Ability to inspire and align teams across functions, paired with strong execution and delivery skills. 2+ years of experience in security More ❯

business, driving valuable insight, guidance and feedback back into Palo Alto Networks. You will work across product teams to deliver this feedback Your Impact Drive innovation within the modern Security Operations Center (SOC) by developing content and capabilities aligned with Cortex and detection-focused workflows. Collaborate with legal, sales, product, and customer-facing teams to translate security operations needs into actionable product improvements. Lead and coordinate cross-functional initiatives across product management, engineering, and field teams for high-impact security use cases. Build high-quality content for the Cortex Marketplace including detection rules, parsers, dashboards, and other SOC-enabling artifacts. Provide structured product feedback to influence roadmap decisions based on real-world SecOps challenges … and opportunities. Create detailed documentation and usage guides tailored for analysts, detection engineers, and security practitioners. Promote operational excellence by designing scalable detection and response workflows grounded in industry best practices and threat-informed defense. Qualifications Your Experience Ability to inspire and align teams across functions, paired with strong execution and delivery skills. 2+ years of experience in security More ❯

Job Title: Technical Operations Analyst - Fully Remote (MUST BE BASED IN THE UK) - No Sponsorship Available Job Description The Technical Operations Analyst is responsible for providing extensive technical support and ownership for maintaining the service throughout the life of the contract. This role involves owning the technical delivery model and fostering strong relationships with internal supplier resolver teams … delivery. Maintain strong relationships with internal supplier resolver teams. Ensure a seamless experience for the customer through effective operations. Essential Skills (Please ensure your CV reflects these skills) SOC (Security Operations Centre) experience. Cyber security expertise Security management Risk management proficiency Technical support experience Operational analysis skills Why Work Here? Join an environment that values … Contacting Us" section of our Online Privacy Notice at (url removed)/en-gb/privacy-notices for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as More ❯

Cyber Security Consultant- Remote An exciting opportunity has arisen for a Cyber Security Consultant who can provide practical advice and hands-on support to improve security project and manage alerts. We’re seeking a specialist who has expertise in Microsoft Defender & Sentinel who can turn alert data into actionable intelligence, identify opportunities for optimisation, and advance the … customer’s SOC maturity through data-driven improvements and Sentinel/Defender best practices. As a Cyber Security Consultant, your mission is clear; be technically proficient and provide practical solutions rather than theoretical advice. The consultant should be able to work closely with the team to implement changes and improve security. Cyber Security Consultant’s Responsibilities: Develop and … tools such as Advanced Hunting, Threat Analytics, and Attack Surface Reduction to strengthen detection and response. Recommend SOC process improvements through data-driven insights and best practice alignment. Cyber Security Consultant’s Required Knowledge and Experience: Extensive experience with Microsoft Defender, Sentinel, and possibly working in a Security Operations Centre (SOC). Experience extracting alert data More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Director in Unit 42 is a senior-level consulting position. The individual will be responsible for the day to day delivery of our threat-led and technology driven cyber security consulting services through leading and directly overseeing a team of Consultants. This person will have experience in developing teams and working with sales and domain leaders. The Consulting Director … and Customer Success Manager (CSM) to deliver pitches and prepare proposals to win new business and manage client relationships. We are seeking an individual who is passionate about cyber security and making a difference. You will be a continuous learner and have a sound knowledge of emerging cybersecurity trends and technologies. The individual serves as a trusted advisor to … cross-sector clients. Your Impact Oversee the delivery of our proactive consulting services, ensuring their consistency, quality and highest level of customer service Provide hands-on, expert-level proactive Security Operations Center (SOC) assessment and transformation services to clients and deliver findings to CxO and/or Board of Directors Work with the BDM and CSM to perform More ❯

Director in Unit 42 is a senior-level consulting position. The individual will be responsible for the day to day delivery of our threat-led and technology driven cyber security consulting services through leading and directly overseeing a team of Consultants. This person will have experience in developing teams and working with sales and domain leaders. The Consulting Director … and Customer Success Manager (CSM) to deliver pitches and prepare proposals to win new business and manage client relationships. We are seeking an individual who is passionate about cyber security and making a difference. You will be a continuous learner and have a sound knowledge of emerging cybersecurity trends and technologies. The individual serves as a trusted advisor to … cross-sector clients. Your Impact Oversee the delivery of our proactive consulting services, ensuring their consistency, quality and highest level of customer service Provide hands-on, expert-level proactive Security Operations Center (SOC) assessment and transformation services to clients and deliver findings to CxO and/or Board of Directors Work with the BDM and CSM to perform More ❯

SOC Engineer - Hybrid Location: Hybrid - 2 days per week onsite (London) Salary: Competitive + Benefits Employment Type: Permanent A fast-growing, global cyber security company is looking for a Security Operations Center (SOC) Engineer to join their team. This is an exciting opportunity to work with cutting-edge security technologies in a dynamic and collaborative environment. … Key Responsibilities: Monitor and respond to security alerts and incidents across cloud and on-prem environments. Perform threat hunting and analysis using SIEM, EDR, and other security tools. Collaborate with internal teams to improve detection and response capabilities. Support incident response activities and contribute to post-incident reviews. Maintain and tune security monitoring systems to ensure optimal … performance. What We're Looking For: 3+ years of experience in a SOC or similar security operations role. Strong understanding of security principles, threat landscapes, and incident response. Hands-on experience with SIEM platforms (e.g., Splunk, SentinelOne, Chronicle, etc.). Familiarity with cloud environments (AWS, Azure, GCP) and container security. Excellent analytical and communication skills. Why Join More ❯

Engineer to join the global IT team. The successful candidate will play a key role in designing, implementing, maintaining, and supporting the entire IT infrastructure, which supports the business operations across multiple international locations. This is a practical role requiring a combination of deep technical expertise in Microsoft, VMware, and Cloud technologies, strategic thinking, and the ability to work … and cloud-based systems. Manage and administer our hybrid cloud environment, with a strong focus on Microsoft Azure, Entra ID, and Azure MDM for modern device management. Ensure the security of our infrastructure and data by managing on-premises and cloud security controls and working closely with the Security Operations Centre (SoC) to action vulnerability … as well as core Microsoft services (AD, GPO, DNS, NPS/Radius, CA, SMTP Relay), and our extensive VMware vSphere/vCenter virtualisation platform. Administer and optimise our System Centre Configuration Manager (SCCM) hierarchy, including Primary/Secondary sites, Distribution Points, Cloud Management Gateway (CMG), and Azure integration for global software deployment and updates. Manage and maintain our VDI More ❯

CYBER SECURITY ENGINEER | SECURITY OPERATIONS CENTER (SOC). Summer-Browning Associates is supporting our client in the Central Government who is seeking a Cyber Security Engineer for an initial 12-month assignment, with the possibility of extension. Location: London | Hybrid| Remote The ideal candidate will hold an active DV clearance and have a solid background in … Cyber Security working within a high-threat government environment, with the following skills and experience: Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Experience in SOC operations, incident response, and forensic analysis. Ability to perform … triage of security events to determine their scope, priority, and impact, while making recommendations for efficient remediation. Experience in network security principles, firewalls, and access control mechanisms. Preferred Qualifications: - Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable. To apply, please submit your latest CV for review. More ❯

forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business cybersecurity More ❯

forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business cybersecurity More ❯