26 to 50 of 126 Security Operations Centre Jobs in the UK

and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! The Cyber Security Incident Response Team (CSIRT), part of Counter Threat & Engineering (CT&E), responds to digital security threats and incidents globally from bp hubs in Houston, Sunbury, Kuala Lumpur, Pune … and Singapore. The Security Operations Center (SOC) raises incidents to CSIRT, which conducts long-term investigations using digital forensics, advanced techniques, and collaborating across bp. Team members must understand bps business segments and address a broad range of security-related questions. You will help ensure enterprise security, enabling safe and secure business operations as part … of this global team. Key Accountabilities Support the bp SOC as an escalation point for security events and incidents. Conduct digital forensic investigations on high-priority incidents to include functions such as host (disk and memory) forensics, network forensics and log analysis. Work across Digital Security and the bp business functions to partner on incidents and to ensure More ❯

within the Critical National Infrastructure (CNI) energy sector, is looking to appoint an experienced Senior/Level 3 SOC Analyst. This is a senior escalation role within a dedicated Security Operations Centre, working at the forefront of protecting high-value national assets. The successful candidate will act as a technical authority for advanced incident response, threat hunting … and security engineering, with a strong focus on the Microsoft security stack. Key Responsibilities Serve as the primary escalation point for complex incidents and lead on incident response. Conduct in-depth threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance … to junior SOC analysts, enhancing team capability. Collaborate with IT and OT teams to address unique security requirements across CNI environments. Drive improvements in SOC operations, automation, and incident response processes. Monitor evolving threats and integrate threat intelligence into daily operations. Ensure adherence to industry standards and compliance frameworks (NIS2, CAF, ISO 27001). Skills & Experience Required Extensive More ❯

within the Critical National Infrastructure (CNI) energy sector, is looking to appoint an experienced Senior/Level 3 SOC Analyst. This is a senior escalation role within a dedicated Security Operations Centre, working at the forefront of protecting high-value national assets. The successful candidate will act as a technical authority for advanced incident response, threat hunting … and security engineering, with a strong focus on the Microsoft security stack. Key Responsibilities Serve as the primary escalation point for complex incidents and lead on incident response. Conduct in-depth threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance … to junior SOC analysts, enhancing team capability. Collaborate with IT and OT teams to address unique security requirements across CNI environments. Drive improvements in SOC operations, automation, and incident response processes. Monitor evolving threats and integrate threat intelligence into daily operations. Ensure adherence to industry standards and compliance frameworks (NIS2, CAF, ISO 27001). Skills & Experience Required Extensive More ❯

This role is based five days per week on-site in Corsham. Security Analyst – SOC (Corsham, On-Site) An exciting opportunity to join an established Security Operations Centre, providing cyber expertise to support day-to-day operations. The role involves regular SOC activities, introducing new processes, and embedding best practice across the workplace. This role is … continuous employment history, and an unspent criminal record check (DBS). Key Responsibilities Conduct reactive monitoring of client networks to deliver a layered, agile cyber defence capability across all security domains. Manage and triage alerts, perform impact assessments, and develop mitigating strategies to be briefed up the chain of command. Ensure compliance with all cyber security policies, procedures … reviewing and amending where required. Maintain and share knowledge of current cyber issues, vulnerabilities, and exploits through research, technical reports, and briefs. Skills and Experience Experience working as a Security Analyst in a SOC or equivalent security monitoring and response environment. Current SC clearance (essential). Knowledge of data networks. Experience with SIEM toolsets and security management More ❯

This role is based five days per week on-site in Corsham. Security Analyst – SOC (Corsham, On-Site) An exciting opportunity to join an established Security Operations Centre, providing cyber expertise to support day-to-day operations. The role involves regular SOC activities, introducing new processes, and embedding best practice across the workplace. This role is … continuous employment history, and an unspent criminal record check (DBS). Key Responsibilities Conduct reactive monitoring of client networks to deliver a layered, agile cyber defence capability across all security domains. Manage and triage alerts, perform impact assessments, and develop mitigating strategies to be briefed up the chain of command. Ensure compliance with all cyber security policies, procedures … reviewing and amending where required. Maintain and share knowledge of current cyber issues, vulnerabilities, and exploits through research, technical reports, and briefs. Skills and Experience Experience working as a Security Analyst in a SOC or equivalent security monitoring and response environment. Current SC clearance (essential). Knowledge of data networks. Experience with SIEM toolsets and security management More ❯

Cyber Security Engineer Location: Leeds City Centre (Hybrid: 3 days in the office, 2 days remote) Job Type: Full-Time Reports To: Security Operations Manager Salary: £30,000 – £45,000 + On-Call Allowance + Benefits Working Hours: 09:30–18:00 (core business hours are 08:00–18:00) On-Call: 1-in-4 rotation … with allowance, providing 24/7 coverage Company Overview The team supports a broad range of cutting-edge security technologies, helping customers secure their networks, applications, and infrastructure through proactive monitoring, management, and incident response. As demand for managed firewall and security services grows, my client is looking for a Cyber Security Engineer with strong networking fundamentals … and a willingness to learn advanced security technologies. This role is ideal for someone with 1–2 years of experience who wants to develop their skills in a supportive, growth-focused environment. Role Overview As a Cyber Security Engineer within the Security Operations Center (SOC), you will help manage and support customer network security environments. More ❯

Manager to protect DIT and the wider UK government from cyber threats in a fast paced and exciting role, responsible for the Vulnerability Management and Threat Hunting of the Security Operations Centre (SOC) Target Operating Model (TOM). £62,534 to £82,200 (including allowances) London £66,257 to £82,200, National £62,534 to £78,580. … role You will be helping to protect DBT and the wider UK government from cyber threats in a fast paced and exciting role. Reporting to the Head of Cyber Security Operations, you will manage and be responsible for the Threat and Vulnerability Management function within the SOC, by providing leadership on identification and improvement opportunities, and ensuring service … owners are aware of weaknesses in their security posture and are empowered with the right information to take appropriate actions. A healthy curiosity will be essential, to actively go out and discover items of potential interest to the team, ensuring that there is collaboration between the architects, SOC engineers and analysts, and risk managers to deliver a documented risk More ❯

Cyber Security Engineer A variety of soft skills and experience may be required for the following role Please ensure you check the overview below carefully. Location: Leeds City Centre (Hybrid: 3 days in the office, 2 days remote) Job Type: Full-Time Reports To: Security Operations Manager Salary: £30,000 £45,000 + On … are 08:00 18:00) On-Call: 1-in-4 rotation with allowance, providing 24/7 coverage Company Overview The team supports a broad range of cutting-edge security technologies, helping customers secure their networks, applications, and infrastructure through proactive monitoring, management, and incident response. As demand for managed firewall and security services grows, my client is … looking for a Cyber Security Engineer with strong networking fundamentals and a willingness to learn advanced security technologies. This role is ideal for someone with 1 2 years of experience who wants to develop their skills in a supportive, growth-focused environment. Role Overview As a Cyber Security Engineer within the Security Operations Center (SOC More ❯

SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high-severity cyber incidents … and escalated security events, leveraging your technical expertise, analytical mindset, and industry-standard tools to contain, eradicate, and recover from cyber threats. Your work will directly contribute to safeguarding my client's network systems, operational technology, and customer data from emerging and sophisticated cyber risks. Key Responsibilities As a senior member of the Security Operations team, you … and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration and effective alert correlation across cloud and on-prem environments. Support and develop the organisation's SOAR More ❯

SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high-severity cyber incidents … and escalated security events, leveraging your technical expertise, analytical mindset, and industry-standard tools to contain, eradicate, and recover from cyber threats. Your work will directly contribute to safeguarding my client's network systems, operational technology, and customer data from emerging and sophisticated cyber risks. Key Responsibilities As a senior member of the Security Operations team, you … and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration and effective alert correlation across cloud and on-prem environments. Support and develop the organisation's SOAR More ❯

Who we are A Managed Security Service Provider (MSSP) with a wealth of experience gained in the Defence and Commercial sectors. We help organisations of all sizes build cyber-security capabilities and maintain compliance through practical Consulting and Managed Services. Our suite of services blends together best-in-breed technologies to provide real time 24×7 monitoring, triage … remediation, threat assessment, vulnerability management, and Professional Services to give our Clients absolute peace of mind that their critical environments are protected. Our Security Operations Centre (SOC) delivers an array of services that provide our Customers with robust end-to-end cyber security protection, from monitoring services to threat relevant detection content, from leading threat intelligence … focus that enables us to become our Customers’ trusted partner. Role Description Talion is looking for an individual to take responsibility for the delivery of several of our Managed Security Service contracts to ensure that we meet Client expectations whilst delivering in line with budget and quality standards. They will act as the Client’s key point of contact More ❯

business, driving valuable insight, guidance and feedback back into Palo Alto Networks. You will work across product teams to deliver this feedback Your Impact Drive innovation within the modern Security Operations Center (SOC) by developing content and capabilities aligned with Cortex and detection-focused workflows. Collaborate with legal, sales, product, and customer-facing teams to translate security operations needs into actionable product improvements. Lead and coordinate cross-functional initiatives across product management, engineering, and field teams for high-impact security use cases. Build high-quality content for the Cortex Marketplace including detection rules, parsers, dashboards, and other SOC-enabling artifacts. Provide structured product feedback to influence roadmap decisions based on real-world SecOps challenges … and opportunities. Create detailed documentation and usage guides tailored for analysts, detection engineers, and security practitioners. Promote operational excellence by designing scalable detection and response workflows grounded in industry best practices and threat-informed defense. Qualifications Your Experience Ability to inspire and align teams across functions, paired with strong execution and delivery skills. 2+ years of experience in security More ❯

business, driving valuable insight, guidance and feedback back into Palo Alto Networks. You will work across product teams to deliver this feedback Your Impact Drive innovation within the modern Security Operations Center (SOC) by developing content and capabilities aligned with Cortex and detection-focused workflows. Collaborate with legal, sales, product, and customer-facing teams to translate security operations needs into actionable product improvements. Lead and coordinate cross-functional initiatives across product management, engineering, and field teams for high-impact security use cases. Build high-quality content for the Cortex Marketplace including detection rules, parsers, dashboards, and other SOC-enabling artifacts. Provide structured product feedback to influence roadmap decisions based on real-world SecOps challenges … and opportunities. Create detailed documentation and usage guides tailored for analysts, detection engineers, and security practitioners. Promote operational excellence by designing scalable detection and response workflows grounded in industry best practices and threat-informed defense. Qualifications Your Experience Ability to inspire and align teams across functions, paired with strong execution and delivery skills. 2+ years of experience in security More ❯

business, driving valuable insight, guidance and feedback back into Palo Alto Networks. You will work across product teams to deliver this feedback Your Impact Drive innovation within the modern Security Operations Center (SOC) by developing content and capabilities aligned with Cortex and detection-focused workflows. Collaborate with legal, sales, product, and customer-facing teams to translate security operations needs into actionable product improvements. Lead and coordinate cross-functional initiatives across product management, engineering, and field teams for high-impact security use cases. Build high-quality content for the Cortex Marketplace including detection rules, parsers, dashboards, and other SOC-enabling artifacts. Provide structured product feedback to influence roadmap decisions based on real-world SecOps challenges … and opportunities. Create detailed documentation and usage guides tailored for analysts, detection engineers, and security practitioners. Promote operational excellence by designing scalable detection and response workflows grounded in industry best practices and threat-informed defense. Qualifications Your Experience Ability to inspire and align teams across functions, paired with strong execution and delivery skills. 2+ years of experience in security More ❯

Job Title: Technical Operations Analyst - Fully Remote (MUST BE BASED IN THE UK) - No Sponsorship Available Job Description The Technical Operations Analyst is responsible for providing extensive technical support and ownership for maintaining the service throughout the life of the contract. This role involves owning the technical delivery model and fostering strong relationships with internal supplier resolver teams … delivery. Maintain strong relationships with internal supplier resolver teams. Ensure a seamless experience for the customer through effective operations. Essential Skills (Please ensure your CV reflects these skills) SOC (Security Operations Centre) experience. Cyber security expertise Security management Risk management proficiency Technical support experience Operational analysis skills Why Work Here? Join an environment that values … Contacting Us" section of our Online Privacy Notice at (url removed)/en-gb/privacy-notices for details on how to contact us. To protect your privacy and security, we may take steps to verify your identity, such as a password and user ID if there is an account associated with your request, or identifying information such as More ❯

Senior Security Engineer £80,000 + Bonus + Benefits + Training Hybrid (Portsmouth, UK) Company & Role This is an opportunity to join a fast growing, people first global service provider that is redefining what excellence in cyber defence looks like. With over $1B in global revenue, this organisation delivers end to end IT outsourcing and managed services to customers … across enterprise, public sector and fast growing scale ups. Its Security Practice protects clients through capabilities including Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a consulting led Security Advisory practice. As a Senior Security Engineer, you will be responsible for designing, implementing and maintaining the tools, platforms and … integrations that power the company’s Security Operations Centre and Cyber Defence services. This role blends hands on technical engineering with solution design and automation, ideal for someone who thrives on solving complex problems, improving processes and enabling analysts to detect and respond faster. Why This Role Stands Out • Join a $1B global IT and Cyber Defence More ❯

Senior Security Engineer £80,000 + Bonus + Benefits + Training Hybrid (Portsmouth, UK) Company & Role This is an opportunity to join a fast growing, people first global service provider that is redefining what excellence in cyber defence looks like. With over $1B in global revenue, this organisation delivers end to end IT outsourcing and managed services to customers … across enterprise, public sector and fast growing scale ups. Its Security Practice protects clients through capabilities including Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a consulting led Security Advisory practice. As a Senior Security Engineer, you will be responsible for designing, implementing and maintaining the tools, platforms and … integrations that power the company’s Security Operations Centre and Cyber Defence services. This role blends hands on technical engineering with solution design and automation, ideal for someone who thrives on solving complex problems, improving processes and enabling analysts to detect and respond faster. Why This Role Stands Out • Join a $1B global IT and Cyber Defence More ❯

Cyber Security Consultant- Remote An exciting opportunity has arisen for a Cyber Security Consultant who can provide practical advice and hands-on support to improve security project and manage alerts. We’re seeking a specialist who has expertise in Microsoft Defender & Sentinel who can turn alert data into actionable intelligence, identify opportunities for optimisation, and advance the … customer’s SOC maturity through data-driven improvements and Sentinel/Defender best practices. As a Cyber Security Consultant, your mission is clear; be technically proficient and provide practical solutions rather than theoretical advice. The consultant should be able to work closely with the team to implement changes and improve security. Cyber Security Consultant’s Responsibilities: Develop and … tools such as Advanced Hunting, Threat Analytics, and Attack Surface Reduction to strengthen detection and response. Recommend SOC process improvements through data-driven insights and best practice alignment. Cyber Security Consultant’s Required Knowledge and Experience: Extensive experience with Microsoft Defender, Sentinel, and possibly working in a Security Operations Centre (SOC). Experience extracting alert data More ❯

Job Posting: Cyber Security Assurance Manager Location: Portsmouth (Hybrid) Salary: £50,000 - £65,000 DOE Are You Ready to Lead the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment. In this crucial … role, you will ensure that the SOC maintains its commitment to best-in-class standards through internationally recognised security certifications and industry-wide assurance frameworks, delivering confidence to clients and meeting regulatory expectations. As a core team member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors … to showcase security credentials that differentiate our SOC from the competition. If you're skilled in blending technical insight with customer-focused communication while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST More ❯

Defence capabilities? This role offers the opportunity to contribute to the development and optimisation of advanced threat detection systems within a highly secure environment. You will work within a Security Operations Centre (SOC), designing and maintaining detection logic across SIEM (Security Information and Event Management) and EDR (Endpoint Detection and Response) platforms. Your work will help … positives, and improve overall detection coverage across networks, endpoints, cloud services, and identity platforms. Job Description As a SOC Detection Engineer, you will be part of a specialist cyber operations team responsible for implementing and maintaining high-fidelity detection capabilities. You will contribute to the development of detection rules, threat hunting activities, and automation workflows to support incident response … and continuous improvement. Key responsibilities include: Designing and tuning detection rules and use cases in SIEM and EDR platforms Monitoring and investigating security alerts to identify potential threats Conducting proactive threat hunting using MITRE ATT&CK and threat intelligence sources Collaborating with incident response teams to support investigations and containment Enhancing detection coverage across network, endpoint, cloud, and identity More ❯

Defence capabilities? This role offers the opportunity to contribute to the development and optimisation of advanced threat detection systems within a highly secure environment. You will work within a Security Operations Centre (SOC), designing and maintaining detection logic across SIEM (Security Information and Event Management) and EDR (Endpoint Detection and Response) platforms. Your work will help … positives, and improve overall detection coverage across networks, endpoints, cloud services, and identity platforms. Job Description As a SOC Detection Engineer, you will be part of a specialist cyber operations team responsible for implementing and maintaining high-fidelity detection capabilities. You will contribute to the development of detection rules, threat hunting activities, and automation workflows to support incident response … and continuous improvement. Key responsibilities include: Designing and tuning detection rules and use cases in SIEM and EDR platforms Monitoring and investigating security alerts to identify potential threats Conducting proactive threat hunting using MITRE ATT&CK and threat intelligence sources Collaborating with incident response teams to support investigations and containment Enhancing detection coverage across network, endpoint, cloud, and identity More ❯

Role title: Head of Information Security Reports to: CTOO Location: Hub Location Hours of work: Full time, with 3 days per week in the office SMCR Function: Certified Purpose of role As Head of Information Security you will define and drive the information security strategy across our financial services business. You will lead a team of security professionals to safeguard customer data, ensure compliance with regulatory frameworks, and build a culture of security awareness throughout the organisation. Your strategic vision and hands-on expertise will protect critical systems and support business growth. Key Responsibilities Develop and maintain the enterprise information security strategy aligned with business goals Oversee security architecture, vulnerability management, incident response … and threat intelligence Lead security risk assessments and manage remediation plans for identified gaps Ensure compliance with financial regulations (e.g. GDPR, PCI DSS, SOX, FCA requirements) Establish and enforce security policies, standards, and procedures Report security posture, incidents, and key metrics to senior leadership and the board Drive security awareness and training programmes for all employees More ❯

our customers with our personalised approach, highly dedicated and professional team, rapid mobilization of technology projects, and delivery of tangible benefits across productivity, mobility and security. POSITION SUMMARY Cyber Security Engineer providing engineering capability to the cybersecurity services team, being instrumental in the development of the Security Operations Centre (SOC), and supporting and mentoring other members … what data tiering and appropriate filtering to ensure a cost effective solution for clients. Assist in the onboarding and continued development of SOC clients and various aspects of their security stack into the SIEM. Work closely with management to develop service improvement plans Integrate various data sources into Sentinel for use in platform such as NGFW, IAM solutions and … network telemetary. Act as an escalation point during peaks in demand and as and when required Work closely with Information security management and senior security consultants to develop internal security posture, policies and controls in accordance with the organisations ISO 27001 certification. EXPERIENCE A minimum of 3 years experience working within as a Microsoft Sentinel Engineer Hands More ❯

our customers with our personalised approach, highly dedicated and professional team, rapid mobilization of technology projects, and delivery of tangible benefits across productivity, mobility and security. POSITION SUMMARY Cyber Security Engineer providing engineering capability to the cybersecurity services team, being instrumental in the development of the Security Operations Centre (SOC), and supporting and mentoring other members … what data tiering and appropriate filtering to ensure a cost effective solution for clients. · Assist in the onboarding and continued development of SOC clients and various aspects of their security stack into the SIEM. · Work closely with management to develop service improvement plans · Integrate various data sources into Sentinel for use in platform such as NGFW, IAM solutions and … network telemetary. · Act as an escalation point during peaks in demand and as and when required · Work closely with Information security management and senior security consultants to develop internal security posture, policies and controls in accordance with the organisation’s ISO 27001 certification. EXPERIENCE · A minimum of 3 years’ experience working within as a Microsoft Sentinel Engineer More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯