76 to 100 of 265 Security Operations Jobs in the UK excluding London

Senior SOC Analyst Location: Glasgow (hybrid) Salary: Up to £57,000 + package NOTE: Candidates for this role must be eligible for UK Security Clearance (SC). We are seeking a Senior SOC Analyst to join a growing Security Operations Centre team. This is a hybrid role based in Glasgow, offering the opportunity to take a leading … role in incident response and advanced security monitoring within a dynamic environment. As a Senior SOC Analyst, you will take ownership of escalated incidents from L1 and L2 analysts, leading investigations, performing root cause analysis, and guiding appropriate remediation actions. You will play a key role in developing SOC use cases, enhancing monitoring capabilities, and ensuring incident response follows … interaction, and leadership, requiring someone who thrives in a fast-moving environment and is comfortable working with both technical and non-technical stakeholders. Key Responsibilities Lead investigations into escalated security incidents, including detailed analysis and root cause identification. Monitor and optimise SIEM tools (Splunk, QRadar, or similar), ensuring accurate detection and effective alerting. Perform malware analysis, reverse engineering, and More ❯

Senior SOC Analyst Location: Glasgow (hybrid) Salary: Up to £57,000 + package NOTE: Candidates for this role must be eligible for UK Security Clearance (SC). We are seeking a Senior SOC Analyst to join a growing Security Operations Centre team. This is a hybrid role based in Glasgow, offering the opportunity to take a leading … role in incident response and advanced security monitoring within a dynamic environment. As a Senior SOC Analyst, you will take ownership of escalated incidents from L1 and L2 analysts, leading investigations, performing root cause analysis, and guiding appropriate remediation actions. You will play a key role in developing SOC use cases, enhancing monitoring capabilities, and ensuring incident response follows … interaction, and leadership, requiring someone who thrives in a fast-moving environment and is comfortable working with both technical and non-technical stakeholders. Key Responsibilities Lead investigations into escalated security incidents, including detailed analysis and root cause identification. Monitor and optimise SIEM tools (Splunk, QRadar, or similar), ensuring accurate detection and effective alerting. Perform malware analysis, reverse engineering, and More ❯

Senior SOC Analyst Location: Glasgow (hybrid) Salary: Up to £57,000 + package NOTE: Candidates for this role must be eligible for UK Security Clearance (SC). We are seeking a Senior SOC Analyst to join a growing Security Operations Centre team. This is a hybrid role based in Glasgow, offering the opportunity to take a leading … role in incident response and advanced security monitoring within a dynamic environment. As a Senior SOC Analyst, you will take ownership of escalated incidents from L1 and L2 analysts, leading investigations, performing root cause analysis, and guiding appropriate remediation actions. You will play a key role in developing SOC use cases, enhancing monitoring capabilities, and ensuring incident response follows … interaction, and leadership, requiring someone who thrives in a fast-moving environment and is comfortable working with both technical and non-technical stakeholders. Key Responsibilities Lead investigations into escalated security incidents, including detailed analysis and root cause identification. Monitor and optimise SIEM tools (Splunk, QRadar, or similar), ensuring accurate detection and effective alerting. Perform malware analysis, reverse engineering, and More ❯

Imperial Recruitment Group are delighted to announce that we are working in partnership with Sembcorp Energy UK who are recruiting for an IT-OT Security Specialist on a permanent basis. Salary: Competitive Contract Type: Permanent Location: Wilton International Hours: Full Time Job Purpose This role works alongside the Cyber and Security Manager, coordinating with the ITSM team, to … and Secure by design system. The ultimate goal is to build a unified team capable of performing all tasks in conjunction with the ITSM (NOC Manager) and Cyber and Security Manager (SOC Manager) to enable and underpin critical business services. This role is part of an out of hours support rota. Responsibilities: Accountable for the execution of Sembcorp s … information security program thereby keeping IT (Information Technology) and OT (Operational Technology) assets safe from internal and external threats. Accountable for ensuring the confidentiality, integrity, and availability of company information resources by implementing and maintaining security controls, performing comprehensive security incident response, engaging in proactive threat assessment, mitigation planning, incident trend analysis, and security architecture review. More ❯

Imperial Recruitment Group are delighted to announce that we are working in partnership with Sembcorp Energy UK who are recruiting for an IT-OT Security Specialist on a permanent basis. Salary: Competitive Contract Type: Permanent Location: Wilton International Hours: Full Time Job Purpose This role works alongside the Cyber and Security Manager, coordinating with the ITSM team, to … and Secure by design system. The ultimate goal is to build a unified team capable of performing all tasks in conjunction with the ITSM (NOC Manager) and Cyber and Security Manager (SOC Manager) to enable and underpin critical business services. This role is part of an out of hours support rota. Responsibilities: Accountable for the execution of Sembcorp’s … information security program thereby keeping IT (Information Technology) and OT (Operational Technology) assets safe from internal and external threats. Accountable for ensuring the confidentiality, integrity, and availability of company information resources by implementing and maintaining security controls, performing comprehensive security incident response, engaging in proactive threat assessment, mitigation planning, incident trend analysis, and security architecture review. More ❯

IT Security Specialist Counter Threat - HYBRID WORKING We have an exciting opportunity for an IT Security Specialist to join one of our biggest customers who are in the financial services sector. As an IT Security Specialist, you will support the day-to-day operations of the Counter Threat Unit, applying your strong background in infrastructure engineering … will contribute to maintaining secure systems across hybrid environments, leveraging your expertise in both on-premises and cloud platforms such as Azure, AWS, and GCP. Main Responsibilities as IT Security Specialist: Assist in gathering and analysing threat intelligence; monitor systems and networks to identify anomalies and support situational awareness. Follow established processes to help ensure compliance with legal, regulatory … and internal security requirements. Contribute to the investigation and resolution of security incidents, working in line with organisational procedures and business continuity plans. Operate tools and processes to identify vulnerabilities and support timely patching across systems and infrastructure. Configure and maintain security tools and systems (e.g. SIEM, firewalls) in accordance with defined policies and procedures. Support the More ❯

Cyber Security Lead £65,000£75,000 Location: Horsham | Hybrid working available Were looking for a hands-on Cyber Security Lead to take ownership of security operations, projects, and strategy within a growing, forward-thinking technology business. This role offers the chance to make a real impactshaping policies, strengthening defences, and driving security maturity across … the organisation. What youll be doing Leading the cyber security programmebalancing strategic initiatives with day-to-day operations Managing Microsoft 365 security tools, firewalls, networks, Wi-Fi, and email security platforms Acting as the main contact for our outsourced SOC and overseeing incident response Running pen tests, vulnerability scans, and regular security assessments Owning governance … risk, and compliance activities (ISO 27001, Cyber Essentials) Delivering supplier risk assessments and secure onboarding processes What were looking for Strong technical security knowledge across cloud platforms (Office 365, Azure, AWS) Experience working with or managing a SOC Practical 3rd line operational security background Familiarity with audits, compliance frameworks, and risk management Knowledge of pen testing, vulnerability scanning More ❯

Position Available: SOC Shift Lead Location: Hertfordshire (on-site, shift-based role) Salary: £65,000 - £72,000 + Benefits Experience needed: Proven background in Cyber Security, with experience leading teams within a Security Operations Centre (SOC) environment. Strong technical knowledge across network security, infrastructure, and operating systems. About the role: We are seeking an experienced SOC … Shift Leader to join a dynamic Cyber Security Operations Centre, providing critical oversight across a 24/7 secure environment. This role is pivotal in ensuring operational excellence, shift continuity, and the highest standards of threat detection and response. You'll work across three rotating teams of Tier 1 and Tier 2 analysts, delivering live operational oversight, quality … mentoring. In addition to hands-on SOC analyst duties, you will play a key role in developing team capability, enforcing standards, and ensuring seamless communication between shifts and wider security functions. This is a senior operational position that blends technical expertise with leadership responsibilities. You'll act as the first point of escalation for your shift, support analysts with More ❯

leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our clients critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role is … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

The success candidate will collaborate with various teams, both internal and external, to ensure a comprehensive understanding of the threat landscape and response to any incidents. Working within the security operations centre (SOC), the primary responsibility is to rapidly investigate and document cybersecurity incidents within the organisation. Key Responsibilities: (not limited to) Monitor and analyse network traffic, system … logs, and other data sources to identify potential security incidents. Investigate alerts and suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate the impact of the incident. Work with other teams, such as IT and security operations, to develop and implement … to determine the root cause of the incident and identify recommendations for improvement. Document and report incidents to the incident response team and other relevant stakeholders. Develop and implement security plans, policies, and training to prepare the organization to respond efficiently and effectively to cyber threats. Qualifications: Proven experience operating in a SOC or a related cyber security More ❯

The success candidate will collaborate with various teams, both internal and external, to ensure a comprehensive understanding of the threat landscape and response to any incidents. Working within the security operations centre (SOC), the primary responsibility is to rapidly investigate and document cybersecurity incidents within the organisation. Key Responsibilities: (not limited to) Monitor and analyse network traffic, system … logs, and other data sources to identify potential security incidents. Investigate alerts and suspicious activity to determine if an incident has occurred. Contain affected systems and networks to prevent the incident from spreading. Implement temporary measures to mitigate the impact of the incident. Work with other teams, such as IT and security operations, to develop and implement … to determine the root cause of the incident and identify recommendations for improvement. Document and report incidents to the incident response team and other relevant stakeholders. Develop and implement security plans, policies, and training to prepare the organization to respond efficiently and effectively to cyber threats. Qualifications: Proven experience operating in a SOC or a related cyber security More ❯

leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our client’s critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

Cyber Security Architect When registering to this job board you will be redirected to the online application form. Please ensure that this is completed in full in order that your application can be reviewed. Cyber Security Architect Work location:Remote Salary:Up to £120,000 Security Clearance:Must be eligible for SC Clearance (UK resident for the … and what youll be getting up to on a day-to-day basis: Are you a strategic thinker with a passion for protecting digital landscapes? Were looking for aCyber Security Architectto lead the design and implementation of robust security systems across diverse platforms. This is a unique opportunity to play a pivotal role in safeguarding our clients infrastructure … while mentoring the next generation of cybersecurity professionals. As aCyber Security Architect, youll be responsible for designing, implementing, and maintaining secure IT systems across hardware, software, and networks. Youll assess current security measures, identify vulnerabilities, and develop solutions to protect against evolving cyber threats. This role combines strategic oversight with hands-on technical expertise, requiring regular risk assessments More ❯

About the Role A leading global financial institution is seeking a skilled Cyber Security Engineer with deep expertise in the Microsoft Azure security stack to join its growing security operations team in Glasgow. This is a permanent position offering a flexible hybrid working model, with just one day per week required onsite. Key Responsibilities Design, implement … and manage security controls across Azure cloud environments. Monitor and respond to security incidents, ensuring rapid containment and resolution. Collaborate with cloud architects and infrastructure teams to embed security best practices. Conduct risk assessments and vulnerability scans using Azure-native tools. Develop and maintain security policies, procedures, and documentation. Stay current with emerging threats and recommend … proactive security measures. Required Skills & Experience Proven experience in a cyber security engineering role, ideally within enterprise or financial environments. Strong hands-on expertise with the Azure security stack , including: Microsoft Defender for Cloud Sentinel (SIEM) Azure Security Center Azure Policy & Role-Based Access Control (RBAC) Microsoft Purview and Compliance tools Familiarity with security frameworks More ❯

About the Role A leading global financial institution is seeking a skilled Cyber Security Engineer with deep expertise in the Microsoft Azure security stack to join its growing security operations team in Glasgow. This is a permanent position offering a flexible hybrid working model, with just one day per week required onsite. Key Responsibilities Design, implement … and manage security controls across Azure cloud environments. Monitor and respond to security incidents, ensuring rapid containment and resolution. Collaborate with cloud architects and infrastructure teams to embed security best practices. Conduct risk assessments and vulnerability scans using Azure-native tools. Develop and maintain security policies, procedures, and documentation. Stay current with emerging threats and recommend … proactive security measures. Required Skills & Experience Proven experience in a cyber security engineering role, ideally within enterprise or financial environments. Strong hands-on expertise with the Azure security stack , including: Microsoft Defender for Cloud Sentinel (SIEM) Azure Security Center Azure Policy & Role-Based Access Control (RBAC) Microsoft Purview and Compliance tools Familiarity with security frameworks More ❯

Job summary A fantastic opportunity has arisen for a motivated and organised Director of Assurance & Cyber Security to join the Group Digital Services Team at Manchester Foundation Trust (MFT). The Director of Assurance and Cyber Security (and CISO) will be responsible for developing and implementing the Trust's information Cyber Security strategy in line with the … and supportive team and will be well placed to develop your skills and knowledge. Main duties of the job Provide a clear vision and direction for information and Cyber Security operations, promoting continuous improvement, innovation, and agility in service delivery, whilst working in consultation and collaboration with colleagues across the Trust to ensure that all information and cyber … security policies are implemented and enforced. Responsible for overseeing a range of technical and process security controls and leading a programme of continuous improvement in response to changing security threats and risk. Leading and developing a specialist team to provide a progressive service developing innovative, future focused information and Cyber Security capabilities that can address the More ❯

Infrastructure Security Engineer - Application/Network experience We are currently recruiting for a Infrastructure Security Engineer on a 6 month initial contract. Hybrid basis (2-3 days), office location being London. They are looking for a candidate to take responsibility for leading, guiding, supporting and delivering secure architectural design for the group cyber security maturity programme. They … are also looking for a candidate who is able to provide advice and recommendations for the programme. Key Skills Support the integration of new cyber security technologies that meets the next generation threats and can be adopted by the group globally You will be required to travel to the local sites, data centre or multiple offices location in order … to complete your tasks for off the network countries. Support global cyber security team to ensure open Continuous Security Improvement Programme (CSIP's) are managed effectively up to closure Information Security Management System (Infrastructure Security Operations). Azure cloud infrastructure and configuration. System Centre Configuration Manager, Operations Manager and Virtual Machine Manager. Microsoft Exchange More ❯

be responsible for the day to day monitoring using various SIEM Tools (Qradar, Sentinel & LogRhythm). Some of the responsibilities that come along with this role include the following: Security Analytics Incident investigation, triage and escalation Threat monitoring and response Trend reporting Rule tuning and continual service improvement The role involves working alongside other team members including SOC engineers … and Service Managers. Skills required: Microsoft Certified: Security Operations Analyst Associate Certification (SC200) is a mandatory requirement for role fulfilment Experience working with SIEM technologies and security tooling An understanding of IT Infrastructure and Networking An understanding of vulnerability and threat management An understanding of the incident response lifecycle T he ability to work in a close … team and independently The ability to be adaptable to a high pace changeable workload An interest in security and threat management Benefits Include: Contributory pension scheme Employee Assistance Program Medical and Dental cover 22 days holiday + bank holidays Maternity Pay/Shared Parental leave and paternity leave Sick pay Suitable Candidates should submit CVs in the first instance. More ❯

be responsible for the day to day monitoring using various SIEM Tools (Qradar, Sentinel & LogRhythm). Some of the responsibilities that come along with this role include the following: Security Analytics Incident investigation, triage and escalation Threat monitoring and response Trend reporting Rule tuning and continual service improvement The role involves working alongside other team members including SOC engineers … and Service Managers. Skills required: Microsoft Certified: Security Operations Analyst Associate Certification (SC200) is a mandatory requirement for role fulfilment Experience working with SIEM technologies and security tooling An understanding of IT Infrastructure and Networking An understanding of vulnerability and threat management An understanding of the incident response lifecycle T he ability to work in a close … team and independently The ability to be adaptable to a high pace changeable workload An interest in security and threat management Benefits Include: Contributory pension scheme Employee Assistance Program Medical and Dental cover 22 days holiday + bank holidays Maternity Pay/Shared Parental leave and paternity leave Sick pay Suitable Candidates should submit CVs in the first instance. More ❯

be responsible for the day to day monitoring using various SIEM Tools (Qradar, Sentinel & LogRhythm). Some of the responsibilities that come along with this role include the following: Security Analytics Incident investigation, triage and escalation Threat monitoring and response Trend reporting Rule tuning and continual service improvement The role involves working alongside other team members including SOC engineers … and Service Managers. Skills required: Microsoft Certified: Security Operations Analyst Associate Certification (SC200) is a mandatory requirement for role fulfilment Experience working with SIEM technologies and security tooling An understanding of IT Infrastructure and Networking An understanding of vulnerability and threat management An understanding of the incident response lifecycle T he ability to work in a close … team and independently The ability to be adaptable to a high pace changeable workload An interest in security and threat management Benefits Include: Contributory pension scheme Employee Assistance Program Medical and Dental cover 22 days holiday + bank holidays Maternity Pay/Shared Parental leave and paternity leave Sick pay Suitable Candidates should submit CVs in the first instance. More ❯

top-tier consultancy that operates at the sharp end of cybersecurity within defence, aerospace, and national security.We’re looking for an experienced SOC Analyst to join our high-performing Security Operations Centre in Farnborough. This is a unique chance to contribute to real-world cyber defence, on country critical technology, pitting your SCO skills against state of the … art attacks.As the SOC Analyst, you will: Monitoring and triaging alerts across secure client environments Investigating threats using logs, network traffic, and endpoint telemetry Supporting response efforts during live security incidents Improving detection rules, playbooks, and tooling with MITRE ATT&CK-driven enhancements Producing clear incident reports for both technical and non-technical audiences Contributing to threat intelligence initiatives … Staying ahead of the curve on emerging threats, tactics, and techniques To secure this SOC role: Proven experience in a Security Operations Centre (SOC) environment Hands-on knowledge of SIEM tools (Microsoft Sentinel, Splunk, etc.) Familiarity with MITRE ATT&CK and threat detection methodologies Strong analytical mindset with log, endpoint, and network analysis skills Understanding of network protocols More ❯

Benefits Are you passionate about cybersecurity and thrive in complex, high-stakes environments? We’re looking for a SOC Solution Engineer to help design, implement, and evolve cutting-edge security operations solutions across enterprise-scale environments. What You’ll Be Doing: Architecting and deploying SOC solutions tailored to client needs, with a focus on scalability, automation, and resilience. … Collaborating with security analysts, engineers, and stakeholders to ensure seamless integration of tools and workflows. Leading technical discussions and providing guidance on best practices for threat detection, incident response, and log management. Supporting pre-sales engagements with technical expertise and solution design input. Staying ahead of emerging threats and technologies to continuously improve SOC capabilities . What You’ll … Bring: Strong experience in designing and implementing SOC platforms (e.g., SIEM, SOAR, EDR). Deep understanding of security operations workflows, threat intelligence, and incident response. Hands-on experience with tools like Splunk, Sentinel, QRadar, or similar. Ability to engage with both technical and non-technical stakeholders. Familiarity with cloud environments (Azure, AWS, GCP) and hybrid architectures. Bonus Points More ❯

Benefits Are you passionate about cybersecurity and thrive in complex, high-stakes environments? We’re looking for a SOC Solution Engineer to help design, implement, and evolve cutting-edge security operations solutions across enterprise-scale environments. What You’ll Be Doing: Architecting and deploying SOC solutions tailored to client needs, with a focus on scalability, automation, and resilience. … Collaborating with security analysts, engineers, and stakeholders to ensure seamless integration of tools and workflows. Leading technical discussions and providing guidance on best practices for threat detection, incident response, and log management. Supporting pre-sales engagements with technical expertise and solution design input. Staying ahead of emerging threats and technologies to continuously improve SOC capabilities . What You’ll … Bring: Strong experience in designing and implementing SOC platforms (e.g., SIEM, SOAR, EDR). Deep understanding of security operations workflows, threat intelligence, and incident response. Hands-on experience with tools like Splunk, Sentinel, QRadar, or similar. Ability to engage with both technical and non-technical stakeholders. Familiarity with cloud environments (Azure, AWS, GCP) and hybrid architectures. Bonus Points More ❯

Benefits Are you passionate about cybersecurity and thrive in complex, high-stakes environments? We’re looking for a SOC Solution Engineer to help design, implement, and evolve cutting-edge security operations solutions across enterprise-scale environments. What You’ll Be Doing: Architecting and deploying SOC solutions tailored to client needs, with a focus on scalability, automation, and resilience. … Collaborating with security analysts, engineers, and stakeholders to ensure seamless integration of tools and workflows. Leading technical discussions and providing guidance on best practices for threat detection, incident response, and log management. Supporting pre-sales engagements with technical expertise and solution design input. Staying ahead of emerging threats and technologies to continuously improve SOC capabilities . What You’ll … Bring: Strong experience in designing and implementing SOC platforms (e.g., SIEM, SOAR, EDR). Deep understanding of security operations workflows, threat intelligence, and incident response. Hands-on experience with tools like Splunk, Sentinel, QRadar, or similar. Ability to engage with both technical and non-technical stakeholders. Familiarity with cloud environments (Azure, AWS, GCP) and hybrid architectures. Bonus Points More ❯

of Cambridge as they grow their IT Team. Key Responsibilities Act as the final escalation point for technical support and perform complex troubleshooting. Oversee all IT systems, infrastructure, and security operations, including Azure, Office 365, backups, and virtual environments. Manage third-party providers including a Managed Network Services Provider and Security Operations Centre. Lead IT projects … and ensure compliance with best practices. Experience Required Proven experience managing Microsoft environments: Windows OS, SQL Server, Office 365, Azure, Active Directory, and Microsoft Entra. Strong understanding of IT security threats, tools, and best practices. Experience with infrastructure, networks, system storage, and IT documentation. Excellent communication and leadership skills, with the ability to influence and collaborate at all levels. More ❯