126 to 150 of 208 Security Operations Jobs in the UK excluding London

responsible for a wide range of tasks that support the smooth delivery of our 'vCIO' service to our customers, covering the bases of; Consulting, Procurement, Support, Al & Machine Learning, Security Operations, Cloud Operations (AWS, Azure, Office 365). As a Business & Data Administration Apprentice, you will gain hands-on experience in office operations and client support … written and verbal A team player with a passion for customer service A proactive attitude and ability to adapt in a fast-moving environment Interest in technology and business operations Proficiency in Microsoft Word, Excel, Outlook, and other business communication tools Strong numerical and commercial acumen Training Expected Apprenticeship Duration: 14 months + 3 months EPA. Level 3 Data More ❯

About Bridewell One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world's most trusted organisations. We are the trusted partner for operators of essential services and provide end-to-end cyber security capabilities that help our clients overcome their security challenges, allowing them to operate safely and securely. Bridewell holds the Gold level, Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly one team. Who are we looking for? We are seeking a highly skilled and experienced Senior Detection Engineer to … expand our Managed Security Service Provider (MSSP) team. You will be responsible for developing and maturing detection coverage across our MSS customers (Splunk, Azure Sentinel, Chronicle SIEM). For this particular role we're primarily looking for someone with Splunk detection engineering experience. What you'll be doing This role sits within our detection engineering team who work with More ❯

This role involves implementing and managing security measures to protect systems and networks in a professional services environment. The successful candidate will play a critical part in ensuring the safety and reliability of the organisation's technology infrastructure in Birmingham. Client Details The hiring company is a professional services organisation with a well-established presence in the industry. As … sized firm, they focus on delivering reliable and tailored services to their clients, supported by a robust and secure technology framework. Description Work with managed service provider for cyber security incident management Proactively conduct threats detection and improve threats detection and management process Conduct vulnerability assessments, ensure the remediation and recommend improvements to mitigate risks. Develop security playbooks … Work with engineering team to implement security tools and controls Scope penetration testing and review related reports from external service providers Collaborate with the technology department to integrate security protocols into system designs. Ensure and develop security posture to newly acquired businesses Provide guidance and training to staff on cybersecurity best practices. Profile Proven experience in cyber More ❯

Role: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including Nozomi Networks, firewalls, EDR (e.g., Defender … to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security events. Execution of the use cases on SIEM, SOAR & Threat Intelligence Build custom workbooks and dashboards to visualize OT security posture, threat trends, and SOC performance metrics More ❯

Role: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including Nozomi Networks, firewalls, EDR (e.g., Defender … to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security events. Execution of the use cases on SIEM, SOAR & Threat Intelligence Build custom workbooks and dashboards to visualize OT security posture, threat trends, and SOC performance metrics More ❯

Role: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including Nozomi Networks, firewalls, EDR (e.g., Defender … to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security events. Execution of the use cases on SIEM, SOAR & Threat Intelligence Build custom workbooks and dashboards to visualize OT security posture, threat trends, and SOC performance metrics More ❯

Overview Hybrid role with flexible working hours and comprehensive benefits Impactful role in a new and growing security team About Our Client The hiring company is a professional services organisation with a well-established presence in the industry. As a mid-sized firm, they focus on delivering reliable and tailored services to their clients, supported by a robust and … secure technology framework. Job Description Work with managed service provider for cyber security incident management Proactively conduct threats detection and improve threats detection and management process Conduct vulnerability assessments, ensure the remediation and recommend improvements to mitigate risks. Develop security playbooks Work with engineering team to implement security tools and controls Scope penetration testing and review related … reports from external service providers Collaborate with the technology department to integrate security protocols into system designs. Ensure and develop security posture to newly acquired businesses Provide guidance and training to staff on cybersecurity best practices. The Successful Applicant Proven experience in cyber security operations including threats hunting, detection and response, vulnerabilities assessment remediation Familiarity with More ❯

Glasgow, Scotland - United Kingdom Type: Permanent Senior SOC Analyst Location: Glasgow (hybrid) Salary: Up to £57,000 + package NOTE: Candidates for this role must be eligible for UK Security Clearance (SC). We are seeking a Senior SOC Analyst to join a growing Security Operations Centre team. This is a hybrid role based in Glasgow, offering … the opportunity to take a leading role in incident response and advanced security monitoring within a dynamic environment. As a Senior SOC Analyst, you will take ownership of escalated incidents from L1 and L2 analysts, leading investigations, performing root cause analysis, and guiding appropriate remediation actions. You will play a key role in developing SOC use cases, enhancing monitoring … interaction, and leadership, requiring someone who thrives in a fast-moving environment and is comfortable working with both technical and non-technical stakeholders. Key Responsibilities Lead investigations into escalated security incidents, including detailed analysis and root cause identification. Monitor and optimise SIEM tools (Splunk, QRadar, or similar), ensuring accurate detection and effective alerting. Perform malware analysis, reverse engineering, and More ❯

Security Engineer Rate: £550/£600 per day (Inside IR35 via umbrella) Duration: 8 months initial Location: Bristol - hybrid once a week on site We're seeking a Security Engineer to support ongoing security operations while playing a key role in a major data centre migration. You'll work across on-prem and AWS environments, collaborating … with both internal stakeholders and third-party partners. Responsibilities Optimise and streamline security logs to reduce platform costs Review and enhance Zscaler and MS Defender configurations Strengthen and refine role-based access controls Support and validate security actions during a physical data centre move, ensuring alignment with external suppliers Skills & Experience Strong stakeholder management and adaptability Proficiency with More ❯

advising on secure cloud architectures within Google Cloud Platform (GCP), ensuring compliance with UK and international standards. You will work with clients across sectors to assess risks, implement robust security controls, and guide secure cloud adoption strategies. This role requires a strong understanding of cloud-native security, regulatory frameworks, and the ability to translate technical risks into business … this role, you will be required to obtain GCP certification. What You'll Do: Design and implement secure architectures, incorporating identity, access management, encryption, and network security. Conduct cloud security assessments and gap analyses for UK-based organisations. Advise on compliance with UK regulations (e.g. GDPR, NCSC Cloud Security Principles, ISO 27001). … Develop and enforce cloud security policies, procedures, and governance models. Lead threat modelling, risk assessments, and vulnerability management initiatives. Configure and manage security tools such as Google SecOps tooling, Security Command Center, Cloud Armour, and VPC Service Controls. Collaborate with engineering and DevOps teams to embed security into CI/CD pipelines. Support incident response planning More ❯

Job Title: L1 SOC Analyst Our client is a well-established Managed Security Service Provider (MSSP) and a leading Fortinet and Microsoft partner, delivering high-impact cybersecurity solutions to clients in the defense, government, and financial services industries. Committed to nurturing talent, our client offers a comprehensive training and development program to help you advance from entry-level to … a fully-fledged SOC Analyst. As an L1 SOC Analyst, you’ll be at the frontline of cybersecurity defense. You’ll handle real-time triaging of 80-100 security alerts per shift, utilizing Fortinet and Microsoft SIEM/EDR technologies to detect and mitigate threats. This is an excellent opportunity for those passionate about cybersecurity, with hands-on experience … that builds a strong foundation for a lasting career in the field. Responsibilities: Monitor and triage security alerts (80-100 alerts per shift) using Fortinet and Microsoft SIEM/EDR tools. Analyse and prioritize alerts to identify potential threats and escalate as needed. Provide rapid response to incidents and maintain a high level of vigilance across multiple security More ❯

Job Title: L1 SOC Analyst Our client is a well-established Managed Security Service Provider (MSSP) and a leading Fortinet and Microsoft partner, delivering high-impact cybersecurity solutions to clients in the defense, government, and financial services industries. Committed to nurturing talent, our client offers a comprehensive training and development program to help you advance from entry-level to … a fully-fledged SOC Analyst. As an L1 SOC Analyst, you’ll be at the frontline of cybersecurity defense. You’ll handle real-time triaging of 80-100 security alerts per shift, utilizing Fortinet and Microsoft SIEM/EDR technologies to detect and mitigate threats. This is an excellent opportunity for those passionate about cybersecurity, with hands-on experience … that builds a strong foundation for a lasting career in the field. Responsibilities: Monitor and triage security alerts (80-100 alerts per shift) using Fortinet and Microsoft SIEM/EDR tools. Analyse and prioritize alerts to identify potential threats and escalate as needed. Provide rapid response to incidents and maintain a high level of vigilance across multiple security More ❯

Job Title: Lead Security Solution Architect- PAM Location: Hybrid-Sheffield, UK (3Days/Week Onsite) Duration: 6months+ 550GBP/Day Inside IR35 Project Overview CLIENT is working on a strategic Identity and Access Management programme and is re-shaping the way Authentication, Federation, Privileged Access Management, Access Governance, Secrets Management and API Security is done across the bank. … controls and capabilities in privileged access for the Group and introducing the strategic password vaulting solution that will enable to meet strategic requirements. We are seeking an experienced Lead Security Solution Architect that can complement an existing team of Solution Architects to progress with designs of different components of the PAM solution and other supporting systems it will need … to integrate with as part of the end-to-end journey. Security Solution Architects manage end-to-end solution design and are responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Alongside the creation of high-level designs, Security Solution Architects will be required to record key More ❯

Job Title: Lead Security Solution Architect- PAM Location: Hybrid-Sheffield, UK (3Days/Week Onsite) Duration: 6months+ 550GBP/Day Inside IR35 Project Overview CLIENT is working on a strategic Identity and Access Management programme and is re-shaping the way Authentication, Federation, Privileged Access Management, Access Governance, Secrets Management and API Security is done across the bank. … controls and capabilities in privileged access for the Group and introducing the strategic password vaulting solution that will enable to meet strategic requirements. We are seeking an experienced Lead Security Solution Architect that can complement an existing team of Solution Architects to progress with designs of different components of the PAM solution and other supporting systems it will need … to integrate with as part of the end-to-end journey. Security Solution Architects manage end-to-end solution design and are responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Alongside the creation of high-level designs, Security Solution Architects will be required to record key More ❯

Contract Type: Contract (Inside IR35) Duration: 6 Months Day Rate: £382.50 per day Inside IR35 The Role We are seeking an experienced SOC Level 2 Analyst to join our Security Operations Center, supporting threat detection, investigation, and response across enterprise systems. You'll work with leading security technologies, responding to advanced threats and guiding L1 analysts in … a fast-paced, collaborative environment. Key Responsibilities Investigate and remediate complex security incidents including malware, ransomware, and APTs. Handle escalations from Tier 1 analysts and provide technical mentoring. Analyze and correlate alerts using SIEM and EDR tools such as Splunk and Microsoft Defender. Perform forensic analysis to identify root causes and recommend containment and recovery actions. Develop detection use … cases, improve processes, and maintain accurate incident documentation. Collaborate with IT and security teams to strengthen overall detection and response capability. Essential Skills & Experience 6-8 years in cybersecurity, with strong SOC or incident response experience. Proficient in SIEM (Splunk, ArcSight) and EDR (Defender, CrowdStrike, Carbon Black). Strong knowledge of digital forensics, malware analysis, and threat hunting. Skilled More ❯

audit readiness, collaborate with governance and risk teams, and integrate compliance findings into policy documentation. This is a hybrid, Nottingham-based role reporting to the Regional Head of Client Security Assurance Summary of Primary Responsibilities Manage ISO27001, Cyber Essentials/Plus, SOC2 accreditations Lead contract negotiations, re-wording, and redlining, with a preference for UK&I and EU regulatory … activities Collaborate with governance, compliance, and risk management teams Partner with policy and standards teams to integrate compliance findings into documentation Qualifications Experience with compliance, audit coordination, or information security Familiarity with ISO 27001/2, SOC, ISAE, PCI, NIST, CIS or similar benchmarks Experience with cloud platforms such as AWS, Azure, or GCP Experience with IT and security operations, including Windows/Linux/Unix systems, authentication, firewalls, and cloud security Project management skills using PMP, Agile, Scrum, or Lean Six Sigma methodologies Bachelor's degree in computer science, Information Security, or a related field, or equivalent experience Additional Information Benefits package includes: Great compensation package and discretionary bonus plan Core benefits include pension More ❯

SOC Analyst (L3) - Senior Incident Responder Location: Birmingham (Hybrid) Salary: Up to £70,000 (depending on experience) + bonus NOTE: Candidates for this role must be eligible for UK Security Clearance (SC). We’re looking for a hands-on L3 Senior Incident Responder who can lead on complex security investigations, manage high-severity incidents, and bring real … Act as the L3 escalation point , leading investigations into complex incidents escalated by L1/L2 analysts. Use Splunk and other SIEM tools to detect, investigate, and respond to security events. Perform detailed forensic analysis, root cause analysis, and malware investigation. Lead incident response activities end-to-end, ensuring containment, eradication, and recovery. Develop, refine, and own SOC use … date with the latest threats, vulnerabilities, and attack vectors, integrating threat intel into monitoring. What we’re looking for: Proven L3 SOC experience . 5+ years’ experience in IT security , ideally within a SOC/NOC environment. Strong knowledge and hands-on expertise with Splunk (other SIEM exposure beneficial). Solid understanding of DFIR principles, vulnerability management, and ethical More ❯

environment, automate everything with Terraform and Argo CD, and ensure our systems scale seamlessly as we onboard new enterprise clients. You’ll also own and mature the company’s security operations, working closely with leadership to operationalise our Zero Trust architecture, evolve our endpoint and identity security strategy, and ensure the company meets both technical and compliance … standards (ISO 27001:2022). You’ll manage and continuously improve our endpoint protection, remote management, and email security ecosystem - ensuring full visibility, patching, and threat detection across the organisation - while steering the roadmap toward a centralised, SCIM-based identity and access management framework. This is a hybrid role that blends platform engineering, security leadership, and compliance enablement. … You’ll be at the heart of how we scale infrastructure and security together - building systems that power AI products, protect enterprise data, and earn client trust at every level. What You’ll Do Work with an established Tech Team to Architect, build, and manage AWS-based infrastructure using Terraform as the single source of truth Lead and evolve More ❯

environment, automate everything with Terraform and Argo CD, and ensure our systems scale seamlessly as we onboard new enterprise clients. You’ll also own and mature the company’s security operations, working closely with leadership to operationalise our Zero Trust architecture, evolve our endpoint and identity security strategy, and ensure the company meets both technical and compliance … standards (ISO 27001:2022). You’ll manage and continuously improve our endpoint protection, remote management, and email security ecosystem - ensuring full visibility, patching, and threat detection across the organisation - while steering the roadmap toward a centralised, SCIM-based identity and access management framework. This is a hybrid role that blends platform engineering, security leadership, and compliance enablement. … You’ll be at the heart of how we scale infrastructure and security together - building systems that power AI products, protect enterprise data, and earn client trust at every level. What You’ll Do Work with an established Tech Team to Architect, build, and manage AWS-based infrastructure using Terraform as the single source of truth Lead and evolve More ❯

Job Title: Lead PAM Security Solution Architect Location: Sheffield (on-site 3 days per week) Salary/Rate: £537 per day inside IR35 Start Date: 09/10/2025 Job Type: Contract until end of the year with potential extension Company Introduction: We have an exciting opportunity now available with one of our sector-leading consultancy clients! They … are currently looking for a skilled Lead PAM Security Solution Architect that can complement an existing team of Solution Architects to progress with designs of different components of the PAM solution and other supporting systems it will need to integrate with as part of the end-to-end journey. Project Overview: Our client is working on a strategic Identity … and Access Management programme and is re-shaping the way Authentication, Federation, Privileged Access Management, Access Governance, Secrets Management and API Security is done across the bank. One of the pillars of that programme is Privileged Access Management (PAM). Our client is working on uplifting controls and capabilities in privileged access for the Group and introducing the strategic More ❯

Security Engineer Rate: £550/£600 per day (Inside IR35 via umbrella) Duration: 8 months initial Location: Bristol - hybrid once a week on site We're seeking a Security Engineer to support ongoing security operations while playing a key role in a major data centre migration click apply for full job details More ❯

execute our cybersecurity strategy, working across IT, digital, and regional teams to embed a strong cyber culture and robust defenses. Key responsibilities include: Strategic Leadership: Own and evolve the security roadmap, including tooling optimisation and risk management. Secure Design & Architecture: Provide expert guidance across IT projects and infrastructure. Operational Oversight: Define and deploy control baselines, templates, and standards. Tooling … Effectiveness: Manage and monitor security operations tools such as Defender, Sentinel, Tenable, and CASB. Incident Response: Lead triage, coordinate crisis responses, and oversee post-incident reviews. Documentation & Governance: Maintain hardening guides, architecture diagrams, and lead working groups. Cross-Regional Alignment: Foster collaboration and consistency across global cybersecurity efforts. What You Bring Degree or equivalent experience in Information Security. … Certifications such as Security+, CEH, CySA+, or Cloud Security Engineer. Extensive experience in cybersecurity, especially incident response and technical operations. Strong understanding of AWS and Azure cloud platforms. Familiarity with frameworks like NIST, ISO, COBIT, and OWASP. Proven success in leading and delivering security projects. Experience with PowerShell and automation. Consulting experience across IT and digital teams. Flexibility More ❯

execute our cybersecurity strategy, working across IT, digital, and regional teams to embed a strong cyber culture and robust defenses. Key responsibilities include: Strategic Leadership: Own and evolve the security roadmap, including tooling optimisation and risk management. Secure Design & Architecture: Provide expert guidance across IT projects and infrastructure. Operational Oversight: Define and deploy control baselines, templates, and standards. Tooling … Effectiveness: Manage and monitor security operations tools such as Defender, Sentinel, Tenable, and CASB. Incident Response: Lead triage, coordinate crisis responses, and oversee post-incident reviews. Documentation & Governance: Maintain hardening guides, architecture diagrams, and lead working groups. Cross-Regional Alignment: Foster collaboration and consistency across global cybersecurity efforts. What You Bring Essential: Degree or equivalent experience in Information … Security. Certifications such as Security+, CEH, CySA+, or Cloud Security Engineer. Extensive experience in cybersecurity, especially incident response and technical operations. Strong understanding of AWS and Azure cloud platforms. Familiarity with frameworks like NIST, ISO, COBIT, and OWASP. Proven success in leading and delivering security projects. Experience with PowerShell and automation. Consulting experience across IT and digital teams. More ❯

its technical capability, with ambitious growth plans and multiple acquisitions planned every year for the next 5 years (8 in the past 12 months). Reporting into the IT Operations Manager, you will oversee core infrastructure and networking. You'll work closely with managed service providers to ensure seamless operations and business continuity whilst taking a lead on … the Service Desk Team * Set up and configure Local Area Networks (LANs), including hardware deployment and support * Coordinate with third-party MSPs for network and infrastructure management * Manage firewall operations and connectivity with ISPs * Oversee network IP addressing and VPN setups * Support business continuity through proactive incident management * Rapid deployment of site connectivity solutions, including 4G routers * Monitor network … health and performance, ensuring high availability and resilience * Maintain inventory and configuration records for infrastructure and software * Collaborate with the Security Operations Center (SOC) on network security * Support software licensing and upgrades * Support data privacy and security audits * Provide technical support and mentoring * Maintain server rooms and ensure operational efficiency * Develop and implement business processes and More ❯

Lead Security Solution Architect Sheffield 3 days in the office is mandatory End Date: 30th November (renewal end of Nov) £567 Project Overview: The client is working on a strategic Identity and Access Management programme and is re-shaping the way Authentication, Federation, Privileged Access Management, Access Governance, Secrets Management and API Security is done across the bank. … controls and capabilities in privileged access for the Group and introducing the strategic password vaulting solution that will enable to meet strategic requirements. We are seeking an experienced Lead Security Solution Architect that can complement an existing team of Solution Architects to progress with designs of different components of the PAM solution and other supporting systems it will need … integrate with as part of the end-to-end journey. Principal Preferred Requirements: Cybersecurity Expertise: Significant experience and proven technical depth within one of the following domains of cybersecurity; security operations & incident response, threat & vulnerability management, identity & access management, cryptography, infrastructure, network, application, data, cloud. Broad background across information technology with the ability to communicate clearly with non More ❯