201 to 225 of 346 Security Operations Jobs in the UK

SOC Engineer £60,000 GBP Hybrid WORKING Location: Glasgow, Scotland - United Kingdom Type: Permanent Senior SOC Engineer A leading organisation is seeking a Senior SOC Engineer to strengthen its security operations capability and drive continuous improvement across detection, response, and automation. This pivotal role requires deep expertise in IBM QRadar, with a strong focus on playbook development, analytical … with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) to streamline triage and automate response. Refine playbooks based on threat intelligence and incident insights. Threat Detection & Response Monitor and analyse security alerts and events to identify potential threats. Conduct investigations and coordinate incident response activities. Collaborate with threat intelligence teams to enhance detection logic. Threat Modelling & Use Case Development Lead … Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting & Collaboration Produce reports and dashboards to communicate security posture and incident trends. Partner with IT, DevOps, and compliance teams to enforce secure configurations. Provide mentorship to junior analysts and engineers. Maintain documentation of security procedures, incident More ❯

SOC Engineer £60,000 GBP Hybrid WORKING Location: Glasgow, Scotland - United Kingdom Type: Permanent Senior SOC Engineer A leading organisation is seeking a Senior SOC Engineer to strengthen its security operations capability and drive continuous improvement across detection, response, and automation. This pivotal role requires deep expertise in IBM QRadar, with a strong focus on playbook development, analytical … with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) to streamline triage and automate response. Refine playbooks based on threat intelligence and incident insights. Threat Detection & Response Monitor and analyse security alerts and events to identify potential threats. Conduct investigations and coordinate incident response activities. Collaborate with threat intelligence teams to enhance detection logic. Threat Modelling & Use Case Development Lead … Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting & Collaboration Produce reports and dashboards to communicate security posture and incident trends. Partner with IT, DevOps, and compliance teams to enforce secure configurations. Provide mentorship to junior analysts and engineers. Maintain documentation of security procedures, incident More ❯

SOC Engineer £60,000 GBP Hybrid WORKING Location: Glasgow, Scotland - United Kingdom Type: Permanent Senior SOC Engineer A leading organisation is seeking a Senior SOC Engineer to strengthen its security operations capability and drive continuous improvement across detection, response, and automation. This pivotal role requires deep expertise in IBM QRadar, with a strong focus on playbook development, analytical … with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) to streamline triage and automate response. Refine playbooks based on threat intelligence and incident insights. Threat Detection & Response Monitor and analyse security alerts and events to identify potential threats. Conduct investigations and coordinate incident response activities. Collaborate with threat intelligence teams to enhance detection logic. Threat Modelling & Use Case Development Lead … Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting & Collaboration Produce reports and dashboards to communicate security posture and incident trends. Partner with IT, DevOps, and compliance teams to enforce secure configurations. Provide mentorship to junior analysts and engineers. Maintain documentation of security procedures, incident More ❯

SOC Engineer £60,000 GBP Hybrid WORKING Location: Glasgow, Scotland - United Kingdom Type: Permanent Senior SOC Engineer A leading organisation is seeking a Senior SOC Engineer to strengthen its security operations capability and drive continuous improvement across detection, response, and automation. This pivotal role requires deep expertise in IBM QRadar, with a strong focus on playbook development, analytical … with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) to streamline triage and automate response. Refine playbooks based on threat intelligence and incident insights. Threat Detection & Response Monitor and analyse security alerts and events to identify potential threats. Conduct investigations and coordinate incident response activities. Collaborate with threat intelligence teams to enhance detection logic. Threat Modelling & Use Case Development Lead … Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting & Collaboration Produce reports and dashboards to communicate security posture and incident trends. Partner with IT, DevOps, and compliance teams to enforce secure configurations. Provide mentorship to junior analysts and engineers. Maintain documentation of security procedures, incident More ❯

SOC Engineer £60,000 GBP Hybrid WORKING Location: Glasgow, Scotland - United Kingdom Type: Permanent Senior SOC Engineer A leading organisation is seeking a Senior SOC Engineer to strengthen its security operations capability and drive continuous improvement across detection, response, and automation. This pivotal role requires deep expertise in IBM QRadar, with a strong focus on playbook development, analytical … with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) to streamline triage and automate response. Refine playbooks based on threat intelligence and incident insights. Threat Detection & Response Monitor and analyse security alerts and events to identify potential threats. Conduct investigations and coordinate incident response activities. Collaborate with threat intelligence teams to enhance detection logic. Threat Modelling & Use Case Development Lead … Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting & Collaboration Produce reports and dashboards to communicate security posture and incident trends. Partner with IT, DevOps, and compliance teams to enforce secure configurations. Provide mentorship to junior analysts and engineers. Maintain documentation of security procedures, incident More ❯

SOC Engineer £60,000 GBP Hybrid WORKING Location: Glasgow, Scotland - United Kingdom Type: Permanent Senior SOC Engineer A leading organisation is seeking a Senior SOC Engineer to strengthen its security operations capability and drive continuous improvement across detection, response, and automation. This pivotal role requires deep expertise in IBM QRadar, with a strong focus on playbook development, analytical … with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) to streamline triage and automate response. Refine playbooks based on threat intelligence and incident insights. Threat Detection & Response Monitor and analyse security alerts and events to identify potential threats. Conduct investigations and coordinate incident response activities. Collaborate with threat intelligence teams to enhance detection logic. Threat Modelling & Use Case Development Lead … Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting & Collaboration Produce reports and dashboards to communicate security posture and incident trends. Partner with IT, DevOps, and compliance teams to enforce secure configurations. Provide mentorship to junior analysts and engineers. Maintain documentation of security procedures, incident More ❯

SOC Engineer £60,000 GBP Hybrid WORKING Location: Glasgow, Scotland - United Kingdom Type: Permanent Senior SOC Engineer A leading organisation is seeking a Senior SOC Engineer to strengthen its security operations capability and drive continuous improvement across detection, response, and automation. This pivotal role requires deep expertise in IBM QRadar, with a strong focus on playbook development, analytical … with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) to streamline triage and automate response. Refine playbooks based on threat intelligence and incident insights. Threat Detection & Response Monitor and analyse security alerts and events to identify potential threats. Conduct investigations and coordinate incident response activities. Collaborate with threat intelligence teams to enhance detection logic. Threat Modelling & Use Case Development Lead … Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting & Collaboration Produce reports and dashboards to communicate security posture and incident trends. Partner with IT, DevOps, and compliance teams to enforce secure configurations. Provide mentorship to junior analysts and engineers. Maintain documentation of security procedures, incident More ❯

SOC Engineer £60,000 GBP Hybrid WORKING Location: Glasgow, Scotland - United Kingdom Type: Permanent Senior SOC Engineer A leading organisation is seeking a Senior SOC Engineer to strengthen its security operations capability and drive continuous improvement across detection, response, and automation. This pivotal role requires deep expertise in IBM QRadar, with a strong focus on playbook development, analytical … with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) to streamline triage and automate response. Refine playbooks based on threat intelligence and incident insights. Threat Detection & Response Monitor and analyse security alerts and events to identify potential threats. Conduct investigations and coordinate incident response activities. Collaborate with threat intelligence teams to enhance detection logic. Threat Modelling & Use Case Development Lead … Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting & Collaboration Produce reports and dashboards to communicate security posture and incident trends. Partner with IT, DevOps, and compliance teams to enforce secure configurations. Provide mentorship to junior analysts and engineers. Maintain documentation of security procedures, incident More ❯

UK wide (remote, with 1–2 days a month in Glasgow) £57,000 + package The opportunity Our client is a global consultancy with one of the largest dedicated security practices in the industry. With over 7,500 security specialists worldwide, they partner with leading security technology providers to deliver mission-critical solutions for government and enterprise … clients. They’re now looking for a Senior SOC Analyst to join their UK Security Operations Centre. This is a chance to step into a senior role with real influence, where you’ll take the lead on escalated incidents, shape SOC processes, and mentor junior analysts — all while working mostly remote. What you’ll be doing Leading investigations … into escalated security events and incidents Driving containment, remediation, and root-cause analysis for major incidents Performing malware analysis, reverse engineering, and threat hunting Developing and optimising SIEM use cases (Splunk, QRadar) Shaping SOC runbooks, playbooks, and incident response procedures Supporting client stakeholders with incident reporting and recommendations Staying ahead of emerging threats and integrating threat intelligence Acting as More ❯

DevSecOps Engineer – Hybrid - Nottinghamshire - Up to £75000 + Bonus We’re seeking an experienced DevSecOps Engineer to take a leading role in strengthening our clients’ security operations. This is a hands-on, strategic position within the Technical Operations team, where you’ll set the direction for security practices, guide incident response, and support the growth of the … wider team. Your responsibilities: Lead on security incidents, managing investigations through to resolution Design, implement, and maintain robust security controls across infrastructure and applications Drive the creation and execution of incident response plans, ensuring continuous improvements Integrate security practices seamlessly into the DevOps pipeline Manage and optimise monitoring tools to provide real-time threat visibility Carry out … regular threat and vulnerability assessments, applying effective remediation strategies Coach and mentor colleagues, keeping the team ahead of evolving risks and technologies What you bring: Significant experience in security operations across both cloud and on-premise environments In-depth understanding of security monitoring solutions, frameworks, and standards (e.g., NIST, ISO 27001, CIS) Proficiency with automation and scripting More ❯

DevSecOps Engineer – Hybrid - Nottinghamshire - Up to £75000 + Bonus We’re seeking an experienced DevSecOps Engineer to take a leading role in strengthening our clients’ security operations. This is a hands-on, strategic position within the Technical Operations team, where you’ll set the direction for security practices, guide incident response, and support the growth of the … wider team. Your responsibilities: Lead on security incidents, managing investigations through to resolution Design, implement, and maintain robust security controls across infrastructure and applications Drive the creation and execution of incident response plans, ensuring continuous improvements Integrate security practices seamlessly into the DevOps pipeline Manage and optimise monitoring tools to provide real-time threat visibility Carry out … regular threat and vulnerability assessments, applying effective remediation strategies Coach and mentor colleagues, keeping the team ahead of evolving risks and technologies What you bring: Significant experience in security operations across both cloud and on-premise environments In-depth understanding of security monitoring solutions, frameworks, and standards (e.g., NIST, ISO 27001, CIS) Proficiency with automation and scripting More ❯

OT Cyber Security Engineer – Glasgow – on site 3 days a week (minimum) Are you an aspiring OT Cyber Security professional looking for that first dedicated opportunity?I’m working with a client who is ready to heavily invest in your development offering. It’s a hands-on engineering position working directly with major power systems that keep energy … flowing across the globe. You’ll be front-line on projects, embedded in networks, and ensuring security by design in critical national infrastructure. From managing logs and change control to assessing risks of emerging technologies like drones and robotics, this role gives you the scope to apply your skills where it really matters. What you’ll be doing: Working … directly on OT networks and control systems (ICS/SCADA). Supporting integration of projects into the OT Security Operations Centre. Ensuring security by design across OT environments. Managing vulnerabilities, risks, and incident response processes. Assessing risks from new technologies such as robotics and drones. Collaborating with engineers, IT, and operational teams across the business. What we More ❯

OT Cyber Security Engineer - Glasgow - on site 3 days a week (minimum) Are you an aspiring OT Cyber Security professional looking for that first dedicated opportunity?I'm working with a client who is ready to heavily invest in your development offering. It's a hands-on engineering position working directly with major power systems that keep energy … flowing across the globe. You'll be front-line on projects, embedded in networks, and ensuring security by design in critical national infrastructure. From managing logs and change control to assessing risks of emerging technologies like drones and robotics, this role gives you the scope to apply your skills where it really matters. What you'll be doing: Working … directly on OT networks and control systems (ICS/SCADA). Supporting integration of projects into the OT Security Operations Centre. Ensuring security by design across OT environments. Managing vulnerabilities, risks, and incident response processes. Assessing risks from new technologies such as robotics and drones. Collaborating with engineers, IT, and operational teams across the business. What we More ❯

OT Cyber Security Engineer – Leeds – on site 3 days a week (minimum) Are you an aspiring OT Cyber Security professional looking for that first dedicated opportunity? I’m working with a client who is ready to heavily invest in your development offering. It’s a hands-on engineering position working directly with major power systems that keep energy … flowing across the globe. You’ll be front-line on projects, embedded in networks, and ensuring security by design in critical national infrastructure. From managing logs and change control to assessing risks of emerging technologies like drones and robotics, this role gives you the scope to apply your skills where it really matters. What you’ll be doing: Working … directly on OT networks and control systems (ICS/SCADA). Supporting integration of projects into the OT Security Operations Centre. Ensuring security by design across OT environments. Managing vulnerabilities, risks, and incident response processes. Assessing risks from new technologies such as robotics and drones. Collaborating with engineers, IT, and operational teams across the business. What we More ❯

OT Cyber Security Engineer - Glasgow - on site 3 days a week (minimum) Are you an aspiring OT Cyber Security professional looking for that first dedicated opportunity?I'm working with a client who is ready to heavily invest in your development offering. It's a hands-on engineering position working directly with major power systems that keep energy … flowing across the globe. You'll be front-line on projects, embedded in networks, and ensuring security by design in critical national infrastructure. From managing logs and change control to assessing risks of emerging technologies like drones and robotics, this role gives you the scope to apply your skills where it really matters. What you'll be doing: Working … directly on OT networks and control systems (ICS/SCADA). Supporting integration of projects into the OT Security Operations Centre. Ensuring security by design across OT environments. Managing vulnerabilities, risks, and incident response processes. Assessing risks from new technologies such as robotics and drones. Collaborating with engineers, IT, and operational teams across the business. What we More ❯

Wales Your new company I am looking to recruit an Incident Response Analyst to join a leader in the utilities space. The business have been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The company has a strong reputation, and we have placed numerous people into careers there … with strong feedback. Your new role This is an interesting opportunity to help deliver strategy which will enhance the organisation's security resilience, proactively contributing to mitigating threats, at a good time when the company is expanding and investing in its IT and cyber security estate. Working alongside the SOC, the primary responsibility of an incident responder is … to rapidly investigate and document cybersecurity incidents within the organisation. Key parts of the role: Monitor and analyse network traffic, system logs, and other data sources to identify potential security incidents. Investigate alerts and suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate More ❯

Wales Your new company I am looking to recruit an Incident Response Analyst to join a leader in the utilities space. The business have been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The company has a strong reputation, and we have placed numerous people into careers there … with strong feedback. Your new role This is an interesting opportunity to help deliver strategy which will enhance the organisation's security resilience, proactively contributing to mitigating threats, at a good time when the company is expanding and investing in its IT and cyber security estate. Working alongside the SOC, the primary responsibility of an incident responder is … to rapidly investigate and document cybersecurity incidents within the organisation. Key parts of the role: Monitor and analyse network traffic, system logs, and other data sources to identify potential security incidents. Investigate alerts and suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate More ❯

We are looking for a talented Cyber Security/SOC Engineer to join a highly skilled Cyber Security SOC team within a leading internationally advanced technology solution provider * Must have the ability to obtain Security Clearance (SC). Duties include: Operate, tune, and support security monitoring and alerting platforms used by the SOC. Maintain and optimise … log ingestion pipelines across a variety of systems and data sources. Collaborate with SOC analysts to develop and refine detection rules, alerts, and playbooks. Respond to security events and support investigation and containment activities. Automate repetitive SOC tasks and workflows to improve consistency and efficiency Required experience: Hands-on experience operating or supporting security operations tools (e.g. More ❯

Glasgow, Scotland - United Kingdom Type: Permanent Senior SOC Analyst Location: Glasgow (hybrid) Salary: Up to £57,000 + package NOTE: Candidates for this role must be eligible for UK Security Clearance (SC). We are seeking a Senior SOC Analyst to join a growing Security Operations Centre team. This is a hybrid role based in Glasgow, offering … the opportunity to take a leading role in incident response and advanced security monitoring within a dynamic environment. As a Senior SOC Analyst, you will take ownership of escalated incidents from L1 and L2 analysts, leading investigations, performing root cause analysis, and guiding appropriate remediation actions. You will play a key role in developing SOC use cases, enhancing monitoring … interaction, and leadership, requiring someone who thrives in a fast-moving environment and is comfortable working with both technical and non-technical stakeholders. Key Responsibilities Lead investigations into escalated security incidents, including detailed analysis and root cause identification. Monitor and optimise SIEM tools (Splunk, QRadar, or similar), ensuring accurate detection and effective alerting. Perform malware analysis, reverse engineering, and More ❯

Clearance Work Type: Full-time, with 24/7 on-call rotation A high-performing innovation and transformation consultancy is seeking a Senior SOC Solutions Engineer to elevate its security operations capability. This is a hands-on engineering role focused on SIEM development, playbook automation, and threat modelling-delivering proactive defence across cloud and on-prem environments. You … and data exfiltration Integrate playbooks with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) Continuously refine automation based on threat intelligence and incident feedback Threat Detection & Response Monitor and investigate security alerts and anomalies Lead incident response activities and collaborate with threat intelligence teams Enrich detection logic with contextual threat data Threat Modelling & Use Case Development Conduct threat modelling using … Kill Chain frameworks Translate models into actionable SIEM use cases and detection rules Prioritize engineering efforts based on risk and business impact Reporting & Collaboration Produce dashboards and reports on security posture and incident trends Collaborate with IT, DevOps, and compliance teams to ensure secure configurations Mentor junior analysts and engineers Maintain documentation including runbooks, playbooks, and incident response plans More ❯

An opportunity has arisen for a Principal Security Analyst with a strong technical background and a passion for problem solving to join a growing UK MSSP. This role has no line management responsibility. Instead, the position is focused on being an escalation point for Senior Analysts, dealing with more complex alerts as well as identifying opportunities to tune, optimise … automate and improve relevant systems. The Role The Principal Security Analyst will support busy pods on more complex issues, lead and coordinate threat hunting activities, perform and lead vulnerability assessment activities and perform SIEM-based event analysis, incident triage and coordinate incident response activities. Furthermore, the Principal Security Analyst will actively collaborate with other analysts and enhance the … is comfortable tackling complex problems and has experience in a SOC/MSSP environment. Essential Sentinel (specialist) SOC experience in an MSP/MSSP environment In depth understanding of security and analytical concepts Exposure to IT Security Operations in large and complex organisations Some coding ability Beneficial Splunk Palo Alto (XDR/XSIAM) Skills in Forensics Experience More ❯

About the Role The Security Controller is responsible for overseeing and managing all aspects of security within the business. This role involves ensuring compliance with security policies, implementing and maintaining security controls, and managing physical and procedural security operations. Responsibilities Overall management of the security function within the business, providing advice and guidance to … all levels of the business and managing the security team. Policy and Compliance: Creating, maintaining, and updating security policies, ensuring compliance with organisational, regulatory, and contractual requirements. Managing and maintaining all security accreditations. Keeping up to date with changes to legislation and technology, and implement required changes. Facilitate inspections, support FM practices, and audit processes. Risk Management … and incident/breach management and reporting. Managing physical security measures and security infrastructure, ensuring they are effective and compliant. Managing relationships with contractors and suppliers, and review in line with budgets bi-annually. Oversight of clearance processes including training, aftercare responsibilities and change management. Management of asset tracking and all associated controls. Communication and Coordination: Facilitating communication More ❯

SOC Lead £80000 GBP Hybrid WORKING Location: Glasgow, Scotland - United Kingdom Type: Permanent SOC Technical Security Service Delivery Manager Location: Glasgow (hybrid) Salary: Up to £85,000 (depending on experience) NOTE: Due to the nature of this client's work, you must be eligible for UK Security Clearance (SC). We're currently seeking a highly experienced SOC … Technical Security Service Delivery Manager to join a growing and innovative Security Operations Centre (SOC) function within a global, client-focused environment. This is a pivotal opportunity to lead and shape the delivery of security services for major clients while supporting a broader mission to build a more secure and resilient digital world. You will act … as a critical liaison between client stakeholders and internal operational teams, ensuring the delivery of world-class cyber security services. You'll drive incident response coordination, lead vulnerability management efforts, and ensure service excellence through strategic oversight and hands-on technical engagement. What You'll Be Doing Serve as the key point of contact and escalation for clients across More ❯

Remote (UK) Up to £95,000 + Benefits An opportunity has arisen for a Principal Security Analyst with a strong technical background and a passion for problem solving to join a growing UK MSSP. This role has no line management responsibility. Instead, the position is focused on being an escalation point for Senior Analysts, dealing with more complex alerts … as well as identifying opportunities to tune, optimise, automate and improve relevant systems. The Role The Principal Security Analyst will support busy pods on more complex issues, lead and coordinate threat hunting activities, perform and lead vulnerability assessment activities and perform SIEM-based event analysis, incident triage and coordinate incident response activities. Furthermore, the Principal Security Analyst will … is comfortable tackling complex problems and has experience in a SOC/MSSP environment. Essential -Sentinel (specialist) -SOC experience in an MSP/MSSP environment -In depth understanding of security and analytical concepts -Exposure to IT Security Operations in large and complex organisations -Some coding ability Beneficial -Splunk -Palo Alto (XDR/XSIAM) -Skills in Forensics -Experience More ❯

Job Title: Cyber Security Analyst (Contract) Contract Rate: Negotiable (Inside IR35) Shift Pattern (Day/Night) Location: Andover, Hampshire Security Clearance: ** Current valid SC clearance required ** Eligibility: ** UK eyes only ** About the Role: This is a brilliant opportunity to join our growing team at CND. We are looking for an experienced Security Analyst. This role offers a … great shift pattern, ensuring you regularly have 5 days off and at least 2 weekends off per month. Key Responsibilities: Deliver excellent and thorough security analysis, taking SIEM output and actioning it accordingly. Push for improvements across the overall monitoring capability. Engage with a wide range of stakeholders, with varying levels of technical understanding. Be flexible on location; some … of our clients will need provision on site, balanced to ensure your wellbeing. Suggest ideas for improving CND’s own internal security posture. Be proactive with client requirements, offering guidance and input to highly technical challenges. Essential Skills: Experience working with SIEM tools such as ArcSight, Splunk, LogRhythm, or AlienVault. Understanding of how to get the best from available More ❯