26 to 50 of 76 Security Operations Centre Jobs in the UK excluding London

business, driving valuable insight, guidance and feedback back into Palo Alto Networks. You will work across product teams to deliver this feedback Your Impact Drive innovation within the modern Security Operations Center (SOC) by developing content and capabilities aligned with Cortex and detection-focused workflows. Collaborate with legal, sales, product, and customer-facing teams to translate security operations needs into actionable product improvements. Lead and coordinate cross-functional initiatives across product management, engineering, and field teams for high-impact security use cases. Build high-quality content for the Cortex Marketplace including detection rules, parsers, dashboards, and other SOC-enabling artifacts. Provide structured product feedback to influence roadmap decisions based on real-world SecOps challenges … and opportunities. Create detailed documentation and usage guides tailored for analysts, detection engineers, and security practitioners. Promote operational excellence by designing scalable detection and response workflows grounded in industry best practices and threat-informed defense. Qualifications Your Experience Ability to inspire and align teams across functions, paired with strong execution and delivery skills. 2+ years of experience in security More ❯

Senior Security Engineer £80,000 + Bonus + Benefits + Training Hybrid (Portsmouth, UK) Company & Role This is an opportunity to join a fast growing, people first global service provider that is redefining what excellence in cyber defence looks like. With over $1B in global revenue, this organisation delivers end to end IT outsourcing and managed services to customers … across enterprise, public sector and fast growing scale ups. Its Security Practice protects clients through capabilities including Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a consulting led Security Advisory practice. As a Senior Security Engineer, you will be responsible for designing, implementing and maintaining the tools, platforms and … integrations that power the company’s Security Operations Centre and Cyber Defence services. This role blends hands on technical engineering with solution design and automation, ideal for someone who thrives on solving complex problems, improving processes and enabling analysts to detect and respond faster. Why This Role Stands Out • Join a $1B global IT and Cyber Defence More ❯

Senior Security Engineer £80,000 + Bonus + Benefits + Training Hybrid (Portsmouth, UK) Company & Role This is an opportunity to join a fast growing, people first global service provider that is redefining what excellence in cyber defence looks like. With over $1B in global revenue, this organisation delivers end to end IT outsourcing and managed services to customers … across enterprise, public sector and fast growing scale ups. Its Security Practice protects clients through capabilities including Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a consulting led Security Advisory practice. As a Senior Security Engineer, you will be responsible for designing, implementing and maintaining the tools, platforms and … integrations that power the company’s Security Operations Centre and Cyber Defence services. This role blends hands on technical engineering with solution design and automation, ideal for someone who thrives on solving complex problems, improving processes and enabling analysts to detect and respond faster. Why This Role Stands Out • Join a $1B global IT and Cyber Defence More ❯

Cyber Security Consultant- Remote An exciting opportunity has arisen for a Cyber Security Consultant who can provide practical advice and hands-on support to improve security project and manage alerts. We’re seeking a specialist who has expertise in Microsoft Defender & Sentinel who can turn alert data into actionable intelligence, identify opportunities for optimisation, and advance the … customer’s SOC maturity through data-driven improvements and Sentinel/Defender best practices. As a Cyber Security Consultant, your mission is clear; be technically proficient and provide practical solutions rather than theoretical advice. The consultant should be able to work closely with the team to implement changes and improve security. Cyber Security Consultant’s Responsibilities: Develop and … tools such as Advanced Hunting, Threat Analytics, and Attack Surface Reduction to strengthen detection and response. Recommend SOC process improvements through data-driven insights and best practice alignment. Cyber Security Consultant’s Required Knowledge and Experience: Extensive experience with Microsoft Defender, Sentinel, and possibly working in a Security Operations Centre (SOC). Experience extracting alert data More ❯

Job Posting: Cyber Security Assurance Manager Location: Portsmouth (Hybrid) Salary: £50,000 - £65,000 DOE Are You Ready to Lead the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment. In this crucial … role, you will ensure that the SOC maintains its commitment to best-in-class standards through internationally recognised security certifications and industry-wide assurance frameworks, delivering confidence to clients and meeting regulatory expectations. As a core team member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors … to showcase security credentials that differentiate our SOC from the competition. If you're skilled in blending technical insight with customer-focused communication while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST More ❯

Defence capabilities? This role offers the opportunity to contribute to the development and optimisation of advanced threat detection systems within a highly secure environment. You will work within a Security Operations Centre (SOC), designing and maintaining detection logic across SIEM (Security Information and Event Management) and EDR (Endpoint Detection and Response) platforms. Your work will help … positives, and improve overall detection coverage across networks, endpoints, cloud services, and identity platforms. Job Description As a SOC Detection Engineer, you will be part of a specialist cyber operations team responsible for implementing and maintaining high-fidelity detection capabilities. You will contribute to the development of detection rules, threat hunting activities, and automation workflows to support incident response … and continuous improvement. Key responsibilities include: Designing and tuning detection rules and use cases in SIEM and EDR platforms Monitoring and investigating security alerts to identify potential threats Conducting proactive threat hunting using MITRE ATT&CK and threat intelligence sources Collaborating with incident response teams to support investigations and containment Enhancing detection coverage across network, endpoint, cloud, and identity More ❯

Defence capabilities? This role offers the opportunity to contribute to the development and optimisation of advanced threat detection systems within a highly secure environment. You will work within a Security Operations Centre (SOC), designing and maintaining detection logic across SIEM (Security Information and Event Management) and EDR (Endpoint Detection and Response) platforms. Your work will help … positives, and improve overall detection coverage across networks, endpoints, cloud services, and identity platforms. Job Description As a SOC Detection Engineer, you will be part of a specialist cyber operations team responsible for implementing and maintaining high-fidelity detection capabilities. You will contribute to the development of detection rules, threat hunting activities, and automation workflows to support incident response … and continuous improvement. Key responsibilities include: Designing and tuning detection rules and use cases in SIEM and EDR platforms Monitoring and investigating security alerts to identify potential threats Conducting proactive threat hunting using MITRE ATT&CK and threat intelligence sources Collaborating with incident response teams to support investigations and containment Enhancing detection coverage across network, endpoint, cloud, and identity More ❯

our customers with our personalised approach, highly dedicated and professional team, rapid mobilization of technology projects, and delivery of tangible benefits across productivity, mobility and security. POSITION SUMMARY Cyber Security Engineer providing engineering capability to the cybersecurity services team, being instrumental in the development of the Security Operations Centre (SOC), and supporting and mentoring other members … what data tiering and appropriate filtering to ensure a cost effective solution for clients. Assist in the onboarding and continued development of SOC clients and various aspects of their security stack into the SIEM. Work closely with management to develop service improvement plans Integrate various data sources into Sentinel for use in platform such as NGFW, IAM solutions and … network telemetary. Act as an escalation point during peaks in demand and as and when required Work closely with Information security management and senior security consultants to develop internal security posture, policies and controls in accordance with the organisations ISO 27001 certification. EXPERIENCE A minimum of 3 years experience working within as a Microsoft Sentinel Engineer Hands More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting, responding … to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Join MBDA's cutting-edge cyber security team and help protect some of the most advanced defence technologies in the world. As a Cyber Security Engineer, you'll be at the forefront of innovation-enhancing the visibility, automation, and efficiency of our Security Operations Centre (SOC). This role is perfect for someone who thrives … contribute to a mission that truly matters. Salary : Circa £50,000 - £60,000 depending on experience Dynamic (hybrid) working : 2 days per week on-site due to workload classification Security Clearance : British Citizen or a Dual UK national with British citizenship Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a … minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS), which are managed by the MBDA Personnel Security Team. What we can offer you: Company bonus : Up to £2,500 (based on company performance and will vary year to year) Pension : maximum total (employer and employee) contribution of up More ❯

This is a prime opportunity to design and engineer the core platforms behind a rapidly growing Security Operations Centre (SOC), blending hands-on technical work with automation and solution design. You’ll collaborate with analysts, architects, and customers to build reliable, scalable systems that accelerate threat detection and response, all in a collaborative culture that invests in … your growth, wellbeing, and career progression. Job Title: Senior Security Engineer Job Type: Permanent Salary: Up to £78,500 (DOE) + Bonus Working arrangement: Hybrid Office Location: Portsmouth As a Senior Security Engineer, you will: Design, deploy, and maintain core SOC technologies (SIEM, EDR, SOAR, threat intelligence, and logging infrastructure). Develop and optimise detection use cases, correlation … Support client onboarding, threat hunting, detection engineering, and process improvements. Mentor junior engineers and maintain documentation, diagrams, and standards. Required Experience/Skills: 5 years’ experience in a SOC, security engineering, or cyber operations role. Strong hands-on experience with SIEM or EDR platforms (e.g., Microsoft Sentinel, Splunk, Defender, CrowdStrike, Elastic). Expertise in building and tuning detection More ❯

Stevenage Join MBDA's cutting-edge cyber security team and help protect some of the most advanced defence technologies in the world. As a Cyber Security Engineer, you'll be at the forefront of innovation—enhancing the visibility, automation, and efficiency of our Security Operations Centre (SOC). This role is perfect for someone who … contribute to a mission that truly matters. Salary : Circa £50,000 – £60,000 depending on experience Dynamic (hybrid) working :2 days per week on-site due to workload classification Security Clearance : British Citizen or a Dual UK national with British citizenship Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a … minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS), which are managed by the MBDA Personnel Security Team. What we can offer you: Company bonus : Up to £2,500 (based on company performance and will vary year to year) Pension : maximum total (employer and employee) contribution of up More ❯

days on-site per week) Permanent Up to £78,500 + bonus This is a prime opportunity to design and engineer the core platforms behind a rapidly growing Security Operations Centre (SOC), blending hands-on technical work with automation and solution design. You’ll collaborate with analysts, architects, and customers to build reliable, scalable systems that accelerate … threat detection and response, all in a collaborative culture that invests in your growth, wellbeing, and career progression. Job Title: Senior Security Engineer Job Type: Permanent Salary: Up to £78,500 (DOE) + Bonus Working arrangement: Hybrid Office Location: Portsmouth As a Senior Security Engineer, you will: Design, deploy, and maintain core SOC technologies (SIEM, EDR, SOAR, threat … Support client onboarding, threat hunting, detection engineering, and process improvements. Mentor junior engineers and maintain documentation, diagrams, and standards. Required Experience/Skills: 5 years’ experience in a SOC, security engineering, or cyber operations role. Strong hands-on experience with SIEM or EDR platforms (e.g., Microsoft Sentinel, Splunk, Defender, CrowdStrike, Elastic). Expertise in building and tuning detection More ❯

Head of IT Security Incident and Threat Management Package to £117k DOE + 15% Bonus + Benefits Based Birmingham This is an exciting opportunity to take a strategic leadership role at the forefront of cybersecurity. As Head of IT Security Incident and Threat Management, you will shape and lead the organization s global response to cyber threats ensuring … and incident response strategy, working with innovative cutting-edge tools, partners, and experts. The successful candidate will lead and develop a talented in-house team, while managing the external Security Operations Centre (SOC) to ensure proactive defence and rapid response to incidents. Key Responsibilities Develop and execute incident response and threat management strategies. Lead investigations, resolution, and … post-incident analysis of security incidents. Oversee and mentor a team of three direct reports, ensuring their growth and performance. Conduct security audits and vulnerability assessments to strengthen defences. Collaborate across departments to embed robust security practices. Manage the relationship with the external SOC, ensuring proactive threat detection and response. Stay updated on industry trends and represent More ❯

Head of IT Security Incident and Threat Management Package to £117k DOE + 15% Bonus + Benefits Based Birmingham This is an exciting opportunity to take a strategic leadership role at the forefront of cybersecurity. As Head of IT Security Incident and Threat Management, you will shape and lead the organization’s global response to cyber threats — ensuring … and incident response strategy, working with innovative cutting-edge tools, partners, and experts. The successful candidate will lead and develop a talented in-house team, while managing the external Security Operations Centre (SOC) to ensure proactive defence and rapid response to incidents. Key Responsibilities Develop and execute incident response and threat management strategies. Lead investigations, resolution, and … post-incident analysis of security incidents. Oversee and mentor a team of three direct reports, ensuring their growth and performance. Conduct security audits and vulnerability assessments to strengthen defences. Collaborate across departments to embed robust security practices. Manage the relationship with the external SOC, ensuring proactive threat detection and response. Stay updated on industry trends and represent More ❯

Birmingham or Glasgow | Up to £71,000 + Bonus + Benefits | Hybrid | SC Clearance Required or Eligible Our client – a global technology and services firm – is expanding its Managed Security Operations Centre and seeking a Senior Incident Responder (L3 SOC Analyst) to take the lead on complex security incidents, investigations, and threat response. This is a … hands-on, senior-level role at the sharp end of cybersecurity operations, working on major incidents across enterprise environments, guiding L1/L2 analysts, and collaborating with client stakeholders to deliver best-in-class detection, response, and remediation. The Role You’ll take ownership of escalated incidents, conduct detailed investigations, and ensure effective containment and eradication of threats. You … ll act as the escalation point within the SOC, providing technical expertise, mentoring junior analysts, and driving continuous improvement of incident response processes. Key Responsibilities: Lead complex investigations into security incidents and breaches. Perform root cause analysis and provide actionable recommendations. Conduct static and dynamic malware analysis; reverse engineer to identify IOCs. Monitor, tune, and optimise SIEM tools Develop More ❯

Job Title: Cyber Security Analyst (Contract) Contract Rate: Negotiable (Inside IR35) Shift Pattern (Day/Night) Location: Andover, Hampshire Security Clearance: ** Current valid SC clearance required ** Eligibility: ** UK eyes only ** About the Role: This is a brilliant opportunity to join our growing team at CND. We are looking for an experienced Security Analyst. This role offers a … great shift pattern, ensuring you regularly have 5 days off and at least 2 weekends off per month. Key Responsibilities: Deliver excellent and thorough security analysis, taking SIEM output and actioning it accordingly. Push for improvements across the overall monitoring capability. Engage with a wide range of stakeholders, with varying levels of technical understanding. Be flexible on location; some … of our clients will need provision on site, balanced to ensure your wellbeing. Suggest ideas for improving CND’s own internal security posture. Be proactive with client requirements, offering guidance and input to highly technical challenges. Essential Skills: Experience working with SIEM tools such as ArcSight, Splunk, LogRhythm, or AlienVault. Understanding of how to get the best from available More ❯

Job Title: Cyber Security Analyst (Contract) Contract Rate: Negotiable (Inside IR35) Shift Pattern (Day/Night) Location: Andover, Hampshire Security Clearance: ** Current valid SC clearance required ** Eligibility: ** UK eyes only ** About the Role: This is a brilliant opportunity to join our growing team at CND. We are looking for an experienced Security Analyst. This role offers a … great shift pattern, ensuring you regularly have 5 days off and at least 2 weekends off per month. Key Responsibilities: Deliver excellent and thorough security analysis, taking SIEM output and actioning it accordingly. Push for improvements across the overall monitoring capability. Engage with a wide range of stakeholders, with varying levels of technical understanding. Be flexible on location; some … of our clients will need provision on site, balanced to ensure your wellbeing. Suggest ideas for improving CND’s own internal security posture. Be proactive with client requirements, offering guidance and input to highly technical challenges. Essential Skills: Experience working with SIEM tools such as ArcSight, Splunk, LogRhythm, or AlienVault. Understanding of how to get the best from available More ❯

Job Title: Cyber Security Analyst (Contract) Contract Rate: Negotiable (Inside IR35) Shift Pattern (Day/Night) Location: Andover, Hampshire Security Clearance: ** Current valid SC clearance required ** Eligibility: ** UK eyes only ** About the Role: This is a brilliant opportunity to join our growing team at CND. We are looking for an experienced Security Analyst. This role offers a … great shift pattern, ensuring you regularly have 5 days off and at least 2 weekends off per month. Key Responsibilities: Deliver excellent and thorough security analysis, taking SIEM output and actioning it accordingly. Push for improvements across the overall monitoring capability. Engage with a wide range of stakeholders, with varying levels of technical understanding. Be flexible on location; some … of our clients will need provision on site, balanced to ensure your wellbeing. Suggest ideas for improving CND’s own internal security posture. Be proactive with client requirements, offering guidance and input to highly technical challenges. Essential Skills: Experience working with SIEM tools such as ArcSight, Splunk, LogRhythm, or AlienVault. Understanding of how to get the best from available More ❯

Birmingham or Glasgow | Up to £71,000 + Bonus + Benefits | Hybrid | SC Clearance Required or Eligible Our client - a global technology and services firm - is expanding its Managed Security Operations Centre and seeking a Senior Incident Responder (L3 SOC Analyst) to take the lead on complex security incidents, investigations, and threat response. This is a … hands-on, senior-level role at the sharp end of cybersecurity operations, working on major incidents across enterprise environments, guiding L1/L2 analysts, and collaborating with client stakeholders to deliver best-in-class detection, response, and remediation. The Role You'll take ownership of escalated incidents, conduct detailed investigations, and ensure effective containment and eradication of threats. You … ll act as the escalation point within the SOC, providing technical expertise, mentoring junior analysts, and driving continuous improvement of incident response processes. Key Responsibilities: Lead complex investigations into security incidents and breaches. Perform root cause analysis and provide actionable recommendations. Conduct static and dynamic malware analysis; reverse engineer to identify IOCs. Monitor, tune, and optimise SIEM tools - particularly More ❯

leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our clients critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role is … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our client’s critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

Engineer to join the global IT team. The successful candidate will play a key role in designing, implementing, maintaining, and supporting the entire IT infrastructure, which supports the business operations across multiple international locations. This is a practical role requiring a combination of deep technical expertise in Microsoft, VMware, and Cloud technologies, strategic thinking, and the ability to work … and cloud-based systems. Manage and administer our hybrid cloud environment, with a strong focus on Microsoft Azure, Entra ID, and Azure MDM for modern device management. Ensure the security of our infrastructure and data by managing on-premises and cloud security controls and working closely with the Security Operations Centre (SoC) to action vulnerability … as well as core Microsoft services (AD, GPO, DNS, NPS/Radius, CA, SMTP Relay), and our extensive VMware vSphere/vCenter virtualisation platform. Administer and optimise our System Centre Configuration Manager (SCCM) hierarchy, including Primary/Secondary sites, Distribution Points, Cloud Management Gateway (CMG), and Azure integration for global software deployment and updates. Manage and maintain our VDI More ❯