26 to 47 of 47 Security Monitoring Jobs in the UK

ICS OT Cyber Security Consultant Home based with travel to Staffordshire and UK-wide customer sites Are you an OT/ICS cyber specialist who enjoys getting hands-on with red team activities in critical industrial environments? Do you want a role that mixes penetration testing, threat emulation and resilience validation with security architecture and incident response? Would … membership fees covered What will you be doing? Delivering OT-focused red team activities with specialist partners, including penetration testing, adversary simulation and incident response exercises Planning and executing security assessments and incident response exercises in OT/ICS environments Developing and implementing attack scenarios and detection use cases using frameworks such as MITRE ATT&CK for ICS Performing … vulnerability assessments, threat modelling and attack path analysis to identify and address security weaknesses Supporting risk assessments and compliance against standards such as IEC 62443, NIST SP800-82 and NIS-R Helping deploy, configure and maintain OT cybersecurity and security monitoring solutions Contributing to crisis simulations, incident response plans and cybersecurity awareness training Preparing reports, documenting findings More ❯

Security Operations Centre OperativeHours: 12-hour night shifts, 4-on/4-offLooking for a role where every shift truly matters? We’re seeking a Security Operations Centre Operative to join a fast-paced, technology-driven monitoring environment—protecting people, assets, and operations around the clock.The RoleYou’ll be at the heart of incident response and live … monitoring, spotting issues before they escalate and reacting quickly when they do. From analysing CCTV feeds to supporting emergency protocols, this is a role for someone who stays cool under pressure and thrives in a detail-focused, mission-critical setting.Key Responsibilities Monitor security systems, alarms, and CCTV to detect and respond to incidents. Escalate issues in line with … procedures. Liaise with internal teams and emergency services when required. Conduct routine system health checks and identify faults. Support clear, accurate shift handovers. Provide first-line technical support for security equipment. Maintain detailed records and ensure GDPR compliance. Uphold strict confidentiality and discretion at all times. About You Calm, organised, observant, and confident using technology. Excellent written and verbal More ❯

basis. The position will be based in Aberdeen and will have a 3/2 hybrid working pattern Key ResponsibilitiesRisk Assessment & Secure by Design Perform structured IT and information security risk assessments and threat modelling for new IT platforms, systems, and applications and for material changes. Provide security architecture advice (patterns, guardrails) aligned to NIST CSF/ISO … test scopes, frequency and metrics. Track high-risk deviations and risk acceptances; drive remediation and report residual risk to the CISO, CIO and business risk owners. OT/ICS Security Own the LOD2 assurance plan across OT sites against the OT security standard, deciding the order and frequency of assessments aligned to risk and risk appetite. Provide OT … security advisory in relation to OT security standards alignment across all OT sites, advocating for segmentation, zoning, secure remote access, security monitoring and patching controls in line with ISA/IEC 62443. Supplier & Third-Party Assurance (with Procurement) Run supplier assurance in collaboration Procurement including, pre contract due diligence, control reviews, and ongoing attestation for Suppliers More ❯

basis. The position will be based in Aberdeen and will have a 3/2 hybrid working pattern Key ResponsibilitiesRisk Assessment & Secure by Design Perform structured IT and information security risk assessments and threat modelling for new IT platforms, systems, and applications and for material changes. Provide security architecture advice (patterns, guardrails) aligned to NIST CSF/ISO … test scopes, frequency and metrics. Track high-risk deviations and risk acceptances; drive remediation and report residual risk to the CISO, CIO and business risk owners. OT/ICS Security Own the LOD2 assurance plan across OT sites against the OT security standard, deciding the order and frequency of assessments aligned to risk and risk appetite. Provide OT … security advisory in relation to OT security standards alignment across all OT sites, advocating for segmentation, zoning, secure remote access, security monitoring and patching controls in line with ISA/IEC 62443. Supplier & Third-Party Assurance (with Procurement) Run supplier assurance in collaboration Procurement including, pre contract due diligence, control reviews, and ongoing attestation for Suppliers More ❯

Analyst (Operational Technology) Outside IR35 Duration: 6 9 months Location: Crawley, Hybrid 2 days per week on site Overview of project: The role of an Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst is to respond to high-severity cyber security incidents and/or escalated events and alerts then, using experience combined with industry … forensic analysis across multiple data sources and recommend containment and eradication actions. Crisis Testing: Take part in cyber-attack simulations to strengthen resilience. Reporting: Improve reporting dashboards and key security metrics. Tooling: Support and maintain security tools and platforms for threat prevention, detection and response. Audit: Support SOC2/NCSC CAF/ISO27001 audits and ensure compliance. Continuous … Improvement: Automate and enhance monitoring, detection and response based on evolving threats. Skills, experience and previous achievements required: Essential Extensive End to End Cyber Incident Leadership Experience Extensive SOC L3/CSIRT L3 Experience Extensive CNI/Defence/Business Critical Environment Experience Desirable Threat Hunting Experience Threat Hunting Strategy Mindset Runbook & Playbook Authoring Lessons Learned/Root Cause More ❯

Analyst (Operational Technology) Outside IR35 Duration: 6 – 9 months Location: Crawley, Hybrid 2 days per week on site Overview of project: The role of an Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst is to respond to high-severity cyber security incidents and/or escalated events and alerts then, using experience combined with industry … forensic analysis across multiple data sources and recommend containment and eradication actions. Crisis Testing: Take part in cyber-attack simulations to strengthen resilience. Reporting: Improve reporting dashboards and key security metrics. Tooling: Support and maintain security tools and platforms for threat prevention, detection and response. Audit: Support SOC2/NCSC CAF/ISO27001 audits and ensure compliance. Continuous … Improvement: Automate and enhance monitoring, detection and response based on evolving threats. Skills, experience and previous achievements required: Essential Extensive End to End Cyber Incident Leadership Experience Extensive SOC L3/CSIRT L3 Experience Extensive CNI/Defence/Business Critical Environment Experience Desirable Threat Hunting Experience Threat Hunting Strategy Mindset Runbook & Playbook Authoring Lessons Learned/Root Cause More ❯

for using technology to solve business problems, working in partnership with our clients to help in achieving their goals. About the role: Lead, mentor, and develop a team of Security Analysts to ensure effective 24/7 SOC operations Act as the primary escalation point for complex security incidents, ensuring timely investigation and resolution Oversee incident response activities … coordinating with internal and external stakeholders where required Manage day-to-day SOC operations, ensuring adherence to SLAs, KPIs, and compliance requirements Drive continuous improvement in security monitoring, detection, and response processes Ensure effective use and optimisation of SIEM, SOAR, EDR, and other security technologies Produce and deliver regular reporting on SOC performance, incident trends, and risk … skills and experience relevant to this role: Strong knowledge of SIEM, SOAR, EDR, IDS/IPS, firewalls, and endpoint protection solutions Strong Knowledge in Incident response Familiarity with cloud security and hybrid environments Understanding of network protocols, operating systems (Windows/Linux), and common attack vectors Benefits At Sword, our core values and culture are based on caring about More ❯

a SOC Shift Lead to guide a team of talented analysts in protecting critical infrastructure across multiple UK locations.This is a hands-on leadership role where you’ll oversee security monitoring, incident response, and continuous improvement of SOC operations. You’ll work with cutting-edge technologies and frameworks, including Microsoft Sentinel, Splunk, and the MITRE ATT&CK framework … while mentoring and developing your team. Key Responsibilities: Lead and manage a team of SOC Analysts across shift operations. Monitor, triage, and investigate security incidents on critical infrastructure. Perform in-depth analysis of network traffic, logs, and system events. Enhance SOC capabilities through detection rule tuning and threat-informed defence. Maintain incident documentation and represent the SOC in partner … meetings. Work a rotating shift pattern: 2 days (6am–6pm), 2 nights (6pm–6am), followed by 4 days off. What We’re Looking For: Proven experience in a Security Operations Centre environment. Strong people management and mentoring skills. Hands-on experience with Microsoft Sentinel and Splunk. Familiarity with the MITRE ATT&CK framework. Solid understanding of networking principles and More ❯

OT/ICS Cyber Security Consultant – 80% Remote/20% Client Site – UK-Wide We’re looking for a hands-on OT/ICS Cyber Security Engineer to join a dynamic team tackling real-world industrial cyber challenges. This isn’t a typical desk job you’ll lead and support red team activities (penetration testing, adversary simulation, resilience … validation) while contributing to blue team functions like incident response, risk assessment, security monitoring, and OT solution deployment. You’ll work on live and upcoming projects, collaborating with internal teams and partners, creating attack scenarios, validating security controls, and helping improve overall OT cyber resilience. What we need from you: Practical experience in offensive security (pen … and IT/OT interfaces Nice to have: GICSP, OSCP/GPEN/CREST CRT, DFIR exposure, offensive tools experience (Nessus, Metasploit, MITRE ATT&CK for ICS), and physical security assessments aligned with NIS/NPSA Why this role? 80% remote, 20% on client sites across the UK Work with a team that values passion, collaboration, and hands-on More ❯

Are you an aspiring penetration tester looking to work with real threats, real tools, and real impact? You’ll be joining a growing cyber security consultancy focused exclusively on keeping critical national infrastructure secure. You’ll support a team of expert ethical hackers, helping test systems, applications, and networks for vulnerabilities - working alongside seasoned professionals while sharpening your offensive … security skills.Expect to contribute to hands-on pen testing engagements, conduct vulnerability assessments, and support threat hunting within a well-established SOC. You'll develop your skills using industry-standard tools, investigate incidents, and provide actionable remediation advice.Role: Junior Penetration TesterLocation: London/HybridSalary: £30,000 - £50,000 (DOE)Ideally, you’ll have: 6+ months of proven penetration or … security testing experience Knowledge of Metasploit, Burp Suite, and vulnerability scanning tools Experience with Windows, Linux and Mac operating systems Interest in threat hunting, incident response, and security monitoring CRT/OSCP/Cyber Scheme training or aspirations to achieve them Eligibility for UK Security Clearance If you're looking to build a long-term cyber More ❯

Are you an aspiring penetration tester looking to work with real threats, real tools, and real impact? You ll be joining a growing cyber security consultancy focused exclusively on keeping critical national infrastructure secure. You ll support a team of expert ethical hackers, helping test systems, applications, and networks for vulnerabilities - working alongside seasoned professionals while sharpening your offensive … security skills. Expect to contribute to hands-on pen testing engagements, conduct vulnerability assessments, and support threat hunting within a well-established SOC. You'll develop your skills using industry-standard tools, investigate incidents, and provide actionable remediation advice. Role: Junior Penetration Tester Location: London/Hybrid Salary: £30,000 - £50,000 (DOE) Ideally, you ll have: 6+ months … of proven penetration or security testing experience Knowledge of Metasploit, Burp Suite, and vulnerability scanning tools Experience with Windows, Linux and Mac operating systems Interest in threat hunting, incident response, and security monitoring CRT/OSCP/Cyber Scheme training or aspirations to achieve them Eligibility for UK Security Clearance If you're looking to build More ❯

Are you an aspiring penetration tester looking to work with real threats, real tools, and real impact? You’ll be joining a growing cyber security consultancy focused exclusively on keeping critical national infrastructure secure. You’ll support a team of expert ethical hackers, helping test systems, applications, and networks for vulnerabilities - working alongside seasoned professionals while sharpening your offensive … security skills. Expect to contribute to hands-on pen testing engagements, conduct vulnerability assessments, and support threat hunting within a well-established SOC. You'll develop your skills using industry-standard tools, investigate incidents, and provide actionable remediation advice. Role: Junior Penetration Tester Location: London/Hybrid Salary: £30,000 - £50,000 (DOE) Ideally, you’ll have: 6+ months … of proven penetration or security testing experience Knowledge of Metasploit, Burp Suite, and vulnerability scanning tools Experience with Windows, Linux and Mac operating systems Interest in threat hunting, incident response, and security monitoring CRT/OSCP/Cyber Scheme training or aspirations to achieve them Eligibility for UK Security Clearance If you're looking to build More ❯

Responsibilities Noblis is seeking an experienced cybersecurity professional to work in dynamic mission-oriented environment within Bethesda, Maryland. A successful candidate will be at the forefront of cutting-edge security operations to tackle offensive and defensive cyber challenges. They'll dive deep into vulnerability research, reverse engineering threats, and craft advanced tools and malicious payloads to stay ahead of … with SCI and CI Polygraph. Bachelors of Science and 8+ years of prior relevant experience OR Masters with 6+ years of prior relevant experience. Knowledge of offensive and defensive security tactics in various environments (e.g., cloud, IoT, mobile). Experience with penetration testing automation and continuous security monitoring. Familiarity with network traffic analysis. Ability to perform red teaming … technical and non-technical stakeholders. Knowledge/use of malware analysis and reverse engineering techniques. Knowledge/use of vulnerability research and fuzzing tools for testing code and discovering security flaws. Desired Qualifications Experience with Cloud Security (e.g., AWS, Azure, Google Cloud) and securing cloud-based applications and infrastructure. Knowledge of cryptography and its application in securing communications More ❯

At Vanta, our mission is to help businesses earn and prove trust. We believe that security should be monitored and verified continuously, and we empower companies to practice better security and prove it with ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without it. … equal opportunity employer, we encourage and welcome people of all backgrounds to apply. About Vanta We started in 2018, in the wake of several high-profile data breaches. Online security was only becoming more important, but we knew firsthand how hard it could be for fast-growing companies to invest the time and manpower it takes to build a … solid security foundation. Vanta was inspired by a vision to restore trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than More ❯

At Vanta, our mission is to help businesses earn and prove trust. We believe that security should be monitored and verified continuously, and we empower companies to practice better security and prove it with ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without it. … scores along the way. Our momentum is driven by a clear mission: to secure the internet and help startups scale with trust. As the category leader in compliance and security automation, we're capturing market share rapidly, and our Sales team is at the forefront of that charge. To support this continued growth, we're expanding our Startups Sales … full ownership of the sales cycle—from first touch to close—and play a critical role in positioning Vanta as the go-to solution for early-stage companies navigating security and compliance for the first time. This is a highly transactional, new business role where success comes from running a tight, repeatable process and maintaining a high daily output. More ❯

SOC Analyst Location: Cheltenham Please Note: Due to the nature of client work you will be undertaking, you will need to be willing to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application. Accenture is a leading global professional services company, providing a broad range … a vibrant environment with access to training and global network of experts, this could be the role for you. In our team you will learn: The role encompasses both monitoring and responding to alerts raised by various toolsets as part of an ongoing managed security monitoring service, coupled with analysing data sets gathered from Incident Response investigations More ❯

You will be working on brand new projects including a technology transformation project utilising the latest tools and equipment. Your role will specifically require you to oversee the DevOps, Security, and Cloud Infrastructure whilst leading the strategy and direction of the company. Your day-to-day will consist of: Leading and enhancing the company's infrastructure and tooling strategy. … Implementing and improving Infrastructure as Code (IaC) with Terraform Working across AWS services - particularly IAM, S3, EKS Managing containerisation and orchestration. Delivering robust monitoring and alerting solutions Contributing to and maintaining CI/CD pipelines Driving ISO 27000 implementation and supporting ongoing compliance initiatives Introducing and managing cybersecurity tools such as vulnerability scanners, endpoint protection, SIEM, and cloud security monitoring solutions Requirements: Extensive experience in a DevOps team lead role using AWS, (IAM, S3, EKS). Experience with IaC such as Terraform.. Cloud formation/CDK is desirable. Expert knowledge in containerisation and orchestration technologies such as Docker and Kubernetes. Proficiency with CI/CID pipelines and tools via GitHub & ArgoCD. Experience delivering monitoring and alerting More ❯

You will be working on brand new projects including a technology transformation project utilising the latest tools and equipment. Your role will specifically require you to oversee the DevOps, Security, and Cloud Infrastructure whilst leading the strategy and direction of the company. Your day-to-day will consist of: Leading and enhancing the company's infrastructure and tooling strategy. … Implementing and improving Infrastructure as Code (IaC) with Terraform Working across AWS services - particularly IAM, S3, EKS Managing containerisation and orchestration. Delivering robust monitoring and alerting solutions Contributing to and maintaining CI/CD pipelines Driving ISO 27000 implementation and supporting ongoing compliance initiatives Introducing and managing cybersecurity tools such as vulnerability scanners, endpoint protection, SIEM, and cloud security monitoring solutions Requirements: Extensive experience in a DevOps team lead role using AWS, (IAM, S3, EKS). Experience with IaC such as Terraform.. Cloud formation/CDK is desirable. Expert knowledge in containerisation and orchestration technologies such as Docker and Kubernetes. Proficiency with CI/CID pipelines and tools via GitHub & ArgoCD. Experience delivering monitoring and alerting More ❯

You will be working on brand new projects including a technology transformation project utilising the latest tools and equipment. Your role will specifically require you to oversee the DevOps, Security, and Cloud Infrastructure whilst leading the strategy and direction of the company. Your day-to-day will consist of: Leading and enhancing the company's infrastructure and tooling strategy. … Implementing and improving Infrastructure as Code (IaC) with Terraform Working across AWS services - particularly IAM, S3, EKS Managing containerisation and orchestration. Delivering robust monitoring and alerting solutions Contributing to and maintaining CI/CD pipelines Driving ISO 27000 implementation and supporting ongoing compliance initiatives Introducing and managing cybersecurity tools such as vulnerability scanners, endpoint protection, SIEM, and cloud security monitoring solutions Requirements: Extensive experience in a DevOps team lead role using AWS, (IAM, S3, EKS). Experience with IaC such as Terraform.. Cloud formation/CDK is desirable. Expert knowledge in containerisation and orchestration technologies such as Docker and Kubernetes. Proficiency with CI/CID pipelines and tools via GitHub & ArgoCD. Experience delivering monitoring and alerting More ❯

Security (SIEM) Architect Location: Warwick, Hybrid IR Status: TBC Rate: £600 - £800 Length : 6-12 months, TBC Clearance: Must have active SC clearance. An exciting opportunity has emerged with an organisaiton supplying complex architectural, technical and delivery solutions across the UK Secure Government and Public Sectors. They are looking to bring in a specialist security archietct, with demonstrable … provided the initial scope. Architecture & Design Define and implement SIEM architecture using Elastic Stack (Elasticsearch, Logstash, Kibana, Beats). Design log ingestion pipelines, data models, and correlation rules for security monitoring. Develop observability frameworks integrating logs, metrics, and traces. Implementation & Engineering Deploy and configure ElasticSearch clusters, Kibana dashboards, and Logstash pipelines. Integrate SIEM with cloud-native observability tools (AWS … CloudWatch, Azure Monitor, GCP Operations Suite). Automate log collection and enrichment using Beats, OpenTelemetry, and scripting. Security Use Cases & Threat Detection Build and maintain SIEM use cases, alerts, and dashboards for threat detection. Map detection rules to frameworks like MITRE ATT&CK, STRIDE, and NIST CSF. Collaborate with SOC teams to refine incident response workflows. Governance & Compliance Align More ❯

IT support engineers, ensuring tickets are being completed in a timely manner and KPI’s/SLA’s are adhered to. Independently manage IT projects. Utilise Microsoft Defender for security monitoring. Manage Windows Servers, Intune, O365, and Azure infrastructure. Deploy Azure environments. Configure and maintain equipment. Experience required for the Lead Service Desk Engineer: Experience within a managerial/… Windows servers ect. Previous experience administering an Azure environment (Azure Virtual Desktop, Entra ID ect.). Knowledge of the ITIL framework. Desirable: Experience with Dynamics 365 Business Central, and security/CompTIA certifications. Apply now to speak with VIQU IT in confidence. Or reach out to Jack McManus via the VIQU IT website. Do you know someone great? We More ❯

IT support engineers, ensuring tickets are being completed in a timely manner and KPI’s/SLA’s are adhered to. Independently manage IT projects. Utilise Microsoft Defender for security monitoring. Manage Windows Servers, Intune, O365, and Azure infrastructure. Deploy Azure environments. Configure and maintain equipment. Experience required for the Lead Service Desk Engineer: Experience within a managerial/… Windows servers ect. Previous experience administering an Azure environment (Azure Virtual Desktop, Entra ID ect.). Knowledge of the ITIL framework. Desirable: Experience with Dynamics 365 Business Central, and security/CompTIA certifications. Apply now to speak with VIQU IT in confidence. Or reach out to Jack McManus via the VIQU IT website. Do you know someone great? We More ❯