76 to 100 of 126 Security Operations Centre Jobs in the UK

leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our client’s critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

Engineer to join the global IT team. The successful candidate will play a key role in designing, implementing, maintaining, and supporting the entire IT infrastructure, which supports the business operations across multiple international locations. This is a practical role requiring a combination of deep technical expertise in Microsoft, VMware, and Cloud technologies, strategic thinking, and the ability to work … and cloud-based systems. Manage and administer our hybrid cloud environment, with a strong focus on Microsoft Azure, Entra ID, and Azure MDM for modern device management. Ensure the security of our infrastructure and data by managing on-premises and cloud security controls and working closely with the Security Operations Centre (SoC) to action vulnerability … as well as core Microsoft services (AD, GPO, DNS, NPS/Radius, CA, SMTP Relay), and our extensive VMware vSphere/vCenter virtualisation platform. Administer and optimise our System Centre Configuration Manager (SCCM) hierarchy, including Primary/Secondary sites, Distribution Points, Cloud Management Gateway (CMG), and Azure integration for global software deployment and updates. Manage and maintain our VDI More ❯

Senior Security Analyst – SOC/Incident Response I’m partnering with a fast-growing Cyber Defence function that’s strengthening its Security Operations Centre and looking for a talented Senior Security Analyst to join the team. You’ll take a leading role in detecting, analysing, and responding to cyber threats across diverse client environments, mentoring … a SOC, CSIRT, or cyber defence environment. Solid knowledge of SIEM and EDR platforms (Sentinel, Splunk, Defender, CrowdStrike, etc.). Understanding of MITRE ATT&CK and network/cloud security principles. Strong analytical and communication skills. Bonus points for: Scripting or automation experience (KQL, PowerShell, Python). Background in threat hunting or vulnerability management. Why apply? Hybrid flexibility, funded More ❯

An exciting opportunity has arisen for an accomplished SOC Incident Response & Threat Hunting Manager to lead a high-performing team within a dynamic and evolving Security Operations Centre (SOC) environment. This critical role is ideal for a technically proficient cybersecurity professional with a passion for proactive defence, threat intelligence, and strategic leadership. The successful candidate will oversee … a team of Tier 3 Security and Incident Response Analysts, driving advanced incident response, digital forensics, and threat hunting operations across a diverse customer base. Acting as a technical authority, the role will play a pivotal part in enhancing cyber resilience, refining detection capabilities, and leading complex investigations from detection through to remediation and review. Key Responsibilities Lead … Oversee and coordinate high-severity incident response engagements, acting as incident lead when required, and guiding cross-functional teams through time-critical decision-making. Provide expert oversight on complex security incidents, ensuring technical accuracy, rapid containment, and detailed documentation throughout. Drive the ongoing development and maturity of the Cyber Threat Intelligence (CTI) capability, ensuring intelligence is actionable, relevant and More ❯

Up to £85,000 + 10–15% Bonus + £6k Car Allowance + Excellent Benefits (Occasional travel to Warrington, approx. once per quarter) Our client is expanding their virtual Security Operations Centre (vSOC) and looking for an experienced SOC Incident Response & Threat Hunting Manager to lead and develop a high-performing Tier 3 team. This is a … hands-on leadership role, ideal for someone who’s equally comfortable managing people and tackling complex security incidents directly. You’ll guide analysts through live investigations, lead advanced threat hunting operations, and help shape the strategy for the Cyber Threat Intelligence (CTI) capability. The focus is on leadership through technical excellence — combining deep expertise in DFIR, threat hunting … and detection engineering with a proactive approach to strengthening security posture across diverse customer environments. The Role Lead and mentor Tier 3 SOC and Incident Response Analysts. Act as the technical lead on high-severity security incidents from initial detection through to post-incident review. Design and execute advanced threat hunting exercises, integrating intelligence from CTI and Detection More ❯

An exciting opportunity has arisen for an accomplished SOC Incident Response & Threat Hunting Manager to lead a high-performing team within a dynamic and evolving Security Operations Centre (SOC) environment. This critical role is ideal for a technically proficient cybersecurity professional with a passion for proactive defence, threat intelligence, and strategic leadership. The successful candidate will oversee … a team of Tier 3 Security and Incident Response Analysts, driving advanced incident response, digital forensics, and threat hunting operations across a diverse customer base. Acting as a technical authority, the role will play a pivotal part in enhancing cyber resilience, refining detection capabilities, and leading complex investigations from detection through to remediation and review. Key Responsibilities Lead … Oversee and coordinate high-severity incident response engagements, acting as incident lead when required, and guiding cross-functional teams through time-critical decision-making. Provide expert oversight on complex security incidents, ensuring technical accuracy, rapid containment, and detailed documentation throughout. Drive the ongoing development and maturity of the Cyber Threat Intelligence (CTI) capability, ensuring intelligence is actionable, relevant and More ❯

CYBER SECURITY ENGINEER | SECURITY OPERATIONS CENTER (SOC). Summer-Browning Associates is supporting our client in the Central Government who is seeking a Cyber Security Engineer for an initial 12-month assignment, with the possibility of extension. Location: London | Hybrid| Remote The ideal candidate will hold an active DV clearance and have a solid background in … Cyber Security working within a high-threat government environment, with the following skills and experience: Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Experience in SOC operations, incident response, and forensic analysis. Ability to perform … triage of security events to determine their scope, priority, and impact, while making recommendations for efficient remediation. Experience in network security principles, firewalls, and access control mechanisms. Preferred Qualifications: - Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable. To apply, please submit your latest CV for review. More ❯

CD Pipelines: Manage continuous integration and continuous deployment pipelines for AWS infrastructure changes. Network Architecture: Design and manage VPC architecture, subnets, Transit Gateway, Direct Connect, AWS PrivateLink, and VPC. Security Responsibilities: Security Measures: Develop and implement security measures across AWS environments. IAM Policies: Manage Identity and Access Management (IAM) policies, Service Control Policies (SCPs), and Single Sign … On (SSO). Security Monitoring: Integrate security monitoring with the MODcloud Security Operations Center (SOC). Compliance: Ensure encryption, log protection, and compliance enforcement. Technologies You'll Work With: Terraform CloudFormation DevOps pipelines VPC architecture Subnets Transit Gateway Direct Connect AWS PrivateLink VPC Qualifications: Proven experience with AWS technologies and solutions. Strong knowledge of Terraform, CloudFormation … and DevOps pipelines. Expertise in VPC architecture and related networking technologies. Experience in implementing security measures and managing IAM policies. If you are passionate about cloud technology and have the skills to match, we would love to hear from you More ❯

forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business cybersecurity More ❯

forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business cybersecurity More ❯

forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business cybersecurity More ❯

forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business cybersecurity More ❯

forecasting. Deliver against ambitious new business targets, landing deals typically in the £20k–£40k range . Cybersecurity Services You’ll Sell Penetration Testing & Red Teaming Managed Detection & Response (MDR) Security Operations Centre (SOC) services Threat Intelligence & Risk Advisory Incident Response & Crisis Management Cloud & Endpoint Security Solutions What You Bring Proven track record in new business cybersecurity More ❯

types — hands-on SOC professionals who still love getting involved in the tech but want to step up and lead. You’ll run a virtual SOC supporting critical UK operations, driving incident response, threat hunting, and detection engineering. It’s a hybrid of leadership and action — the kind of role where your technical instincts still matter as much as More ❯

need for this opportunity Simply read the full description below to get a complete picture of candidate requirements. This is your opportunity to step into a mature, high-performing Security Operations Centre that plays a pivotal role in protecting the backbone of Europe's financial systems. You'll be part of a mission-driven environment where precision … SIEM use cases that strengthen the organization's detection framework. Lead and guide technical initiatives within the Threat Detection team to ensure continuous improvement. Advise on SIEM architecture and security tooling, bringing deep technical insight to detection strategies. Manage and prioritize detection tasks, balancing proactive threat hunting with operational response needs. What You Bring Proven experience as a Threat … Detection Engineer or similar role within a SOC environment. Advanced hands-on experience with Splunk, including SPL development and Enterprise Security (ES). Demonstrated ability to create and enhance use cases that detect and mitigate evolving threats. Solid understanding of cybersecurity principles, frameworks, and best practices. Strong communication skills in English — you can translate technical detection logic into actionable More ❯

principles, techniques, and tools. Proficiency in creating Business Change documentation, including policies, standards, processes, procedures, and patterns. Demonstrable experience in risk management and benefits realisation. Experience with changes in Security Operations Centers (SOCs) and related monitoring and management technologies and procedures. A background in Security Operations Centers within the Defence, Nuclear, or Central Government sectors, or More ❯

principles, techniques, and tools. Proficiency in creating Business Change documentation, including policies, standards, processes, procedures, and patterns. Demonstrable experience in risk management and benefits realisation. Experience with changes in Security Operations Centers (SOCs) and related monitoring and management technologies and procedures. A background in Security Operations Centers within the Defence, Nuclear, or Central Government sectors, or More ❯

from day one Im working with a gold-standard IT Managed Service Provider renowned for delivering secure, enterprise-grade solutions across cloud, infrastructure, and cyber domains. Theyre expanding their Security Operations Centre and hiring a hands-on SOC Incident Response & Threat Hunting Manager to lead Tier 3 analysts and drive proactive defence strategies. This is a strategic … mentoring capabilities, and a passion for threat hunting and CTI development. Key Responsibilities: Lead and coordinate high-severity incident response engagements Provide technical oversight and guidance on threat hunting operations Translate threat intelligence into actionable hypotheses and use cases Design and execute advanced threat hunting exercises across varied environments Develop in-house training programmes for SOC analysts Drive CTI More ❯

Birmingham or Glasgow Up to £71,000 + Bonus + Benefits Hybrid SC Clearance Required or Eligible Our client - a global technology and services firm - is expanding its Managed Security Operations Centre and seeking a Senior Incident Re click apply for full job details More ❯

SOC Operations Manager - Azure, ISO27001, Energy Up to £800 per day - Inside IR35 Primarily remote - Occasional travel 3 - 6 months My client is an instantly recognisable consultancy who require a SOC Operations Manager to lead the day-to-day operations of a Security Operations Centre. This is a hands-on leadership role where you'll … within Energy/Construction/Utilities Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC/SIEM/XDR). Strong working knowledge of M365 security features. Familiarity with cloud platforms, in particular Azure and/or AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current More ❯

SOC Operations Manager - Azure, ISO27001, Energy Up to £800 per day - Inside IR35 Primarily remote - Occasional travel 3 - 6 months My client is an instantly recognisable consultancy who require a SOC Operations Manager to lead the day-to-day operations of a Security Operations Centre. This is a hands-on leadership role where you'll … within Energy/Construction/Utilities Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC/SIEM/XDR). Strong working knowledge of M365 security features. Familiarity with cloud platforms, in particular Azure and/or AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current More ❯

Cyber Security Playbook Developer, supporting the incident response team within the Security Operations Center. Must have hands-on experience focused on improving the coverage, quality and automation of cyber-security detection and response capabilities within the SOC. The role is responsible for Runbook automation to improve efficiency of the SOC, develop analytics in Splunk/or … Elastic Search to detect actionable security alerts, to ensure security and stability of SOC infrastructure. Must have experience working with Unix/Linux at the command-line and Shell Scripting/Python skills. By applying to this job you are sending us your CV, which may contain personal information. Please refer to our Privacy Notice to understand how More ❯

its technical capability, with ambitious growth plans and multiple acquisitions planned every year for the next 5 years (8 in the past 12 months). Reporting into the IT Operations Manager, you will oversee core infrastructure and networking. You'll work closely with managed service providers to ensure seamless operations and business continuity whilst taking a lead on … the Service Desk Team Set up and configure Local Area Networks (LANs), including hardware deployment and support Coordinate with third-party MSPs for network and infrastructure management Manage firewall operations and connectivity with ISPs Oversee network IP addressing and VPN setups Support business continuity through proactive incident management Rapid deployment of site connectivity solutions, including 4G routers Monitor network … health and performance, ensuring high availability and resilience Maintain inventory and configuration records for infrastructure and software Collaborate with the Security Operations Center (SOC) on network security Support software licensing and upgrades Support data privacy and security audits Provide technical support and mentoring Maintain server rooms and ensure operational efficiency Develop and implement business processes and More ❯

strategic ownership of the organisation's core infrastructure and network operations. You will manage relationships with external service providers, lead internal infrastructure initiatives and ensure the stability, scalability and security of IT systems across multiple sites, whilst leading the infrastructure team. Key Responsibilities * Lead and manage the delivery of infrastructure and network services across offices and project sites, aligning … providers, ensuring performance, SLAs and service quality * Provide leadership to technical staff * Plan and coordinate infrastructure upgrades, migrations and integrations across a growing business portfolio * Manage network and server operations, ensuring uptime, resilience and business continuity. * Oversee the design and deployment of new site networks and connectivity solutions, ensuring standardisation and efficiency * Collaborate with the Security Operations Center and compliance teams to maintain a robust security posture * Develop and enforce infrastructure policies, processes and documentation to support consistent operations and future scalability * Maintain oversight of infrastructure assets, configuration management and software licensing * Contribute strategically to IT budgeting, vendor management and continuous service improvement initiatives * Provide high-level technical oversight and guidance in areas including More ❯

strategic ownership of the organisation's core infrastructure and network operations. You will manage relationships with external service providers, lead internal infrastructure initiatives and ensure the stability, scalability and security of IT systems across multiple sites, whilst leading the infrastructure team. Key Responsibilities * Lead and manage the delivery of infrastructure and network services across offices and project sites, aligning … providers, ensuring performance, SLAs and service quality * Provide leadership to technical staff * Plan and coordinate infrastructure upgrades, migrations and integrations across a growing business portfolio * Manage network and server operations, ensuring uptime, resilience and business continuity. * Oversee the design and deployment of new site networks and connectivity solutions, ensuring standardisation and efficiency * Collaborate with the Security Operations Center and compliance teams to maintain a robust security posture * Develop and enforce infrastructure policies, processes and documentation to support consistent operations and future scalability * Maintain oversight of infrastructure assets, configuration management and software licensing * Contribute strategically to IT budgeting, vendor management and continuous service improvement initiatives * Provide high-level technical oversight and guidance in areas including More ❯