51 to 73 of 73 Security Operations Centre Jobs in the UK excluding London

Remote (Initial 1 Week Induction in Birmingham) Salary: £35,000 - £45,000 Network IT are looking for a Service Delivery Analyst, someone who has exceptional experience in a SOC (Security Operations Centre) interfacing into clients and customers to ensure high standards of service delivery within the SOC. The successful candidate will join a successful and growing organisation … for incident resolution. Build and maintain professional relationships/rapports with critical client stakeholders. Curate, design and present concise and information data in monthly service reports. Experience Required Previous Security Operation Centre/SOC experience. Knowledge of SOC tooling (SIEMs, EDRs – e.g. Sentinel, CrowdStrike, Defender). A knowledge and understanding of common SOC threats. Ability to translate technical More ❯

leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our clients critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role is … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

leaders in their field. Our new position of SOC Shift Lead will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our client’s critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. This role … 6PM to 6am, 4 days off. Please note you do need to be eligible for DV Clearance for this role. What you'll be doing: Monitor, triage, and investigate security incidents on critical client infrastructure. In depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities. Line Management. Maintain, improve and develop … team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent the SOC within Partners meetings. Ability to work shift from our office in Hemel More ❯

Senior IR-SOC Engineer - Elite Law Firm - London Are you a security professional looking to step into a high-profile, enterprise environment? One of the world’s most prestigious law firms is seeking a Senior Incident Response & SOC Engineer to join its global Information Security team, based in London . This is a rare opportunity to play a …/7 SOC , handling incident response and contributing to the development of detection, automation, and reporting tools. Key Responsibilities: Lead and support incident response (IR) and investigation of security threats across a complex enterprise estate. Manage, tune, and develop SIEM and EDR technologies to enhance threat detection and response capabilities. Implement and refine playbooks , automations , and alerting rules in … collaboration with security partners. Contribute to threat hunting and proactive detection strategies. Produce actionable reporting and metrics for stakeholders, including executive leadership. Desired Experience: Proven experience working in or alongside a 24/7 Security Operations Centre . Strong technical exposure to SIEM (ideally Splunk), EDR (CrowdStrike preferred), and SOAR tools. Expertise in incident handling , threat More ❯

A large enterprise organisation is seeking an experiencedLevel 3 SOC Analyst for an initial 6-month rolling contract. This is a key role within a mature and well-established Security Operations Centre, offering the opportunity to work on complex threats and contribute to a high-performing cybersecurity function. This is a challenging, rewarding role for a seasoned … make a tangible impact. Apply now to join a team focused on protecting enterprise assets against evolving cyber threats. Key Responsibilities: Lead investigations and response efforts for high-severity security incidents. Conduct proactive threat hunting using Microsoft Sentinel and the Defender suite. Develop and fine-tune analytic rules, workbooks, and automation playbooks in Sentinel. Perform deep-dive analysis of … malware, phishing, and lateral movement techniques. Collaborate with engineering teams to optimise Microsoft security tool integrations. Maintain and enhance incident response procedures and documentation. Skills/Must have: Over 5 years of experience in cybersecurity, including a minimum of 2 years in a Level 3 SOC or equivalent role. Expert-level proficiency with Microsoft Sentinel, including KQL, custom analytic More ❯

GBP Onsite WORKING Location: Leeds, Yorkshire and the Humber - United Kingdom Type: Permanent Cyber Threat Intelligence and Vulnerability Lead Location: Leeds (100% office-based) Salary: Up to £75,000 Security Clearance: DV Clearance required The Opportunity: A unique and mission-critical opportunity has arisen for an experienced Cyber Threat Intelligence and Vulnerability Lead to join a high-impact programme … protecting vital UK infrastructure. You'll work within a dedicated Security Operations Centre (SOC) focused on safeguarding cloud-hosted environments across hundreds of systems. Key Responsibilities: As a Cyber Threat Intelligence and Vulnerability Lead , you will: Oversee the daily detection, triage, and reporting of cyber threats and vulnerabilities affecting the client environment. Direct the development and execution … in threat intelligence, vulnerability management, or technical cyber threat research. Strong understanding of Windows and Linux OS, networking fundamentals, and cloud platforms. Experience in incident response and managing technical security operations. Excellent communication skills with an ability to explain complex threats to both technical and non-technical stakeholders. A relevant degree or equivalent experience in cybersecurity, computer science, or More ❯

GBP Onsite WORKING Location: Leeds, Yorkshire and the Humber - United Kingdom Type: Permanent Cyber Threat Intelligence and Vulnerability Lead Location: Leeds (100% office-based) Salary: Up to £75,000 Security Clearance: DV Clearance required The Opportunity: A unique and mission-critical opportunity has arisen for an experienced Cyber Threat Intelligence and Vulnerability Lead to join a high-impact programme … protecting vital UK infrastructure. You'll work within a dedicated Security Operations Centre (SOC) focused on safeguarding cloud-hosted environments across hundreds of systems. Key Responsibilities: As a Cyber Threat Intelligence and Vulnerability Lead , you will: Oversee the daily detection, triage, and reporting of cyber threats and vulnerabilities affecting the client environment. Direct the development and execution … in threat intelligence, vulnerability management, or technical cyber threat research. Strong understanding of Windows and Linux OS, networking fundamentals, and cloud platforms. Experience in incident response and managing technical security operations. Excellent communication skills with an ability to explain complex threats to both technical and non-technical stakeholders. A relevant degree or equivalent experience in cybersecurity, computer science, or More ❯

Type: Permanent Cyber Threat Intelligence & Vulnerability Lead Location: Leeds, UK (100% office-based) Salary: up to £65,000 + 10% bonus + £7,000 DV clearance bonus once obtained. Security Clearance Required: DV (Developed Vetting) eligibility Are you ready to lead the charge in defending critical national infrastructure from sophisticated cyber threats? Join a high-impact Security Operations Centre (SOC) team protecting hundreds of cloud-hosted systems in one of the UK's most vital sectors. This is your opportunity to shape the future of cyber defence in a role that demands technical excellence, strategic thinking, and strong leadership. What You'll Be Doing As the Cyber Threat Intelligence & Vulnerability Lead, you will: Oversee the detection More ❯

Grade: GG10 - GG11 A major UK Critical National Infrastructure (CNI) programme is seeking a highly skilled Cyber Threat Intelligence and Vulnerability Lead to join a dedicated Security Operations Centre (SOC). This role is central to protecting hundreds of cloud-hosted systems from advanced cyber threats and ensuring the continuous improvement of threat intelligence and vulnerability management More ❯

most critical roles in the cybersecurity industry? We are seeking a Cyber Threat Intelligence and Vulnerability Lead to play a pivotal role in the operation and improvement of a Security Operations Centre (SOC) dedicated to safeguarding a major UK organisation. This position offers an opportunity to make a tangible impact in protecting the systems that power the More ❯

most critical roles in the cybersecurity industry? We are seeking a Cyber Threat Intelligence and Vulnerability Lead to play a pivotal role in the operation and improvement of a Security Operations Centre (SOC) dedicated to safeguarding a major UK organisation. This position offers an opportunity to make a tangible impact in protecting the systems that power the More ❯

lifecycle experience for improvements. Splunk SaaS experience and expertise as a lead architect and/or engineer Experience of defining improvements within Cyber departments, particularly, SIEM improvements within Cyber Security Operations Centre (CSOC) functions that result in an increase in SIEM Maturity Levels. Experience of the lifecycle of SIEM delivery, including convergence from other SIEMs. More ❯

cycle experience for improvements. - Splunk SaaS experience and expertise as a lead architect and/or engineer - Experience of defining improvements within Cyber departments, particularly, SIEM improvements within Cyber Security Operations Centre (CSOC) functions that result in an increase in SIEM Maturity Levels. - Experience of the life cycle of SIEM delivery, including convergence from other SIEMs More ❯

cycle experience for improvements. - Splunk SaaS experience and expertise as a lead architect and/or engineer - Experience of defining improvements within Cyber departments, particularly, SIEM improvements within Cyber Security Operations Centre (CSOC) functions that result in an increase in SIEM Maturity Levels. - Experience of the life cycle of SIEM delivery, including convergence from other SIEMs All More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA, VM More ❯

management framework qualification (PRINCE2/Agile) Minimum of 2 professional role specific certifications Hands on, practical experience in the following disciplines: Microsoft Dynamics Digital and Application Innovation (Software Development) Security Operations Centre Data and AI Regular team building and social events with other graduate scheme members What experience do you need? No particular experience is required for More ❯

We are rapidly growing our SOC team, offering serious career growth and exciting work with multiple high-profile clients! Join our expanding Cyber practice in the Aerospace Defence and Security sector. This team supports enterprise-scale clients and requires proven experience working in a busy SOC with a tech-first approach. The team is on the cusp of continued … off. You must be eligible for Developed Vetting (DV). We offer excellent career progression opportunities, flexible benefits, and training and development programs. Responsibilities include: Monitoring, triaging, and investigating security incidents on critical client infrastructure. Analyzing network traffic, logs, and system events to identify threats and vulnerabilities. Providing Incident Response support. Maintaining and developing team knowledge of SOC tools … and security operations. Preparing reports for technical and non-technical audiences and improving their content. Updating security incident documentation, including reports, analysis, and mitigation strategies. Qualifications and experience: Experience working in a Security Operations Centre. Managing Microsoft Sentinel and Splunk implementations. Knowledge of the Mitre Att&ck Framework. Understanding of client-server applications, web applications, databases More ❯

A fantastic new opportunity has arisen to join the Greenhous IT department as a Security Engineer responsible for helping to ensure strong cyber security is in place throughout the Group. The IT infrastructure and solutions used within the Group are key therefore strong, robust cyber security is essential, hence the creation of this new role. As an … responsible for day-to-day network management activities related to cyber security. Additionally, under direction you will be responsible for ensuring the maintenance, development and constant improvement of our security tooling stack. Other duties may be required of the post holder in addition to those listed above and below, to ensure that the requirements of the business are met … at all times. Key Responsibilities: Help administer the Group's Security Operations Centre. Work across our growing toolset to monitor the entire infrastructure and react to real time threats as they occur. Intrusion detection and illegal activity monitoring. Assist with penetration and vulnerability testing. Implement network, firewall, patching and other technical security matter. Ensure up to date More ❯

starting out in your career or looking to progress as an industry professional, Node4 has a place for you. About the role Node4 have an exciting opportunity within our Security Operations Center (SOC) for an individual looking to progress their career in cybersecurity. As a member of our Security Team you're responsible for securing both Node4 … breaches. Internally you will work as part of the corporate services department, collaborating with other teams such as network specialists and infrastructure engineers to mature and maintain our internal security posture. Externally you will work closely with our account-managers and pre-sales team to deliver managed security services to customers and provide a consistently high-quality standard … of service. We are looking for a passionate, driven individual who is keen to learn more about Cyber Security, enthusiastic about getting hands-on with new technologies and aspires to continually improve their own skills and knowledge. This role is shift based and will require the applicant to work 12-hour shifts (7am/7pm) on a 4-on More ❯

impactful results while contributing to their vision of shaping a better future. In this role, you will be responsible for: Contributing to the setup and ongoing enhancement of the Security Operations Center (SOC). Investigating security incidents and implementing effective countermeasures. Utilizing SOC tools such as SIEM, vulnerability scanners, and incident response solutions. Performing threat hunting by … analyzing and assessing security events on central platforms. Documenting incidents thoroughly in ticketing and SIEM systems, and generating detailed reports. Monitoring systems for attacks or unusual behavior and taking appropriate action. Running automated vulnerability scans, interpreting results, and reporting findings to clients. This role is hybrid in Schleswig-Holstein. Essential qualifications: At least one year of professional experience working … a SOC or similar role (working student experience is acceptable). Experience working with EDR/XDR. Strong knowledge of IT networks and operating systems. Basic knowledge of offensive security concepts. Experience with programming languages such as Python and SQL. Minimum C1 level in German with good knowledge of English. Desirable skills: Experience working with Sophos. Incident response experience. More ❯

qualified System Analyst, located in the UK. The System Analyst will be responsible for delivering outstanding service desk support to the assigned region, ensuring the smooth operation of physical security systems and associated technology. This role acts as the primary point of contact for service tickets and technical issues, coordinating responses and managing ticket resolution in line with Northland … of people. Qualifications - Self-motivated, with the ability to work independently and manage multiple priorities. - Minimum of 5 years' experience in a service desk or support role within the security industry. - Experience supporting regional access control and CCTV systems. - Strong background in troubleshooting and supporting security technologies including biometrics, key management, and alarm centers. - Familiarity with Windows operating … Microsoft Office Suite. Preferred Education & Experience - Certifications in access control or CCTV systems (e.g., Lenel OnGuard, Milestone) are preferred. - Experience as an installer or service engineer is desirable. - Professional security certifications (e.g., ASIS, CPP) are desirable but not required. Travel Travel may be required for certifications and occasional support visits. Work Authorization Must be authorized to work in the More ❯