251 to 275 of 403 Security Operations Jobs in the UK

Cyber Security Analyst Salary: Up to £55,000 + £5,600 car allowance + benefits Location: UK (Remote with some travel to UK sites - must have UK Driver's licence) Join a growing organisation in the engineering sector in a newly created role that will play a key role as the company continues to grow. You will contribute to … a dynamic, fast-paced environment, protecting critical systems and data, working on a mix of BAU security operations. The Role We're looking for a Cyber Security Analyst or Engineer with proficiency in a range of security skills including SentinelOne, Mimecast and MS Sentinel. You'll be working closely with the GISO while supporting a collection of … subsidiaries with day-to-day live estate monitoring. This role is perfect for someone with experience of working as part of a small security team, taking responsibility for security initiatives across the organisation. Cyber Security Analyst/Engineer Responsibilities: With day-to-day reporting to the Group Information Security Officer (GISO), you will combine operational monitoring More ❯

Cyber Security Analyst Salary: Up to £55,000 + £5,600 car allowance + benefits Location: UK (Remote with some travel to UK sites - must have UK Driver's licence) Join a growing organisation in the engineering sector in a newly created role that will play a key role as the company continues to grow. You will contribute to … a dynamic, fast-paced environment, protecting critical systems and data, working on a mix of BAU security operations. The Role We're looking for a Cyber Security Analyst or Engineer with proficiency in a range of security skills including SentinelOne, Mimecast and MS Sentinel. You'll be working closely with the GISO while supporting a collection of … subsidiaries with day-to-day live estate monitoring. This role is perfect for someone with experience of working as part of a small security team, taking responsibility for security initiatives across the organisation. Cyber Security Analyst/Engineer Responsibilities: With day-to-day reporting to the Group Information Security Officer (GISO), you will combine operational monitoring More ❯

strategic ownership of the organisation's core infrastructure and network operations. You will manage relationships with external service providers, lead internal infrastructure initiatives and ensure the stability, scalability and security of IT systems across multiple sites, whilst leading the infrastructure team. Key Responsibilities * Lead and manage the delivery of infrastructure and network services across offices and project sites, aligning … providers, ensuring performance, SLAs and service quality * Provide leadership to technical staff * Plan and coordinate infrastructure upgrades, migrations and integrations across a growing business portfolio * Manage network and server operations, ensuring uptime, resilience and business continuity. * Oversee the design and deployment of new site networks and connectivity solutions, ensuring standardisation and efficiency * Collaborate with the Security Operations Center and compliance teams to maintain a robust security posture * Develop and enforce infrastructure policies, processes and documentation to support consistent operations and future scalability * Maintain oversight of infrastructure assets, configuration management and software licensing * Contribute strategically to IT budgeting, vendor management and continuous service improvement initiatives * Provide high-level technical oversight and guidance in areas including More ❯

strategic ownership of the organisation's core infrastructure and network operations. You will manage relationships with external service providers, lead internal infrastructure initiatives and ensure the stability, scalability and security of IT systems across multiple sites, whilst leading the infrastructure team. Key Responsibilities * Lead and manage the delivery of infrastructure and network services across offices and project sites, aligning … providers, ensuring performance, SLAs and service quality * Provide leadership to technical staff * Plan and coordinate infrastructure upgrades, migrations and integrations across a growing business portfolio * Manage network and server operations, ensuring uptime, resilience and business continuity. * Oversee the design and deployment of new site networks and connectivity solutions, ensuring standardisation and efficiency * Collaborate with the Security Operations Center and compliance teams to maintain a robust security posture * Develop and enforce infrastructure policies, processes and documentation to support consistent operations and future scalability * Maintain oversight of infrastructure assets, configuration management and software licensing * Contribute strategically to IT budgeting, vendor management and continuous service improvement initiatives * Provide high-level technical oversight and guidance in areas including More ❯

bonus and 6k car allowance Mon Fri as well as an on-call rota - 1 week in 4. Candidates must be willing and eligible to go through SC security clearance for this role Job Description: We are seeking a highly skilled and experienced SOC Incident Response & Threat Hunting Manager to join our growing Security Operations Centre. This … pivotal role will be responsible for leading our Tier 3 Security and Incident Response Analysts, overseeing advanced incident response activities, driving proactive threat hunting initiatives, and providing strategic direction for the Cyber Threat Intelligence (CTI) capability. This is a hands-on leadership position requiring a strong technical background, exceptional management skills, and a strategic vision for cybersecurity. You will … play a key role in mentoring and developing a high-performing team, leading complex incident response engagements from initial detection through to post-incident review, and significantly enhancing the security posture of our diverse customer base. The role demands a unique blend of strategic leadership, deep technical expertise in digital forensics and incident response (DFIR), and a proactive mindset More ❯

bonus and £6k car allowance Mon - Fri as well as an on-call rota - 1 week in 4. Candidates must be willing and eligible to go through SC security clearance for this role Job Description: We are seeking a highly skilled and experienced SOC Incident Response & Threat Hunting Manager to join our growing Security Operations Centre. This … pivotal role will be responsible for leading our Tier 3 Security and Incident Response Analysts, overseeing advanced incident response activities, driving proactive threat hunting initiatives, and providing strategic direction for the Cyber Threat Intelligence (CTI) capability. This is a hands-on leadership position requiring a strong technical background, exceptional management skills, and a strategic vision for cybersecurity. You will … play a key role in mentoring and developing a high-performing team, leading complex incident response engagements from initial detection through to post-incident review, and significantly enhancing the security posture of our diverse customer base. The role demands a unique blend of strategic leadership, deep technical expertise in digital forensics and incident response (DFIR), and a proactive mindset More ❯

Senior Security Analyst – SOC/Incident Response I’m partnering with a fast-growing Cyber Defence function that’s strengthening its Security Operations Centre and looking for a talented Senior Security Analyst to join the team. You’ll take a leading role in detecting, analysing, and responding to cyber threats across diverse client environments, mentoring junior … a SOC, CSIRT, or cyber defence environment. Solid knowledge of SIEM and EDR platforms (Sentinel, Splunk, Defender, CrowdStrike, etc.). Understanding of MITRE ATT&CK and network/cloud security principles. Strong analytical and communication skills. Bonus points for: Scripting or automation experience (KQL, PowerShell, Python). Background in threat hunting or vulnerability management. Why apply? Hybrid flexibility, funded More ❯

for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams. What You’ll Be Doing 🕵️ Lead Investigations : Conduct host, network, and cloud … based forensic analysis to uncover the full scope of security incidents. 🛡️ Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies. ⚙️ Drive Innovation : Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities. 🔍 Threat Hunting : Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering More ❯

for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams. What You’ll Be Doing 🕵️ Lead Investigations : Conduct host, network, and cloud … based forensic analysis to uncover the full scope of security incidents. 🛡️ Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies. ⚙️ Drive Innovation : Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities. 🔍 Threat Hunting : Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering More ❯

for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams. What You’ll Be Doing 🕵️ Lead Investigations : Conduct host, network, and cloud … based forensic analysis to uncover the full scope of security incidents. 🛡️ Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies. ⚙️ Drive Innovation : Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities. 🔍 Threat Hunting : Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering More ❯

for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams. What You’ll Be Doing 🕵️ Lead Investigations : Conduct host, network, and cloud … based forensic analysis to uncover the full scope of security incidents. 🛡️ Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies. ⚙️ Drive Innovation : Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities. 🔍 Threat Hunting : Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering More ❯

for a Senior Incident Responder to join our cutting-edge Digital Forensics and Incident Response (DFIR) team. You’ll play a pivotal role in investigating and responding to complex security threats across our global estate, working alongside our security operations, threat intelligence, and engineering teams. What You’ll Be Doing 🕵️ Lead Investigations : Conduct host, network, and cloud … based forensic analysis to uncover the full scope of security incidents. 🛡️ Incident Handling : Support incident managers with root cause analysis and recommend detection and prevention strategies. ⚙️ Drive Innovation : Improve and automate DFIR workflows, collaborating across teams to enhance our security capabilities. 🔍 Threat Hunting : Lead intelligence-driven hunts to identify and escalate suspicious activity, contributing to our detection engineering More ❯

its technical capability, with ambitious growth plans and multiple acquisitions planned every year for the next 5 years (8 in the past 12 months). Reporting into the IT Operations Manager, you will oversee core infrastructure and networking. You'll work closely with managed service providers to ensure seamless operations and business continuity whilst taking a lead on … the Service Desk Team Set up and configure Local Area Networks (LANs), including hardware deployment and support Coordinate with third-party MSPs for network and infrastructure management Manage firewall operations and connectivity with ISPs Oversee network IP addressing and VPN setups Support business continuity through proactive incident management Rapid deployment of site connectivity solutions, including 4G routers Monitor network … health and performance, ensuring high availability and resilience Maintain inventory and configuration records for infrastructure and software Collaborate with the Security Operations Center (SOC) on network security Support software licensing and upgrades Support data privacy and security audits Provide technical support and mentoring Maintain server rooms and ensure operational efficiency Develop and implement business processes and More ❯

its technical capability, with ambitious growth plans and multiple acquisitions planned every year for the next 5 years (8 in the past 12 months). Reporting into the IT Operations Manager, you will oversee core infrastructure and networking. You'll work closely with managed service providers to ensure seamless operations and business continuity whilst taking a lead on … the Service Desk Team Set up and configure Local Area Networks (LANs), including hardware deployment and support Coordinate with third-party MSPs for network and infrastructure management Manage firewall operations and connectivity with ISPs Oversee network IP addressing and VPN setups Support business continuity through proactive incident management Rapid deployment of site connectivity solutions, including 4G routers Monitor network … health and performance, ensuring high availability and resilience Maintain inventory and configuration records for infrastructure and software Collaborate with the Security Operations Center (SOC) on network security Support software licensing and upgrades Support data privacy and security audits Provide technical support and mentoring Maintain server rooms and ensure operational efficiency Develop and implement business processes and More ❯

An exciting opportunity has arisen for an accomplished SOC Incident Response & Threat Hunting Manager to lead a high-performing team within a dynamic and evolving Security Operations Centre (SOC) environment. This critical role is ideal for a technically proficient cybersecurity professional with a passion for proactive defence, threat intelligence, and strategic leadership. The successful candidate will oversee a … team of Tier 3 Security and Incident Response Analysts, driving advanced incident response, digital forensics, and threat hunting operations across a diverse customer base. Acting as a technical authority, the role will play a pivotal part in enhancing cyber resilience, refining detection capabilities, and leading complex investigations from detection through to remediation and review. Key Responsibilities Lead, mentor … Oversee and coordinate high-severity incident response engagements, acting as incident lead when required, and guiding cross-functional teams through time-critical decision-making. Provide expert oversight on complex security incidents, ensuring technical accuracy, rapid containment, and detailed documentation throughout. Drive the ongoing development and maturity of the Cyber Threat Intelligence (CTI) capability, ensuring intelligence is actionable, relevant and More ❯

a high-impact transformation journey as our client builds a cutting-edge Group Shared Services model across the UK, Ireland, and the US. This is your chance to lead security operations, respond to real-world threats, and shape the future of cybersecurity in a dynamic, multi-entity environment. Requirements: Proven experience in incident response and vulnerability management. Hands … tools. Strong communicator—able to engage technical and non-technical stakeholders. Experience in distributed or franchisee-based environments is a major plus. Certifications like CISSP, CISM, GIAC, or Azure Security Engineer are highly valued. Responsibilities: Be the go-to expert for security incidents—detect, respond, and remediate across regions. Drive vulnerability management using top-tier tools like Tenable … Nessus, and Microsoft Defender. Collaborate with franchisees, vendors, and internal teams to close security gaps and elevate resilience. Translate complex threats into clear, actionable insights for senior leadership. Help build and evolve a security program that scales across geographies and business models. Join a security-first culture in a global enterprise. More ❯

a high-impact transformation journey as our client builds a cutting-edge Group Shared Services model across the UK, Ireland, and the US. This is your chance to lead security operations, respond to real-world threats, and shape the future of cybersecurity in a dynamic, multi-entity environment. Requirements: Proven experience in incident response and vulnerability management. Hands … tools. Strong communicator—able to engage technical and non-technical stakeholders. Experience in distributed or franchisee-based environments is a major plus. Certifications like CISSP, CISM, GIAC, or Azure Security Engineer are highly valued. Responsibilities: Be the go-to expert for security incidents—detect, respond, and remediate across regions. Drive vulnerability management using top-tier tools like Tenable … Nessus, and Microsoft Defender. Collaborate with franchisees, vendors, and internal teams to close security gaps and elevate resilience. Translate complex threats into clear, actionable insights for senior leadership. Help build and evolve a security program that scales across geographies and business models. Join a security-first culture in a global enterprise. More ❯

across complex, hybrid environments — from on-prem systems to modern cloud platforms. You’ll play a key part in advancing the company’s threat detection capabilities and ensuring that security operations stay one step ahead of emerging threats. What You’ll Do Lead the creation and optimization of detection rules, alerting logic, and use cases across SIEM, EDR … Drive threat hunting activities and develop hypotheses based on attacker TTPs and frameworks like MITRE ATT&CK. Collaborate with incident response, engineering, and intelligence teams to contain and resolve security incidents. Support continuous improvement of detection strategies and mentor analysts to uplift overall team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident … response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial tactics and techniques and how they translate to real-world detection logic. Excellent analytical and communication skills, with a calm and structured approach to More ❯

across complex, hybrid environments — from on-prem systems to modern cloud platforms. You’ll play a key part in advancing the company’s threat detection capabilities and ensuring that security operations stay one step ahead of emerging threats. What You’ll Do Lead the creation and optimization of detection rules, alerting logic, and use cases across SIEM, EDR … Drive threat hunting activities and develop hypotheses based on attacker TTPs and frameworks like MITRE ATT&CK. Collaborate with incident response, engineering, and intelligence teams to contain and resolve security incidents. Support continuous improvement of detection strategies and mentor analysts to uplift overall team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident … response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial tactics and techniques and how they translate to real-world detection logic. Excellent analytical and communication skills, with a calm and structured approach to More ❯

across complex, hybrid environments — from on-prem systems to modern cloud platforms. You’ll play a key part in advancing the company’s threat detection capabilities and ensuring that security operations stay one step ahead of emerging threats. What You’ll Do Lead the creation and optimization of detection rules, alerting logic, and use cases across SIEM, EDR … Drive threat hunting activities and develop hypotheses based on attacker TTPs and frameworks like MITRE ATT&CK. Collaborate with incident response, engineering, and intelligence teams to contain and resolve security incidents. Support continuous improvement of detection strategies and mentor analysts to uplift overall team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident … response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial tactics and techniques and how they translate to real-world detection logic. Excellent analytical and communication skills, with a calm and structured approach to More ❯

across complex, hybrid environments — from on-prem systems to modern cloud platforms. You’ll play a key part in advancing the company’s threat detection capabilities and ensuring that security operations stay one step ahead of emerging threats. What You’ll Do Lead the creation and optimization of detection rules, alerting logic, and use cases across SIEM, EDR … Drive threat hunting activities and develop hypotheses based on attacker TTPs and frameworks like MITRE ATT&CK. Collaborate with incident response, engineering, and intelligence teams to contain and resolve security incidents. Support continuous improvement of detection strategies and mentor analysts to uplift overall team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident … response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial tactics and techniques and how they translate to real-world detection logic. Excellent analytical and communication skills, with a calm and structured approach to More ❯

across complex, hybrid environments — from on-prem systems to modern cloud platforms. You’ll play a key part in advancing the company’s threat detection capabilities and ensuring that security operations stay one step ahead of emerging threats. What You’ll Do Lead the creation and optimization of detection rules, alerting logic, and use cases across SIEM, EDR … Drive threat hunting activities and develop hypotheses based on attacker TTPs and frameworks like MITRE ATT&CK. Collaborate with incident response, engineering, and intelligence teams to contain and resolve security incidents. Support continuous improvement of detection strategies and mentor analysts to uplift overall team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident … response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial tactics and techniques and how they translate to real-world detection logic. Excellent analytical and communication skills, with a calm and structured approach to More ❯

cyber threats, identifying patterns and trends. Apply the intelligence life cycle, from collection through to reporting. Ensure the Threat Intelligence Programme meets organisational aims. Influence and advise stakeholders on security-focused decisions. Work closely alongside other Security Operations teams such as SOC. Identify intelligence of concern across various sources and tools, and conduct analysis and assessment of … threats, threat actors, attack vectors, and vulnerabilities. Knowledge of information assurance standards and frameworks including CIS, NIST, ISO 27001, Cyber Essentials/Essentials Plus, GDPR. Knowledge of threat cyber security frameworks such as MITRE ATT&CK, Kill Chain and NIST CSF 2.0. The ideal candidate will combine strong technical expertise with a solid understanding of global events and their More ❯

Engineer to join the global IT team. The successful candidate will play a key role in designing, implementing, maintaining, and supporting the entire IT infrastructure, which supports the business operations across multiple international locations. This is a practical role requiring a combination of deep technical expertise in Microsoft, VMware, and Cloud technologies, strategic thinking, and the ability to work … and cloud-based systems. Manage and administer our hybrid cloud environment, with a strong focus on Microsoft Azure, Entra ID, and Azure MDM for modern device management. Ensure the security of our infrastructure and data by managing on-premises and cloud security controls and working closely with the Security Operations Centre (SoC) to action vulnerability management … preferably within a global or multi-site SME. Solid hands on expertise in: The Microsoft Stack: Cloud Technologies: System Centre Configuration Manager (SCCM): Virtualisation & VDI: Hardware Experience: Networking & Monitoring: Security & Asset Management: Server Operating Systems & Backups: Please get in touch for full details. More ❯

Cyber Security SOC Analyst – London/Remote Atrium EMEA is looking for an accomplished Cyber Security SOC Analyst to support the Security Incident Response Team. The team is growing, we require a strong individual contributor that will investigate, analyse, and contain security incidents. This is a fully remote role, with the occasional London office visit. You … controls and/or corrective actions for mitigating technical and business risk. • Integrate and collaborate with other subject matter experts throughout the organization. Essential: • Solid experience of Google Secops/Googlesecops • BS/BA in Computer Science, Computer Engineering, Cyber Security, Forensics and/or equivalent work experience. • Certification in cybersecurity (e.g. Security+, CCNA Cyber Ops, BTL1 and …/or BTL2, GCIH, CEH, CySA+, OSCP, CISSP, CCSP etc.) • IT Security or Cyber Security experience in any of the following areas: Incident Response & Digital Forensics. Cybersecurity Detection Engineering and Threat Hunting or Vulnerability Management • Experience analysing attack vectors, current threats, and security remediation strategies • Experience with SIEM technologies, EDR technologies, and/or Asset isolation tools More ❯