SECURITY OPERATIONS CENTER (SOC) ANALYST - CYBER SECURITY ANALYST Summer-Browning Associates is supporting our client in the Central Government who is seeking a SECURITY OPERATIONS CENTER (SOC) ANALYST for an initial 12-month assignment, with the possibility of extension. Location: London Hybrid The ideal candidates will hold active SC or DV clearance and have a proven background in Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform triage of security events to determine their scope, priority, and impact, while making recommendations for efficient remediation. Experience in network security principles, firewalls, and access control mechanisms. Preferred Qualifications: - Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable. To apply, please submit your latest CV for review.
May 26, 2026
Contractor
SECURITY OPERATIONS CENTER (SOC) ANALYST - CYBER SECURITY ANALYST Summer-Browning Associates is supporting our client in the Central Government who is seeking a SECURITY OPERATIONS CENTER (SOC) ANALYST for an initial 12-month assignment, with the possibility of extension. Location: London Hybrid The ideal candidates will hold active SC or DV clearance and have a proven background in Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform triage of security events to determine their scope, priority, and impact, while making recommendations for efficient remediation. Experience in network security principles, firewalls, and access control mechanisms. Preferred Qualifications: - Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable. To apply, please submit your latest CV for review.
Our Client based in Greater Glasgow are looking for a Security Improvement Business Analyst to join their team, for an initial 9 months working Inside IR35. Within this role, you will be working across all layers of the business - Seupport Services, IT, HR Supply Chain, Standards & Performance - translating audit findings, cybersecurity risks and SIP Recommendations into details actionable requirements. The role involves deep collaboration with internal stakeholders, specialist security SME's, external Consultancy Partners and governance teams to ensure clarity, traceability and consistency of cybersecurity processes and controls. Collaborate with Security Improvement Project Manager to plan, prioritise and schedule business analysis activities Elicit, document and validate cybersecurity, IT, and operational requirements through workshops, interviews, process reviews and assessment of existing security controls and practices. Translate complex cybersecurity risks, audit findings, and technical requirements into clear, structured artefacts Act as a bridge between Business Stakeholders, IT Teams, Security SMEs and external consultancy partners - ensure alignment with NIST Cybersecurity Framework Outcomes Qualifications, Skills and Experience Strong Understanding of Cybersecurity domains such as Asset Management, identity and access management, incident response, network security, data protection, vulnerability management, and third-party security. Experience working with recognised security frameworks (e.g. NIST Cybersecurity Framework, ISO 27001) Comfortable working in a fast-paced, multi-workstream transformation project with evolving priorities and dependencies Proactive, self-motivated, and collaborative, with a commitment to high-quality documentation, clarity and structured delivery. If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
May 25, 2026
Contractor
Our Client based in Greater Glasgow are looking for a Security Improvement Business Analyst to join their team, for an initial 9 months working Inside IR35. Within this role, you will be working across all layers of the business - Seupport Services, IT, HR Supply Chain, Standards & Performance - translating audit findings, cybersecurity risks and SIP Recommendations into details actionable requirements. The role involves deep collaboration with internal stakeholders, specialist security SME's, external Consultancy Partners and governance teams to ensure clarity, traceability and consistency of cybersecurity processes and controls. Collaborate with Security Improvement Project Manager to plan, prioritise and schedule business analysis activities Elicit, document and validate cybersecurity, IT, and operational requirements through workshops, interviews, process reviews and assessment of existing security controls and practices. Translate complex cybersecurity risks, audit findings, and technical requirements into clear, structured artefacts Act as a bridge between Business Stakeholders, IT Teams, Security SMEs and external consultancy partners - ensure alignment with NIST Cybersecurity Framework Outcomes Qualifications, Skills and Experience Strong Understanding of Cybersecurity domains such as Asset Management, identity and access management, incident response, network security, data protection, vulnerability management, and third-party security. Experience working with recognised security frameworks (e.g. NIST Cybersecurity Framework, ISO 27001) Comfortable working in a fast-paced, multi-workstream transformation project with evolving priorities and dependencies Proactive, self-motivated, and collaborative, with a commitment to high-quality documentation, clarity and structured delivery. If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
Security Assurance Analyst (Contractor) Reports To: Head of Information and Cyber Security Department: Information Security Location: London (Hybrid - 2 days per week onsite) Contract Type: Contract (3 months) Organisation: Financial Services Compensation Scheme (FSCS) About the Role We are seeking a Security Assurance Analyst to support a strategic sourcing programme within our Information Security function. This is a short-term, delivery-focused contract role centred on evaluating Security Operations Centre (SOC) service performance, conducting structured comparisons across service pillars, and producing clear, evidence-based assessment outputs to support a provider transition. You will work within a small, professional security team and will be expected to operate independently, delivering high-quality analysis and documentation to tight timescales. Key Responsibilities Review and critically evaluate SOC performance reporting across core service pillars, assessing quality, completeness, and relevance Define what meaningful performance measurement looks like across: Managed Detection and Response (MDR) Vulnerability Management Cyber Threat Intelligence Continuous Improvement Conduct structured comparisons of SOC provider performance, identifying material differences across key service dimensions Produce comparative performance assessments at agreed intervals during the transition and dual-running period, including: Detailed technical analysis Clear executive summaries for senior stakeholders Collaborate with the Project Manager, Legal advisers, and internal stakeholders to ensure outputs align with contractual and operational requirements Skills, Knowledge & Experience Solid understanding of SOC service delivery, including MDR, Vulnerability Management, and Cyber Threat Intelligence Experience reviewing, interpreting, and critically assessing security performance data and management information Strong analytical skills, with the ability to identify trends, gaps, and meaningful insights Excellent written communication skills, with the ability to produce clear, structured documentation for both technical and non-technical audiences Comfortable working independently in a fast-paced environment with minimal supervision Desirable: Experience supporting vendor assessments, supplier evaluations, or security sourcing programmes Familiarity with SOC performance metrics, SLAs, and service reporting frameworks Key Deliverables Comparative SOC performance assessments produced at agreed intervals throughout the transition and dual-running period Each deliverable to include: A detailed technical assessment A concise executive summary suitable for senior stakeholders We use generative AI tools to support our candidate screening process. This helps us ensure a fair, consistent, and efficient experience for all applicants. Rest assured, all final decisions are made by our hiring team, and your application will be reviewed with care and attention. Adecco is an employment consultancy. We put expertise, energy, and passion into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an all-encompassing environment that helps them thrive. Candidates will ideally show evidence of the above in their CV to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunity's employer. Please email me (url removed)
May 25, 2026
Contractor
Security Assurance Analyst (Contractor) Reports To: Head of Information and Cyber Security Department: Information Security Location: London (Hybrid - 2 days per week onsite) Contract Type: Contract (3 months) Organisation: Financial Services Compensation Scheme (FSCS) About the Role We are seeking a Security Assurance Analyst to support a strategic sourcing programme within our Information Security function. This is a short-term, delivery-focused contract role centred on evaluating Security Operations Centre (SOC) service performance, conducting structured comparisons across service pillars, and producing clear, evidence-based assessment outputs to support a provider transition. You will work within a small, professional security team and will be expected to operate independently, delivering high-quality analysis and documentation to tight timescales. Key Responsibilities Review and critically evaluate SOC performance reporting across core service pillars, assessing quality, completeness, and relevance Define what meaningful performance measurement looks like across: Managed Detection and Response (MDR) Vulnerability Management Cyber Threat Intelligence Continuous Improvement Conduct structured comparisons of SOC provider performance, identifying material differences across key service dimensions Produce comparative performance assessments at agreed intervals during the transition and dual-running period, including: Detailed technical analysis Clear executive summaries for senior stakeholders Collaborate with the Project Manager, Legal advisers, and internal stakeholders to ensure outputs align with contractual and operational requirements Skills, Knowledge & Experience Solid understanding of SOC service delivery, including MDR, Vulnerability Management, and Cyber Threat Intelligence Experience reviewing, interpreting, and critically assessing security performance data and management information Strong analytical skills, with the ability to identify trends, gaps, and meaningful insights Excellent written communication skills, with the ability to produce clear, structured documentation for both technical and non-technical audiences Comfortable working independently in a fast-paced environment with minimal supervision Desirable: Experience supporting vendor assessments, supplier evaluations, or security sourcing programmes Familiarity with SOC performance metrics, SLAs, and service reporting frameworks Key Deliverables Comparative SOC performance assessments produced at agreed intervals throughout the transition and dual-running period Each deliverable to include: A detailed technical assessment A concise executive summary suitable for senior stakeholders We use generative AI tools to support our candidate screening process. This helps us ensure a fair, consistent, and efficient experience for all applicants. Rest assured, all final decisions are made by our hiring team, and your application will be reviewed with care and attention. Adecco is an employment consultancy. We put expertise, energy, and passion into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an all-encompassing environment that helps them thrive. Candidates will ideally show evidence of the above in their CV to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunity's employer. Please email me (url removed)
Infrastructure Analyst - Vulnerability & Patch Management 12-month Fixed Term Contract Up to £55,000 Hybrid: 3 days onsite / 2 days remote We re hiring an Infrastructure Analyst to join a busy enterprise environment, with a strong focus on endpoint vulnerability management and remediation . This role is best suited to someone who can combine solid infrastructure engineering experience with practical exposure to vulnerability management, patching, and third-party coordination. The role is weighted more toward vulnerability remediation than traditional patching, so we re looking for someone who can assess, prioritise and drive remediation activity across a large and complex endpoint estate. What you ll be doing Managing and driving remediation of endpoint vulnerabilities across a large estate Reviewing vulnerability and compliance reports, grouping recurring issues, prioritising remediation activity, and coordinating fixes Working closely with a newly appointed Vulnerability Manager to ensure vulnerabilities are tracked, prioritised and resolved Supporting and improving endpoint patching processes where needed Managing remediation activity across both internal teams and third-party providers Helping document process improvements and build a more scalable vulnerability remediation approach Environment Cloud-first endpoint environment Windows 11 estate using Autopilot and Intune MS Defender for Endpoint SCCM/MECM still used for key on-prem device management, including critical payment-related estate Established patching lifecycle with opportunity to improve processes further What we re looking for Strong infrastructure/endpoint engineering background Experience with MS Defender and vulnerability remediation and patch management Good understanding of Intune and SCCM/MECM Ability to work from large vulnerability datasets and turn them into clear remediation plans Confidence dealing with third parties, pushing for action, and managing accountability Able to prioritise effectively in a fast-moving environment Strong communication skills and the ability to work closely with both technical teams and security stakeholders Experience in Apple Business Manager, Meraki Systems Manager ideal. Ideal background You may have worked in roles focused on: Endpoint management Patch and vulnerability remediation Infrastructure engineering EUC / modern workplace engineering Security remediation within infrastructure teams Why this role? Opportunity to take ownership of a high-impact vulnerability remediation workload Work alongside a dedicated Vulnerability Manager in a business investing in security improvement Join a mature endpoint environment where you can make measurable improvements quickly
May 24, 2026
Full time
Infrastructure Analyst - Vulnerability & Patch Management 12-month Fixed Term Contract Up to £55,000 Hybrid: 3 days onsite / 2 days remote We re hiring an Infrastructure Analyst to join a busy enterprise environment, with a strong focus on endpoint vulnerability management and remediation . This role is best suited to someone who can combine solid infrastructure engineering experience with practical exposure to vulnerability management, patching, and third-party coordination. The role is weighted more toward vulnerability remediation than traditional patching, so we re looking for someone who can assess, prioritise and drive remediation activity across a large and complex endpoint estate. What you ll be doing Managing and driving remediation of endpoint vulnerabilities across a large estate Reviewing vulnerability and compliance reports, grouping recurring issues, prioritising remediation activity, and coordinating fixes Working closely with a newly appointed Vulnerability Manager to ensure vulnerabilities are tracked, prioritised and resolved Supporting and improving endpoint patching processes where needed Managing remediation activity across both internal teams and third-party providers Helping document process improvements and build a more scalable vulnerability remediation approach Environment Cloud-first endpoint environment Windows 11 estate using Autopilot and Intune MS Defender for Endpoint SCCM/MECM still used for key on-prem device management, including critical payment-related estate Established patching lifecycle with opportunity to improve processes further What we re looking for Strong infrastructure/endpoint engineering background Experience with MS Defender and vulnerability remediation and patch management Good understanding of Intune and SCCM/MECM Ability to work from large vulnerability datasets and turn them into clear remediation plans Confidence dealing with third parties, pushing for action, and managing accountability Able to prioritise effectively in a fast-moving environment Strong communication skills and the ability to work closely with both technical teams and security stakeholders Experience in Apple Business Manager, Meraki Systems Manager ideal. Ideal background You may have worked in roles focused on: Endpoint management Patch and vulnerability remediation Infrastructure engineering EUC / modern workplace engineering Security remediation within infrastructure teams Why this role? Opportunity to take ownership of a high-impact vulnerability remediation workload Work alongside a dedicated Vulnerability Manager in a business investing in security improvement Join a mature endpoint environment where you can make measurable improvements quickly
Cyber Security Operations Manager Liverpool (Hybrid) 75,000 We're working with a growing UK business looking to hire a Cyber Security Operations Manager to take full ownership of its security operations function, ensuring the organisation is protected, resilient, and continuously improving against an increasingly complex threat landscape. This is a high-impact position where you'll lead the security operations function end-to-end, driving improvements across threat detection, incident response, and overall security posture within a complex, evolving environment. The Role You'll take ownership of security operations, ensuring the business is protected against evolving threats while continuously improving processes, tooling, and team capability. Key responsibilities include: Leading the day-to-day operations of the Security Operations function, including oversight of any outsourced SOC Managing the full incident response lifecycle (detection through to recovery and post-incident review) Overseeing threat detection, vulnerability management, and cyber defence capabilities Driving improvements across SIEM, SOAR, EDR/XDR, and security tooling Ensuring robust monitoring, alerting, and response across cloud, network, and endpoint environments Partnering with Infrastructure, Cloud, and Risk teams to strengthen security across the business Leading and developing a team of cyber engineers and analysts Driving automation initiatives to improve response times and operational efficiency Supporting governance, compliance, and audit requirements Reporting on security performance, risks, and KPIs to senior stakeholders What We're Looking For Proven experience leading a Security Operations or SOC function Strong understanding of SIEM, SOAR, EDR/XDR, IDS/IPS, and security tooling Experience managing incident response and threat management in complex environments Strong knowledge of frameworks such as NIST, ISO 27001, or CIS Controls Experience working in cloud environments (Azure, AWS, or GCP) Strong leadership and stakeholder management skills Ability to balance hands-on technical understanding with strategic oversight Why Join? Opportunity to lead and shape the security operations function High visibility role across technology and leadership teams Business actively investing in cyber security and resilience If you're looking for a role where you can lead, influence, and strengthen cyber security at scale, we'd love to hear from you. Apply today with your most up to date CV. BH36094
May 24, 2026
Full time
Cyber Security Operations Manager Liverpool (Hybrid) 75,000 We're working with a growing UK business looking to hire a Cyber Security Operations Manager to take full ownership of its security operations function, ensuring the organisation is protected, resilient, and continuously improving against an increasingly complex threat landscape. This is a high-impact position where you'll lead the security operations function end-to-end, driving improvements across threat detection, incident response, and overall security posture within a complex, evolving environment. The Role You'll take ownership of security operations, ensuring the business is protected against evolving threats while continuously improving processes, tooling, and team capability. Key responsibilities include: Leading the day-to-day operations of the Security Operations function, including oversight of any outsourced SOC Managing the full incident response lifecycle (detection through to recovery and post-incident review) Overseeing threat detection, vulnerability management, and cyber defence capabilities Driving improvements across SIEM, SOAR, EDR/XDR, and security tooling Ensuring robust monitoring, alerting, and response across cloud, network, and endpoint environments Partnering with Infrastructure, Cloud, and Risk teams to strengthen security across the business Leading and developing a team of cyber engineers and analysts Driving automation initiatives to improve response times and operational efficiency Supporting governance, compliance, and audit requirements Reporting on security performance, risks, and KPIs to senior stakeholders What We're Looking For Proven experience leading a Security Operations or SOC function Strong understanding of SIEM, SOAR, EDR/XDR, IDS/IPS, and security tooling Experience managing incident response and threat management in complex environments Strong knowledge of frameworks such as NIST, ISO 27001, or CIS Controls Experience working in cloud environments (Azure, AWS, or GCP) Strong leadership and stakeholder management skills Ability to balance hands-on technical understanding with strategic oversight Why Join? Opportunity to lead and shape the security operations function High visibility role across technology and leadership teams Business actively investing in cyber security and resilience If you're looking for a role where you can lead, influence, and strengthen cyber security at scale, we'd love to hear from you. Apply today with your most up to date CV. BH36094
SOC Lead 6 months Bath - hybrid x3 days onsite x2 remote Active SC/DV clearance required 700 per day outside IR35 The SOC Lead - Threat Hunting & Investigations is responsible for leading advanced threat detection, proactive threat hunting, and complex security investigations across the enterprise. This role focuses on identifying unknown threats, coordinating deep-dive investigations, and elevating the maturity of SOC investigative and hunting capabilities. The role combines technical leadership, hands-on expertise, and mentorship of analysts. Key Responsibilities Threat Hunting Lead proactive, hypothesis-driven threat hunting activities across endpoint, network, cloud, identity, and SaaS environments Develop and maintain threat hunting playbooks aligned to MITRE ATT&CK techniques Identify stealthy, low-and-slow, and novel attack patterns not detected by automated controls Translate threat intelligence into actionable hunt hypotheses Continuously refine detection logic based on hunt outcomes and emerging threats Investigations & Incident Response Lead complex and high-severity security investigations from triage through containment and remediation Act as the technical escalation point for advanced SOC investigations Conduct root cause analysis and attacker kill-chain reconstruction Produce clear, defensible investigation documentation suitable for executive, legal, and regulatory audiences Coordinate incident response activities with IR, IT, Legal, Risk, and external partners as required SOC Technical Leadership Define investigation standards, workflows, and quality benchmarks Mentor and upskill SOC analysts in hunting methodologies and investigative techniques Review and improve alert fidelity, detection coverage, and response effectiveness Provide technical oversight for tooling such as SIEM, EDR/XDR, NDR, SOAR, and cloud-native security platforms Detection Engineering & Improvement Collaborate with detection engineers to convert hunt findings into new or improved detections Identify visibility gaps and recommend logging, telemetry, and tooling improvements Validate detection performance through purple team activities and simulation Threat Intelligence & Collaboration Consume and operationalise internal and external threat intelligence Maintain awareness of attacker tactics, tools, and campaigns relevant to the organisation Act as a key interface between SOC, Threat Intel, Red Team, and Vulnerability Management Reporting & Metrics Track and report on hunt coverage, outcomes, dwell time, MTTR, and investigation quality Provide regular insights to senior leadership on threat trends and risk posture Required Skills & Experience Technical Experience 7+ years in Security Operations, Threat Hunting, or Incident Response Proven experience leading investigations involving advanced persistent threats, insider threats, or targeted attacks Strong hands-on expertise with: SIEM platforms (e.g. Sentinel, Splunk, Elastic) EDR/XDR solutions (e.g. Defender, CrowdStrike, SentinelOne) Network and cloud security telemetry Strong understanding of: MITRE ATT&CK Windows, Linux, and cloud attack techniques Malware behaviours, credential abuse, lateral movement, and persistence mechanisms Leadership & Soft Skills Demonstrated ability to lead and mentor technical teams Strong investigative mindset with attention to detail Excellent written and verbal communication skills Ability to translate technical findings into business and risk context Desirable Skills Experience with detection engineering or SOAR automation Purple team or red team collaboration experience Forensic analysis experience (memory, disk, network) Exposure to regulatory environments (e.g. ISO 27001, NIST, GDPR) Apply now to be part of this impactful opportunity!
May 24, 2026
Contractor
SOC Lead 6 months Bath - hybrid x3 days onsite x2 remote Active SC/DV clearance required 700 per day outside IR35 The SOC Lead - Threat Hunting & Investigations is responsible for leading advanced threat detection, proactive threat hunting, and complex security investigations across the enterprise. This role focuses on identifying unknown threats, coordinating deep-dive investigations, and elevating the maturity of SOC investigative and hunting capabilities. The role combines technical leadership, hands-on expertise, and mentorship of analysts. Key Responsibilities Threat Hunting Lead proactive, hypothesis-driven threat hunting activities across endpoint, network, cloud, identity, and SaaS environments Develop and maintain threat hunting playbooks aligned to MITRE ATT&CK techniques Identify stealthy, low-and-slow, and novel attack patterns not detected by automated controls Translate threat intelligence into actionable hunt hypotheses Continuously refine detection logic based on hunt outcomes and emerging threats Investigations & Incident Response Lead complex and high-severity security investigations from triage through containment and remediation Act as the technical escalation point for advanced SOC investigations Conduct root cause analysis and attacker kill-chain reconstruction Produce clear, defensible investigation documentation suitable for executive, legal, and regulatory audiences Coordinate incident response activities with IR, IT, Legal, Risk, and external partners as required SOC Technical Leadership Define investigation standards, workflows, and quality benchmarks Mentor and upskill SOC analysts in hunting methodologies and investigative techniques Review and improve alert fidelity, detection coverage, and response effectiveness Provide technical oversight for tooling such as SIEM, EDR/XDR, NDR, SOAR, and cloud-native security platforms Detection Engineering & Improvement Collaborate with detection engineers to convert hunt findings into new or improved detections Identify visibility gaps and recommend logging, telemetry, and tooling improvements Validate detection performance through purple team activities and simulation Threat Intelligence & Collaboration Consume and operationalise internal and external threat intelligence Maintain awareness of attacker tactics, tools, and campaigns relevant to the organisation Act as a key interface between SOC, Threat Intel, Red Team, and Vulnerability Management Reporting & Metrics Track and report on hunt coverage, outcomes, dwell time, MTTR, and investigation quality Provide regular insights to senior leadership on threat trends and risk posture Required Skills & Experience Technical Experience 7+ years in Security Operations, Threat Hunting, or Incident Response Proven experience leading investigations involving advanced persistent threats, insider threats, or targeted attacks Strong hands-on expertise with: SIEM platforms (e.g. Sentinel, Splunk, Elastic) EDR/XDR solutions (e.g. Defender, CrowdStrike, SentinelOne) Network and cloud security telemetry Strong understanding of: MITRE ATT&CK Windows, Linux, and cloud attack techniques Malware behaviours, credential abuse, lateral movement, and persistence mechanisms Leadership & Soft Skills Demonstrated ability to lead and mentor technical teams Strong investigative mindset with attention to detail Excellent written and verbal communication skills Ability to translate technical findings into business and risk context Desirable Skills Experience with detection engineering or SOAR automation Purple team or red team collaboration experience Forensic analysis experience (memory, disk, network) Exposure to regulatory environments (e.g. ISO 27001, NIST, GDPR) Apply now to be part of this impactful opportunity!
IT Security Analyst - 40,000/ 45,000 per annum - Brandesburton (Hybrid) Principal IT are proud to be supporting a leading provider of modular buildings for various sectors, such as education, healthcare, defence, and justice. This is an excellent opportunity for someone with a passion for cybersecurity who is looking to play a key role in strengthening and developing an organisation's overall security posture and cyber resilience strategy. Working closely with the Infrastructure & Security Manager, you will be responsible for monitoring, detecting, investigating, and responding to security threats across the organisation's infrastructure and systems. You will also support vulnerability management, compliance initiatives, and wider security improvement projects across the business. This role would suit someone with 2-4 years' experience in a cybersecurity, SOC, or infrastructure security-focused position who enjoys working across a broad technology estate and keeping up to date with emerging threats and security technologies. Key Responsibilities: Monitor and develop SIEM and threat detection platforms Investigate and respond to security incidents and alerts Support vulnerability scanning, remediation, and reporting activities Assist with development of security policies, procedures, and controls Work alongside Infrastructure and Technical Services teams to improve security across the estate Support compliance activities aligned to ISO27001, GDPR, and NIST frameworks Conduct security awareness initiatives including phishing simulations and end-user training Maintain and improve endpoint protection, IDS/IPS, EDR, XDR, and MDR solutions Assist with backup, disaster recovery, and digital asset protection strategies Stay up to date with emerging cyber threats and recommend improvements where appropriate Key Skills & Experience: 2-4 years' experience within a cybersecurity or infrastructure security role Experience working with SIEM tools and vulnerability management platforms Strong understanding of EDR, XDR, MDR, IDS/IPS technologies Good knowledge of Microsoft security technologies and infrastructure environments Understanding of ISO27001, NIST, GDPR, and security best practices Experience investigating security incidents and producing clear documentation Full UK driving licence Desirable: CompTIA Security+ CISSP Associate Microsoft certifications Experience with Azure environments Scripting or automation knowledge Experience working with ERP systems This is a fantastic opportunity to join a business investing heavily in cybersecurity, where you will have the chance to influence security best practices, work with modern technologies, and continue developing your technical skillset within a collaborative environment. The Package: If successful our client is offering a salary of between 40,000/ 45,000 per annum, favorable holiday allowance, company contributed pension scheme and opportunities for professional development including training and advancement. This a hybrid working role 3 days on site and 2 days working from home. How to Apply: If you are interested in hearing more about this IT security analyst vacancy or interested in applying for the role please email me at or contact Principal IT Directly on LinkedIn. INDGH
May 22, 2026
Full time
IT Security Analyst - 40,000/ 45,000 per annum - Brandesburton (Hybrid) Principal IT are proud to be supporting a leading provider of modular buildings for various sectors, such as education, healthcare, defence, and justice. This is an excellent opportunity for someone with a passion for cybersecurity who is looking to play a key role in strengthening and developing an organisation's overall security posture and cyber resilience strategy. Working closely with the Infrastructure & Security Manager, you will be responsible for monitoring, detecting, investigating, and responding to security threats across the organisation's infrastructure and systems. You will also support vulnerability management, compliance initiatives, and wider security improvement projects across the business. This role would suit someone with 2-4 years' experience in a cybersecurity, SOC, or infrastructure security-focused position who enjoys working across a broad technology estate and keeping up to date with emerging threats and security technologies. Key Responsibilities: Monitor and develop SIEM and threat detection platforms Investigate and respond to security incidents and alerts Support vulnerability scanning, remediation, and reporting activities Assist with development of security policies, procedures, and controls Work alongside Infrastructure and Technical Services teams to improve security across the estate Support compliance activities aligned to ISO27001, GDPR, and NIST frameworks Conduct security awareness initiatives including phishing simulations and end-user training Maintain and improve endpoint protection, IDS/IPS, EDR, XDR, and MDR solutions Assist with backup, disaster recovery, and digital asset protection strategies Stay up to date with emerging cyber threats and recommend improvements where appropriate Key Skills & Experience: 2-4 years' experience within a cybersecurity or infrastructure security role Experience working with SIEM tools and vulnerability management platforms Strong understanding of EDR, XDR, MDR, IDS/IPS technologies Good knowledge of Microsoft security technologies and infrastructure environments Understanding of ISO27001, NIST, GDPR, and security best practices Experience investigating security incidents and producing clear documentation Full UK driving licence Desirable: CompTIA Security+ CISSP Associate Microsoft certifications Experience with Azure environments Scripting or automation knowledge Experience working with ERP systems This is a fantastic opportunity to join a business investing heavily in cybersecurity, where you will have the chance to influence security best practices, work with modern technologies, and continue developing your technical skillset within a collaborative environment. The Package: If successful our client is offering a salary of between 40,000/ 45,000 per annum, favorable holiday allowance, company contributed pension scheme and opportunities for professional development including training and advancement. This a hybrid working role 3 days on site and 2 days working from home. How to Apply: If you are interested in hearing more about this IT security analyst vacancy or interested in applying for the role please email me at or contact Principal IT Directly on LinkedIn. INDGH
Senior Cyber Security & Network Analyst The Opportunity in a Nutshell On behalf of our client, a leader in their industry , we are seeking a senior, hands-on technology professional with a deep foundation in Network Engineering (minimum 5-7 years of experience) coupled with strong Cyber Security expertise. This is not a purely monitoring role; the client requires an engineer who can lead from the front, physically and logically build infrastructure, and own complex technical projects from inception to completion. You will ensure the client's digital ecosystem remains resilient, highly performant, and securely aligned with evolving business objectives. Core Responsibilities As a senior technical anchor within the operations team, your daily focus will heavily lean into robust network engineering, system build-outs, and defensive security protocols: Infrastructure Installations & Kit Builds: Act as the technical lead for configuring, assembling, installing, and deploying new network and security hardware. Ensure all engineering documentation is immaculately maintained. Network Architecture Ownership: Maintain, optimize, and scale the client's Layer 2/3 environment, specifically managing Cisco Nexus routing, LAN/WAN frameworks, wireless networks, B2B links, and network load balancing solutions. Project Leadership: Spearhead mid-to-large scale infrastructure initiatives, ensuring deliverables are hit on time and within budget. You will be expected to demonstrate the tangible business value your technical decisions bring to the overall deployment process. Infrastructure Defense & Monitoring: Oversee next-generation Palo Alto firewalls, intrusion prevention systems, and data encryption protocols. Monitor SIEM platforms and threat feeds to isolate, investigate, and remediate digital vulnerabilities. Collaboration & Mentorship: Partner closely with internal technical squads and coordinate with external vendor partners. Provide coaching and technical advice to team members to foster a culture of continuous improvement. What The Client Is Looking For To thrive in this fast-paced environment, candidates must possess a blend of seasoned engineering experience and a structured, methodical approach to problem-solving. Technical Competencies: Minimum of 5-7 years of dedicated experience implementing, supporting, and developing complex L2/3 network architectures. Proven track record of leading and performing new network installations and physical/logical kit builds. Deep technical proficiency configuring and supporting L2/3 Cisco Nexus switching frameworks and Aruba Wi-Fi environments. Solid understanding of Network Load Balancing mechanisms and coordinating third-party Penetration Testing. Strong secondary expertise in Cyber Security, specifically administering Palo Alto Firewalls alongside their advanced next-gen service suites. Background utilizing Qualys Vulnerability Management tools and endpoint detection/remediation software. Previous experience navigating SOX compliance frameworks and handling fast-paced data environments is highly desirable. Application Requirement: Project Examples Our client values real-world execution. As part of your application, please be prepared to provide specific examples of projects where you led from the front on network or security kit deployments. We will look for details on: The scope of the hardware/software deployment you personally executed. The specific technical challenges you overcame during the installation or build phase. The tangible value and security/performance improvements your role brought to that process. Growth, Support & Culture Our client believes in empowering their people to reach their full potential. Joining this team means benefiting from: Structured Progression: Clear objective setting, tailored 1:1 mentorship sessions, and consistent coaching to elevate your architectural capabilities. Empowerment & Autonomy: An inclusive culture that grants ownership of meaningful outcomes and encourages exploration of development opportunities outside your immediate remit. A Collaborative Space: A supportive management philosophy designed to give employees the resources they need to excel while allowing them to bring their authentic selves to work every day.
May 22, 2026
Full time
Senior Cyber Security & Network Analyst The Opportunity in a Nutshell On behalf of our client, a leader in their industry , we are seeking a senior, hands-on technology professional with a deep foundation in Network Engineering (minimum 5-7 years of experience) coupled with strong Cyber Security expertise. This is not a purely monitoring role; the client requires an engineer who can lead from the front, physically and logically build infrastructure, and own complex technical projects from inception to completion. You will ensure the client's digital ecosystem remains resilient, highly performant, and securely aligned with evolving business objectives. Core Responsibilities As a senior technical anchor within the operations team, your daily focus will heavily lean into robust network engineering, system build-outs, and defensive security protocols: Infrastructure Installations & Kit Builds: Act as the technical lead for configuring, assembling, installing, and deploying new network and security hardware. Ensure all engineering documentation is immaculately maintained. Network Architecture Ownership: Maintain, optimize, and scale the client's Layer 2/3 environment, specifically managing Cisco Nexus routing, LAN/WAN frameworks, wireless networks, B2B links, and network load balancing solutions. Project Leadership: Spearhead mid-to-large scale infrastructure initiatives, ensuring deliverables are hit on time and within budget. You will be expected to demonstrate the tangible business value your technical decisions bring to the overall deployment process. Infrastructure Defense & Monitoring: Oversee next-generation Palo Alto firewalls, intrusion prevention systems, and data encryption protocols. Monitor SIEM platforms and threat feeds to isolate, investigate, and remediate digital vulnerabilities. Collaboration & Mentorship: Partner closely with internal technical squads and coordinate with external vendor partners. Provide coaching and technical advice to team members to foster a culture of continuous improvement. What The Client Is Looking For To thrive in this fast-paced environment, candidates must possess a blend of seasoned engineering experience and a structured, methodical approach to problem-solving. Technical Competencies: Minimum of 5-7 years of dedicated experience implementing, supporting, and developing complex L2/3 network architectures. Proven track record of leading and performing new network installations and physical/logical kit builds. Deep technical proficiency configuring and supporting L2/3 Cisco Nexus switching frameworks and Aruba Wi-Fi environments. Solid understanding of Network Load Balancing mechanisms and coordinating third-party Penetration Testing. Strong secondary expertise in Cyber Security, specifically administering Palo Alto Firewalls alongside their advanced next-gen service suites. Background utilizing Qualys Vulnerability Management tools and endpoint detection/remediation software. Previous experience navigating SOX compliance frameworks and handling fast-paced data environments is highly desirable. Application Requirement: Project Examples Our client values real-world execution. As part of your application, please be prepared to provide specific examples of projects where you led from the front on network or security kit deployments. We will look for details on: The scope of the hardware/software deployment you personally executed. The specific technical challenges you overcame during the installation or build phase. The tangible value and security/performance improvements your role brought to that process. Growth, Support & Culture Our client believes in empowering their people to reach their full potential. Joining this team means benefiting from: Structured Progression: Clear objective setting, tailored 1:1 mentorship sessions, and consistent coaching to elevate your architectural capabilities. Empowerment & Autonomy: An inclusive culture that grants ownership of meaningful outcomes and encourages exploration of development opportunities outside your immediate remit. A Collaborative Space: A supportive management philosophy designed to give employees the resources they need to excel while allowing them to bring their authentic selves to work every day.
Senior Cyber Security & Network Analyst Location: Surrey - 2-3 days on-site Type: Permanent Overview We're looking for a Senior Cyber Security & Network Analyst to join a high-performing IT function responsible for protecting and supporting a complex enterprise environment. This is a hands-on, hybrid role combining cyber security operations, security engineering, and network infrastructure ownership . You'll play a key part in safeguarding systems, responding to threats, and driving continuous improvements across the organisation's security posture. What You'll Be Doing Lead day-to-day cyber security operations , ensuring systems remain protected and resilient Monitor and respond to threats via SIEM tools , investigating incidents and implementing fixes Manage and optimise next-generation firewalls (Palo Alto) and endpoint security platforms Oversee vulnerability management and patching (e.g. Qualys) Maintain and support network infrastructure (LAN, WAN, Wi-Fi, load balancing, connectivity) Analyse security data to identify risks, threats, and vulnerabilities Deliver security-focused projects , including new tool implementation and enhancements Support security audits, access controls, and compliance requirements Collaborate with internal teams and third-party vendors to resolve complex issues Produce and maintain technical documentation, policies, and procedures Key Skills & Experience We're particularly interested in candidates with a strong mix of security + networking expertise, including: Proven experience in cyber security operations and engineering Strong hands-on experience with: Palo Alto Firewalls (essential) SIEM tools Endpoint Detection & Response (EDR) Vulnerability management tools (e.g. Qualys) Solid networking knowledge: L2/L3 switching (Cisco Nexus) LAN/WAN, Wi-Fi (Aruba), load balancing Experience managing security incidents and threat response Understanding of data security, risk management, and compliance environments Exposure to working within structured or regulated environments is beneficial
May 22, 2026
Full time
Senior Cyber Security & Network Analyst Location: Surrey - 2-3 days on-site Type: Permanent Overview We're looking for a Senior Cyber Security & Network Analyst to join a high-performing IT function responsible for protecting and supporting a complex enterprise environment. This is a hands-on, hybrid role combining cyber security operations, security engineering, and network infrastructure ownership . You'll play a key part in safeguarding systems, responding to threats, and driving continuous improvements across the organisation's security posture. What You'll Be Doing Lead day-to-day cyber security operations , ensuring systems remain protected and resilient Monitor and respond to threats via SIEM tools , investigating incidents and implementing fixes Manage and optimise next-generation firewalls (Palo Alto) and endpoint security platforms Oversee vulnerability management and patching (e.g. Qualys) Maintain and support network infrastructure (LAN, WAN, Wi-Fi, load balancing, connectivity) Analyse security data to identify risks, threats, and vulnerabilities Deliver security-focused projects , including new tool implementation and enhancements Support security audits, access controls, and compliance requirements Collaborate with internal teams and third-party vendors to resolve complex issues Produce and maintain technical documentation, policies, and procedures Key Skills & Experience We're particularly interested in candidates with a strong mix of security + networking expertise, including: Proven experience in cyber security operations and engineering Strong hands-on experience with: Palo Alto Firewalls (essential) SIEM tools Endpoint Detection & Response (EDR) Vulnerability management tools (e.g. Qualys) Solid networking knowledge: L2/L3 switching (Cisco Nexus) LAN/WAN, Wi-Fi (Aruba), load balancing Experience managing security incidents and threat response Understanding of data security, risk management, and compliance environments Exposure to working within structured or regulated environments is beneficial
Cyber Security Analyst (SOC) Role: Cyber Security Analyst (SOC) Specialism(s): Security Operations, Security Alerts, Security Incident Management, SIEM, Defender, Cofense, Azure, Email Security, Conditional Access Policies, User Authentication, EDR, Playbooks Security Assessment, Vulnerability Analysis, Risk Analysis, SOAR Type: Contract, Daily Rate Pay Rate: 300 - 400 per day (Inside IR35) Location: Remote (UK Only) Start: ASAP/Urgent Duration: 6-12 Months Cyber Security Analyst (SOC) CPS Group UK are delighted to be working with a leading organisation to appoint a Cyber Cyber Security Analyst (SOC) to join an existing team to monitor infrastructure for threats, investigate and respond to security alerts and act as the escalation point for junior analyst queries. The Cyber Security Operations Analyst will respond to verified security incidents and undertake prompt remediation activities to eradicate threats. The Analyst will require strong hands-on experience with the Microsoft security stack (Entra, Defender, Sentinel) as well as exposure to email security, phishing and SOAR tooling. The Cyber Security Operations Analyst is able to work remotely (UK only) and will be required to work 12 hour shifts on a 4 days on / 4 days off shift pattern (days and nights). Candidates must be eligible for UK Security Clearance Role Requirements Play an active role in the CSOC Operations team by: o Monitor active SIEM solutions and platforms o Investigate and triage to security alerts and incidents o Be the escalation point for junior analysts, offering knowledge and mentorship where required o Ensure infrastructure and data security through the use of layered security controls (e.g. EDR, Email Security, User Authentication, Conditional Access) o Oversee security assessments across PAM, endpoint, email and cloud security o Provide direct updates to stakeholders regarding security incidents and initiatives o Undertake on-going analysis of emerging threats using TTP's and existing knowledge o Support the production of alert/incident 'playbooks' Required Skills & Experience 3-4+ years' experience in a Security Operations/SOC-based role Hands-on experience with Microsoft security stack (Entra, Defender, Sentinel) Strong technical understanding of security alert/incident management and threats Knowledge of security threat techniques Proven experience of robust incident response within defined SLA's Proven experience using SIEM, SOAR & Email Security tooling Ability to mentor and upskill junior team members Ability to create (or enhance) cyber security playbooks Familiarity with ITIL Various Cyber Security certifications (e.g. Microsoft SC-200, AZ-500) For more information or immediate consideration for this opportunity, please contact Charlie Grant at CPS Group UK on (phone number removed) or email (url removed) By applying to this advert you are giving CPS Group (UK) Ltd authority to hold and process your data for this specific role and any other roles we may deem suitable to you over time. We will not pass your data to any third party without your verbal or written permission to do so. All incoming and outgoing calls are recorded for training and compliance purposes. CPS Group (UK) Ltd is acting as an Employment Agency in relation to this vacancy. Our new privacy policy can be found here (url removed)
May 22, 2026
Contractor
Cyber Security Analyst (SOC) Role: Cyber Security Analyst (SOC) Specialism(s): Security Operations, Security Alerts, Security Incident Management, SIEM, Defender, Cofense, Azure, Email Security, Conditional Access Policies, User Authentication, EDR, Playbooks Security Assessment, Vulnerability Analysis, Risk Analysis, SOAR Type: Contract, Daily Rate Pay Rate: 300 - 400 per day (Inside IR35) Location: Remote (UK Only) Start: ASAP/Urgent Duration: 6-12 Months Cyber Security Analyst (SOC) CPS Group UK are delighted to be working with a leading organisation to appoint a Cyber Cyber Security Analyst (SOC) to join an existing team to monitor infrastructure for threats, investigate and respond to security alerts and act as the escalation point for junior analyst queries. The Cyber Security Operations Analyst will respond to verified security incidents and undertake prompt remediation activities to eradicate threats. The Analyst will require strong hands-on experience with the Microsoft security stack (Entra, Defender, Sentinel) as well as exposure to email security, phishing and SOAR tooling. The Cyber Security Operations Analyst is able to work remotely (UK only) and will be required to work 12 hour shifts on a 4 days on / 4 days off shift pattern (days and nights). Candidates must be eligible for UK Security Clearance Role Requirements Play an active role in the CSOC Operations team by: o Monitor active SIEM solutions and platforms o Investigate and triage to security alerts and incidents o Be the escalation point for junior analysts, offering knowledge and mentorship where required o Ensure infrastructure and data security through the use of layered security controls (e.g. EDR, Email Security, User Authentication, Conditional Access) o Oversee security assessments across PAM, endpoint, email and cloud security o Provide direct updates to stakeholders regarding security incidents and initiatives o Undertake on-going analysis of emerging threats using TTP's and existing knowledge o Support the production of alert/incident 'playbooks' Required Skills & Experience 3-4+ years' experience in a Security Operations/SOC-based role Hands-on experience with Microsoft security stack (Entra, Defender, Sentinel) Strong technical understanding of security alert/incident management and threats Knowledge of security threat techniques Proven experience of robust incident response within defined SLA's Proven experience using SIEM, SOAR & Email Security tooling Ability to mentor and upskill junior team members Ability to create (or enhance) cyber security playbooks Familiarity with ITIL Various Cyber Security certifications (e.g. Microsoft SC-200, AZ-500) For more information or immediate consideration for this opportunity, please contact Charlie Grant at CPS Group UK on (phone number removed) or email (url removed) By applying to this advert you are giving CPS Group (UK) Ltd authority to hold and process your data for this specific role and any other roles we may deem suitable to you over time. We will not pass your data to any third party without your verbal or written permission to do so. All incoming and outgoing calls are recorded for training and compliance purposes. CPS Group (UK) Ltd is acting as an Employment Agency in relation to this vacancy. Our new privacy policy can be found here (url removed)
Location: Birmingham (Hybrid 3 days onsite) Salary: £45,000 - £50,000 + Excellent Benefits Contract Type: Permanent The Role SOC Engineer - Cyber We re looking for a hands-on SOC Engineer to join a rapidly growing Cyber Security function within a large enterprise technology environment. This is an opportunity to work in one of the most modern and well-equipped SOC environments in the market, supporting enterprise customers across a broad range of managed security services and cloud technologies. This is a genuinely engineering-led role rather than a traditional SOC analyst position. You ll be heavily involved in infrastructure, cloud security, security tooling, automation, and operational cyber engineering across enterprise-scale environments. Working from a Birmingham-based SOC three days a week, you ll play a key role in supporting customer environments, improving cyber capabilities, and helping showcase a cutting-edge SOC environment to visiting customers and stakeholders. What s in it for you as our Cyber SOC Engineer? Salary of £45,000 - £50,000 Hybrid working environment Excellent company benefits package Flexible benefits scheme Access to industry-leading SOC technology and tooling Dedicated training and development time each week Fully funded learning opportunities and partner-led certifications Opportunities to attend conferences and industry events Career progression within a large enterprise technology organisation Exposure to enterprise-scale cloud and cyber environments Supportive, collaborative, and highly technical team environment Duties as SOC Engineer - Cyber As a Cyber SOC Engineer, you will: Act as a technical escalation point and engineering SME across SOC technologies including SIEM, MDR/XDR, EDR, vulnerability management, and cloud security tooling Support, maintain, and improve cyber security infrastructure across enterprise customer environments Work closely with internal teams and customers to onboard, configure, and optimise security technologies and services Investigate and resolve platform issues, security alerts, log source health problems, and tooling-related incidents Configure and support technologies such as Microsoft Defender, Sentinel, CrowdStrike, Tenable, and related security platforms Assist with vulnerability scanning, remediation support, and operational security improvements Contribute to automation and scripting initiatives using tools such as KQL, PowerShell, Python, or Bash Produce and maintain technical documentation, operational runbooks, and security playbooks Support governance and compliance activities aligned to standards such as ISO27001, GDPR, and NCSC guidance Work collaboratively across infrastructure, cloud, networking, and cyber teams to improve service delivery and operational resilience Stay up to date with emerging cyber threats, technologies, and security best practice Contribute to continual improvement initiatives across the SOC function Who are we looking for as our Cyber SOC Engineer? We re looking for a technically capable and proactive engineer who enjoys solving problems, learning new technologies, and working collaboratively in a fast-paced environment. This role would suit someone from a SOC Engineering, Cloud Security, Infrastructure Security, or Cyber Engineering background who enjoys hands-on technical work rather than purely monitoring or analyst-based responsibilities. You ll ideally have experience with: Microsoft Sentinel and Microsoft Defender EDR/XDR/MDR technologies Vulnerability management tools such as Tenable or Qualys Azure, Microsoft 365, Intune, or AWS environments Security tooling, infrastructure, and cloud platforms Linux and Windows operating systems SIEM technologies and security monitoring Basic scripting or automation using KQL, PowerShell, Python, or Bash ITIL environments and structured change control processes Firewall, endpoint, or cloud security technologies We d especially like to hear from candidates who are: Strong communicators who can work confidently with both technical and non-technical stakeholders Organised, collaborative, and eager to learn Comfortable working in a customer-facing environment Self-driven and proactive in solving problems Able to take ownership while also working well within a team Interested in developing their cyber engineering and cloud security expertise further Relevant certifications such as SC-200, SC-900, AZ-500, CISSP, or similar would be advantageous, but practical engineering experience is equally important. Please note: Candidates must be eligible for UK Security Clearance (SC/BPSS), including having the right to work in the UK and meeting residency requirements. INDHS
May 21, 2026
Full time
Location: Birmingham (Hybrid 3 days onsite) Salary: £45,000 - £50,000 + Excellent Benefits Contract Type: Permanent The Role SOC Engineer - Cyber We re looking for a hands-on SOC Engineer to join a rapidly growing Cyber Security function within a large enterprise technology environment. This is an opportunity to work in one of the most modern and well-equipped SOC environments in the market, supporting enterprise customers across a broad range of managed security services and cloud technologies. This is a genuinely engineering-led role rather than a traditional SOC analyst position. You ll be heavily involved in infrastructure, cloud security, security tooling, automation, and operational cyber engineering across enterprise-scale environments. Working from a Birmingham-based SOC three days a week, you ll play a key role in supporting customer environments, improving cyber capabilities, and helping showcase a cutting-edge SOC environment to visiting customers and stakeholders. What s in it for you as our Cyber SOC Engineer? Salary of £45,000 - £50,000 Hybrid working environment Excellent company benefits package Flexible benefits scheme Access to industry-leading SOC technology and tooling Dedicated training and development time each week Fully funded learning opportunities and partner-led certifications Opportunities to attend conferences and industry events Career progression within a large enterprise technology organisation Exposure to enterprise-scale cloud and cyber environments Supportive, collaborative, and highly technical team environment Duties as SOC Engineer - Cyber As a Cyber SOC Engineer, you will: Act as a technical escalation point and engineering SME across SOC technologies including SIEM, MDR/XDR, EDR, vulnerability management, and cloud security tooling Support, maintain, and improve cyber security infrastructure across enterprise customer environments Work closely with internal teams and customers to onboard, configure, and optimise security technologies and services Investigate and resolve platform issues, security alerts, log source health problems, and tooling-related incidents Configure and support technologies such as Microsoft Defender, Sentinel, CrowdStrike, Tenable, and related security platforms Assist with vulnerability scanning, remediation support, and operational security improvements Contribute to automation and scripting initiatives using tools such as KQL, PowerShell, Python, or Bash Produce and maintain technical documentation, operational runbooks, and security playbooks Support governance and compliance activities aligned to standards such as ISO27001, GDPR, and NCSC guidance Work collaboratively across infrastructure, cloud, networking, and cyber teams to improve service delivery and operational resilience Stay up to date with emerging cyber threats, technologies, and security best practice Contribute to continual improvement initiatives across the SOC function Who are we looking for as our Cyber SOC Engineer? We re looking for a technically capable and proactive engineer who enjoys solving problems, learning new technologies, and working collaboratively in a fast-paced environment. This role would suit someone from a SOC Engineering, Cloud Security, Infrastructure Security, or Cyber Engineering background who enjoys hands-on technical work rather than purely monitoring or analyst-based responsibilities. You ll ideally have experience with: Microsoft Sentinel and Microsoft Defender EDR/XDR/MDR technologies Vulnerability management tools such as Tenable or Qualys Azure, Microsoft 365, Intune, or AWS environments Security tooling, infrastructure, and cloud platforms Linux and Windows operating systems SIEM technologies and security monitoring Basic scripting or automation using KQL, PowerShell, Python, or Bash ITIL environments and structured change control processes Firewall, endpoint, or cloud security technologies We d especially like to hear from candidates who are: Strong communicators who can work confidently with both technical and non-technical stakeholders Organised, collaborative, and eager to learn Comfortable working in a customer-facing environment Self-driven and proactive in solving problems Able to take ownership while also working well within a team Interested in developing their cyber engineering and cloud security expertise further Relevant certifications such as SC-200, SC-900, AZ-500, CISSP, or similar would be advantageous, but practical engineering experience is equally important. Please note: Candidates must be eligible for UK Security Clearance (SC/BPSS), including having the right to work in the UK and meeting residency requirements. INDHS
Senior Cyber Security & Network Analyst Tadworth - Advisable to be a car driver due to the location of the business Hybrid - 2 days in the office - 3 WFH - ( fully office based for the first 4 weeks) flexible to adhoc weekend work as and when required We're seeking a Senior Cyber Security & Network Analyst to support and manage our IT network and security infrastructure, ensuring robust protection of business systems and data. Key Responsibilities Manage day-to-day cyber security operations and incident response Monitor and optimise security tools (SIEM, firewalls, endpoint security) Maintain and support network infrastructure (LAN/WAN, Wi-Fi, L2/L3) Identify threats, conduct investigations, and implement security fixes Support delivery of cyber security projects and ongoing improvements Key Skills & Experience Proven experience in cyber security operations and network infrastructure Strong knowledge of Palo Alto firewalls, SIEM tools, and endpoint security Experience with L2/L3 networking (Nexus, LAN/WAN, Wi-Fi) Vulnerability management (e.g. Qualys) and incident response expertise Understanding of data security, threat analysis, and security best practice Essential Requirements Strong problem-solving and analytical skills Excellent communication and stakeholder management Ability to work independently in a fast-paced environment Methodical, organised, and detail-oriented approach Office Angels is an employment agency and business. We are an equal-opportunities employer who puts expertise, energy and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, abilities and more. By showcasing talents, skills and unique experiences in an inclusive environment, we help individuals thrive. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you. Office Angels acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Office Angels UK is an Equal Opportunities Employer. By applying for this role your details will be submitted to Office Angels. Our Candidate Privacy Information Statement explaining how we will use your information is available on our website.
May 21, 2026
Full time
Senior Cyber Security & Network Analyst Tadworth - Advisable to be a car driver due to the location of the business Hybrid - 2 days in the office - 3 WFH - ( fully office based for the first 4 weeks) flexible to adhoc weekend work as and when required We're seeking a Senior Cyber Security & Network Analyst to support and manage our IT network and security infrastructure, ensuring robust protection of business systems and data. Key Responsibilities Manage day-to-day cyber security operations and incident response Monitor and optimise security tools (SIEM, firewalls, endpoint security) Maintain and support network infrastructure (LAN/WAN, Wi-Fi, L2/L3) Identify threats, conduct investigations, and implement security fixes Support delivery of cyber security projects and ongoing improvements Key Skills & Experience Proven experience in cyber security operations and network infrastructure Strong knowledge of Palo Alto firewalls, SIEM tools, and endpoint security Experience with L2/L3 networking (Nexus, LAN/WAN, Wi-Fi) Vulnerability management (e.g. Qualys) and incident response expertise Understanding of data security, threat analysis, and security best practice Essential Requirements Strong problem-solving and analytical skills Excellent communication and stakeholder management Ability to work independently in a fast-paced environment Methodical, organised, and detail-oriented approach Office Angels is an employment agency and business. We are an equal-opportunities employer who puts expertise, energy and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, abilities and more. By showcasing talents, skills and unique experiences in an inclusive environment, we help individuals thrive. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you. Office Angels acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Office Angels UK is an Equal Opportunities Employer. By applying for this role your details will be submitted to Office Angels. Our Candidate Privacy Information Statement explaining how we will use your information is available on our website.
Patching Analyst Location: Warwickshire - Hybrid/Remote working options available (Candidates must be UK based) Duration: Min 6 months Rate: (Apply online only) Per Day - Inside IR35 via Umbrella Our leading financial services client is undergoing an exciting digital transformation, and to strengthen their security posture, they're launching a dedicated Patch Management service and implementing Ivanti as their enterprise tool to manage OS and third-party vulnerabilities across the IT estate. This is a non technical role - to support the Patch Coordination Manager in setting up the service, utilising the new enterprise tool (Ivanti), creating processes and other governance. Deliverables: Deliverable 1: To support setting up patching service Deliverable 2: Negotiating patching schedules with internal and external stakeholders Deliverable 3: Managing ongoing patching Experience required: Experience with enterprise patching and vulnerability management tools Understanding of enterprise IT environments and patching concepts High level of attention to detail and accuracy Experience producing reports and writing data queries Strong analytical skills with the ability to identify trends and risks Experience working with application or service owners Ability to communicate technical information clearly and professionally Awareness of IT service management principles (e.g. ITIL) Experience supporting audit, risk, or security assurance activities Strong stakeholder management If your profile demonstrates strong and recent experience in the above areas - please submit your application to Jackie Dean at TXP for consideration. TXP takes great pride in representing socially responsible clients who not only prioritise diversity and inclusion but also actively combat social inequality. Together, we have the power to make a profound impact on fostering a more equitable and inclusive society. By working with us, you become part of a movement dedicated to promoting a diverse and inclusive workforce.
May 21, 2026
Contractor
Patching Analyst Location: Warwickshire - Hybrid/Remote working options available (Candidates must be UK based) Duration: Min 6 months Rate: (Apply online only) Per Day - Inside IR35 via Umbrella Our leading financial services client is undergoing an exciting digital transformation, and to strengthen their security posture, they're launching a dedicated Patch Management service and implementing Ivanti as their enterprise tool to manage OS and third-party vulnerabilities across the IT estate. This is a non technical role - to support the Patch Coordination Manager in setting up the service, utilising the new enterprise tool (Ivanti), creating processes and other governance. Deliverables: Deliverable 1: To support setting up patching service Deliverable 2: Negotiating patching schedules with internal and external stakeholders Deliverable 3: Managing ongoing patching Experience required: Experience with enterprise patching and vulnerability management tools Understanding of enterprise IT environments and patching concepts High level of attention to detail and accuracy Experience producing reports and writing data queries Strong analytical skills with the ability to identify trends and risks Experience working with application or service owners Ability to communicate technical information clearly and professionally Awareness of IT service management principles (e.g. ITIL) Experience supporting audit, risk, or security assurance activities Strong stakeholder management If your profile demonstrates strong and recent experience in the above areas - please submit your application to Jackie Dean at TXP for consideration. TXP takes great pride in representing socially responsible clients who not only prioritise diversity and inclusion but also actively combat social inequality. Together, we have the power to make a profound impact on fostering a more equitable and inclusive society. By working with us, you become part of a movement dedicated to promoting a diverse and inclusive workforce.
Senior Cyber Security & Network Analyst What's On Offer: Hybrid (2 days onsite; full-time in office for the first month) Enterprise-scale, highly regulated environment Hands-on cyber security & network projects Strong focus on development and progression Competitive salary + excellent benefits Permanent, full time (Flexibility is required for occasional weekend work when needed) We are pleased to be working with a highly regarded financial services organisation based just outside of Epsom, who are looking for a Senior Cyber Security & Network Analyst to join its growing technology function. It's a hands-on role within a strong team, focused on keeping systems secure while improving the wider network and security setup. This role offers the chance to operate at the intersection of cyber security and network engineering, supporting both day to day operations and strategic projects, so you'll play a vital role in protecting the organisation's infrastructure while contributing to ongoing transformation initiatives. Key Responsibilities: Own day to day cyber security operations, keeping systems and data secure Support and improve security tooling (firewalls, SIEM, endpoint, encryption) Monitor, investigate and respond to security incidents Look after core network infrastructure (LAN/WAN, Wi-Fi, L2/3, remote access, load balancing) Run vulnerability checks and ensure patching is up to date Use SIEM tools to spot and act on potential threats early Support audits, access controls and compliance requirements Get involved in (and lead) security and infrastructure projects Keep documentation and processes up to date Work with third-party suppliers where needed Support disaster recovery and business continuity planning What We're Looking For: 5 - 7+ years' experience in network engineering with strong cyber security exposure Proven experience with: Next-generation firewalls (e.g. Palo Alto) Endpoint detection and response tools SIEM platforms Vulnerability management tools (e.g. Qualys) Cisco switching (Layer 2/3) and enterprise networking Wireless technologies (e.g. Aruba) Network load balancing Strong incident management and threat analysis capabilities Experience working in regulated or compliance driven environments is advantageous Demonstrable experience delivering infrastructure or security projects About You: Strong analytical and problem solving mindset Excellent communication skills, both written and verbal Highly organised with strong attention to detail Proactive, self-motivated and able to work independently Collaborative approach with the ability to work across technical and non-technical teams Refer a friend and earn a retail voucher worth up to 500! Unfortunately, due to high numbers of applications, we are only able to respond to shortlisted applicants. If you have not heard from us within 5 days, please assume that you have not been shortlisted on this occasion. By applying for this vacancy, you accept Lloyd Recruitment Services Privacy and GDPR Policy which can be found on our website and therefore gives us consent to contact you. Lloyd Recruitment Services are acting as a recruitment agency in relation to this vacancy and are an equal opportunities employer.
May 21, 2026
Full time
Senior Cyber Security & Network Analyst What's On Offer: Hybrid (2 days onsite; full-time in office for the first month) Enterprise-scale, highly regulated environment Hands-on cyber security & network projects Strong focus on development and progression Competitive salary + excellent benefits Permanent, full time (Flexibility is required for occasional weekend work when needed) We are pleased to be working with a highly regarded financial services organisation based just outside of Epsom, who are looking for a Senior Cyber Security & Network Analyst to join its growing technology function. It's a hands-on role within a strong team, focused on keeping systems secure while improving the wider network and security setup. This role offers the chance to operate at the intersection of cyber security and network engineering, supporting both day to day operations and strategic projects, so you'll play a vital role in protecting the organisation's infrastructure while contributing to ongoing transformation initiatives. Key Responsibilities: Own day to day cyber security operations, keeping systems and data secure Support and improve security tooling (firewalls, SIEM, endpoint, encryption) Monitor, investigate and respond to security incidents Look after core network infrastructure (LAN/WAN, Wi-Fi, L2/3, remote access, load balancing) Run vulnerability checks and ensure patching is up to date Use SIEM tools to spot and act on potential threats early Support audits, access controls and compliance requirements Get involved in (and lead) security and infrastructure projects Keep documentation and processes up to date Work with third-party suppliers where needed Support disaster recovery and business continuity planning What We're Looking For: 5 - 7+ years' experience in network engineering with strong cyber security exposure Proven experience with: Next-generation firewalls (e.g. Palo Alto) Endpoint detection and response tools SIEM platforms Vulnerability management tools (e.g. Qualys) Cisco switching (Layer 2/3) and enterprise networking Wireless technologies (e.g. Aruba) Network load balancing Strong incident management and threat analysis capabilities Experience working in regulated or compliance driven environments is advantageous Demonstrable experience delivering infrastructure or security projects About You: Strong analytical and problem solving mindset Excellent communication skills, both written and verbal Highly organised with strong attention to detail Proactive, self-motivated and able to work independently Collaborative approach with the ability to work across technical and non-technical teams Refer a friend and earn a retail voucher worth up to 500! Unfortunately, due to high numbers of applications, we are only able to respond to shortlisted applicants. If you have not heard from us within 5 days, please assume that you have not been shortlisted on this occasion. By applying for this vacancy, you accept Lloyd Recruitment Services Privacy and GDPR Policy which can be found on our website and therefore gives us consent to contact you. Lloyd Recruitment Services are acting as a recruitment agency in relation to this vacancy and are an equal opportunities employer.
Senior Network and Security Analyst - L2/L3 Network Infrastructure - Cyber Security - SIEM tools My client who are leaders in their field are looking for a Senior Cyber Security and Network Analyst to provide effective and timely operational support, development and management of the IT network and security infrastructure to meet business requirements and objectives. Responsibilities: Support the delivery and maintenance of the organisation's cyber security and network infrastructure, ensuring systems remain secure, resilient, and aligned to business needs Manage day-to-day security operations, including monitoring SIEM platforms, firewalls, endpoint protection, and threat detection tools Investigate security incidents and vulnerabilities, recommending and implementing corrective actions where required Maintain and support network technologies including LAN/WAN, Wi-Fi, Internet connectivity, and Layer 2/3 infrastructure Contribute to cyber security and infrastructure projects, including the implementation of new security controls and technologies Perform patching, upgrades, and ongoing maintenance across security and network environments to minimise risk and downtime Develop and maintain security policies, operational procedures, technical documentation, and compliance standards Support disaster recovery and business continuity planning, testing, and readiness activities Key Experience & Skills: Palo Alto Firewalls and all associated NG services Endpoint detection and remediation Proven track record in Cyber security and understanding of cyber security analysis, tools and software Experience of implementing, supporting and developing L2/3 network infrastructure Qualys Vulnerability Management Aruba Wifi L2/3 switching - Cisco Nexus Network Load balancing Penetration Testing (3rd Party) Incident management Data Security
May 21, 2026
Full time
Senior Network and Security Analyst - L2/L3 Network Infrastructure - Cyber Security - SIEM tools My client who are leaders in their field are looking for a Senior Cyber Security and Network Analyst to provide effective and timely operational support, development and management of the IT network and security infrastructure to meet business requirements and objectives. Responsibilities: Support the delivery and maintenance of the organisation's cyber security and network infrastructure, ensuring systems remain secure, resilient, and aligned to business needs Manage day-to-day security operations, including monitoring SIEM platforms, firewalls, endpoint protection, and threat detection tools Investigate security incidents and vulnerabilities, recommending and implementing corrective actions where required Maintain and support network technologies including LAN/WAN, Wi-Fi, Internet connectivity, and Layer 2/3 infrastructure Contribute to cyber security and infrastructure projects, including the implementation of new security controls and technologies Perform patching, upgrades, and ongoing maintenance across security and network environments to minimise risk and downtime Develop and maintain security policies, operational procedures, technical documentation, and compliance standards Support disaster recovery and business continuity planning, testing, and readiness activities Key Experience & Skills: Palo Alto Firewalls and all associated NG services Endpoint detection and remediation Proven track record in Cyber security and understanding of cyber security analysis, tools and software Experience of implementing, supporting and developing L2/3 network infrastructure Qualys Vulnerability Management Aruba Wifi L2/3 switching - Cisco Nexus Network Load balancing Penetration Testing (3rd Party) Incident management Data Security
Job Purpose: This role is responsible for overseeing and enhancing the security of our IT systems, data, and networks. You will conduct regular security audits, assessments, and tests, and identify and resolve any vulnerabilities or breaches.You will also develop and implement security policies, procedures, and standards, and ensure compliance with the relevant laws and regulations, and train and educate employees on the best practices and awareness of IT security. Operating Environment: The role operates within the IT Services Team, The IT Services Team includes specialist staff delivering core outputs that are both external-facing and internal key enablers. Framework & Boundaries: The role is responsible for improving the quality, wellbeing and efficiency of our IT Security. The role has external-facing responsibilities and is required and authorised to act as a representative for the organisation. Key accountabilities: Monitor and Inspect: Regularly monitor the network for security threats or breaches. Policy Development: Develop and implement security policies and procedures to safeguard data and systems. Vulnerability Testing: Perform regular vulnerability testing and risk assessments to identify and mitigate security risks. Incident Response: Investigate security incidents and provide post-event analysis and recommendations. Security Tools Management: Manage and maintain Firewalls, intrusion detection and prevention systems, antivirus software, and other security tools. Compliance: Ensure compliance with industry regulations and standards. Training: Train technical and non-technical employees on security protocols, procedures, and best practices. Disaster Recovery: Participate in disaster recovery planning and testing to ensure business continuity in the event of a security incident. Job impact: Risk Mitigation: Implementing robust security measures to significantly reduce the risk of data breaches, cyber-attacks, and other security incidents. Proactive Threat Management: Identifying and addressing vulnerabilities before they can be exploited, thereby enhancing the overall security posture of the organisation. Ensuring that the organisation complies with relevant laws, regulations, and industry standards (eg, GDPR, HIPAA, PCI-DSS), thereby avoiding legal penalties and enhancing trust with stakeholders. Maintaining a state of readiness for security audits and assessments, ensuring that all security controls and measures are well-documented and effective. Developing and implementing disaster recovery plans to ensure business continuity in the event of a security incident or data loss. Efficiently managing and mitigating the impact of security incidents to minimise downtime and operational disruption. Knowledge and experience: Technical Proficiency: In-depth knowledge of network security software - Meraki Cloud, Cloudflare, Mimecast, encryption technologies, and other security hardware and software tools. Current Trends: Stay current with the latest trends in cybersecurity threats and defence strategies. Problem-Solving: Strong problem-solving skills and the ability to work well under pressure. Communication: Good communication skills to effectively train employees and coordinate with other departments. Functional/technical skills: Firewall Management: Proficiency in configuring and managing Firewalls to protect network boundaries. Intrusion Detection/Prevention Systems (IDS/IPS): Experience with IDS/IPS to monitor and respond to potential threats. VPNs and Remote Access: Knowledge of setting up and managing Virtual Private Networks (VPNs) and secure remote access solutions. Patch Management: Ability to manage and deploy security patches and updates to systems and applications. Endpoint Security: Experience with endpoint protection solutions, such as antivirus and anti-malware software. Proficiency in implementing and managing encryption technologies to protect data at rest and in transit. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website.
Mar 30, 2026
Full time
Job Purpose: This role is responsible for overseeing and enhancing the security of our IT systems, data, and networks. You will conduct regular security audits, assessments, and tests, and identify and resolve any vulnerabilities or breaches.You will also develop and implement security policies, procedures, and standards, and ensure compliance with the relevant laws and regulations, and train and educate employees on the best practices and awareness of IT security. Operating Environment: The role operates within the IT Services Team, The IT Services Team includes specialist staff delivering core outputs that are both external-facing and internal key enablers. Framework & Boundaries: The role is responsible for improving the quality, wellbeing and efficiency of our IT Security. The role has external-facing responsibilities and is required and authorised to act as a representative for the organisation. Key accountabilities: Monitor and Inspect: Regularly monitor the network for security threats or breaches. Policy Development: Develop and implement security policies and procedures to safeguard data and systems. Vulnerability Testing: Perform regular vulnerability testing and risk assessments to identify and mitigate security risks. Incident Response: Investigate security incidents and provide post-event analysis and recommendations. Security Tools Management: Manage and maintain Firewalls, intrusion detection and prevention systems, antivirus software, and other security tools. Compliance: Ensure compliance with industry regulations and standards. Training: Train technical and non-technical employees on security protocols, procedures, and best practices. Disaster Recovery: Participate in disaster recovery planning and testing to ensure business continuity in the event of a security incident. Job impact: Risk Mitigation: Implementing robust security measures to significantly reduce the risk of data breaches, cyber-attacks, and other security incidents. Proactive Threat Management: Identifying and addressing vulnerabilities before they can be exploited, thereby enhancing the overall security posture of the organisation. Ensuring that the organisation complies with relevant laws, regulations, and industry standards (eg, GDPR, HIPAA, PCI-DSS), thereby avoiding legal penalties and enhancing trust with stakeholders. Maintaining a state of readiness for security audits and assessments, ensuring that all security controls and measures are well-documented and effective. Developing and implementing disaster recovery plans to ensure business continuity in the event of a security incident or data loss. Efficiently managing and mitigating the impact of security incidents to minimise downtime and operational disruption. Knowledge and experience: Technical Proficiency: In-depth knowledge of network security software - Meraki Cloud, Cloudflare, Mimecast, encryption technologies, and other security hardware and software tools. Current Trends: Stay current with the latest trends in cybersecurity threats and defence strategies. Problem-Solving: Strong problem-solving skills and the ability to work well under pressure. Communication: Good communication skills to effectively train employees and coordinate with other departments. Functional/technical skills: Firewall Management: Proficiency in configuring and managing Firewalls to protect network boundaries. Intrusion Detection/Prevention Systems (IDS/IPS): Experience with IDS/IPS to monitor and respond to potential threats. VPNs and Remote Access: Knowledge of setting up and managing Virtual Private Networks (VPNs) and secure remote access solutions. Patch Management: Ability to manage and deploy security patches and updates to systems and applications. Endpoint Security: Experience with endpoint protection solutions, such as antivirus and anti-malware software. Proficiency in implementing and managing encryption technologies to protect data at rest and in transit. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website.
Senior Cyber Security Analyst Location: London hybrid working IR35: Inside via Triumph Consultants you will be paid PAYE for the length of the 3 month contract It is essential for candidates to have advanced proficiency in using Splunk for security monitoring, log analysis, threat detection, and reporting The role: The Cyber Defence team at the delivers threat intelligence, threat detection, incident response, and vulnerability management to defend both internal IT infrastructure and citizen-facing services. They are looking for a Senior Cyber Security Analyst with proven experience in incident response and Splunk to take a leading role in strengthening the organisation's cyber defence capability. Key Accountabilities: Lead investigations into security alerts and cyber incidents. Perform forensic analysis of systems, files, network traffic, and cloud environments. Drive technical response actions including containment, eradication, and recovery. Coordinate cyber incident responses across teams and stakeholders. Identify lessons learned and embed continual improvement. Develop and update incident response playbooks and knowledge base articles. Act as an escalation point and mentor for security analysts. Provide leadership and line management within the team. Join the out-of-hours on-call rota to support 24/7 incident response. Key Criteria: 5+ years' experience investigating and responding to cyber incidents in large organisations. Strong track record with incident response coordination. Significant hands-on experience with Splunk and security tools (eg, EDR, SIEM). Analytical, problem-solving, and forensic investigation skills. Proven experience coaching or mentoring junior staff. Strong understanding of threat actor tools, techniques, and procedures. Experience of cloud environments such as AWS Excellent written and verbal communication skills. How to Apply Quote the Job Title and Reference Number in your application. Submit your CV in Word format. Applications are reviewed on a rolling basis-early submission is recommended. We will also add your details to our mail out lists. Please note you may receive details of roles outside of your immediate vicinity, as many candidates are able to relocate temporarily for work. Please disregard any such emails that are not of interest and let us know if you would rather not receive such mailouts and/or if you wish us to delete your details and prefer to apply direct to our advertised roles. If you do not hear from us within three working days, unfortunately your application has not been shortlisted on this occasion. Thank you for your interest in working with us.
Oct 07, 2025
Contractor
Senior Cyber Security Analyst Location: London hybrid working IR35: Inside via Triumph Consultants you will be paid PAYE for the length of the 3 month contract It is essential for candidates to have advanced proficiency in using Splunk for security monitoring, log analysis, threat detection, and reporting The role: The Cyber Defence team at the delivers threat intelligence, threat detection, incident response, and vulnerability management to defend both internal IT infrastructure and citizen-facing services. They are looking for a Senior Cyber Security Analyst with proven experience in incident response and Splunk to take a leading role in strengthening the organisation's cyber defence capability. Key Accountabilities: Lead investigations into security alerts and cyber incidents. Perform forensic analysis of systems, files, network traffic, and cloud environments. Drive technical response actions including containment, eradication, and recovery. Coordinate cyber incident responses across teams and stakeholders. Identify lessons learned and embed continual improvement. Develop and update incident response playbooks and knowledge base articles. Act as an escalation point and mentor for security analysts. Provide leadership and line management within the team. Join the out-of-hours on-call rota to support 24/7 incident response. Key Criteria: 5+ years' experience investigating and responding to cyber incidents in large organisations. Strong track record with incident response coordination. Significant hands-on experience with Splunk and security tools (eg, EDR, SIEM). Analytical, problem-solving, and forensic investigation skills. Proven experience coaching or mentoring junior staff. Strong understanding of threat actor tools, techniques, and procedures. Experience of cloud environments such as AWS Excellent written and verbal communication skills. How to Apply Quote the Job Title and Reference Number in your application. Submit your CV in Word format. Applications are reviewed on a rolling basis-early submission is recommended. We will also add your details to our mail out lists. Please note you may receive details of roles outside of your immediate vicinity, as many candidates are able to relocate temporarily for work. Please disregard any such emails that are not of interest and let us know if you would rather not receive such mailouts and/or if you wish us to delete your details and prefer to apply direct to our advertised roles. If you do not hear from us within three working days, unfortunately your application has not been shortlisted on this occasion. Thank you for your interest in working with us.
SOC Analyst - Corsham - Circa 46,000 per annum - On-site (5 days per week) Permanent SC Clearance Required. Deerfoot Recruitment is working on behalf of a leading organisation seeking to hire an experienced SOC Analyst to join their Security Operations Centre based in Corsham . This is a full-time, on-site role requiring 5 days per week presence. The successful candidate will play a vital role in monitoring, analysing, and responding to security threats using tools such as Splunk, Flexera, and other industry-standard SIEM platforms. You'll investigate security incidents, coordinate with other IT and security teams, and support continuous improvement of threat detection and response processes. Key Requirements: Previous experience in a SOC Analyst or similar cybersecurity role Strong expertise in Splunk or similar SIEM tools Familiarity with Flexera for vulnerability management Understanding of firewalls, network protocols, intrusion detection/prevention systems Relevant certifications (e.g., CISSP, CEH, Splunk) advantageous Must be eligible for Developed Vetting (DV) clearance , requiring 10 years continuous UK residency Please Note: All offers will be subject to standard pre-employment checks including ID, employment history (last 3 years), immigration status, and an unspent criminal record check. This is an excellent opportunity to join a forward-thinking, inclusive environment with strong investment in training, development, and employee wellbeing. To apply or learn more, please contact us today at Deerfoot Recruitment . Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate 1 to The Born Free Foundation. We are a Climate Action Workforce in partnership with Ecologi. If this role isn't right for you, explore our referral reward program with payouts at interview and placement milestones. Visit our website for details. Deerfoot Recruitment Solutions Ltd is acting as an Employment Agency in relation to this vacancy.
Oct 07, 2025
Full time
SOC Analyst - Corsham - Circa 46,000 per annum - On-site (5 days per week) Permanent SC Clearance Required. Deerfoot Recruitment is working on behalf of a leading organisation seeking to hire an experienced SOC Analyst to join their Security Operations Centre based in Corsham . This is a full-time, on-site role requiring 5 days per week presence. The successful candidate will play a vital role in monitoring, analysing, and responding to security threats using tools such as Splunk, Flexera, and other industry-standard SIEM platforms. You'll investigate security incidents, coordinate with other IT and security teams, and support continuous improvement of threat detection and response processes. Key Requirements: Previous experience in a SOC Analyst or similar cybersecurity role Strong expertise in Splunk or similar SIEM tools Familiarity with Flexera for vulnerability management Understanding of firewalls, network protocols, intrusion detection/prevention systems Relevant certifications (e.g., CISSP, CEH, Splunk) advantageous Must be eligible for Developed Vetting (DV) clearance , requiring 10 years continuous UK residency Please Note: All offers will be subject to standard pre-employment checks including ID, employment history (last 3 years), immigration status, and an unspent criminal record check. This is an excellent opportunity to join a forward-thinking, inclusive environment with strong investment in training, development, and employee wellbeing. To apply or learn more, please contact us today at Deerfoot Recruitment . Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate 1 to The Born Free Foundation. We are a Climate Action Workforce in partnership with Ecologi. If this role isn't right for you, explore our referral reward program with payouts at interview and placement milestones. Visit our website for details. Deerfoot Recruitment Solutions Ltd is acting as an Employment Agency in relation to this vacancy.
Our lead Cyber Security Vulnerability Manager will be shaping our vulnerability strategy, leading a team of analysts, and driving remediation across digital services. Working closely with security and operational teams, you'll reduce risk, ensure compliance, and build a culture of cyber resilience. Pay up to £89,995, plus 28 click apply for full job details
Oct 05, 2025
Full time
Our lead Cyber Security Vulnerability Manager will be shaping our vulnerability strategy, leading a team of analysts, and driving remediation across digital services. Working closely with security and operational teams, you'll reduce risk, ensure compliance, and build a culture of cyber resilience. Pay up to £89,995, plus 28 click apply for full job details
Security Analyst UK Financial Services Compliance & Technical Security North West England 35k- 45k + Benefits/Progression Zachary Daniels are delighted to be working with a well-established UK business during an exciting period of growth, to recruit a Security Analyst . This is a company investing heavily in technology, compliance, and security. In this role, you'll be part of a collaborative team, working across compliance, risk, and technical security to protect the business, strengthen frameworks, and support transformation projects. It's a varied position offering real scope to grow both your governance and technical skills. Benefits You'll Enjoy: Competitive salary up to (DOE) Generous annual leave entitlement, rising with service Enhanced maternity, paternity, and parental leave Life assurance Regular social events Role Responsibilities: Identify and assess security risks, ensuring mitigation plans are in place. Support the development and maintenance of security policies and standards. Assist with third-party security reviews and supplier risk management. Provide oversight of vulnerability assessments. Conduct architecture reviews for new systems and services. Evaluate technical controls and recommend improvements. Support the rollout of new security tools and technologies. Provide input into incident management and security metrics reporting. About You: 2+ years' experience in an security role. Strong understanding of risk assessment methodologies. Knowledge of frameworks such as ISO 27001. Experience with vulnerability management and technical controls. Excellent problem-solving skills with strong attention to detail. Confident communicator with the ability to explain security concepts to non-technical stakeholders. This is more than just a security role, it's a chance to join a forward-thinking business, develop your expertise across both compliance and technical domains, and make a real impact in protecting and enabling the organisation. Apply today with your most up-to-date CV! BBBH34361
Oct 03, 2025
Full time
Security Analyst UK Financial Services Compliance & Technical Security North West England 35k- 45k + Benefits/Progression Zachary Daniels are delighted to be working with a well-established UK business during an exciting period of growth, to recruit a Security Analyst . This is a company investing heavily in technology, compliance, and security. In this role, you'll be part of a collaborative team, working across compliance, risk, and technical security to protect the business, strengthen frameworks, and support transformation projects. It's a varied position offering real scope to grow both your governance and technical skills. Benefits You'll Enjoy: Competitive salary up to (DOE) Generous annual leave entitlement, rising with service Enhanced maternity, paternity, and parental leave Life assurance Regular social events Role Responsibilities: Identify and assess security risks, ensuring mitigation plans are in place. Support the development and maintenance of security policies and standards. Assist with third-party security reviews and supplier risk management. Provide oversight of vulnerability assessments. Conduct architecture reviews for new systems and services. Evaluate technical controls and recommend improvements. Support the rollout of new security tools and technologies. Provide input into incident management and security metrics reporting. About You: 2+ years' experience in an security role. Strong understanding of risk assessment methodologies. Knowledge of frameworks such as ISO 27001. Experience with vulnerability management and technical controls. Excellent problem-solving skills with strong attention to detail. Confident communicator with the ability to explain security concepts to non-technical stakeholders. This is more than just a security role, it's a chance to join a forward-thinking business, develop your expertise across both compliance and technical domains, and make a real impact in protecting and enabling the organisation. Apply today with your most up-to-date CV! BBBH34361
