76 to 100 of 112 Security Operations Centre Jobs in the UK

Remote (Initial 1 Week Induction in Birmingham) Salary: £35,000 - £45,000 Network IT are looking for a Service Delivery Analyst, someone who has exceptional experience in a SOC (Security Operations Centre) interfacing into clients and customers to ensure high standards of service delivery within the SOC. The successful candidate will join a successful and growing organisation … for incident resolution. Build and maintain professional relationships/rapports with critical client stakeholders. Curate, design and present concise and information data in monthly service reports. Experience Required Previous Security Operation Centre/SOC experience. Knowledge of SOC tooling (SIEMs, EDRs e.g. Sentinel, CrowdStrike, Defender). A knowledge and understanding of common SOC threats. Ability to translate technical More ❯

Remote (Initial 1 Week Induction in Birmingham) Salary: £35,000 - £45,000 Network IT are looking for a Service Delivery Analyst, someone who has exceptional experience in a SOC (Security Operations Centre) interfacing into clients and customers to ensure high standards of service delivery within the SOC. The successful candidate will join a successful and growing organisation … for incident resolution. Build and maintain professional relationships/rapports with critical client stakeholders. Curate, design and present concise and information data in monthly service reports. Experience Required Previous Security Operation Centre/SOC experience. Knowledge of SOC tooling (SIEMs, EDRs – e.g. Sentinel, CrowdStrike, Defender). A knowledge and understanding of common SOC threats. Ability to translate technical More ❯

Are you looking for an exciting new opportunity? Join a trusted managed service and security provider that has been empowering businesses to work smarter with technology since 2000. With a focus on cyber security, connectivity, cloud and communications, enhanced by AI, automation and human-centric design, they continue to drive digital transformation that accelerates success. Their CREST and … CHECK-accredited cyber security division, alongside a 24/7 UK-based Security Operations Centre, supports a wide range of customers, from financial institutions and retail giants to NHS trusts, educational institutions and major brands like Greene King and NatWest. With over 30 locations across the UK, 950+ trained engineers and a team of more than … cyber incidents, offering reassurance and expert guidance Produce detailed incident reports with root cause analysis and actionable recommendations Perform forensic and log analysis using SIEM, EDR, SOAR, and other security tools Collaborate across teams to enhance response playbooks and internal processes Stay informed on emerging threats and tactics to strengthen response strategies Skills/Must have: Proven experience leading More ❯

leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our clients critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role is … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our client’s critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

Senior IR-SOC Engineer - Elite Law Firm - London Are you a security professional looking to step into a high-profile, enterprise environment? One of the world’s most prestigious law firms is seeking a Senior Incident Response & SOC Engineer to join its global Information Security team, based in London . This is a rare opportunity to play a …/7 SOC , handling incident response and contributing to the development of detection, automation, and reporting tools. Key Responsibilities: Lead and support incident response (IR) and investigation of security threats across a complex enterprise estate. Manage, tune, and develop SIEM and EDR technologies to enhance threat detection and response capabilities. Implement and refine playbooks , automations , and alerting rules in … collaboration with security partners. Contribute to threat hunting and proactive detection strategies. Produce actionable reporting and metrics for stakeholders, including executive leadership. Desired Experience: Proven experience working in or alongside a 24/7 Security Operations Centre . Strong technical exposure to SIEM (ideally Splunk), EDR (CrowdStrike preferred), and SOAR tools. Expertise in incident handling , threat More ❯

A large enterprise organisation is seeking an experiencedLevel 3 SOC Analyst for an initial 6-month rolling contract. This is a key role within a mature and well-established Security Operations Centre, offering the opportunity to work on complex threats and contribute to a high-performing cybersecurity function. This is a challenging, rewarding role for a seasoned … make a tangible impact. Apply now to join a team focused on protecting enterprise assets against evolving cyber threats. Key Responsibilities: Lead investigations and response efforts for high-severity security incidents. Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite. Develop and fine-tune analytic rules, workbooks, and automation playbooks in Sentinel. Perform deep-dive analysis of … malware, phishing, and lateral movement techniques. Collaborate with engineering teams to optimise Microsoft security tool integrations. Maintain and enhance incident response procedures and documentation. Skills/Must have: Over 5 years of experience in cybersecurity, including a minimum of 2 years in a Level 3 SOC or equivalent role. Expert-level proficiency with Microsoft Sentinel, including KQL, custom analytic More ❯

GBP Onsite WORKING Location: Leeds, Yorkshire and the Humber - United Kingdom Type: Permanent Cyber Threat Intelligence and Vulnerability Lead Location: Leeds (100% office-based) Salary: Up to £75,000 Security Clearance: DV Clearance required The Opportunity: A unique and mission-critical opportunity has arisen for an experienced Cyber Threat Intelligence and Vulnerability Lead to join a high-impact programme … protecting vital UK infrastructure. You'll work within a dedicated Security Operations Centre (SOC) focused on safeguarding cloud-hosted environments across hundreds of systems. Key Responsibilities: As a Cyber Threat Intelligence and Vulnerability Lead , you will: Oversee the daily detection, triage, and reporting of cyber threats and vulnerabilities affecting the client environment. Direct the development and execution … in threat intelligence, vulnerability management, or technical cyber threat research. Strong understanding of Windows and Linux OS, networking fundamentals, and cloud platforms. Experience in incident response and managing technical security operations. Excellent communication skills with an ability to explain complex threats to both technical and non-technical stakeholders. A relevant degree or equivalent experience in cybersecurity, computer science, or More ❯

GBP Onsite WORKING Location: Leeds, Yorkshire and the Humber - United Kingdom Type: Permanent Cyber Threat Intelligence and Vulnerability Lead Location: Leeds (100% office-based) Salary: Up to £75,000 Security Clearance: DV Clearance required The Opportunity: A unique and mission-critical opportunity has arisen for an experienced Cyber Threat Intelligence and Vulnerability Lead to join a high-impact programme … protecting vital UK infrastructure. You'll work within a dedicated Security Operations Centre (SOC) focused on safeguarding cloud-hosted environments across hundreds of systems. Key Responsibilities: As a Cyber Threat Intelligence and Vulnerability Lead , you will: Oversee the daily detection, triage, and reporting of cyber threats and vulnerabilities affecting the client environment. Direct the development and execution … in threat intelligence, vulnerability management, or technical cyber threat research. Strong understanding of Windows and Linux OS, networking fundamentals, and cloud platforms. Experience in incident response and managing technical security operations. Excellent communication skills with an ability to explain complex threats to both technical and non-technical stakeholders. A relevant degree or equivalent experience in cybersecurity, computer science, or More ❯

company An exciting opportunity has arisen at an award-winning Microsoft Partner for a SOC Analyst. The business is a fast-growing, industry-leading managed service and managed service security provider, delivering in to mid and large enterprise clients. This is a fantastic opportunity for a SOC Analyst to continue their development at an established Microsoft Partner. The business … has a keen focus on developing their staff by providing support for training and earning certifications. You will also gain exposure to cutting-edge technologies, working across security operations and cyberspace. This is a predominantly remote role; you must however be based in the UK to be considered. This role will also require eligibility to gain SC Clearance … clients. This is a hands-on role, that gives you the opportunity to work in a customer-facing capacity as a first point of contact between the customer and security operations centre. As SOC Analyst you will have the opportunity to develop consultancy skills, whilst offering insight into the best technical solutions to secure and report on their More ❯

Type: Permanent Cyber Threat Intelligence & Vulnerability Lead Location: Leeds, UK (100% office-based) Salary: up to £65,000 + 10% bonus + £7,000 DV clearance bonus once obtained. Security Clearance Required: DV (Developed Vetting) eligibility Are you ready to lead the charge in defending critical national infrastructure from sophisticated cyber threats? Join a high-impact Security Operations Centre (SOC) team protecting hundreds of cloud-hosted systems in one of the UK's most vital sectors. This is your opportunity to shape the future of cyber defence in a role that demands technical excellence, strategic thinking, and strong leadership. What You'll Be Doing As the Cyber Threat Intelligence & Vulnerability Lead, you will: Oversee the detection More ❯

Grade: GG10 - GG11 A major UK Critical National Infrastructure (CNI) programme is seeking a highly skilled Cyber Threat Intelligence and Vulnerability Lead to join a dedicated Security Operations Centre (SOC). This role is central to protecting hundreds of cloud-hosted systems from advanced cyber threats and ensuring the continuous improvement of threat intelligence and vulnerability management More ❯

most critical roles in the cybersecurity industry? We are seeking a Cyber Threat Intelligence and Vulnerability Lead to play a pivotal role in the operation and improvement of a Security Operations Centre (SOC) dedicated to safeguarding a major UK organisation. This position offers an opportunity to make a tangible impact in protecting the systems that power the More ❯

most critical roles in the cybersecurity industry? We are seeking a Cyber Threat Intelligence and Vulnerability Lead to play a pivotal role in the operation and improvement of a Security Operations Centre (SOC) dedicated to safeguarding a major UK organisation. This position offers an opportunity to make a tangible impact in protecting the systems that power the More ❯

lifecycle experience for improvements. Splunk SaaS experience and expertise as a lead architect and/or engineer Experience of defining improvements within Cyber departments, particularly, SIEM improvements within Cyber Security Operations Centre (CSOC) functions that result in an increase in SIEM Maturity Levels. Experience of the lifecycle of SIEM delivery, including convergence from other SIEMs. More ❯

cycle experience for improvements. - Splunk SaaS experience and expertise as a lead architect and/or engineer - Experience of defining improvements within Cyber departments, particularly, SIEM improvements within Cyber Security Operations Centre (CSOC) functions that result in an increase in SIEM Maturity Levels. - Experience of the life cycle of SIEM delivery, including convergence from other SIEMs More ❯

cycle experience for improvements. - Splunk SaaS experience and expertise as a lead architect and/or engineer - Experience of defining improvements within Cyber departments, particularly, SIEM improvements within Cyber Security Operations Centre (CSOC) functions that result in an increase in SIEM Maturity Levels. - Experience of the life cycle of SIEM delivery, including convergence from other SIEMs All More ❯

About Bridewell One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world's most trusted organisations. We are the trusted partner for operators of essential services and provide end-to-end cyber security capabilities that help our clients overcome their security challenges, allowing them to operate safely and securely. Bridewell holds the gold level, Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly one team. Who we are looking for: A passionate technology focused individual, with an honest and empathic approach to … customer conversations. You will have hands on experience with a variety of technologies in data loss prevention and a keen interest in emerging security technologies. You will be excited to join a growing team of consultants focused on helping our customers achieve their goals with modern leading-edge technologies in a cloud-first world. What you'll be doing More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

management framework qualification (PRINCE2/Agile) Minimum of 2 professional role specific certifications Hands on, practical experience in the following disciplines: Microsoft Dynamics Digital and Application Innovation (Software Development) Security Operations Centre Data and AI Regular team building and social events with other graduate scheme members What experience do you need? No particular experience is required for More ❯

SLAs, and implement remedial actions when standards are not met Monitor server estate for performance issues and resolve problems within SLAs Ensure system logs are available for ingestion into Security Operations Centre (SOC) Maintain hardware and software within supported lifecycle, working with vendors for updates Work with the Senior Infrastructure Service Analyst to enforce IT policies and More ❯

server estate is being monitored for service performance and where problems are identified these are resolved within agreed SLAs. Ensure all appropriate system logs are available for ingestion into Security Operations Centre (SOC). Across all areas, ensure relevant hardware, software/firmware is within supported life. Work with vendors to obtain, schedule and implement updates. Working More ❯