1 to 25 of 77 Security Operations Centre Jobs in the North of England

knowledge and deep expertise in Microsoft Sentinel and the Microsoft Defender suite. The ideal candidate will take a lead role in advanced threat detection, incident response, detection engineering, and security monitoring, while also optimizing license consumption and SIEM integration efforts. 5+ years in cybersecurity with 2+ years in a Level 3 SOC role Key Responsibilities: Advanced Threat Detection & Incident … Response - Investigate and analyze complex security incidents escalated from L1/L2 SOC analysts. - Leverage Microsoft Sentinel (SIEM) and Microsoft Defender XDR to conduct in-depth incident response. - Correlate multi-source telemetry (network, endpoint, identity, cloud) to identify and contain threats. Threat Hunting & Detection Engineering - Perform proactive threat hunting using KQL within Microsoft Sentinel. - Develop and fine-tune custom … analytics rules, workbooks, and hunting queries. - Apply the MITRE ATT&CK framework to build coverage and improve threat visibility. Security Engineering & Platform Management - Onboard and integrate new data sources into Microsoft Sentinel, ensuring accurate log ingestion and parsing. - Build and manage data connectors, custom log parsers, and normalization schemas. - Collaborate with cloud and infrastructure teams to onboard telemetry from More ❯

holiday and annual leave of analysts on Day/Night shift rotations. Compensation: Competitive Salary plus performance related bonus and shift allowance. This role will lead our approach to Security Response at Smart DCC, assisting with the toolsets, processes and capabilities required to effectively deliver a world class security operations Centre. Responsibilities will include leading security investigations that are initiated by managed security services (SOC) or from events generated by our security tools. You will be joining an exciting and growing area and will be instrumental in supporting and advancing the operational security capabilities of the Cyber Security Team. There will be opportunity to work on and establish new Security … as well as provide an advisory role to other elements of the business on best practice. The role will require establishing relationships with key stakeholders in Risk, Technology and Operations, as well as establishing yourself as a Subject Matter Expert (SME) for cyber security within the organisation. What will you be doing? Lead incident response for potential incidents More ❯

Location: Leeds – We offer hybrid and flexible working arrangements. Please speak to your recruiter about options for this role. Grade: GG08 Referral Bonus: £2,000 Job Description Conduct Cyber Security Monitoring to detect hacking/malware intrusion attempts against customer IT. Perform full triage of detection alarms to identify the cause, such as active infection, intrusion attempts, or false … updating SIEM/SOAR playbooks, adapting to evolving attacker TTPs. Use Intrusion Analysis skills to contribute to new detection techniques and research industry capabilities. Communicate with government or commercial security operations centers for root-cause analysis. Create low to medium complexity KQL analytics and hunt queries, conduct IOC and anomaly-based threat hunts. Identify and tag incorrect alert … into actionable detections. Coach junior analysts and colleagues as needed. Lead Threat Hunting workgroups during events for complex TTPs across industries. Deliver ad-hoc training and workshops to promote security awareness and knowledge sharing. Provide daily SITREPs on attacker activity. Experience Knowledge of Intrusion Analysis on Windows devices and servers. Knowledge of Intrusion Analysis in Azure, including attacker methods More ❯

Contract Type: Contract (6 months) Day Rate: Inside IR35 (Flexible) About the Role A leading organisation is looking for an experienced SOC Analyst (Level 3) to join its cybersecurity operations team. This role is ideal for senior professionals who thrive in high-stakes environments and enjoy working on proactive threat detection, incident response, and advanced security automation. Key … Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and automation playbooks Perform deep-dive analysis on malware, phishing, and lateral movement threats Correlate events across diverse log sources and technologies Collaborate with engineering teams to optimise … Microsoft security tool integration Mentor junior SOC analysts and contribute to internal knowledge sharing Maintain and enhance incident response processes and documentation Produce regular SOC performance reports and threat intelligence summaries Required Skills & Experience: 5+ years in cybersecurity, with 2+ years at SOC Level 3 or senior analyst level Expertise in Microsoft Sentinel (KQL, custom rules, automation, dashboards) Strong More ❯

Salary Competitive Junior Security Operations Analyst opportunity also available for someone entry level, either Post Grad or career mover with an interest in cyber security. Manchester or Nottingham (Hybrid working model) Shift: 4 on 4 off, 2 days, 2 nights and 4 off. The Nights and Weekends are working remotely, day shifts in the week are required in … the office. Competitive Salary plus performance related bonus and shift allowance. As a SOC Analyst, you will be a critical part of our security operations team, tasked with protecting our critical IT systems and the UK's smart metering infrastructure. You'll be responsible for monitoring network activity, identifying and responding to security threats, and conducting in … depth investigations to determine the root cause of incidents. You will collaborate with other security teams to enhance our security posture, contribute to the development and improvement of security processes and procedures, and stay up to date on the latest security threats and vulnerabilities. This role offers an opportunity to work on challenging security projects More ❯

Location: Leeds and surrounding area Grade: GG08 - GG09 Role Description BAE Systems have been contracted to undertake the day-to-day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK Critical National Infrastructure (CNI) organisation. The networks protected are predominantly hosted in cloud platforms, with many … working in a multi-disciplinary and diverse team Self-motivated and motivates others, keeping morale and performance high Ability to mentor others Desirable Qualifications: Degree-level education in Cyber Security or related area SANS GNFA, GCIH, GCIA, GCTD CySA+ AWS – Cloud Essentials, Security EC-Council Certified Ethical Hacker or demonstrable equivalent experience We are embracing Hybrid Working. This … perspectives, skills, life experiences and backgrounds – the best and brightest minds – can work together to achieve excellence and realise individual and organisational potential. Job Title: Cyber Threat Analyst - National Security West Job City: Leeds Professional Area: Cyber Security Specialists #J-18808-Ljbffr More ❯

Cyber Threat Analyst - National Security West View more categories View less categories Clearance Level DV ,SC ,None/Undisclosed Sector Defence ,Engineering ,Information Technology Job Type Permanent Location(s): UK, Europe & Africa : UK : Leeds BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand … area Grade: GG08 - GG09 Referral Bonus: £5,000 Role Description BAE Systems have been contracted to undertake the day-to-day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK Critical National Infrastructure (CNI) organisation. The networks protected are predominantly hosted in cloud platforms, with many … working in a multi-disciplinary and diverse team Self-motivated and motivates others, keeping morale and performance high Ability to mentor others Desirable Qualifications: Degree-level education in Cyber Security or related area SANS GNFA, GCIH, GCIA, GCTD CySA+ CREST - Intrusion Analyst, Cyber Threat Intelligence Azure - SC200, SC500, AZ500 AWS - Cloud Essentials, Security EC-Council Certified Ethical Hacker More ❯

our client in Manchester who are a highly innovative company in their field. Consequentially they require an accomplished, well-practised Senior SOC Analyst to impact their mission to innovate security response to deliver a best in class Security Operations Centre. As Senior SOC Analyst you will develop and implement lead incident response for potential incidents identified, ensure … that incidents are correctly reported and documented in accordance with the relevant policies and procedures. The Senior SOC Analyst will be the primary point of contact for the Security Operations Manager for potential incidents, support more junior analysts’ subsequent analysis and investigation to determine their severity and the response required. Additionally the Senior SOC Analyst will serve as … a technical escalation point during security incidents, working collaboratively to establish the extent of an attack, the business impacts, and advising on how best to contain the incident along with system hardening and mitigation measures to prevent a re-occurrence. This is a fantastic opportunity for a Senior SOC Analyst to collaborate with Security Operations Manager where More ❯

by our client in Manchester who are a highly innovative company in their field. Consequentially they require an accomplished, well-practised SOC Analyst to impact their mission to innovate security response to deliver a best in class Security Operations Centre. As SOC Analyst you will identify incidents using multiple SIEM technologies and subsequent analysis and investigation to … incidents identified, ensure that incidents are documented in accordance with the relevant policies and procedures and required escalations/notifications take place. Be prepared to provide technical expertise during security incidents, establishing the extent of an attack, and advising on how best to contain the incident along with advice on systems hardening and mitigation measures to prevent a re … departments to implement necessary changes to counter an attack and contain malicious activity. The SOC Analyst will maintain a keen understanding of evolving threats and vulnerabilities to ensure the security of the network. Assist in updating Protective Monitoring/SOC documentation, processes and procedures and ensure currency. Additionally you will generate reports for IT administrators, business managers, and security More ❯

Are you passionate about Cyber Security and Enterprise Architecture? Do you have senior-level experience as a Cyber Security Professional? Join us to shape the security technology and tooling strategy for HMRC and influence the UK Public Sector. Enjoy a healthy work/life balance while making a significant impact. HMRC are now one of the most … IT Landscape across Multi-Hybrid Cloud Platform. Working in one of the most complex infrastructures across Europe with significant investment and over 1000 changes monthly impacting over 600 services. Security Modernisation is critical to this initiative and our collective success. Now is a great time to join us as we establish a team of outstanding people in the fields … of Security Architecture, Risk Assessment and Testing who will create and run these new and improved technology services. This is a chance to work on services that matter and affect the lives of millions of citizens as well as delivering Government Security services directly across circa 400 Government Departments and Arms-Length Bodies (ALBs). Job description HMRC More ❯

Leeds - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Grade: GG08 Job Description Conducting Cyber Security Monitoring to detect hacking/malware intrusion attempts against customer IT. · Full triage of detection alarms to accurately identify the cause of the alarm, be it active infection, attempted … by Industry. Eg documenting requirements for new capabilities/techniques and associated dependencies for consideration by the Intrusion Analysis Lead for prioritisation. · Ad-hoc communications with government or commercial security operations centres as part of root-cause analysis · Creation of low-medium complexity KQL analytics and hunt queries, conducting IOC and anomaly-based threat hunts, including root cause … Lead Threat Hunting workgroups during Hunting Events for specific complex TTPs, across multiple industries and departments. · Deliver ad-hoc training/workshops intra-org which encourage User Awareness of security risk, and uplift other team members with new knowledge. Provide daily SITREPs to local teams regarding attacker activity · Knowledge of Intrusion Analysis on Windows end user devices and servers. More ❯

high-impact role with significant autonomy. You’ll need to think critically, and hunt methodically. As a Threat Hunter, you will actively search for cyber threats that evade traditional security solutions. Your role will involve conducting in-depth analysis, identifying indicators of compromise (IOCs), and working cross-functionally with the Security Operations Centre Analysts, Detection Engineers … automate hunts and visualise results. This individual has successfully built or significantly contributed to threat hunting programs, translating threat intelligence into actionable insights and working alongside detection engineers and security analysts to operationalise findings. They should be driven by curiosity and methodical thinking, constantly seeking to improve visibility and detection coverage across complex environments—including hybrid or cloud-native … understanding of the MITRE ATT&CK framework, TTP analysis, and adversary emulation. Deep familiarity with hypothesis-driven threat hunting frameworks and methodologies. Ability to work autonomously while collaborating across security, engineering, and business teams. Strong use of Splunk Programming Language. Strong scripting/query language skills (e.g., Python, KQL, SQL, PowerShell). Hands-on experience using Jupyter Notebooks for More ❯

SOC Analyst Dundee - Hybrid Competitive salary & benefits We are Systal: a global managed network, cloud and security transformation specialist. We provide complex and strategic technology services for enterprise businesses, managing 200,000+ assets across 93 countries. These services help our customers achieve strategic technology transformation and maximise the business value, security and innovative potential of their IT infrastructure. … We are seeking enthusiastic, dedicated and detail-oriented Level 1 SOC Analyst to join our UK based Security Operations Centre (SOC). The successful candidate will be responsible for the initial analysis and triage of security alerts, monitoring security systems, and supporting the development of security event investigation and analysis within a large Organisational … Environment. This role is critical in identifying and responding to security incidents to protect our customers information assets. What will you be doing? •Monitor Security Information & Event Management (SIEM) Tools: Continuously monitor SIEM tools to pro-actively engage with and investigate potential security incidents. •Incident Identification and Triage: Identify, analyse, and prioritize security incidents, escalating them More ❯

Social network you want to login/join with: Security Operations Center Analyst, bolton, greater manchester col-narrow-left Client: Queen Square Recruitment Location: bolton, greater manchester, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 col-wide Job Description: Our client, a leading global consultancy … Contract Type: Contract (6 months) Day Rate: Inside IR35 (Flexible) About the Role A leading organisation is looking for an experienced SOC Analyst (Level 3) to join its cybersecurity operations team. This role is ideal for senior professionals who thrive in high-stakes environments and enjoy working on proactive threat detection, incident response, and advanced security automation. Key … Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and automation playbooks Perform deep-dive analysis on malware, phishing, and lateral movement threats Correlate events across diverse log sources and technologies Collaborate with engineering teams to optimise More ❯

Social network you want to login/join with: Security Operations Center Analyst, warrington, cheshire col-narrow-left Client: Queen Square Recruitment Location: Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 col-wide Job Description: Our client, a leading global consultancy, is partnering with a prestigious end … Contract Type: Contract (6 months) Day Rate: Inside IR35 (Flexible) About the Role A leading organisation is looking for an experienced SOC Analyst (Level 3) to join its cybersecurity operations team. This role is ideal for senior professionals who thrive in high-stakes environments and enjoy working on proactive threat detection, incident response, and advanced security automation. Key … Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and automation playbooks Perform deep-dive analysis on malware, phishing, and lateral movement threats Correlate events across diverse log sources and technologies Collaborate with engineering teams to optimise More ❯

Contract Type: Contract (6 months) Day Rate: Inside IR35 (Flexible) About the Role A leading organisation is looking for an experienced SOC Analyst (Level 3) to join its cybersecurity operations team. This role is ideal for senior professionals who thrive in high-stakes environments and enjoy working on proactive threat detection, incident response, and advanced security automation. Key … Responsibilities Lead the investigation and resolution of high-severity security incidents Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and automation playbooks Perform deep-dive analysis on malware, phishing, and lateral movement threats Correlate events across diverse log sources and technologies Collaborate with engineering teams to optimise … Microsoft security tool integration Mentor junior SOC analysts and contribute to internal knowledge sharing Maintain and enhance incident response processes and documentation Produce regular SOC performance reports and threat intelligence summaries Required Skills & Experience: 5+ years in cybersecurity, with 2+ years at SOC Level 3 or senior analyst level Expertise in Microsoft Sentinel (KQL, custom rules, automation, dashboards) Strong More ❯

systems to a secure state, and minimize damage. Continuously monitor the threat landscape for emerging threats, vulnerabilities, and evolving attack tactics. Communicate with clients, internal teams, and vendors regarding security incidents and recommendations. Develop and improve SOC processes and designing training programs. Provide guidance on effective cyber defenses and actionable, cost-effective solutions. Focus on utilizing SOAR platforms to … automate and improve security processes, incident response, and threat detection. Develop and implement plans to mitigate identified risks, including security controls and countermeasures. Your Profile: Essential knowledge/experience: Experience with Alerts/Threats Investigation. Driving Major Incident Response. Proficient in SOC. Knowledge of Incident Response. TCS is consistently voted a Top Employer in the UK and globally. … application and at any stage of the recruitment process. Beware of Fraudulent offers This is to notify you that TCS does not ask for any sort of payment or security deposit from candidates at any stage of the recruitment process. The firm never sends out job offers from free internet email services like Gmail, Yahoo Mail, and so on. More ❯

People at Pret work hard, have fun, learn a lot and really grow. Right now, we’re looking for a passionate Cyber Security Manager to join us. Job Purpose The Cyber Security Manager role will manage the development, implementation, oversight and enhancement of the organisation’s cybersecurity controls to protect its information systems and data. The role will … cloud infrastructure is appropriately secured and that the cybersecurity strategy is executed and maintained, both within technology projects and other business functions. This position reports to the Global Cyber Security Officer and involves leading an outsourced team of security professionals, identifying and managing vulnerabilities and risks, executing security roadmaps and responding to cybersecurity events and incidents that … blend of hands-on technical work and strategic management to improve the organisation’s cybersecurity posture. Working closely with external suppliers and vendors, the role will lead an outsourced security operations team and ensure that cybersecurity tooling is operating effectively and aligned with business objectives. Key Duties/Responsibilities Strategy & Planning Develop and implement cybersecurity strategies aligned with More ❯

of advancing to a full SOC Analyst position within 18 months following your successful probationary period. Key Responsibilities Incident Triage and Investigation – You review and prioritise new alerts from security monitoring tools (e.g., SIEM, endpoint solutions), performing basic checks to distinguish genuine threats from false positives. You rely on established playbooks and make initial validation decisions while escalating more … detailed ticket notes and supporting evidence, facilitates smooth handovers to Shift Leads, Senior SOC Analysts, or customer teams. Alert Validation Combine data from SIEM platforms, endpoint solutions, and other security tools to develop a comprehensive view of alerts. Document your findings using clear, evidence-based reasoning to determine if further investigation is warranted. Indicator of Compromise (IOC) Analysis Validate … SOC Analysts when advanced techniques are required. Reporting and Documentation Maintain accurate records in ticketing systems, ensuring each alert has a clear summary and documented conclusion. Contribute data to security reviews by highlighting trends and recurring issues. Actively engage in training, self-study, and hands-on exercises to remain updated on emerging cybersecurity threats and best practices. Share newly More ❯

Security (SOC) Engineer Manchester/Remote (On site once a month) £35K- £55K (depending on experience) + Great Benefits A SOC Engineer is required for our medical client who are based in Manchester. The successful candidate will be responsible for delivering hands-on technical expertise to support in defending the organisation's systems from attack whilst ensuring they operate … seamlessly and are secure, enabling the team to deliver effective cybersecurity. You will work within the Security Operations Centre (SOC), supporting the engineering lead in configuring, implementing, and maintaining the tools that support all SOC functions. You will assess, implement, configure, and optimise our technical security controls, tools, and data feeds to maintain and continuously improve … the visibility across our environments. You will also lead initiatives to improve the security posture and respond to incidents, problems and change requests from a security operations perspective. Essential skills- Practical experience working within a SOC (Security Operations Centre) or in a cyber security focused role - Ideally 1- 2 years working as an More ❯

colleagues. We've achieved big things already, but we're just getting started. This is where you come in... Job Description An opportunity has arisen for a Senior Cyber Security Analyst , to become part of the Radius Cyber Security Team. This is an excellent opportunity for a seasoned professional to contribute to a high-performing Cyber Team in … of Cyber and will be located at our Emperor Court office in Crewe . This role is crucial to strengthening the organisation's cyber resilience. As a Senior Cyber Security Analyst, you will play a key role in protecting systems, networks, and data against cyber threats. You will lead threat detection and incident response efforts, support the development of … security policies and controls, and work closely with stakeholders to ensure compliance and security best practice across the business. You will also assist with maintaining and improving the company's accredited Information Security Management System (ISMS), with a particular focus on ISO 27001 and Cyber Essentials Plus requirements. In addition, you will help mentor team members, providing More ❯

A large enterprise organisation is seeking an experiencedLevel 3 SOC Analyst for an initial 6-month rolling contract. This is a key role within a mature and well-established Security Operations Centre, offering the opportunity to work on complex threats and contribute to a high-performing cybersecurity function. This is a challenging, rewarding role for a seasoned … make a tangible impact. Apply now to join a team focused on protecting enterprise assets against evolving cyber threats. Key Responsibilities: Lead investigations and response efforts for high-severity security incidents. Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite. Develop and fine-tune analytic rules, workbooks, and automation playbooks in Sentinel. Perform deep-dive analysis of … malware, phishing, and lateral movement techniques. Collaborate with engineering teams to optimise Microsoft security tool integrations. Maintain and enhance incident response procedures and documentation. Skills/Must have: Over 5 years of experience in cybersecurity, including a minimum of 2 years in a Level 3 SOC or equivalent role. Expert-level proficiency with Microsoft Sentinel, including KQL, custom analytic More ❯

QA Ltd West Yorkshire, England, United Kingdom Join or sign in to find your next job Join to apply for the Head of Cyber Security Operations role at QA Ltd QA Ltd West Yorkshire, England, United Kingdom Join to apply for the Head of Cyber Security Operations role at QA Ltd Remote (Once in a month … London or Leeds office) This senior role will involve you in strategic decision-making, system implementations, and the adoption and testing of new processes and procedures which improve the security and robustness of QA’s organisational infrastructure and associated IT systems. As a Head of Cyber Security Operations you will be responsible for safeguarding QA from intrusion … security threats, security weaknesses, software bugs and exploits. You will be responsible for direct and virtual teams involved in keeping QA secure. Role Responsibilities Management of the Security Operations Centre service, ensuring resources are aligned to monitor and protect QA IT assets including 24/7 out of hours on call coverage. Responsible for security More ❯

Work for an award-winning provider of Security Services, specialising in Cyber Security Services such as Vulnerability Management, Information Security, Penetration Testing, and Managed Security Services. We boast a fully managed Security Operations Centre (SOC) staffed by dedicated professionals. We're seeking a skilled Cyber Security Engineer to join our clients eam. … Sentinel SIEM, Microsoft Defender, and KQL scripting. This role demands a proactive individual who can monitor and protect our organization's digital assets while staying updated on the latest security threats and trends. If you are interested in this opportunity, apply today! Responsibilities: Implement and manage Azure Sentinel SIEM for threat detection, incident response, and security monitoring. Configure … maintain Microsoft Defender for endpoint protection and threat detection. Develop and maintain KQL scripts for querying and analysing data within Azure Sentinel. Collaborate with cross-functional teams to identify security vulnerabilities and develop appropriate solutions. Conduct regular security assessments and penetration testing to identify and mitigate potential risks. Stay updated on emerging cyber security threats and best More ❯

Ready to be our next Cloud Security Engineer ? We're on the lookout for a tech whiz to join our brilliant team in Sunderland and help us keep things super secure for our players and our business. If you're passionate about cloud security and love a challenge, you're in the right place! Cloud Security Engineer … At tombola, we take security seriously - but we also like to have a bit of fun while we're at it! As our Cloud Security Engineer , you'll be building on our existing operational security, with a special focus on protecting our cloud infrastructure. You'll be hands-on, designing, implementing, and managing top-notch security … play a key part in developing our vulnerability management program, working closely with our operational support, infrastructure, and development teams. Plus, you'll be right in the thick of security event monitoring, threat intelligence, and incident management - keeping us one step ahead! What you'll be doing: Delivering SOC Capabilities: You'll be a key team member in delivering More ❯