1 to 25 of 87 Security Operations Centre Jobs in the UK excluding London

with an employer contribution of 28.97% GBP Job grade Higher Executive Officer DDaT Senior/DDaT D(IT) Contract type Permanent Business area CH - Digital Services Type of role Security Other Working pattern Flexible working, Full-time Number of jobs available 1 Contents Location About the job Benefits Things you need to know Apply and further information Location Belfast … Northern Ireland, BT2 8BG : Cardiff, Wales, CF14 3UZ : Edinburgh, Scotland, EH8 8FT About the job Job summary We are looking for a technically skilled Senior Security Operations Specialist to help drive the transformation of our Security Operations Centre (SOC). This role is to collect and analyse security event data arising from activity across … the organisation, tune and improve rules generating security alerts, and follow up by investigating indicators of potentially malicious activity, escalating incidents or initiating responses. Companies House offers a flexible and welcoming culture that promotes a healthy work life balance as well as a proactive approach to wellbeing that allows us to be our best at work. We recognise that More ❯

Role Description: Security Analyst - Network & Endpoint/SOC Security Specialist We are looking for a highly capable and technically skilled Security Analyst to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The successful candidate will … have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat detection, model tuning, and behavioural analysis. Investigate anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and … update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC team members to ensure timely resolution and documentation. Threat Intelligence & Insider Threat Monitoring: Monitor threat feeds and manage Indicators of Compromise More ❯

Role Description: Security Analyst - Network & Endpoint/SOC Security Specialist We are looking for a highly capable and technically skilled Security Analyst to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The successful candidate will … have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat detection, model tuning, and behavioural analysis. Investigate anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and … update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC team members to ensure timely resolution and documentation. Threat Intelligence & Insider Threat Monitoring: Monitor threat feeds and manage Indicators of Compromise More ❯

Vacancy No VN140 Location City Dundee Location Country United Kingdom Business Unit Global Delivery Employment Type Full-Time About Systal We are Systal: a global managed network, cloud and security transformation specialist. We provide complex and strategic technology services for enterprise businesses, managing 200,000+ assets across 93 countries. These services help our customers achieve strategic technology transformation and … maximise the business value, security and innovative potential of their IT infrastructure Description We are seeking enthusiastic, dedicated and detail-oriented Level 1 SOC Analyst to join our UK based Security Operations Centre (SOC). The successful candidate will be responsible for the initial analysis and triage of security alerts, monitoring security systems, and … supporting the development of security event investigation and analysis within a large Organisational Environment. This role is critical in identifying and responding to security incidents to protect our customers information assets. Key Responsibilities Monitor Security Information & Event Management (SIEM) Tools: Continuously monitor SIEM tools to pro-actively engage with and investigate potential security incidents. Incident Identification More ❯

Contract Role – Security Analyst (Network & Endpoint) – England/Remote – 4+ Months Initial We are looking for a highly capable and technically skilled Security Analyst (Network & Endpoint) to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The … successful candidate will have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Role Overview: Job Title: Security Analyst (Network & Endpoint) Location: England/Remote Contract Type: Contract Duration: Contract till 31st Mar 26 Sector: Healthcare . Key Responsibilities: Network Detection & Response: Administer and optimise Darktrace for network threat … anomalies and escalate incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC More ❯

Job Description Who we're looking for The Schroders Information Security team provides the scale and brand of a large financial services organisation with the freedom to be creative and nimble in how we work. Our team members are exposed to a wide set of technologies, people and opportunities and we expect them to make continuous iterative improvement to … the defence of the firm. We aim to avoid large projects with unclear benefits and overly restricting the team member's remits on specific security disciplines. Finally, we put great importance on the reputation of the Information Security team across the firm and value unconditional collaboration, understanding of business aims and pragmatic risk taking based on a clear … we're suited and booted, that doesn't make us stuffy; our tech teams are friendlier and more informal than you might expect. The team The Schroders Global Information Security team protect the organisation's information assets against an evolving threat landscape. ~60 security professionals around the world enable Schroders to deliver services to clients in a secure More ❯

Security Operations Centre Analyst (SOC Analyst) Salary: £50,000 to £55,000 (based on candidate experience) Office Location: Portsmouth Hybrid Model: 3-4 days on-site (remaining days remote) Working Hours: Monday-Friday, Standard office hours (potentially some remote 24x7 on-call) Employment Type : Permanent About the Role: Join one of the best work-life organisations in … the IT Sector as part of their newly developing & rapidly expanding Cyber Security division. As a SOC Analyst, you'll be a vital part of a highly skilled Security Operations Centre team, responding to security alerts, investigating incidents, and helping to protect internal security and enterprise environments. 🔐 What You'll Do: Monitor SIEM, IDS …/IPS, EDR, and related tools for threat indicators. Utilise Security tools to monitor incidents and report threats. Analyse and investigate incidents, escalating when necessary. Conduct threat hunting and forensic analysis. Support rule development and tuning of detection systems. Assist with real-time detection, response, and containment. Maintain and improve SOC documentation and playbooks. Collaborate with team members and More ❯

Security Operations Centre Analyst (SOC Analyst) Salary: £50,000 to £55,000 (based on candidate experience) Office Location: Portsmouth Hybrid Model: 3-4 days on-site (remaining days remote) Working Hours: Monday-Friday, Standard office hours (potentially some remote 24x7 on-call) Employment Type : Permanent About the Role: Join one of the best work-life organisations in … the IT Sector as part of their newly developing & rapidly expanding Cyber Security division. As a SOC Analyst, you'll be a vital part of a highly skilled Security Operations Centre team, responding to security alerts, investigating incidents, and helping to protect internal security and enterprise environments. 🔐 What You'll Do: Monitor SIEM, IDS …/IPS, EDR, and related tools for threat indicators. Utilise Security tools to monitor incidents and report threats. Analyse and investigate incidents, escalating when necessary. Conduct threat hunting and forensic analysis. Support rule development and tuning of detection systems. Assist with real-time detection, response, and containment. Maintain and improve SOC documentation and playbooks. Collaborate with team members and More ❯

Security Operations Centre Analyst (SOC Analyst) Salary: £50,000 to £55,000 (based on candidate experience) Office Location: Portsmouth Hybrid Model: 3-4 days on-site (remaining days remote) Working Hours: Monday-Friday, Standard office hours (potentially some remote 24x7 on-call) Employment Type : Permanent About the Role: Join one of the best work-life … organisations in the IT Sector as part of their newly developing & rapidly expanding Cyber Security division. As a SOC Analyst, you'll be a vital part of a highly skilled Security Operations Centre team, responding to security alerts, investigating incidents, and helping to protect internal security and enterprise environments. What You'll Do: Monitor … SIEM, IDS/IPS, EDR, and related tools for threat indicators. Utilise Security tools to monitor incidents and report threats. Analyse and investigate incidents, escalating when necessary. Conduct threat hunting and forensic analysis. Support rule development and tuning of detection systems. Assist with real-time detection, response, and containment. Maintain and improve SOC documentation and playbooks. Collaborate with team More ❯

Role title: Information Security Manager Reports to: Head of Operational Resilience Location: Hub Location Hours of work: Full time, with 3 days per week in the office SMCR Function: Conduct Purpose of role Information Security Manager you will define and drive the information security strategy across our financial services business. You will lead a growing team of … security professionals to safeguard customer data, ensure compliance with regulatory frameworks, and build a culture of security awareness throughout the organisation. Your strategic vision and hands-on expertise will protect critical systems and support business growth. Key Responsibilities Develop and maintain the enterprise information security strategy aligned with business goals Lead the implementation and oversight of a … 3rd party managed Security Operations Centre (SOC) ensuring effective integration. Baseline and conduct regular reviews with an incoming 3rd party managed SOC and the security tools in the Cloud environment (Defender and Sentinel) Oversee security architecture, vulnerability management, incident response, and threat intelligence Lead security risk assessments and manage remediation plans for identified gaps More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

operations. In return, you’ll be at the cutting edge of new technology, learning new skills and gaining certifications that are recognised and respected across the industry. Our advanced Security Operations Centre (SOC) uses a combination of established solutions and cutting-edge internally developed technology to protect IT networks from a wide range of cyber threats on … all in-life services delivered to customers across a wide variety of market sectors. This is a shift based role which is responsible for analysing and responding to all security and service related events on a 24x7 basis. The role is ‘hands-on’, with a requirement to carry out cyber analysis . Working within the SOC, you will play … key role in helping to protect customer’s IT networks from cyber attack. Responsibilities : Monitor and analyse Intrusion Detection Systems (IDS), Anomaly Detection Systems (ADS), Firewall event logs, and Security Incident and Event Management (SIEM) toolset event logs to identify security attacks and threats for remediation/suppression. Assist in Computer Security Incident Response activities for large More ❯

operations. In return, you’ll be at the cutting edge of new technology, learning new skills and gaining certifications that are recognised and respected across the industry. Our advanced Security Operations Centre (SOC) uses a combination of established solutions and cutting-edge internally developed technology to protect IT networks from a wide range of cyber threats on … all in-life services delivered to customers across a wide variety of market sectors. This is a shift based role which is responsible for analysing and responding to all security and service related events on a 24x7 basis. The role is ‘hands-on’, with a requirement to carry out cyber analysis . Working within the SOC, you will play … key role in helping to protect customer’s IT networks from cyber attack. Responsibilities : Monitor and analyse Intrusion Detection Systems (IDS), Anomaly Detection Systems (ADS), Firewall event logs, and Security Incident and Event Management (SIEM) toolset event logs to identify security attacks and threats for remediation/suppression. Assist in Computer Security Incident Response activities for large More ❯

We are looking for a dynamic and experienced SOC Operations Manager to lead and shape the delivery of our Security Operations Centre (SOC) services. In this pivotal role, you will be responsible for ensuring the SOC operates at peak performance while driving continual improvement, with a strong focus on ITIL service management principles and full alignment … with CREST standards. Based on-site in Hemel Hempstead, this is an outstanding opportunity for a SOC Operations Manager with proven experience in monitoring and analysing security threats for multiple customers.You will oversee and mentor a skilled team of analysts, fostering a culture of continuous learning, champion best practices in threat detection and incident management, and play a … vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews, and foster continuous improvement. Oversee full lifecycle of security incidents from detection to resolution. Ensure compliance with SLAs and escalation protocols. Maintain and enhance incident response plans and procedures. Direct threat intelligence collection and analysis. Manage vulnerability assessments More ❯

our overall success. We invite you to share your perspectives, cultural backgrounds, and innovative ideas; we look forward to your contributions. Join the Vix team as an experienced Cloud Security Engineer! This on-site position in Manchester involves collaborating with our Cloud Operations team and the Security team to maintain robust security protocols. You'll play … a crucial role in guiding our technical teams to meet security standards, successfully passing security audits, and safeguarding both company and customer data. As the first point of contact for security incidents, your expertise will be essential in keeping our systems secure. We regret that this position is only available for UK citizens/Residents with indefinite … the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in Manchester. Responsibilities Evaluate and strengthen our overall security posture by performing continuous audits, risk assessments, threat modelling, and architecture reviews to ensure effective controls and adherence to regulatory standards. Consistently monitor and assess cloud environments for vulnerabilities More ❯

The Role: Leidos, a Global IT Solutions Provider specialising in large scale implementations involving science, engineering, and technology, require a Cyber Defence Analyst to work in their CSOC (Cyber Security Operations Centre) Team. The Cyber Defence Analyst will be expected to contribute to the growth and development of the CSOC. You will work with a wide variety … of stakeholders to ensure, the Leidos CSOC, a Defensive Cyber Security capability, can support a customers Cyber Resilience, protecting them with a 24 x 7 Threat Detection and Response service, mitigating their risk of Cyber Attack. The successful candidate will be able to demonstrate experience from a CSOC background or be able to demonstrate sufficient transferable Cyber Security … succeed in the role the candidate must be capable of working under pressure, delivering on multiple customer accounts and have an appetite to progress and develop their own Cyber Security career. The role will be working within the CSOC, adhering to a matrix managed environment, reporting operationally to the CSOC Lead and accountable to the CSOC Manager. What will More ❯

Cyber Security Assurance Manager Overview An exciting opportunity has arisen for an experienced Cyber Security Assurance Manager to take ownership of security certifications, audits, and assurance standards for a leading Security Operations Centre (SOC) environment. This role will focus on delivering and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type … Cyber Essentials Plus , and CREST . Manage sector-specific compliance such as PCI DSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance, processes, and operations. Maintain evidence collection and audit readiness for both internal and external audits. Translate assurance … assurance activities related to SOC services. Support RFIs, RFPs , and audit requests with accurate and professional certification documentation. Develop and maintain customer-facing assurance materials that demonstrate a strong security posture. Regulatory & Framework Alignment Monitor changes in global cybersecurity regulations and standards (e.g. NIST CSF , NCSC , NIS2 , GDPR ). Ensure SOC assurance aligns with evolving regulatory and industry expectations. More ❯

and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! The Cyber Security Incident Response Team (CSIRT), part of Counter Threat & Engineering (CT&E), responds to digital security threats and incidents globally from bp hubs in Houston, Sunbury, Kuala Lumpur, Pune … and Singapore. The Security Operations Center (SOC) raises incidents to CSIRT, which conducts long-term investigations using digital forensics, advanced techniques, and collaborating across bp. Team members must understand bps business segments and address a broad range of security-related questions. You will help ensure enterprise security, enabling safe and secure business operations as part … of this global team. Key Accountabilities Support the bp SOC as an escalation point for security events and incidents. Conduct digital forensic investigations on high-priority incidents to include functions such as host (disk and memory) forensics, network forensics and log analysis. Work across Digital Security and the bp business functions to partner on incidents and to ensure More ❯

and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! The Cyber Security Incident Response Team (CSIRT), part of Counter Threat & Engineering (CT&E), responds to digital security threats and incidents globally from bp hubs in Houston, Sunbury, Kuala Lumpur, Pune … and Singapore. The Security Operations Center (SOC) raises incidents to CSIRT, which conducts long-term investigations using digital forensics, advanced techniques, and collaborating across bp. Team members must understand bps business segments and address a broad range of security-related questions. You will help ensure enterprise security, enabling safe and secure business operations as part … of this global team. Key Accountabilities Support the bp SOC as an escalation point for security events and incidents. Conduct digital forensic investigations on high-priority incidents to include functions such as host (disk and memory) forensics, network forensics and log analysis. Work across Digital Security and the bp business functions to partner on incidents and to ensure More ❯

and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! The Cyber Security Incident Response Team (CSIRT), part of Counter Threat & Engineering (CT&E), responds to digital security threats and incidents globally from bp hubs in Houston, Sunbury, Kuala Lumpur, Pune … and Singapore. The Security Operations Center (SOC) raises incidents to CSIRT, which conducts long-term investigations using digital forensics, advanced techniques, and collaborating across bp. Team members must understand bps business segments and address a broad range of security-related questions. You will help ensure enterprise security, enabling safe and secure business operations as part … of this global team. Key Accountabilities Support the bp SOC as an escalation point for security events and incidents. Conduct digital forensic investigations on high-priority incidents to include functions such as host (disk and memory) forensics, network forensics and log analysis. Work across Digital Security and the bp business functions to partner on incidents and to ensure More ❯

Type: Permanent, Full-Time MCS Group is delighted to be partnering with a leading technology organisation to recruit three Junior SOC Analysts for their growing Belfast-based Security Operations Centre. This is an exceptional opportunity for graduates or early-career professionals looking to begin or advance their career within cybersecurity operations. The Opportunity This newly created SOC team … a key part of the organisation's continued investment in its Belfast operations. Joining a close-knit, technically skilled group, the successful candidates will gain hands-on experience across security monitoring, incident analysis, and response, with structured training, mentorship, and clear pathways for progression. You'll work alongside a senior team and technical leads in a collaborative, learning-focused … environment, developing the technical and professional skills needed to build a lasting career in cyber operations. Key Responsibilities Monitor systems, networks, and applications to detect potential security incidents. Investigate alerts and escalate as appropriate to senior team members. Support incident response activities and contribute to continuous improvement of processes. Maintain accurate reporting and documentation of SOC activities. Engage in More ❯

within the Critical National Infrastructure (CNI) energy sector, is looking to appoint an experienced Senior/Level 3 SOC Analyst. This is a senior escalation role within a dedicated Security Operations Centre, working at the forefront of protecting high-value national assets. The successful candidate will act as a technical authority for advanced incident response, threat hunting … and security engineering, with a strong focus on the Microsoft security stack. Key Responsibilities Serve as the primary escalation point for complex incidents and lead on incident response. Conduct in-depth threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance … to junior SOC analysts, enhancing team capability. Collaborate with IT and OT teams to address unique security requirements across CNI environments. Drive improvements in SOC operations, automation, and incident response processes. Monitor evolving threats and integrate threat intelligence into daily operations. Ensure adherence to industry standards and compliance frameworks (NIS2, CAF, ISO 27001). Skills & Experience Required Extensive More ❯

within the Critical National Infrastructure (CNI) energy sector, is looking to appoint an experienced Senior/Level 3 SOC Analyst. This is a senior escalation role within a dedicated Security Operations Centre, working at the forefront of protecting high-value national assets. The successful candidate will act as a technical authority for advanced incident response, threat hunting … and security engineering, with a strong focus on the Microsoft security stack. Key Responsibilities Serve as the primary escalation point for complex incidents and lead on incident response. Conduct in-depth threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance … to junior SOC analysts, enhancing team capability. Collaborate with IT and OT teams to address unique security requirements across CNI environments. Drive improvements in SOC operations, automation, and incident response processes. Monitor evolving threats and integrate threat intelligence into daily operations. Ensure adherence to industry standards and compliance frameworks (NIS2, CAF, ISO 27001). Skills & Experience Required Extensive More ❯