1 to 25 of 148 Security Monitoring Jobs in the UK excluding London

Role Responsibilities Key responsibilities for this role may include: Incident Detection & Response: Lead the triage, investigation, and classification of security events using SIEM and other tooling Take ownership of end-to-end handling of medium to high-severity incidents, coordinating containment and remediation efforts Maintain detailed incident records, including timelines, impact assessments, root cause analysis, and mitigation steps Act … indicators of compromise and attribution patterns Lead threat intelligence sharing within the organisation and with external partners Mentor Tier 1 staff in interpreting threat data and logs during investigations Security Monitoring and Detection Engineering: Conduct continuous security monitoring of network traffic, endpoints, and critical systems Proactively tune and improve SIEM rules, alerts, and correlation logic to … sources into SIEM and help define parsing, enrichment, and correlation logic Lead investigations into recurring false positives or noisy alerts and propose sustainable resolutions Support deployment and configuration of security tooling Compliance, Reporting and Documentation: Lead security audits and assessments, providing evidence of SOC activities and controls Maintain accurate records of all events handled, including triage notes and More ❯

The team you'll be working with: Senior SOC Analyst We are currently recruiting for a Senior SOC Anslyst to join our growing Security Operations Centre business. This role will be based in Glasgow, and requires a willingness to work in a job that involves 24/7 operations or on call, this will probably be 4 days on … days off in shift patterns. About Us NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing … be doing; The primary function of the Senior SOC Analyst is to manage any incidents escalated by the SOC Analyst (L1 & L2) and undertake the detailed investigation of the Security Event. The Senior SOC Analyst shall be able to look at all the evidence available and support the client on the appropriate action to contain and remediate any security More ❯

The team you'll be working with: P3 Senior SOC Analyst (L3) We are currently recruiting a Senior SOC Analyst L3 Managed Detection and Responseto join our growing Security Operations Centre business. ThisrolewillbebasedonsiteinBirmingham,youwillneedtobewillingtoworkinshiftpatters,probably4dayson,4daysoff,asthisisa24/7securityoperationscentre. About Us NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to do great things. We believe that by … be doing; The primary function of the SeniorSOC Analyst L3 is to manage any incidents escalated by the SOC Analyst (L1 & L2) and undertake the detailed investigation of the Security Event. The Senior SOC Analyst shall be able to look at all the evidence available and support the client on the appropraite action to contain and remediate any security More ❯

The team you'll be working with: P3 Senior SOC Analyst (L3) We are currently recruiting a Senior SOC Analyst L3 Managed Detection and Responseto join our growing Security Operations Centre business. ThisrolewillbebasedonsiteinBirmingham,youwillneedtobewillingtoworkinshiftpatters,probably4dayson,4daysoff,asthisisa24/7securityoperationscentre. About Us NTT DATA is one of the world’s largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to do great things. We believe that by … be doing; The primary function of the SeniorSOC Analyst L3 is to manage any incidents escalated by the SOC Analyst (L1 & L2) and undertake the detailed investigation of the Security Event. The Senior SOC Analyst shall be able to look at all the evidence available and support the client on the appropraite action to contain and remediate any security More ❯

month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps pipelines and Infrastructure as Code … IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. … Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code. DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines More ❯

individual diversity brings to the collective. Bring your individual orientation, cultural heritage and distinctive thinking and experience - we want to hear from you! We are looking for an experienced Security Engineer to join the Vix team. This role is on-site in Manchester, working within the greater Vix Security team. The role will see you ensuring Vix technical … teams meet relevant security standards, pass security audits, and protect company and customer data. You'll be a first point of contact for responding to security incidents. We regret that this position is only available for UK citizens/Residents with indefinite leave to remain in the UK, with current full time work rights for the United … Kingdom, currently residing in the UK. The position is located in Manchester. Requirements What you'll be doing: Assess and evaluate the effectiveness of existing security controls Design and implement security solutions to mitigate identified risks Implement, and manage security systems, including firewalls, intrusion detection/prevention systems, DLP, endpoint protection, MDM, SIEM, IAM, vulnerability management etc More ❯

you'll be working with: SOC Analyst (L2) We are currently recruiting for a Senior Associate level Managed Detection and Response SOC Analyst Level 2 to join our growing Security Operations Centre business. This role will be based on-site in Birmingham, and we need candidates who are able to work in a job that involves 24/… operations, likely in shift patterns of 4 days on, 4 days off. About Us NTT DATA is one of the world's largest global security services providers with over 7,500 security SMEs and an integration partner to many of the world's most recognized security technology providers. We strive to hire exceptional, innovative, and passionate individuals … doing: What you will be doing; The primary function of the SOC Analyst (L2) is to analyze incidents escalated by the SOC Analyst (L1) and undertake detailed investigation of security events. The Security Analyst (L2) will determine whether a security event qualifies as an incident and will coordinate with the customer's IT and security teams More ❯

As a Cyber Defence Analyst, you will join the Cyber Fusion Center, performing in-depth analysis, assessment, and response to security threats by following documented policies to meet Service Level Goals. The team provides global 24x7 security operations and monitoring for cybersecurity events affecting Experian. You will be a part of the first line of defence in … Experian's broader incident response and incident management departments, responsible for receiving and prioritizing cybersecurity alerts, including being the dedicated contact for potential security incidents reported by users (e.g., Experian employees). Depending on the results of assessment, this team is then responsible for investigating, containing, eradicating, and recovering from events falling in its scope or escalating higher-risk … events to dedicated incident response and management teams in the CFC. This role is critical in ensuring the handling of potential threats and plays a part in improving security operations. This is a home based role reporting to the Director of Security Operations for SecOps & Threat Detection. Please note that in this role, you will have an 8x5 More ❯

empowering clients to own, manage and rule their data. One of our specialisations is in cybersecurity consultancy offering end-to-end SIEM services, helping clients design, deploy, and optimise security monitoring and threat detection solutions. Our team provides comprehensive support across all stages of SIEM implementation, from initial strategy and solution design to deployment and ongoing management. Our … focus is on delivering tailored solutions that enhance security postures, maintain compliance, and provide actionable threat intelligence. What we’re looking for We are seeking a client-focused SIEM Consultant with a strong foundation in SIEM technologies, cybersecurity best practices, and threat detection strategies. In this role, you will work closely with clients to understand their security needs … other leading SIEM tools. You’ll participate in hands-on configuration and optimisation as needed but with a primary focus on advising clients, developing design strategies, and ensuring their security objectives are met. This position is ideal for someone with experience in SIEM or SOC environments who is comfortable in a consultative, client-facing role. Knowledge of cloud security More ❯

Social network you want to login/join with: SOC Security Analyst (Microsoft Sentinel & Defender Specialist), Manchester col-narrow-left Location: Manchester, United Kingdom Job Category: Information Technology EU work permit required: Yes col-narrow-right Job Reference: BBBH64047_1750251157 Job Views: 21 Posted: 18.06.2025 Expiry Date: 02.08.2025 col-wide Job Description: SOC Security Analyst (Microsoft Sentinel & Defender … Specialist) Whitehall resources are looking for an experienced SOC Security Analyst (Microsoft Sentinel & Defender Specialist). This role is hybrid working with 2-3 days per week on site in Manchester, and the remainder remote working, for an initial 6-month contract. ***Inside IR35*** Job Summary: We are seeking a highly skilled and experienced SOC L3 Analyst with strong … knowledge and deep expertise in Microsoft Sentinel and the Microsoft Defender suite. The ideal candidate will take a lead role in advanced threat detection, incident response, detection engineering, and security monitoring, while also optimising license consumption and SIEM integration efforts. Key Responsibilities: Advanced Threat Detection & Incident Response - Investigate and analyze complex security incidents escalated from L1/ More ❯

a lifeline. Are you a skilled cybersecurity professional with a passion for aviation or mission-driven charity work? In this role, you'll be responsible for implementing and managing security infrastructure, responding to threats, and ensuring compliance across systems. You'll work with various cyber security solutions while driving security best practices and incident response. If you … Based Role - Ashford, (Kent) UK or Cairns, Australia. UK - £43,800 per annum (dependent on experience) Australia - $85,000 AUD per annum (dependent on experience) Responsibilities As a MAF Security Operations Specialist you will play a critical role in protecting our digital infrastructure. You'll lead the implementation and management of SIEM systems, Fortinet security tools, and endpoint … vulnerability assessments and penetration testing to stay ahead of cyber threats. You'll enhance identity and access management (IAM) by maintaining Active Directory, Entra ID, MFA, and Zero Trust security principles. Your expertise in network security, VPNs, SD-WAN, and Microsoft Defender solutions will help safeguard our systems, while your contributions to incident response, governance, and security More ❯

a lifeline. Are you a skilled cybersecurity professional with a passion for aviation or mission-driven charity work? In this role, you'll be responsible for implementing and managing security infrastructure, responding to threats, and ensuring compliance across systems. You'll work with various cyber security solutions while driving security best practices and incident response. If you … right to work in the UK or Australia. Acceptance of and adherence to MAF's purpose, vision and values is an essential condition of employment. Responsibilities As a MAF Security Operations Specialist you will play a critical role in protecting our digital infrastructure. You'll lead the implementation and management of SIEM systems, Fortinet security tools, and endpoint … vulnerability assessments and penetration testing to stay ahead of cyber threats. You'll enhance identity and access management (IAM) by maintaining Active Directory, Entra ID, MFA, and Zero Trust security principles. Your expertise in network security, VPNs, SD-WAN, and Microsoft Defender solutions will help safeguard our systems, while your contributions to incident response, governance, and security More ❯

individual diversity brings to the collective. Bring your individual orientation, cultural heritage and distinctive thinking and experience - we want to hear from you! We are looking for an experienced Security Engineer to join the Vix team. This role is on-site in Manchester, working within the greater Vix Security team. The role will see you ensuring Vix technical … teams meet relevant security standards, pass security audits, and protect company and customer data. You'll be a first point of contact for responding to security incidents. We regret that this position is only available for UK citizens/Residents with indefinite leave to remain in the UK, with current full time work rights for the United … Kingdom, currently residing in the UK. The position is located in Manchester. Requirements What you'll be doing: Assess and evaluate the effectiveness of existing security controls. Design and implement security solutions to mitigate identified risks. Implement, and manage security systems, including firewalls, intrusion detection/prevention systems, DLP, endpoint protection, MDM, SIEM, IAM, vulnerability management etc. More ❯

the success of the business, committed to delivering high quality results, collaboration and innovation to help accelerate company growth. Position: We are seeking a highly skilled and motivated Cyber Security Engineer to join our Cyber Security team. This role is crucial in maintaining the security of our systems, networks, and data. The successful candidate will implement security measures, monitor for vulnerabilities, respond to incidents, and ensure compliance with RealVNC policies and industry standards and regulations. Key responsibilities include; Security Monitoring and Incident Response: Serve as a point of contact between the internal security team and our external SOC provider, to continuously monitor systems for security breaches and anomalies. Ensure that alerts, escalations … queries, analytics rules, threat hunting scripts, and automation logic. Work with internal teams to mitigate threats and implement recommendations - for example MFA enforcement, Conditional Access policies, and identity protection. Security Architecture and Implementation: Evaluate and recommend security solutions to enhance internal security posture. Utilising third-party security tools to scan the environments for vulnerabilities, mitigate findings More ❯

60k per annum As a Cloud/Cyber Security Solutions Architect , you will design and implement advanced cloud and security architectures to protect an organisation's critical digital assets. You'll collaborate with key stakeholders, ensuring that security solutions align with business objectives and regulatory requirements. Your expertise in cybersecurity technologies will drive the development of secure … solutions, incorporating identity and access management, data protection, network security, and compliance strategies. You will also ensure seamless integration of these security measures within existing systems while staying ahead of industry trends and emerging threats. Key Responsibilities : Cloud Architecture Design : Develop cloud-based solutions, integrating security from the ground up. Security Assessment & Planning : Identify and mitigate … security risks, ensuring regulatory compliance. Identity & Access Management : Implement RBAC, MFA, and IAM solutions to safeguard sensitive data. Data Protection & Encryption : Protect data at rest, in transit, and in use through encryption and tokenization. Network Security : Design secure network architectures, implement IDS/IPS, firewalls, and VPNs. Security Monitoring & Incident Response : Build monitoring solutions, develop More ❯

Darkshield is an expert cybersecurity agency based in York, UK. We help organisations navigate an increasingly complex digital landscape by providing expert services in penetration testing, vulnerability assessment, managed security, incident response, and compliance. Our mission is to protect businesses from cyber threats by delivering tailored security solutions that keep them resilient and secure. The Role We are … seeking a Security Analyst to join our team and play a key role in threat detection, incident response, and security monitoring. The ideal candidate will have a strong analytical mindset, an understanding of cyber threats and attack techniques, and the ability to implement effective security controls to mitigate risks. This role involves proactively monitoring security events, investigating potential breaches, and supporting clients with vulnerability management and security best practices. About You You are passionate about cybersecurity and have a strong ability to think critically, solve complex problems, and anticipate security threats before they happen. You thrive in a fast-paced environment, working both independently and collaboratively as part of a security More ❯

Darkshield is an expert cybersecurity agency based in York, UK. We help organisations navigate an increasingly complex digital landscape by providing expert services in penetration testing, vulnerability assessment, managed security, and compliance . Our mission is to protect businesses by delivering tailored, cutting-edge cybersecurity solutions that keep them resilient and ahead of cyber threats. The Role We are … looking for a Cloud Security Engineer to join our growing team. This role involves designing, implementing, and managing security solutions across AWS, Azure, and Google Cloud . The ideal candidate will have a deep understanding of cloud security architectures, automation, and compliance frameworks . Key Responsibilities Cloud Security Architecture & Implementation Design and implement cloud security architectures across AWS, Azure, or Google Cloud. Develop and enforce cloud security controls , including IAM policies, encryption, and network security. Threat Monitoring & Incident Response Monitor cloud environments for security threats, vulnerabilities, and misconfigurations . Lead incident response efforts related to cloud security breaches and misconfigurations. Implement SIEM and security monitoring tools for real More ❯

The Technical IT Security Manager will oversee the organisation’s security and data infrastructure, with a focus on technical aspects to ensure robust protection of information systems. This position involves managing security operations, implementing security measures, and leveraging Microsoft Azure’s security features to safeguard the organization’s data and infrastructure. Key Responsibilities: Security Operations Management: Be the Technical Expert to support and advance the objectives of IT Security and the wider group In conjunction with the leadership team, develop and implement security policies, procedures, and protocols Actively engaged in continuous monitoring and protection of networks, systems, and applications Technical Security Implementation: Design, implement and support new and existing … security solutions. (Privileged Access Management, Vulnerability Management, Threat Intelligence, etc) Expert in Microsoft Azure’s security tools and services. (Entra, Privileged Identity Management, conditional access, Microsoft defender, Sentinel, etc) Perform security input and guidance on tools being adopted within the organisation. Oversee and assess the outputs of the vulnerability management platforms to effectively identify and mitigate vulnerabilities More ❯

Information Security Analyst - Audit, Compliance & Cybersecurity United Kingdom - Southampton At NICE, we don't limit our challenges. We challenge our limits. Always. We're ambitious. We're game changers. And we play to win. We set the highest standards and execute beyond them. And if you're like us, we can offer you the ultimate career opportunity that will … if you're like us, we can offer you the ultimate career opportunity that will light a fire within you. So, what's the role all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This … role focuses on internal audits, regulatory compliance, and readiness for external audits while also contributing to Cybersecurity Operations Center (CSOC) activities, including incident monitoring and response. How will you make an impact? Internal Audit Execution: Conduct internal audits to evaluate and enhance IT controls, compliance with standards, and risk management processes. Audit Preparation: Assist internal control owners in scoping More ❯

and cross-cultural immersion. Our side-by-side financial and legal services are similarly ripe for interdisciplinary learning and growth. The Maples Group looks to add a Leeds based Security Engineer to our team and invites eager and qualified candidates to apply. We are committed to diversity, inclusion, and equality of opportunity as we attract, retain, and develop world … to each interaction and to all aspects of their work. About the Role This role is responsible for deploying, maintaining, supporting and improving the tools and processes for Information Security at Maples. Primary responsibilities include: Implementing and maintaining network, intrusion detection and prevention systems as well as other security tools in a hybrid environment (both on-prem and … threats in cybersecurity to guide and advise the organization regarding the protection of systems Monitor and translate threat intelligence feeds into actionable detection and response actions Monitor and analyze security logs for attacker tactics, techniques and procedures (TTPs), filtering through suspicious activities to determine their root cause and perform remediation activities as appropriate Creating, testing and validating Maples security More ❯

R2 Cyber Security Analyst Remote The R2 Analyst plays a vital role in the Security Operations Centre (SOC), contributing to the organisation's overall cybersecurity posture by actively participating in the monitoring, analysis, and response to security incidents and events. With a focus on continuous learning and collaboration, the R2 Analyst supports the SOC team in … identifying, assessing, and mitigating potential security threats and vulnerabilities. Through the application of foundational technical skills and a strong dedication to detail-oriented analysis, the R2 Analyst assists in safeguarding the organization's critical systems, data, and assets from cyber risks. By working closely with senior analysts and leveraging emerging technologies, the R2 Analyst helps maintain a vigilant and … proactive defence against evolving cyber threats, enabling the organisation to operate securely and with confidence. Summary Threat Detection and Monitoring: Monitor the SOAR platform for EDR Logs, SIEM Logs, IDS Logs and Managed Intelligence sources. Identify potential threats, vulnerabilities, and indicators of compromise. Initiate escalation procedures to counteract potential threats and vulnerabilities. Ability to analyze and interpret threat intelligence More ❯

your career, then that is what you will get, and more. Job Summary: The Vulnerability & Compliance Lead is responsible for tracking and managing the identification, assessment, and remediation of security vulnerabilities across the organization's infrastructure and endpoints and monitoring and reporting on vulnerability and other security compliance status. This role requires collaboration with various departments to … ensure that all security patches and updates are applied promptly and effectively. Additionally, the Lead ensures that the organization's security posture remains strong and compliant with industry standards. Key Responsibilities: Knowledge: Subject Matter Expert in vulnerability remediation, offering guidance and support to ensure effective remediation processes Prioritization: determine remediation priorities based on vulnerability severity, exploitability, and potential … business impact Planning: Develop strategies to address identified vulnerabilities, including applying patches, updating configurations, and implementing software updates Coordination: Work closely with vendor support, security, application teams and others to prioritize and remediate identified vulnerabilities Monitoring and Reporting: track and report on vulnerability and compliance status Continuous Improvement: regularly review and analyze data and processes and implement agreed More ❯

month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps pipelines and Infrastructure as Code … IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. … Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code. DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines More ❯

which provides an IT infrastructure platform for the business. The team has two primary focuses: cybersecurity operations and network operations. You will be part of a global team - Network Security Operations, collaborating with colleagues across Europe, Asia and the U.S. This position will be based in our Frankfurt office. What you will do Be responsible for our security engineering platforms with particular focus on SIEM and EDR, Anti-Virus and Anti Malware solutions Leverage our security platform's automation capabilities to implement and optimise SOAR capabilities throughout our environment Research, design and deploy new security features and products In the event of a major incident, lead the technical response into cybersecurity incidents at AllianzGI, from … initial triage through containment, investigation, remediation, and follow-up; typically, your involvement will be limited to major incidents or incidents that require a deeper technical understanding of the security tools Support our threat intelligence programme, identifying regional and global threats, and respond accordingly Support the development and improvement of the global cybersecurity operations programme (including processes and procedures), reflecting More ❯

Cyber SOC Analyst – Corsham Location: On-site, 5 days per week (Corsham) Security Clearance: Must currently hold SC clearance and be eligible for DV Citizenship Requirement: Sole British only About the Role Embedded within an established customer Security Operations Centre (SOC), this role involves participating in core SOC functions, identifying opportunities for improvement, and driving best practices in … cyber defence operations. You will play a key role in monitoring and responding to cyber threats, supporting threat detection and mitigation, and contributing to continuous improvement in security posture. Key Responsibilities Conduct reactive monitoring across client networks to deliver agile cyber defence across all domains Triage and manage alerts, perform impact assessments, and recommend mitigation strategies Improve … and enforce cyber security policies, procedures, and operational directives Maintain awareness of emerging cyber threats, vulnerabilities, and industry developments Share insights via reports, threat briefs, and team knowledge-sharing sessions Your Profile Experience working as a Security Analyst in a SOC or similar security monitoring environment Knowledge of data networks and SIEM tools Strong understanding of More ❯