1 to 25 of 88 Security Operations Centre Jobs in the UK

Security Operations Director (SC Clearable) Fulltime Contract Inside IR35 6 months initially £750-800 per day pay Inside IR35 via umbrella Location: Birmingham hybrid (2-3 days per week in office) Are you an experienced Security Operations Director with strong knowledge of SOC + Security operations, Incident Response implementation, SOC Process Development, Security Ops Budget + Financial Management and Security Ops Maturity Improvement amongst others? ARM is recruiting for a fulltime contract experienced Security Operations Director to work for our global technology client. Our client: They're a leading business with a global reach that empowers local teams, and they undertake hugely exciting work that is genuinely changing the … of working at pace: rapidly getting up to speed with new requirements and shaping compelling, innovative and differentiated solutions for our customers. We are currently recruiting for a dynamic Security Operations Director to join our growing Security Operations Centre business. This is a great opportunity for you to play a pivotal role in helping to More ❯

Global Head of Security Operations page is loaded Global Head of Security Operations Apply locations Glasgow time type Full time posted on Posted Yesterday job requisition id R The Weir Group Remote within the UK Purpose of Role: As the Global Head of Security Operations, you will lead the design, implementation, and continuous improvement … of security operations across the Weir Group, including oversight of the 24x7 Security Operations Centre (SOC). This role is pivotal in protecting Weir's global technology infrastructure from internal and external threats, while fostering a secure-by-design culture. You will collaborate across business units and technology teams to ensure robust threat detection, response … in fairness and choose to be honest, transparent and authentic in everything we do. Key Responsibilities: Strategic Leadership and Vision: Define and execute a multi-year strategy for global security operations, aligning with business goals and ensuring resilience across Weir's digital ecosystem. Lead the development of a secure-by-design approach and contribute to the broader technology More ❯

Proactive Security Lead, UK Security Operations link Copy link corporate_fare Google place London, UK Mid Experience driving progress, solving problems, and mentoring more junior team members; deeper expertise and applied knowledge within relevant area. Apply link Copy link Bachelor's degree or equivalent practical experience. 5 years of experience in cybersecurity, with an offensive security (e.g., Red Teaming, Penetration Testing, or Adversary Simulation) or threat modeling. Experience in a Security Operations Centre (SOC) or similar environment, with modern threat landscapes and attack techniques. Experience in technical troubleshooting and writing code in one or more programming languages. Experience in threat modeling methodologies (e.g., STRIDE, PASTA, or attack trees) and secure system design … principles. Eligibility to obtain UK Developed Vetting (DV) security clearance; British Citizenship is required for this role. Preferred qualifications: Certifications in OSCE3, CRTP/CRTE, GIAC GCSA/Kubernetes-related, OSCP, OSCE, CRTO, CISSP, or GIAC (e.g., GPEN, GCTI, GWAPT). Experience designing or executing Purple Team exercises, combining offensive tactics with defensive feedback to drive continuous improvement. Experience More ❯

Security Operations Platform Enablement Engineer page is loaded Security Operations Platform Enablement Engineer Apply locations London time type Full time posted on Posted Yesterday job requisition id JR American International Group, Inc. (AIG) is a leading global insurance organization. AIG member companies provide a wide range of property casualty insurance in approximately 70 countries and jurisdictions. … our colleagues with the latest tools to complete their work efficiently and with the highest standards of excellence. The team is responsible for shielding the company's systems from security risks, while designing technology strategies that enable AIG's businesses to achieve their goals. AIG's Information Technology functions include enterprise architecture, software and systems engineering, cybersecurity, and technology … risk and compliance. About the role The Security Operations Platform Enablement Engineer will help to deliver effective Security Operations services as part of a global team in a follow the sun model. They shall coordinate efforts in Data Engineering and Security Automation to provide regional capability in the support of operational teams such as Cyber More ❯

Security Operations Centre Shift Lead Location: Hemel Hempstead (On-site, Shift-Based) Salary: Highly competitive with excellent benefit package Security Clearance Level: Must be eligible for DV Clearance . Due to the highly secure nature of this work all applicants will be required to gain UK Security Clearance to the highest level. You must be … days annual leave (option to purchase additional days), health cash plan, life assurance, pension scheme, and a generous flexible benefits fund Key Requirements We are seeking a highly capable Security Operations Centre Shift Lead to support critical infrastructure within the Aerospace, Defence and Security sector. You will lead from the frontmentoring analysts, managing incident triage, and … environment. This is a shift-based position , following a rotation of 2 days (6am6pm), 2 nights (6pm6am), 4 days off . Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre More ❯

Security Analyst, Security Operations and Incident Response Meta is seeking a Security Analyst to join the Global Security Operations and Incident Response team. The Analyst will serve on the front lines of Meta's Security team and will lead and support security investigations across the company's global infrastructure as well as … respond to escalations from the Tier1 team. The analyst will leverage an armory of tools to investigate and respond to both external and internal security threats.Utilizing Meta's tooling, you will monitor security events in real-time, assess external and internal threats, and provide accurate and timely response. You will collaborate closely with technical teams, with a broad … set of skills to tackle the panoply of unique security challenges that we encounter at Meta scale. Security Analyst, Security Operations and Incident Response Responsibilities Investigate and respond to external and internal cybersecurity threats in a timely manner while communicating clearly and proactively until remediation. Act as an escalation point for Tier1 investigations, contribute to the More ❯

scheme Employee discount Enhanced maternity leave Enhanced paternity leave Full job description The Role: This is a dynamic and challenging hybrid role that blends the strategic, proactive nature of security engineering with the fast-paced, responsive world of a Security Operations Centre (SOC). As a Security Operations Engineer, you will play a visible … and meaningful role in shaping our services and response capability. One day you might be deploying and configuring a new security solution for a client, and the next you could be deep-diving into a complex incident investigation. This position is ideal for a proactive problem-solver who thrives on variety and is eager to make a tangible impact … in a growing MSP environment. You will have the opportunity to work with a modern security stack and be a trusted advisor to both our internal teams and our valued clients. Core Responsibilities: Project & Engineering (50%) Tooling Enhancement: Take ownership of the continuous improvement of our security toolset, including SIEM, EDR, and other security platforms. Deployments & Configuration More ❯

Global Security Operations Center Manager, Global Security Operations Center The mission of the Global Security Operations team is to mitigate security and related operational risks to our Associates, Data, and Physical Assets. Amazon is seeking an action-oriented individual to oversee daily operations within the Global Security Operations Center (GSOC … reputation. Key job responsibilities The GSOC Manager provides critical support and timely notification to global partners regarding incidents that have impacted, or have the potential to impact, Life Safety, Operations, and/or the Amazon Brand. They will assist in managerial ownership of their shift, ensure performance SLAs are met, responses are appropriate according to policies and procedures, and … basis, using discretion when dealing with sensitive and critical information, and applying sound business principles to identify barriers and initiate actions to resolve issues. About the team The Global Security Operations Center (GSOC) provides critical support and notification to global partners regarding incidents that have, or have the potential to impact, Life Safety, Operations, and/or More ❯

Senior Security Operations Analyst (SOC Splunk) London/WFH to £100k Are you a technologist SOC Analyst looking for an opportunity to make an impact, working on complex and interesting systems? You could be progressing your career in a hands-on role at a global cryptocurrency market data and trade execution technology company that is experiencing great success … and is growing as a result. As a Senior Security Operations Analyst you will be responsible for monitoring and analysing security incidents, responding to threats in real-time and ensuring the integrity of core systems and platforms. You will work closely with the SOC Manager across daily activities of the Security Operations Center, continuously monitoring … security alerts and incidents using SIEM tools (Splunk) to create detection use cases, analyse security event data for proactive threat hunting and conduct research on the latest threats and vulnerabilities to enhance incident response readiness and capabilities. Location/WFH: You'll join the team in the Frankfurt office three days a week with flexibility to work from More ❯

technology and data. We're on a mission to harness the power of technology and data, to transform how knowledge is shared, applied and enhanced. About the team: The security team, part of Group CTO, protects UK Education and Research against a wide range of cyber security threats, supporting our members and customers in improving their digital resilience. … Our products and services are currently organised into five principal groups: Protective services, Professional services, Service Team, Product Team, and Architecture and engineering team. We have just launched our Security centre (SOC) service, which includes endpoint detection and response (EDR), Security Information and Event Management (SIEM) capability and 24x7 security event monitoring. The Security Services … Team includes network, SIEM and SOC focused services, service development, transition and delivery. This is where this role sits. About the role: As Jisc's Cyber security service manager, you will be responsible for service management activities in the delivery of the security operations centre (SOC). The primary focus is on guiding customers through the More ❯

Experience Years: 3-5 Years of Experience Employee Type: Regular Remote Type: Onsite About the Opportunity The role of Information Security Engineer will be responsible for identifying, investigating, and managing cybersecurity related events and incidents. As an Information Security Engineer, you will be responsible for security operations, using and managing security systems, identifying and managing … risks and threats, and developing and following operating procedures. The ideal candidate will have a deep understanding of cyber security risks and threats, incident handling, and will possess excellent analytical, communication, and leadership skills. About the Opportunity The role of Information Security Engineer will be responsible for identifying, investigating, and managing cybersecurity related events and incidents. As an … Information Security Engineer, you will be responsible for security operations, using and managing security systems, identifying and managing risks and threats, and developing and following operating procedures. The ideal candidate will have a deep understanding of cyber security risks and threats, incident handling, and will possess excellent analytical, communication, and leadership skills. Responsibilities Strong collaboration More ❯

Salary Competitive Manchester (Hybrid working model, 2 days a week office based, 3 days remote) Competitive Salary plus performance related bonus Smart DCC is looking for a Lead Cyber Security Operations Analystto play a key leadership role in shaping and advancing our Security Operations Centre (SOC). You'll drive our incident response strategy, lead … major investigations, develop cutting-edge detection content, and help grow a highly capable security team through training and exercises. This is a critical role in our Cyber Security Team, offering the opportunity to work on high-impact projects across the smart energy industry while advising internal stakeholders and supporting national infrastructure. What will you be doing? Act as … a technical lead and escalation point during security incidents, working closely with the Security Operations Manager. Lead investigations and advise on containment, mitigation, and system hardening to reduce future risks. Provide oversight on day-to-day SOC activities, ensuring timely escalation and resolution of incidents. Mentor junior analysts, support skills development, and facilitate tabletop exercises and simulations. More ❯

Cyber security is critical to every organisation. We are shaping strategies and transforming the management of cyber risk and we need you to join us. You'll build strong relationships as one of the areas of our cyber practice with over 450 extremely talented individuals in the UK alone, as part of a Technology and Transformation practice of … people. Cyber security is a business problem, not just a technical problem, and we need people with a diverse array of backgrounds and skills sets to help our clients solve it. Join us and you will help our clients solve the latest cyber security challenges, in a business with very significant growth ambitions enjoying the kind of professional … action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity We are a team with a passion and curiosity, for cyber security and technology, comfortable with operating in fast-paced environments defining and leading the development of cyber strategy, cyber programmes and managing cyber risk. We are looking for likeminded individuals More ❯

Contract Role - SOC Manager/Cyber Security Operations Manager - Leeds/Remote - 12 Months Initial - Inside IR35 We are seeking an exceptional SOC Manager/Cyber Security Operations Manager to lead our Cyber Security Operations Centre; responsible for managing the day-to-day operations of the SOC team, overseeing incident detection and … response, ensuring vulnerability scanning and remediation efforts across the organization. Role Overview: Job Title: SOC Manager/Cyber Security Operations Manager Location: Leeds/England/Remote Contract Type: Contract Duration: 12 months initially Sector: Healthcare . Qualifications: Bachelor’s degree in Cybersecurity, Information Technology, or a related field (Master’s preferred). Minimum 5 years of experience … in cybersecurity operations, with at least 2 years in a leadership or management role. Strong knowledge of SOC operations, incident response, and vulnerability management best practices. Hands-on experience with SIEM tools (e.g., Splunk, QRadar, Sentinel), vulnerability scanners (e.g., Nessus, Qualys), and other security platforms. Relevant certifications such as CISSP, CISM, CEH, GIAC, or GCIA are highly More ❯

SOC Team Lead ££85,000 GBP Hybrid WORKING Location: Glasgow, Scotland - United Kingdom Type: Permanent A leading global security services provider is seeking an experienced Security Operations Service Delivery Manager to join its dynamic cyber security team. With thousands of security experts worldwide and deep partnerships with top-tier security technology vendors, the organisation … helps clients secure their operations and navigate complex cyber threats. This is an exciting opportunity to play a key role in shaping the transformation journey of enterprise clients. The role will suit professionals with a strong background in SOC service delivery , incident response coordination , and vulnerability management . Key Responsibilities: Act as the primary liaison between clients and internal … operational delivery teams, ensuring seamless communication and service excellence. Serve as the key escalation point for clients, managing security incidents from detection to resolution. Lead coordination efforts across Security Operations Centre (SOC), Incident Response, and technical teams during major incidents. Identify impacted systems, users, and business functions, and ensure timely stakeholder communication. Oversee remediation and containment More ❯

threat actors who attempt to evade our cyber defenses. This is a hands-on technical position where you'll play an important role in increasing the maturity of our Security Operations Centre (SOC). Additionally, you'll need a strong drive and willingness to learn and grow. You'll be in a rapidly evolving environment, which will … bring new challenges and opportunities for growth regularly. You'll be empowered to develop and explore your unique passion for cyber security operations. In return, we offer an agile working environment with the latest technologies such as SASE, AI, and automation. One of our main values is empowerment, allowing people to drive significant change and make a difference. Simply … Business is a cloud-native company leading in the InsureTech market. You will report to Laura, the Security Operations Manager, and work alongside an award-winning team of 5 analysts and 3 engineers with diverse technical skills and backgrounds in cyber security. As our Lead Cyber Security Analyst, you'll: Develop and maintain the security incident More ❯

The team you'll be working with: SOC Technical Security Service Delivery Manager We are currently recruiting for a dynamic Technical Security Service Delivery manager to join our growing Security Operations Centre business. This vacany is hybrid variabe based in Glasgow. About Us NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to … and experience, you will: Act as a bridge between the Customer and the Operational Delivery Teams Act as a primary escalation point of contact to the customer Coordinate the Security Operations, Incident Response Teams and other technical resources needed to troubleshoot major incidents to determine the affected/vulnerable systems, affected/vulnerable users Identify any business areas More ❯

Technical Security Service Delivery Manager We are currently recruiting for a dynamic Technical Security Service Delivery manager to join our client's growing Security Operations Centre business. This is a great opportunity for you to play a pivotal role in helping to shape our client's transformation journeys. What to expect: Using your background in … and experience, you will: Act as a bridge between the Customer and the Operational Delivery Teams Act as a primary escalation point of contact to the customer Coordinate the Security Operations, Incident Response Teams and other technical resources needed to troubleshoot major incidents to determine the affected/vulnerable systems, affected/vulnerable users Identify any business areas … identifying areas for optimization and implementing best practices. Co-ordinate the running and reporting of a risk-based vulnerabilities management including: Scanning systems, networks, and applications to detect potential security weaknesses. Prioritize vulnerabilities based on their risk level, potential impact, and the criticality of the affected assets, ensuring that high-risk vulnerabilities are addressed first. Work with the Customer More ❯

Ready to be our next Cloud Security Engineer ? We're on the lookout for a tech whiz to join our brilliant team in Sunderland and help us keep things super secure for our players and our business. If you're passionate about cloud security and love a challenge, you're in the right place! Cloud Security Engineer … At tombola, we take security seriously - but we also like to have a bit of fun while we're at it! As our Cloud Security Engineer , you'll be building on our existing operational security, with a special focus on protecting our cloud infrastructure. You'll be hands-on, designing, implementing, and managing top-notch security … play a key part in developing our vulnerability management program, working closely with our operational support, infrastructure, and development teams. Plus, you'll be right in the thick of security event monitoring, threat intelligence, and incident management - keeping us one step ahead! What you'll be doing: Delivering SOC Capabilities: You'll be a key team member in delivering More ❯

Job summary The Security Lead (Consulting) is focussed on ensuring that the NHS's systems operate from a cyber resilient architecture, looking at people, processes and technology. The role is part of a small team that supports all functions (Protective Monitoring, Threat Operations, Incident Management and Engineering) within the Cyber Security Operations Centre (CSOC) with … the delivery of technical and innovative solutions and the implementation of processes to support day to day output. Cyber Operations purpose is to support safe care and build public trust by building NHS England's cyber resilience and enabling the wider health system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes … for the NHS. The Cyber Operations sub-directorate consists of 4 operational areas: Cyber Security Operations Unit (CSOU) - SIO Cyber Delivery Unit (CDU). Cyber Improvement Programme. Chief Information Security Office Function (CISO) The post of Security Lead has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In More ❯

The team you'll be working with: Senior SOC Analyst We are currently recruiting for a Senior SOC Anslyst to join our growing Security Operations Centre business. This role will be based in Glasgow, and requires a willingness to work in a job that involves 24/7 operations or on call, this will probably be … days on, 4 days off in shift patterns. About Us NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In … be doing; The primary function of the Senior SOC Analyst is to manage any incidents escalated by the SOC Analyst (L1 & L2) and undertake the detailed investigation of the Security Event. The Senior SOC Analyst shall be able to look at all the evidence available and support the client on the appropriate action to contain and remediate any security More ❯

and motivated SOC engineers to join our foundational in-house SOC team. In this pivotal role, you will be instrumental in supporting the development, implementation, and operating of our security monitoring, detection, and response capabilities, with a particular focus on our cloud environments. You'll be at the forefront of responding to incidents and alerts, and helping shape the … future of our security operations capabilities. What you'll get to do: Security Monitoring & Alert Triage: Monitor security alerts and events generated by various security tools Perform triage and analysis of security incidents and anomalies, distinguishing between true positives and false positives. Prioritise alerts based on severity, potential impact, and business criticality. Incident Detection … Response: Investigate security incidents thoroughly, leveraging logs from platforms, endpoints, applications, and other security tools. Create and follow incident response playbooks and contribute to their continuous improvement. Collaborate with Technology, Product and Engineering Teams to contain, eradicate, and recover from security incidents. Document incident details, findings, and remediation steps accurately and comprehensively. Additionally Stay informed about the More ❯

The team you'll be working with: P3 Senior SOC Analyst (L3) We are currently recruiting a Senior SOC Analyst L3 Managed Detection and Responseto join our growing Security Operations Centre business. ThisrolewillbebasedonsiteinBirmingham,youwillneedtobewillingtoworkinshiftpatters,probably4dayson,4daysoff,asthisisa24/7securityoperationscentre. About Us NTT DATA is one of the world's largest Global Security services providers with over … Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to do great things. We believe that … be doing; The primary function of the SeniorSOC Analyst L3 is to manage any incidents escalated by the SOC Analyst (L1 & L2) and undertake the detailed investigation of the Security Event. The Senior SOC Analyst shall be able to look at all the evidence available and support the client on the appropraite action to contain and remediate any security More ❯

As part of our accelerating expansion, we are looking for additional Junior SOC Analysts to work within our 24/7 cyber security operations centre delivering our MDR/EDR and IR service to clients. This Junior SOC Analyst role will be an integral member of the Security Operation Centre. They will help identify and analyse … potential threats utilising a number of different SIEM & EDR tools. To be a key member of Security Operations Centre (SOC) and provide real-time threat analysis and detection. Respond to system generated alerts, analyse logs and traffic patterns. Provide analysis and trending of security log data from many monitoring points. Support multiple customer environments concurrently. Generate … customer facing security reports. Integrate and share information with other analysts and other teams. Research security trends, new methods and techniques used in unauthorised access of data attempts in order to pre-emptively eliminate the possibility of system breaches. Other duties as assigned. About you Requirements A passion for Cyber Security and enjoys solving problems Knowledge of More ❯

Role overview: Working for a global System Integrator as a SOC Manager, you are the senior lead to ensure our state of the art security centre is as effective and as efficient as can possibly be. As well as the proactive and responsive management of your team you will also have input for the strategy and future direction … responsibilities: Manage Shared SOC for more than 100 FTE across multiple locations providing services to multiple customers 24X7 Drive ongoing and continuous service improvement process Support all Global SOC operations and initiative Monitor, detect, and respond to global cybersecurity intrusions Document progress throughout the incident response life-cycle Ensure compliance to SLA, process adherence and process improvisation to achieve … operational objectives Revise and develop processes to strengthen the current Security Operations Framework, Review policies and highlight the challenges in managing SLAs Responsible for team & vendor management, overall use of resources and initiation of corrective action where required for Security Operations Centre Management, administration & maintenance of security devices under the purview of SOC which More ❯