1 to 25 of 55 Security Operations Centre Jobs in the South East

Role Description: Security Analyst - Network & Endpoint/SOC Security Specialist We are looking for a highly capable and technically skilled Security Analyst to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The successful candidate will … have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat detection, model tuning, and behavioural analysis. Investigate anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and … update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC team members to ensure timely resolution and documentation. Threat Intelligence & Insider Threat Monitoring: Monitor threat feeds and manage Indicators of Compromise More ❯

Role Description: Security Analyst - Network & Endpoint/SOC Security Specialist We are looking for a highly capable and technically skilled Security Analyst to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The successful candidate will … have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat detection, model tuning, and behavioural analysis. Investigate anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and … update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC team members to ensure timely resolution and documentation. Threat Intelligence & Insider Threat Monitoring: Monitor threat feeds and manage Indicators of Compromise More ❯

Contract Role – Security Analyst (Network & Endpoint) – England/Remote – 4+ Months Initial We are looking for a highly capable and technically skilled Security Analyst (Network & Endpoint) to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The … successful candidate will have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Role Overview: Job Title: Security Analyst (Network & Endpoint) Location: England/Remote Contract Type: Contract Duration: Contract till 31st Mar 26 Sector: Healthcare . Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat … anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC More ❯

Job Description Who we're looking for The Schroders Information Security team provides the scale and brand of a large financial services organisation with the freedom to be creative and nimble in how we work. Our team members are exposed to a wide set of technologies, people and opportunities and we expect them to make continuous iterative improvement to … the defence of the firm. We aim to avoid large projects with unclear benefits and overly restricting the team member's remits on specific security disciplines. Finally, we put great importance on the reputation of the Information Security team across the firm and value unconditional collaboration, understanding of business aims and pragmatic risk taking based on a clear … we're suited and booted, that doesn't make us stuffy; our tech teams are friendlier and more informal than you might expect. The team The Schroders Global Information Security team protect the organisation's information assets against an evolving threat landscape. ~60 security professionals around the world enable Schroders to deliver services to clients in a secure More ❯

Security Operations Centre Analyst (SOC Analyst) Salary: £50,000 to £55,000 (based on candidate experience) Office Location: Portsmouth Hybrid Model: 3-4 days on-site (remaining days remote) Working Hours: Monday-Friday, Standard office hours (potentially some remote 24x7 on-call) Employment Type : Permanent About the Role: Join one of the best work-life organisations in … the IT Sector as part of their newly developing & rapidly expanding Cyber Security division. As a SOC Analyst, you'll be a vital part of a highly skilled Security Operations Centre team, responding to security alerts, investigating incidents, and helping to protect internal security and enterprise environments. 🔐 What You'll Do: Monitor SIEM, IDS …/IPS, EDR, and related tools for threat indicators. Utilise Security tools to monitor incidents and report threats. Analyse and investigate incidents, escalating when necessary. Conduct threat hunting and forensic analysis. Support rule development and tuning of detection systems. Assist with real-time detection, response, and containment. Maintain and improve SOC documentation and playbooks. Collaborate with team members and More ❯

Security Operations Centre Analyst (SOC Analyst) Salary: £50,000 to £55,000 (based on candidate experience) Office Location: Portsmouth Hybrid Model: 3-4 days on-site (remaining days remote) Working Hours: Monday-Friday, Standard office hours (potentially some remote 24x7 on-call) Employment Type : Permanent About the Role: Join one of the best work-life organisations in … the IT Sector as part of their newly developing & rapidly expanding Cyber Security division. As a SOC Analyst, you'll be a vital part of a highly skilled Security Operations Centre team, responding to security alerts, investigating incidents, and helping to protect internal security and enterprise environments. 🔐 What You'll Do: Monitor SIEM, IDS …/IPS, EDR, and related tools for threat indicators. Utilise Security tools to monitor incidents and report threats. Analyse and investigate incidents, escalating when necessary. Conduct threat hunting and forensic analysis. Support rule development and tuning of detection systems. Assist with real-time detection, response, and containment. Maintain and improve SOC documentation and playbooks. Collaborate with team members and More ❯

Security Operations Centre Analyst (SOC Analyst) Salary: £50,000 to £55,000 (based on candidate experience) Office Location: Portsmouth Hybrid Model: 3-4 days on-site (remaining days remote) Working Hours: Monday-Friday, Standard office hours (potentially some remote 24x7 on-call) Employment Type : Permanent About the Role: Join one of the best work-life … organisations in the IT Sector as part of their newly developing & rapidly expanding Cyber Security division. As a SOC Analyst, you'll be a vital part of a highly skilled Security Operations Centre team, responding to security alerts, investigating incidents, and helping to protect internal security and enterprise environments. What You'll Do: Monitor … SIEM, IDS/IPS, EDR, and related tools for threat indicators. Utilise Security tools to monitor incidents and report threats. Analyse and investigate incidents, escalating when necessary. Conduct threat hunting and forensic analysis. Support rule development and tuning of detection systems. Assist with real-time detection, response, and containment. Maintain and improve SOC documentation and playbooks. Collaborate with team More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

The Role: Leidos, a Global IT Solutions Provider specialising in large scale implementations involving science, engineering, and technology, require a Cyber Defence Analyst to work in their CSOC (Cyber Security Operations Centre) Team. The Cyber Defence Analyst will be expected to contribute to the growth and development of the CSOC. You will work with a wide variety … of stakeholders to ensure, the Leidos CSOC, a Defensive Cyber Security capability, can support a customers Cyber Resilience, protecting them with a 24 x 7 Threat Detection and Response service, mitigating their risk of Cyber Attack. The successful candidate will be able to demonstrate experience from a CSOC background or be able to demonstrate sufficient transferable Cyber Security … succeed in the role the candidate must be capable of working under pressure, delivering on multiple customer accounts and have an appetite to progress and develop their own Cyber Security career. The role will be working within the CSOC, adhering to a matrix managed environment, reporting operationally to the CSOC Lead and accountable to the CSOC Manager. What will More ❯

Cyber Security Assurance Manager Overview An exciting opportunity has arisen for an experienced Cyber Security Assurance Manager to take ownership of security certifications, audits, and assurance standards for a leading Security Operations Centre (SOC) environment. This role will focus on delivering and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type … Cyber Essentials Plus , and CREST . Manage sector-specific compliance such as PCI DSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance, processes, and operations. Maintain evidence collection and audit readiness for both internal and external audits. Translate assurance … assurance activities related to SOC services. Support RFIs, RFPs , and audit requests with accurate and professional certification documentation. Develop and maintain customer-facing assurance materials that demonstrate a strong security posture. Regulatory & Framework Alignment Monitor changes in global cybersecurity regulations and standards (e.g. NIST CSF , NCSC , NIS2 , GDPR ). Ensure SOC assurance aligns with evolving regulatory and industry expectations. More ❯

and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! The Cyber Security Incident Response Team (CSIRT), part of Counter Threat & Engineering (CT&E), responds to digital security threats and incidents globally from bp hubs in Houston, Sunbury, Kuala Lumpur, Pune … and Singapore. The Security Operations Center (SOC) raises incidents to CSIRT, which conducts long-term investigations using digital forensics, advanced techniques, and collaborating across bp. Team members must understand bps business segments and address a broad range of security-related questions. You will help ensure enterprise security, enabling safe and secure business operations as part … of this global team. Key Accountabilities Support the bp SOC as an escalation point for security events and incidents. Conduct digital forensic investigations on high-priority incidents to include functions such as host (disk and memory) forensics, network forensics and log analysis. Work across Digital Security and the bp business functions to partner on incidents and to ensure More ❯

and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! The Cyber Security Incident Response Team (CSIRT), part of Counter Threat & Engineering (CT&E), responds to digital security threats and incidents globally from bp hubs in Houston, Sunbury, Kuala Lumpur, Pune … and Singapore. The Security Operations Center (SOC) raises incidents to CSIRT, which conducts long-term investigations using digital forensics, advanced techniques, and collaborating across bp. Team members must understand bps business segments and address a broad range of security-related questions. You will help ensure enterprise security, enabling safe and secure business operations as part … of this global team. Key Accountabilities Support the bp SOC as an escalation point for security events and incidents. Conduct digital forensic investigations on high-priority incidents to include functions such as host (disk and memory) forensics, network forensics and log analysis. Work across Digital Security and the bp business functions to partner on incidents and to ensure More ❯

and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! The Cyber Security Incident Response Team (CSIRT), part of Counter Threat & Engineering (CT&E), responds to digital security threats and incidents globally from bp hubs in Houston, Sunbury, Kuala Lumpur, Pune … and Singapore. The Security Operations Center (SOC) raises incidents to CSIRT, which conducts long-term investigations using digital forensics, advanced techniques, and collaborating across bp. Team members must understand bps business segments and address a broad range of security-related questions. You will help ensure enterprise security, enabling safe and secure business operations as part … of this global team. Key Accountabilities Support the bp SOC as an escalation point for security events and incidents. Conduct digital forensic investigations on high-priority incidents to include functions such as host (disk and memory) forensics, network forensics and log analysis. Work across Digital Security and the bp business functions to partner on incidents and to ensure More ❯

within the Critical National Infrastructure (CNI) energy sector, is looking to appoint an experienced Senior/Level 3 SOC Analyst. This is a senior escalation role within a dedicated Security Operations Centre, working at the forefront of protecting high-value national assets. The successful candidate will act as a technical authority for advanced incident response, threat hunting … and security engineering, with a strong focus on the Microsoft security stack. Key Responsibilities Serve as the primary escalation point for complex incidents and lead on incident response. Conduct in-depth threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance … to junior SOC analysts, enhancing team capability. Collaborate with IT and OT teams to address unique security requirements across CNI environments. Drive improvements in SOC operations, automation, and incident response processes. Monitor evolving threats and integrate threat intelligence into daily operations. Ensure adherence to industry standards and compliance frameworks (NIS2, CAF, ISO 27001). Skills & Experience Required Extensive More ❯

within the Critical National Infrastructure (CNI) energy sector, is looking to appoint an experienced Senior/Level 3 SOC Analyst. This is a senior escalation role within a dedicated Security Operations Centre, working at the forefront of protecting high-value national assets. The successful candidate will act as a technical authority for advanced incident response, threat hunting … and security engineering, with a strong focus on the Microsoft security stack. Key Responsibilities Serve as the primary escalation point for complex incidents and lead on incident response. Conduct in-depth threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance … to junior SOC analysts, enhancing team capability. Collaborate with IT and OT teams to address unique security requirements across CNI environments. Drive improvements in SOC operations, automation, and incident response processes. Monitor evolving threats and integrate threat intelligence into daily operations. Ensure adherence to industry standards and compliance frameworks (NIS2, CAF, ISO 27001). Skills & Experience Required Extensive More ❯

within the Critical National Infrastructure (CNI) energy sector, is looking to appoint an experienced Senior/Level 3 SOC Analyst. This is a senior escalation role within a dedicated Security Operations Centre, working at the forefront of protecting high-value national assets. The successful candidate will act as a technical authority for advanced incident response, threat hunting … and security engineering, with a strong focus on the Microsoft security stack. Conduct in-depth threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance to junior SOC analysts, enhancing team capability. Monitor evolving threats and integrate threat intelligence into daily … operations. Expertise with the Microsoft security stack, including: Microsoft Sentinel (SIEM/SOAR) Microsoft Defender for Endpoint, Identity, Cloud Apps, and Office 365 Microsoft Entra ID (Azure AD) Microsoft Purview (compliance and data protection) Experience in digital forensics and malware analysis. Proficiency in scripting/automation (KQL, PowerShell, Python). Microsoft Certified: Cybersecurity Architect Expert/Security Operations More ❯

SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high-severity cyber incidents … and escalated security events, leveraging your technical expertise, analytical mindset, and industry-standard tools to contain, eradicate, and recover from cyber threats. Your work will directly contribute to safeguarding my client's network systems, operational technology, and customer data from emerging and sophisticated cyber risks. Key Responsibilities As a senior member of the Security Operations team, you … and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration and effective alert correlation across cloud and on-prem environments. Support and develop the organisation's SOAR More ❯

SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high-severity cyber incidents … and escalated security events, leveraging your technical expertise, analytical mindset, and industry-standard tools to contain, eradicate, and recover from cyber threats. Your work will directly contribute to safeguarding my client's network systems, operational technology, and customer data from emerging and sophisticated cyber risks. Key Responsibilities As a senior member of the Security Operations team, you … and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration and effective alert correlation across cloud and on-prem environments. Support and develop the organisation's SOAR More ❯

business, driving valuable insight, guidance and feedback back into Palo Alto Networks. You will work across product teams to deliver this feedback Your Impact Drive innovation within the modern Security Operations Center (SOC) by developing content and capabilities aligned with Cortex and detection-focused workflows. Collaborate with legal, sales, product, and customer-facing teams to translate security operations needs into actionable product improvements. Lead and coordinate cross-functional initiatives across product management, engineering, and field teams for high-impact security use cases. Build high-quality content for the Cortex Marketplace including detection rules, parsers, dashboards, and other SOC-enabling artifacts. Provide structured product feedback to influence roadmap decisions based on real-world SecOps challenges … and opportunities. Create detailed documentation and usage guides tailored for analysts, detection engineers, and security practitioners. Promote operational excellence by designing scalable detection and response workflows grounded in industry best practices and threat-informed defense. Qualifications Your Experience Ability to inspire and align teams across functions, paired with strong execution and delivery skills. 2+ years of experience in security More ❯

Senior Security Engineer £80,000 + Bonus + Benefits + Training Hybrid (Portsmouth, UK) Company & Role This is an opportunity to join a fast growing, people first global service provider that is redefining what excellence in cyber defence looks like. With over $1B in global revenue, this organisation delivers end to end IT outsourcing and managed services to customers … across enterprise, public sector and fast growing scale ups. Its Security Practice protects clients through capabilities including Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a consulting led Security Advisory practice. As a Senior Security Engineer, you will be responsible for designing, implementing and maintaining the tools, platforms and … integrations that power the company’s Security Operations Centre and Cyber Defence services. This role blends hands on technical engineering with solution design and automation, ideal for someone who thrives on solving complex problems, improving processes and enabling analysts to detect and respond faster. Why This Role Stands Out • Join a $1B global IT and Cyber Defence More ❯

Senior Security Engineer £80,000 + Bonus + Benefits + Training Hybrid (Portsmouth, UK) Company & Role This is an opportunity to join a fast growing, people first global service provider that is redefining what excellence in cyber defence looks like. With over $1B in global revenue, this organisation delivers end to end IT outsourcing and managed services to customers … across enterprise, public sector and fast growing scale ups. Its Security Practice protects clients through capabilities including Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a consulting led Security Advisory practice. As a Senior Security Engineer, you will be responsible for designing, implementing and maintaining the tools, platforms and … integrations that power the company’s Security Operations Centre and Cyber Defence services. This role blends hands on technical engineering with solution design and automation, ideal for someone who thrives on solving complex problems, improving processes and enabling analysts to detect and respond faster. Why This Role Stands Out • Join a $1B global IT and Cyber Defence More ❯

Cyber Security Consultant- Remote An exciting opportunity has arisen for a Cyber Security Consultant who can provide practical advice and hands-on support to improve security project and manage alerts. We’re seeking a specialist who has expertise in Microsoft Defender & Sentinel who can turn alert data into actionable intelligence, identify opportunities for optimisation, and advance the … customer’s SOC maturity through data-driven improvements and Sentinel/Defender best practices. As a Cyber Security Consultant, your mission is clear; be technically proficient and provide practical solutions rather than theoretical advice. The consultant should be able to work closely with the team to implement changes and improve security. Cyber Security Consultant’s Responsibilities: Develop and … tools such as Advanced Hunting, Threat Analytics, and Attack Surface Reduction to strengthen detection and response. Recommend SOC process improvements through data-driven insights and best practice alignment. Cyber Security Consultant’s Required Knowledge and Experience: Extensive experience with Microsoft Defender, Sentinel, and possibly working in a Security Operations Centre (SOC). Experience extracting alert data More ❯

Job Posting: Cyber Security Assurance Manager Location: Portsmouth (Hybrid) Salary: £50,000 - £65,000 DOE Are You Ready to Lead the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment. In this crucial … role, you will ensure that the SOC maintains its commitment to best-in-class standards through internationally recognised security certifications and industry-wide assurance frameworks, delivering confidence to clients and meeting regulatory expectations. As a core team member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors … to showcase security credentials that differentiate our SOC from the competition. If you're skilled in blending technical insight with customer-focused communication while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST More ❯