26 to 50 of 65 Security Operations Jobs in the South East

Security Analyst – 5-week Contract – Fully Remote My Customer is seeking a proactive and technically skilled Security Analyst to join their growing cybersecurity function. This role acts as the critical bridge between the SOC (Security Operations Centre) team and the wider management group — ensuring that security incidents are not only investigated and remediated effectively but … also translated into actionable insights and long-term improvements across the business. Skills required from the Security Analyst: Proven experience in a Security Analyst , Incident Response , or SOC environment (2nd line or similar). Strong hands-on experience in threat investigation, log analysis, and remediation . Good understanding of common security frameworks and practices (e.g., MITRE ATT … CK, NIST, ISO 27001). Familiarity with a range of security tools and platforms – experience with Microsoft Sentinel is desirable but not essential. Excellent communication skills – able to liaise confidently between technical and non-technical teams. A consultative mindset with the ability to translate technical findings into meaningful business recommendations. Key Responsibilities from the Security Analyst: Act as More ❯

Security Analyst (Network & Support) Location - London (Hybrid) Duration - 6 Months (Initially) Rate - £450 (A day) IR35 - Outside IR35 Summary To be part of Digital Services, actively contributing as a member of the Infrastructure and Operations Team to support and develop the Network Infrastructure, Services, and Security. Provide 3rd line support for all wired, Wi-Fi, and remote access … network services to staff, students, contractors, and visitors. Act as a key point of reference in network security, contributing to the implementation, development, provisioning, and operational support of network dependencies. The post holder will be expected to support the designing, implementation, and maintenance of our client's Network Security Infrastructure to protect against cyber threats. Accountabilities and Responsibilities … Security Operations Support Serve as a reference point for network security across IT teams, providing guidance and specialised expertise on security measures. Conduct vulnerability assessments, security audits, and continuous monitoring of network traffic for anomalies using advanced security tools. Collaborate with IT teams to ensure security measures are integrated into network architecture and More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where your expertise will help … implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work closely with clients to strengthen their security operations and response capabilities. This is a technically advanced role that combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and … clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to analyse and visualise raw security data. Integrate third-party tools (firewalls, IAM, telemetry) into Sentinel. Use MITRE ATT&CK to anticipate and counter adversarial activity. Apply cost-optimisation principles (data tiering, filtering). Collaborate More ❯

day per week minimum *Tuesday* 4C are recruiting on behalf of our client for an experienced Technical Lead, to lead and manage our Infrastructure projects team, focusing on specific security remediation workstreams across our enterprise systems and shared infrastructure services. You will act as the primary technical lead and solutions architect for these workstreams ensuring scalable, secure and resilient … solutions that align with organisational objectives. This role will be within the infrastructure projects team and act as the technical lead for all security/vulnerability remediation activities of the current Windows endpoint and server estate, with an initial focus of Cyber Essentials compliance. The role will also be responsible for the allocation and management of tasks/work … packages for a team of Senior System Analysis who will also be focused on security/vulnerability remediation activities of the current Windows estate. The overall objective is to assist with security/venerability patching, applications packaging other areas of support for the University’s estate of approximately 4,500 Windows 11 devices, plus the University’s current More ❯

secure and efficient services that directly impact staff and student experience. This role will be within the infrastructure projects team and be directly responsible for undertaking a range of security/vulnerability remediation activities of the current Windows endpoint and server estate, with an initial focus of Cyber Essentials compliance. Candidates may also be expected to provide general support … activities for the current Windows estate and related on-going Windows infrastructure maintenance tasks. The overall objective is to assist with security/venerability patching, applications packaging other areas of support for the University’s estate of approximately 4,500 Windows 11 devices, plus the University’s current Windows server estates. The initial engagement is for a fix term … part of a team Excellent communication, engagement, proactive, positive, can-do attitude Strong experience with MS Active Directory, SCCM, Intune AD Group Policy configuration and troubleshooting Solid understanding of security requirements for Windows endpoints/applications to meet Cyber Essentials compliance Specific experience of conducting security/vulnerability patching and remediation at scale Application packaging/deployment via More ❯

Our client, a leading city-based insurance broker, is seeking an experienced Information Security Manager to lead the development and delivery of the firm's information security programme. This key role will be central to protecting business systems, data, and operations across a growing organisation. Key responsibilities:* Design and implement security policies and procedures aligned with … ISO 27001, NIST, and other recognised frameworks. * Manage the information security risk register and lead internal and external audits. * Oversee incident response, including investigation, containment, and recovery. * Conduct vendor security assessments and review contractual security requirements. * Lead day-to-day security operations, including access control, vulnerability management, and endpoint protection. * Build and mentor a new … security team while driving organisation-wide security awareness. Key experience:* Extensive experience in information security within regulated financial services. * Strong understanding of UK insurance broking operations. * Knowledge of FCA, PRA, GDPR, and SOX regulatory frameworks. * Experience in post-acquisition integration and operating model design. * Excellent stakeholder engagement and communication skills. This is an outstanding opportunity for a More ❯

lot to offer! Our new position of Lead Senior SOC Analyst will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our clients critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. Come and make … Clearance for this role. What you'll be doing: Lead and empower a team of SOC analysts, providing mentoring, performance management, and career progression opportunities. Monitor, triage, and investigate security incidents on critical client infrastructure. Perform in-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain … improve and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical and non-technical audiences. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Represent the SOC within Stakeholders meetings. Ability to work in a hybrid approach from home and More ❯

a lot to offer! Our new position of Senior SOC Analyst will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our client’s critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. Come and … Clearance for this role. What you'll be doing: Lead and empower a team of SOC analysts, providing mentoring, performance management, and career progression opportunities. Monitor, triage, and investigate security incidents on critical client infrastructure. Perform in-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Provide Incident Response support. Maintain … improve and develop team knowledge of SOC tools, security operations and triage. Prepare reports for managed clients to both technical and non-technical audiences. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Represent the SOC within Stakeholders meetings. Ability to work in a hybrid approach from home and More ❯

Job Title : Infrastructure & Cloud Security Engineer Contract Type: Permanent, Part Time, Full Time, Job Share option available Salary Range: £37,600 - £56,400 Location: Eastleigh - hybrid Closing Date for applications: Sunday 30th November Infrastructure & Cloud Security Engineer: We have an exciting opportunity for an Infrastructure & Cloud Security Engineer to join our Information Security team at Ageas … reporting directly to the Counter Threat Unit Manager. As an Infrastructure & Cloud Security Engineer, you will play a key role in safeguarding our technology landscape by leveraging your strong background in infrastructure engineering, cloud technologies, and IT security operations. You will manage solutions and tooling across hybrid environments, with a particular focus on Azure cloud platforms, while ensuring … robust security practices are embedded throughout Main Responsibilities: Support the day-to-day operations of the Counter Threat Unit, ensuring security controls are effectively implemented across infrastructure and cloud environments. Configure, maintain, and optimise security tools and solutions (e.g., SIEM, EDR )to protect enterprise systems. Monitor systems and networks for anomalies, gather and analyse threat intelligence More ❯

We have opportunities for L1 SOC Analysts to be a part of our success and work with multiple, high profile clients. You should showcase your proficiency in a busy Security Operations Center with a technology-oriented attitude and the capacity to assume control. From a technical perspective we are using Microsoft Sentinel, Splunk and MISP Threat sharing so … days off. You do need to be eligible for DV Clearance for this role, and cannot start until your clearance is through. What you'll be doing: Monitor, analyse security alerts and events, conduct initial investigations, and determine the appropriate response. Raise complex incidents to Senior Analysts. Manage SOC Incident queues. Support the maintenance of monitored asset baselines of … informed defense. Participate in a team effort to guarantee that corporate data and technology platform components are shielded from known threats. Collaborate with team members to maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Aid the development and use of threat intelligence throughout the service. Ability to work shifts from our office More ❯

SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high-severity cyber incidents and … escalated security events, leveraging your technical expertise, analytical mindset, and industry-standard tools to contain, eradicate, and recover from cyber threats. Your work will directly contribute to safeguarding my client's network systems, operational technology, and customer data from emerging and sophisticated cyber risks. Key Responsibilities As a senior member of the Security Operations team, you will … and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration and effective alert correlation across cloud and on-prem environments. Support and develop the organisation's SOAR More ❯

Location: London, UK (Hybrid: 2 days per week in the office) Company: Navro – Pioneering the Future of Payments Securing Trust: Cyber Security Lead This isn't just another Information Security role. No legacy systems. No corporate red tape. No coasting. This is about building something from the ground up. Fast. We're Navro, a rapidly scaling B2B payments … startup, and we're looking for a bold, proactive, and hands-on Cybersecurity Lead to design, implement, and operate our security operations function, including SIEM, incident response, threat detection, secure by design, shift-left security engineering, and automated monitoring and response. You'll run and be part of the projects that implement, build, and maintain security integrations across our tech stack, establish incident response playbooks, and lead day‐to‐day SOC operations that protect our platform and customers. You won't have layers of approval slowing you down. You will have the freedom to make real, impactful decisions from day one. This isn't a passenger role. We're bringing you in for your More ❯

Infrastructure Security Engineer- Spanish speaking We are currently recruiting for a Infrastructure Security Engineer on a 6 month initial contract. Hybrid basis (2-3 days) They are looking for a candidate to take responsibility for leading, guiding, supporting and delivering secure architectural design for the group cyber security maturity programme. They are also looking for a candidate … who is able to provide advice and recommendations for the programme. Key Skills Support the integration of new cyber security technologies that meets the next generation threats and can be adopted by the group globally You will be required to travel to the local sites, data centre or multiple offices location in order to complete your tasks for off … the network countries. Support global cyber security team to ensure open Continuous Security Improvement Programme (CSIP's) are managed effectively up to closure Information Security Management System (Infrastructure Security Operations). Azure cloud infrastructure and configuration. System Centre Configuration Manager, Operations Manager and Virtual Machine Manager. Microsoft Exchange online Azure and on-premises Active More ❯

SC Clearance Required) – Multiple UK Locations (Shift Work) - £55,000 - £58,000 – Permanent Are you passionate about cybersecurity and ready to make a real impact? We’re expanding our Security Operations Centre (SOC) team and looking for Level 2 SOC Analysts to join us across multiple UK locations.This is a fantastic opportunity to work with enterprise-scale clients … You’ll be part of a collaborative team using cutting-edge technologies like Microsoft Sentinel, Splunk, and MISP Threat Sharing to protect critical infrastructure. Key Responsibilities: Monitor and analyse security alerts and events, conduct initial investigations, and escalate complex incidents. Manage SOC incident queues and support asset baseline maintenance. Prepare reports for technical and non-technical audiences. Collaborate on … intelligence development and incident documentation. Shift Pattern: 2 days (6am–6pm), 2 nights (6pm–6am), followed by 4 days off. What We’re Looking For: Experience working in a Security Operations Centre. Familiarity with Microsoft Sentinel and Splunk. Understanding of the MITRE ATT&CK framework. Basic knowledge of networking, client-server applications, firewalls, VPNs, and antivirus products. Entry More ❯

are driven by this systematic approach. Joining Flowdesk means you will be a key contributor in building and scaling a more transparent and efficient financial markets infrastructure. As a SecOps Lead at Flowdesk, you will be the principal point of contact for our Managed Detection and Response partner, ensuring rapid, coordinated responses to security incidents and continually enhancing Flowdesk … s security posture. Your mission will be to Serve as the primary interface for our MDR partner, manage the relationship, hold regular service reviews, and verify all SLAs are met. Act as incident commander during security events, coordinating with IT, engineering, and business teams to ensure swift containment and recovery. Review and tune security alerts with the … security issues effectively to all stakeholders, translating risks into business terms and offering actionable guidance on best practices. Contribute to a wide range of cybersecurity initiatives beyond traditional SecOps, assisting with projects in vulnerability management, cloud security, data protection, and governance, risk & compliance to strengthen our overall security posture. Requirements Deep understanding of the incident response lifecycle More ❯

the ability to engage both technical and business stakeholders UK-based, with full right to work in the UK Nice to Have Experience with ServiceNow Security Operations (SecOps) Please apply with a detailed CV to be contacted. More ❯

Infrastructure & Cloud Security Engineer As an Infrastructure & Cloud Security Engineer, you will play a key role in safeguarding the technology landscape by leveraging your strong background in infrastructure engineering, cloud technologies, and IT security operations. You will manage solutions and tooling across hybrid environments, with a particular focus on Azure cloud platforms, while ensuring robust security practices are embedded throughout Main Responsibilities: Support the day-to-day operations of the Counter Threat Unit, ensuring security controls are effectively implemented across infrastructure and cloud environments. Configure, maintain, and optimise security tools and solutions (e.g., SIEM, EDR )to protect enterprise systems. Monitor systems and networks for anomalies, gather and analyse threat intelligence, and contribute … Infrastructure Engineering similar roles. Strong knowledge of cloud environments, particularly Azure, and experience managing solutions and tooling within these platforms. Proven background in infrastructure engineering and/or IT security operations, including incident response and vulnerability management. Understanding of network security principles and technologies (firewalls, VPNs, endpoint protection). Ability to explain complex technical concepts clearly to More ❯

Information Security Officer - International Law Firm (London-Based) Permanent | Hybrid Working | Competitive Salary I am working with a leading international law firm to support their search for an experienced and proactive Information Security Officer (ISO) to lead their global information and data security programme. This senior-level role offers the opportunity to shape the firm's long … term security strategy, drive ISO 27001 certification, and ensure the resilience of systems and data across offices in the UK, US, and Europe. The position reports to the Director of IT and works closely with regional IT teams and external partners. Key Responsibilities: Lead the firm's information security governance framework across all offices and platforms Maintain and … enhance the ISO 27001-aligned Information Security Management System (ISMS) Ensure compliance with frameworks including CIS Controls, NIST, ISO 27701, and GDPR Oversee incident response, threat detection, and access governance across systems such as iManage, Intapp, Aderant, Microsoft 365, and Azure Drive firm-wide security awareness and training initiatives Monitor regulatory changes and emerging threats, and advise on More ❯

A global telco organisation is seeking an experienced Project Manager with strong knowledge of the security domain to lead a major transition project.You will work closely with the Cybersecurity Operations Centre (CSOC) and senior stakeholders to transition tools, operations, and people into a new operating model . Familiarity with security processes and tools such as SIEM … and Microsoft Sentinel is essential.Location: London ( Hybrid - 1 day/week) Contract Length: Initial 3 months Rate: TBC (inside IR35) Start: ASAP Key Responsibilities Manage the transition of security tools, operations, and teams into a new operating model . Liaise with senior stakeholders, including director-level and C-suite. Work closely with CSOC to align processes and priorities. … Ensure compliance and governance throughout the project lifecycle. Produce clear reporting and maintain strong project governance. Skills & Experience A strong understanding of security operations, frameworks and terminology is essential. Experience with CSOC is essential. Proven track record in operating model transitions . Familiarity with SIEM tools and Microsoft Sentinel . Excellent stakeholder management skills at senior levels. Telco More ❯

days on-site per week) Permanent Up to £78,500 + bonus This is a prime opportunity to design and engineer the core platforms behind a rapidly growing Security Operations Centre (SOC), blending hands-on technical work with automation and solution design. You’ll collaborate with analysts, architects, and customers to build reliable, scalable systems that accelerate threat … detection and response, all in a collaborative culture that invests in your growth, wellbeing, and career progression. Job Title: Senior Security Engineer Job Type: Permanent Salary: Up to £78,500 (DOE) + Bonus Working arrangement: Hybrid Office Location: Portsmouth As a Senior Security Engineer, you will: Design, deploy, and maintain core SOC technologies (SIEM, EDR, SOAR, threat intelligence … Support client onboarding, threat hunting, detection engineering, and process improvements. Mentor junior engineers and maintain documentation, diagrams, and standards. Required Experience/Skills: 5 years’ experience in a SOC, security engineering, or cyber operations role. Strong hands-on experience with SIEM or EDR platforms (e.g., Microsoft Sentinel, Splunk, Defender, CrowdStrike, Elastic). Expertise in building and tuning detection More ❯

Join MBDA's cutting-edge cyber security team and help protect some of the most advanced defence technologies in the world. As a Cyber Security Engineer, you'll be at the forefront of innovation-enhancing the visibility, automation, and efficiency of our Security Operations Centre (SOC). This role is perfect for someone who thrives on … contribute to a mission that truly matters. Salary : Circa £50,000 - £60,000 depending on experience Dynamic (hybrid) working : 2 days per week on-site due to workload classification Security Clearance : British Citizen or a Dual UK national with British citizenship Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a … minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS), which are managed by the MBDA Personnel Security Team. What we can offer you: Company bonus : Up to £2,500 (based on company performance and will vary year to year) Pension : maximum total (employer and employee) contribution of up More ❯

IT Cyber Security Analyst Ref: YC46941 A highly successful IT and telecommunications services company is currently recruiting an IT Cyber Security Analyst (Threat Intelligence Analyst) to work at their clients site in London. In this role, you will be responsible for identifying, analysing, and communicating cyber threats to support proactive defence strategies. The ideal candidate should have expertise … in threat intelligence analysis, collaboration across teams, familiarity with security tools, and strong analytical skills. ELIGIBLE APPLICANTS: (O) Eligible visa: Permanent residence, Spouse, Partner, Working holiday, Graduate (X) NOT eligible: Student visa, Requiring visa sponsorship, WORK TYPE: office-based VISA SUPPORT: No TYPE: 6 months rolling contract, full-time WORKING HOURS: Mon-Fri 9:00-17:00 SALARY: up … to £54k, depending on experience START: Nov-Dec 2025 LOCATION: London (office-based) Cyber Security Analyst Main Responsibilities: Monitor and analyse the global threat landscape to identify emerging risks, adversary tactics, and trends relevant to the organization's business and technology environment Collaborate with Red Team, Blue Team, and Penetration Testing teams to integrate threat intelligence into testing scenarios More ❯

Senior Security Engineer – Detection & Automation Here’s a great opportunity for a hands-on Senior Security Engineer who enjoys building, optimising, and automating SOC infrastructure. This role sits within a growing Cyber Defence operation where you’ll help design and maintain the platforms behind SIEM, EDR, SOAR, and threat intelligence tooling, improving detection coverage and enabling analysts to … improve visibility across cloud/on-prem environments. Support client onboarding and configuration alignment. Mentor junior engineers and analysts. You’ll bring: 3–5 years’ experience in SOC or security engineering. Strong knowledge of platforms such as Sentinel, Splunk, Defender, or Elastic. Scripting/automation ability (PowerShell, KQL, Python, etc.). Understanding of Azure/AWS cloud and network … detection frameworks. What’s in it for you: Flexible hybrid working, paid certifications, great progression into consultancy or leadership, and a genuinely collaborative environment. If you love improving how security operations work and want to be part of a team building a next-generation SOC, this one’s for you. More ❯

actor tactics, techniques, and procedures (TTPs). Salary : £50,000 - £60,000 depending on experience Dynamic (hybrid) working : Minimum 2 days per week on-site due to workload classification Security Clearance : British Citizen or a Dual UK national with British citizenship. Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a … minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS), which are managed by the MBDA Personnel Security Team. What we can offer you: Company bonus : Up to £2,500 (based on company performance and will vary year to year) Pension : maximum total (employer and employee) contribution of up … materials. Lead and execute tabletop exercises (TTEx) to test and improve incident response and forensic readiness. Perform network and endpoint investigations, including AV scans, incident remediation, and validation of security alerts. Collaborate with IM/DEx and Security Operations to enhance incident reporting, alerting, and notification services. Deputise for CERT responders during major incidents or third-party More ❯

Job Title: Cyber Security Analyst (Contract) Contract Rate: Negotiable (Inside IR35) Shift Pattern (Day/Night) Location: Andover, Hampshire Security Clearance: ** Current valid SC clearance required ** Eligibility: ** UK eyes only ** About the Role: This is a brilliant opportunity to join our growing team at CND. We are looking for an experienced Security Analyst. This role offers a … great shift pattern, ensuring you regularly have 5 days off and at least 2 weekends off per month. Key Responsibilities: Deliver excellent and thorough security analysis, taking SIEM output and actioning it accordingly. Push for improvements across the overall monitoring capability. Engage with a wide range of stakeholders, with varying levels of technical understanding. Be flexible on location; some … of our clients will need provision on site, balanced to ensure your wellbeing. Suggest ideas for improving CND’s own internal security posture. Be proactive with client requirements, offering guidance and input to highly technical challenges. Essential Skills: Experience working with SIEM tools such as ArcSight, Splunk, LogRhythm, or AlienVault. Understanding of how to get the best from available More ❯