Cyber Security SOC Analyst London - Hybrid working (3 days in office / 2 days remote) 30k- 36k + Benefits and Paid Training Exams towards certifications relevant for your role fully paid for! My client is an award winning London based MSP who are looking to hire a Cyber Security SOC Analyst. As a Cyber Security SOC Support Analyst, you will be primarily responsible for monitoring systems and making the initial response to any flags or alerts that come in via support tickets or telephone tickets. One of the key responsibilities is also to review and categorise potential threats in order of priority and dismiss any false alarms, whilst also gathering information and escalating the most urgent threats to Escalations Management Team. Cyber Security SOC Analyst Job Specifications: Cyber Security SOC Analyst Main Tasks and Responsibilities Provide triage and first line of defence for all cyber security incidents within the organisation and as part of our Managed Security Service Take ownership and provide remedial actions to ensure that Cyber Security Threats are mitigated as per Playbooks provided by the Cyber Security Team or escalate incidents to Escalations Management Team for further information/support Manage technical and stakeholder incident reporting via concise communications Manage client communication channels during an active incident Liaise with third party service suppliers where necessary, logging tickets and act as a central point of contact for active incident Provide operational support to wider Cyber Security Team on security incidents Provide a professional and customer-focused service through the life cycle of each ticket; manage customer expectations by keeping customer informed of progress. Cyber Security SOC Analyst Essential Experience: Preference given to candidates with MSP background Minimum 1 years proven experience in a Tier 1 Cyber Security SOC Support Analyst role Working knowledge of Microsoft Defender XDR and Microsoft Sentinel SIEM technologies Working knowledge of Microsoft Defender suite including Endpoint Detection and Response Understanding of key Microsoft 365 Cloud Technologies from a threat landscape perspective Cyber Security SOC Analyst Essential Certification: SC-200 Microsoft Certified: Security Operations Analyst Associate SC-900 Microsoft Certified: Security Compliance and Identity Fundamental Cyber Security SOC Analyst Personal Skills: Highly Motivated Can do attitude Attention to detail Excellent communication Proven client service skills Ability to work under pressure Willingness to work flexibly as required Good telephone etiquette Cyber Security SOC Analyst Benefits Hours: 7.5 hours a day on a fortnightly shift pattern (8am to 4.30pm or 9am to 5.30pm or 9.30am to 6pm) Holidays: 20 days per year, plus bank holidays. After 3 years continuous service, an extra day annual leave up to 25 days. Benefits: Competitive Package Offered - Gym membership, Vitality at Work Business rewards & benefits, Cycle to Work scheme, quarterly team nights out/events, monthly games night with pizzas and breakfast on Wednesdays! Services advertised by Gold Group are those of an Agency and/or an Employment Business. We will contact you within the next 14 days if you are selected for interview. For a copy of our privacy policy please visit our website.
May 30, 2026
Full time
Cyber Security SOC Analyst London - Hybrid working (3 days in office / 2 days remote) 30k- 36k + Benefits and Paid Training Exams towards certifications relevant for your role fully paid for! My client is an award winning London based MSP who are looking to hire a Cyber Security SOC Analyst. As a Cyber Security SOC Support Analyst, you will be primarily responsible for monitoring systems and making the initial response to any flags or alerts that come in via support tickets or telephone tickets. One of the key responsibilities is also to review and categorise potential threats in order of priority and dismiss any false alarms, whilst also gathering information and escalating the most urgent threats to Escalations Management Team. Cyber Security SOC Analyst Job Specifications: Cyber Security SOC Analyst Main Tasks and Responsibilities Provide triage and first line of defence for all cyber security incidents within the organisation and as part of our Managed Security Service Take ownership and provide remedial actions to ensure that Cyber Security Threats are mitigated as per Playbooks provided by the Cyber Security Team or escalate incidents to Escalations Management Team for further information/support Manage technical and stakeholder incident reporting via concise communications Manage client communication channels during an active incident Liaise with third party service suppliers where necessary, logging tickets and act as a central point of contact for active incident Provide operational support to wider Cyber Security Team on security incidents Provide a professional and customer-focused service through the life cycle of each ticket; manage customer expectations by keeping customer informed of progress. Cyber Security SOC Analyst Essential Experience: Preference given to candidates with MSP background Minimum 1 years proven experience in a Tier 1 Cyber Security SOC Support Analyst role Working knowledge of Microsoft Defender XDR and Microsoft Sentinel SIEM technologies Working knowledge of Microsoft Defender suite including Endpoint Detection and Response Understanding of key Microsoft 365 Cloud Technologies from a threat landscape perspective Cyber Security SOC Analyst Essential Certification: SC-200 Microsoft Certified: Security Operations Analyst Associate SC-900 Microsoft Certified: Security Compliance and Identity Fundamental Cyber Security SOC Analyst Personal Skills: Highly Motivated Can do attitude Attention to detail Excellent communication Proven client service skills Ability to work under pressure Willingness to work flexibly as required Good telephone etiquette Cyber Security SOC Analyst Benefits Hours: 7.5 hours a day on a fortnightly shift pattern (8am to 4.30pm or 9am to 5.30pm or 9.30am to 6pm) Holidays: 20 days per year, plus bank holidays. After 3 years continuous service, an extra day annual leave up to 25 days. Benefits: Competitive Package Offered - Gym membership, Vitality at Work Business rewards & benefits, Cycle to Work scheme, quarterly team nights out/events, monthly games night with pizzas and breakfast on Wednesdays! Services advertised by Gold Group are those of an Agency and/or an Employment Business. We will contact you within the next 14 days if you are selected for interview. For a copy of our privacy policy please visit our website.
SOC Analyst 75.48 p/hr (Inside IR35) Onsite Hereford 12 months Level 1 SOC Cyber Analyst to join the TMCT security team to serve as the first internal responder to alerts generated by our outsourced SOC provider. In this role the individual will perform initial triage, conduct low level investigations, interact directly with end users and asset owners, and escalate verified incidents for advanced analysis and response. The level 1 SOC analyst will act as a key link between our internal security team and the external SOC, ensuring that potential threats are quickly validated, documented, and routed through appropriate channels for resolution. Duties: Alert Triage: Review and assess alerts escalated by the outsourced SOC; validate their accuracy and determine potential impact. Initial Investigation: Perform first-line investigation using available tools (SIEM, Device Logs, firewall logs and SIEM alerts). User Interaction: Engage with affected end users or asset owners to collect additional information, verify events, or guide immediate containment steps (e.g.asset isolation, password reset). Escalation: Escalate confirmed or high severity incidents to the Level 2 SOC (outsourced) or internal incident response teams, ensuring complete and accurate handoff documentation. Incident Documentation: Create and maintain detailed case notes, timelines, and evidence within the case management system to support investigations and compliance requirements. Collaboration: Serve as the coordination point between the security team and the external SOC partner, maintaining strong communication and situational awareness. Playbook Execution: follow established triage and escalation playbooks; suggest improvements based on recurring issues or inefficiencies. Threat Awareness: Maintain awareness of current cyber threats, attacker techniques (MITRE ATT&CK), and industry trends relevant to the organisations threat landscape. Essential: 2-4 years of experience in a SOC, IT Operations, or security support role. Understanding of key security concepts including malware, phishing, lateral movement and privilege escalation. Working knowledge of network fundamentals, windows/Linux system logs and authentication systems. Working knowledge of SIEM platforms (e.g. Microsoft sentinel, Splunk, Elastic, QRadar). Desirable: Awareness of security frameworks and methodologies (NIST CSF, MITRE ATT&CK, ISO27001). Qualifications: Desirable: CompTIA Security+, CySA+ or other entry level certification.
May 30, 2026
Contractor
SOC Analyst 75.48 p/hr (Inside IR35) Onsite Hereford 12 months Level 1 SOC Cyber Analyst to join the TMCT security team to serve as the first internal responder to alerts generated by our outsourced SOC provider. In this role the individual will perform initial triage, conduct low level investigations, interact directly with end users and asset owners, and escalate verified incidents for advanced analysis and response. The level 1 SOC analyst will act as a key link between our internal security team and the external SOC, ensuring that potential threats are quickly validated, documented, and routed through appropriate channels for resolution. Duties: Alert Triage: Review and assess alerts escalated by the outsourced SOC; validate their accuracy and determine potential impact. Initial Investigation: Perform first-line investigation using available tools (SIEM, Device Logs, firewall logs and SIEM alerts). User Interaction: Engage with affected end users or asset owners to collect additional information, verify events, or guide immediate containment steps (e.g.asset isolation, password reset). Escalation: Escalate confirmed or high severity incidents to the Level 2 SOC (outsourced) or internal incident response teams, ensuring complete and accurate handoff documentation. Incident Documentation: Create and maintain detailed case notes, timelines, and evidence within the case management system to support investigations and compliance requirements. Collaboration: Serve as the coordination point between the security team and the external SOC partner, maintaining strong communication and situational awareness. Playbook Execution: follow established triage and escalation playbooks; suggest improvements based on recurring issues or inefficiencies. Threat Awareness: Maintain awareness of current cyber threats, attacker techniques (MITRE ATT&CK), and industry trends relevant to the organisations threat landscape. Essential: 2-4 years of experience in a SOC, IT Operations, or security support role. Understanding of key security concepts including malware, phishing, lateral movement and privilege escalation. Working knowledge of network fundamentals, windows/Linux system logs and authentication systems. Working knowledge of SIEM platforms (e.g. Microsoft sentinel, Splunk, Elastic, QRadar). Desirable: Awareness of security frameworks and methodologies (NIST CSF, MITRE ATT&CK, ISO27001). Qualifications: Desirable: CompTIA Security+, CySA+ or other entry level certification.
Our OEM Client based in Gaydon, is searching for a Systems Engineer to join their team, Inside IR35. This is a contract position with a proposed end date of 31st March 2027. Umbrella Pay Rate: £33.64 per hour. Talented individuals with experience of real-world system engineering experience (such as in the automotive, aerospace, defence or rail industry) that would like to shape the way we engineer our products and services in the future. Key Accountabilities and Responsibilities: Develop and maintain systems engineering competence in the squad. Ensure the requirements authored are robust and meet quality standards by developing the process and methods. Gather end-user (system engineer) needs, wants and concerns. Maintain understanding of system engineering process, regulatory and legislative landscape. Work with business analysts and process experts to develop compliant and efficient processes. Identify key performance indicators and measures for system engineering processes. Work with domain product owners to identify inputs to product roadmaps for delivery of process, methods, tools, training, etc Guide domain product development (process, methods, tools, training, etc.) by supporting factory product owners and developers to understand system engineering principles and practices. Skills Required: Previous experience as a System Engineering practitioner across the whole System Engineering lifecycle (in a complex electrical/electronic, software or mechatronic environment). Previous experience in application of System Engineering tools and techniques in the real world (preferably in the defence, aerospace, rail or automotive industry). Previous experience of influencing business mindset and complex process change. Significant experience of SE toolset for example, IBM DOORS, Rhapsody, Catia Magic, etc Extensive experience of requirements management practices in line with Systems Engineering processes. Real world experience of system engineering process and method development. Knowledge of system modelling, FMA, Cyber security, Functional safety practices. Education Required: Engineering Degree preferably.
May 30, 2026
Contractor
Our OEM Client based in Gaydon, is searching for a Systems Engineer to join their team, Inside IR35. This is a contract position with a proposed end date of 31st March 2027. Umbrella Pay Rate: £33.64 per hour. Talented individuals with experience of real-world system engineering experience (such as in the automotive, aerospace, defence or rail industry) that would like to shape the way we engineer our products and services in the future. Key Accountabilities and Responsibilities: Develop and maintain systems engineering competence in the squad. Ensure the requirements authored are robust and meet quality standards by developing the process and methods. Gather end-user (system engineer) needs, wants and concerns. Maintain understanding of system engineering process, regulatory and legislative landscape. Work with business analysts and process experts to develop compliant and efficient processes. Identify key performance indicators and measures for system engineering processes. Work with domain product owners to identify inputs to product roadmaps for delivery of process, methods, tools, training, etc Guide domain product development (process, methods, tools, training, etc.) by supporting factory product owners and developers to understand system engineering principles and practices. Skills Required: Previous experience as a System Engineering practitioner across the whole System Engineering lifecycle (in a complex electrical/electronic, software or mechatronic environment). Previous experience in application of System Engineering tools and techniques in the real world (preferably in the defence, aerospace, rail or automotive industry). Previous experience of influencing business mindset and complex process change. Significant experience of SE toolset for example, IBM DOORS, Rhapsody, Catia Magic, etc Extensive experience of requirements management practices in line with Systems Engineering processes. Real world experience of system engineering process and method development. Knowledge of system modelling, FMA, Cyber security, Functional safety practices. Education Required: Engineering Degree preferably.
Talentmark are recruiting for an Operations Analyst to join a company in the animal health and pharmaceutical industry on a contract basis for 12 months. This is a hybrid role with 2 days per week on site in Hook and 3 home working. Salary: From 18.72 per hour to 24.42 per hour PAYE dependant upon experience. Operations Analyst Role: Engage in regular meetings with regional teams to ensure a standardised approach to operations management Identify and implement opportunities to streamline current portfolio processes Act as a technical liaison between Workplace Operations and Technical Support (TS) engineers Provide technical support for escalated operational issues from the Workplace operations team Working with the Global Teams, external Service Partners and Delivery teams to identify and implement Automation and Service Improvements Your Background : Hold a relevant degree or have equivalent working experience Strong technical problem-solving skills with the ability to handle high-level escalations. Awareness of cybersecurity practices and their contribution to maintaining global cyber hygiene Experience with ServiceNow and NexthinkDEX products would be an advantage Excellent communication and stakeholder management skills Company: Our client specialises in animal health. They advance their vision of food and companionship, enriching life by developing innovative solutions that protect and enhance animal health. Apply: For more information, or to apply for this Operations Analyst , please contact the Key Accounts Team on (phone number removed) or email (url removed). Please quote reference (Apply online only) . It is essential that applicants hold entitlement to work in the UK Please note: This role may be subject to a satisfactory basic Disclosure and Barring Service (DBS) check.
May 30, 2026
Contractor
Talentmark are recruiting for an Operations Analyst to join a company in the animal health and pharmaceutical industry on a contract basis for 12 months. This is a hybrid role with 2 days per week on site in Hook and 3 home working. Salary: From 18.72 per hour to 24.42 per hour PAYE dependant upon experience. Operations Analyst Role: Engage in regular meetings with regional teams to ensure a standardised approach to operations management Identify and implement opportunities to streamline current portfolio processes Act as a technical liaison between Workplace Operations and Technical Support (TS) engineers Provide technical support for escalated operational issues from the Workplace operations team Working with the Global Teams, external Service Partners and Delivery teams to identify and implement Automation and Service Improvements Your Background : Hold a relevant degree or have equivalent working experience Strong technical problem-solving skills with the ability to handle high-level escalations. Awareness of cybersecurity practices and their contribution to maintaining global cyber hygiene Experience with ServiceNow and NexthinkDEX products would be an advantage Excellent communication and stakeholder management skills Company: Our client specialises in animal health. They advance their vision of food and companionship, enriching life by developing innovative solutions that protect and enhance animal health. Apply: For more information, or to apply for this Operations Analyst , please contact the Key Accounts Team on (phone number removed) or email (url removed). Please quote reference (Apply online only) . It is essential that applicants hold entitlement to work in the UK Please note: This role may be subject to a satisfactory basic Disclosure and Barring Service (DBS) check.
Senior Cyber Security & Network Analyst The Opportunity in a Nutshell On behalf of our client, a leader in their industry , we are seeking a senior, hands-on technology professional with a deep foundation in Network Engineering (minimum 5-7 years of experience) coupled with strong Cyber Security expertise. This is not a purely monitoring role; the client requires an engineer who can lead from the front, physically and logically build infrastructure, and own complex technical projects from inception to completion. You will ensure the client's digital ecosystem remains resilient, highly performant, and securely aligned with evolving business objectives. Core Responsibilities As a senior technical anchor within the operations team, your daily focus will heavily lean into robust network engineering, system build-outs, and defensive security protocols: Infrastructure Installations & Kit Builds: Act as the technical lead for configuring, assembling, installing, and deploying new network and security hardware. Ensure all engineering documentation is immaculately maintained. Network Architecture Ownership: Maintain, optimize, and scale the client's Layer 2/3 environment, specifically managing Cisco Nexus routing, LAN/WAN frameworks, wireless networks, B2B links, and network load balancing solutions. Project Leadership: Spearhead mid-to-large scale infrastructure initiatives, ensuring deliverables are hit on time and within budget. You will be expected to demonstrate the tangible business value your technical decisions bring to the overall deployment process. Infrastructure Defense & Monitoring: Oversee next-generation Palo Alto firewalls, intrusion prevention systems, and data encryption protocols. Monitor SIEM platforms and threat feeds to isolate, investigate, and remediate digital vulnerabilities. Collaboration & Mentorship: Partner closely with internal technical squads and coordinate with external vendor partners. Provide coaching and technical advice to team members to foster a culture of continuous improvement. What The Client Is Looking For To thrive in this fast-paced environment, candidates must possess a blend of seasoned engineering experience and a structured, methodical approach to problem-solving. Technical Competencies: Minimum of 5-7 years of dedicated experience implementing, supporting, and developing complex L2/3 network architectures. Proven track record of leading and performing new network installations and physical/logical kit builds. Deep technical proficiency configuring and supporting L2/3 Cisco Nexus switching frameworks and Aruba Wi-Fi environments. Solid understanding of Network Load Balancing mechanisms and coordinating third-party Penetration Testing. Strong secondary expertise in Cyber Security, specifically administering Palo Alto Firewalls alongside their advanced next-gen service suites. Background utilizing Qualys Vulnerability Management tools and endpoint detection/remediation software. Previous experience navigating SOX compliance frameworks and handling fast-paced data environments is highly desirable. Application Requirement: Project Examples Our client values real-world execution. As part of your application, please be prepared to provide specific examples of projects where you led from the front on network or security kit deployments. We will look for details on: The scope of the hardware/software deployment you personally executed. The specific technical challenges you overcame during the installation or build phase. The tangible value and security/performance improvements your role brought to that process. Growth, Support & Culture Our client believes in empowering their people to reach their full potential. Joining this team means benefiting from: Structured Progression: Clear objective setting, tailored 1:1 mentorship sessions, and consistent coaching to elevate your architectural capabilities. Empowerment & Autonomy: An inclusive culture that grants ownership of meaningful outcomes and encourages exploration of development opportunities outside your immediate remit. A Collaborative Space: A supportive management philosophy designed to give employees the resources they need to excel while allowing them to bring their authentic selves to work every day.
May 30, 2026
Full time
Senior Cyber Security & Network Analyst The Opportunity in a Nutshell On behalf of our client, a leader in their industry , we are seeking a senior, hands-on technology professional with a deep foundation in Network Engineering (minimum 5-7 years of experience) coupled with strong Cyber Security expertise. This is not a purely monitoring role; the client requires an engineer who can lead from the front, physically and logically build infrastructure, and own complex technical projects from inception to completion. You will ensure the client's digital ecosystem remains resilient, highly performant, and securely aligned with evolving business objectives. Core Responsibilities As a senior technical anchor within the operations team, your daily focus will heavily lean into robust network engineering, system build-outs, and defensive security protocols: Infrastructure Installations & Kit Builds: Act as the technical lead for configuring, assembling, installing, and deploying new network and security hardware. Ensure all engineering documentation is immaculately maintained. Network Architecture Ownership: Maintain, optimize, and scale the client's Layer 2/3 environment, specifically managing Cisco Nexus routing, LAN/WAN frameworks, wireless networks, B2B links, and network load balancing solutions. Project Leadership: Spearhead mid-to-large scale infrastructure initiatives, ensuring deliverables are hit on time and within budget. You will be expected to demonstrate the tangible business value your technical decisions bring to the overall deployment process. Infrastructure Defense & Monitoring: Oversee next-generation Palo Alto firewalls, intrusion prevention systems, and data encryption protocols. Monitor SIEM platforms and threat feeds to isolate, investigate, and remediate digital vulnerabilities. Collaboration & Mentorship: Partner closely with internal technical squads and coordinate with external vendor partners. Provide coaching and technical advice to team members to foster a culture of continuous improvement. What The Client Is Looking For To thrive in this fast-paced environment, candidates must possess a blend of seasoned engineering experience and a structured, methodical approach to problem-solving. Technical Competencies: Minimum of 5-7 years of dedicated experience implementing, supporting, and developing complex L2/3 network architectures. Proven track record of leading and performing new network installations and physical/logical kit builds. Deep technical proficiency configuring and supporting L2/3 Cisco Nexus switching frameworks and Aruba Wi-Fi environments. Solid understanding of Network Load Balancing mechanisms and coordinating third-party Penetration Testing. Strong secondary expertise in Cyber Security, specifically administering Palo Alto Firewalls alongside their advanced next-gen service suites. Background utilizing Qualys Vulnerability Management tools and endpoint detection/remediation software. Previous experience navigating SOX compliance frameworks and handling fast-paced data environments is highly desirable. Application Requirement: Project Examples Our client values real-world execution. As part of your application, please be prepared to provide specific examples of projects where you led from the front on network or security kit deployments. We will look for details on: The scope of the hardware/software deployment you personally executed. The specific technical challenges you overcame during the installation or build phase. The tangible value and security/performance improvements your role brought to that process. Growth, Support & Culture Our client believes in empowering their people to reach their full potential. Joining this team means benefiting from: Structured Progression: Clear objective setting, tailored 1:1 mentorship sessions, and consistent coaching to elevate your architectural capabilities. Empowerment & Autonomy: An inclusive culture that grants ownership of meaningful outcomes and encourages exploration of development opportunities outside your immediate remit. A Collaborative Space: A supportive management philosophy designed to give employees the resources they need to excel while allowing them to bring their authentic selves to work every day.
IT Security Analyst - 40,000/ 45,000 per annum - Brandesburton (Hybrid) Principal IT are proud to be supporting a leading provider of modular buildings for various sectors, such as education, healthcare, defence, and justice. This is an excellent opportunity for someone with a passion for cybersecurity who is looking to play a key role in strengthening and developing an organisation's overall security posture and cyber resilience strategy. Working closely with the Infrastructure & Security Manager, you will be responsible for monitoring, detecting, investigating, and responding to security threats across the organisation's infrastructure and systems. You will also support vulnerability management, compliance initiatives, and wider security improvement projects across the business. This role would suit someone with 2-4 years' experience in a cybersecurity, SOC, or infrastructure security-focused position who enjoys working across a broad technology estate and keeping up to date with emerging threats and security technologies. Key Responsibilities: Monitor and develop SIEM and threat detection platforms Investigate and respond to security incidents and alerts Support vulnerability scanning, remediation, and reporting activities Assist with development of security policies, procedures, and controls Work alongside Infrastructure and Technical Services teams to improve security across the estate Support compliance activities aligned to ISO27001, GDPR, and NIST frameworks Conduct security awareness initiatives including phishing simulations and end-user training Maintain and improve endpoint protection, IDS/IPS, EDR, XDR, and MDR solutions Assist with backup, disaster recovery, and digital asset protection strategies Stay up to date with emerging cyber threats and recommend improvements where appropriate Key Skills & Experience: 2-4 years' experience within a cybersecurity or infrastructure security role Experience working with SIEM tools and vulnerability management platforms Strong understanding of EDR, XDR, MDR, IDS/IPS technologies Good knowledge of Microsoft security technologies and infrastructure environments Understanding of ISO27001, NIST, GDPR, and security best practices Experience investigating security incidents and producing clear documentation Full UK driving licence Desirable: CompTIA Security+ CISSP Associate Microsoft certifications Experience with Azure environments Scripting or automation knowledge Experience working with ERP systems This is a fantastic opportunity to join a business investing heavily in cybersecurity, where you will have the chance to influence security best practices, work with modern technologies, and continue developing your technical skillset within a collaborative environment. The Package: If successful our client is offering a salary of between 40,000/ 45,000 per annum, favorable holiday allowance, company contributed pension scheme and opportunities for professional development including training and advancement. This a hybrid working role 3 days on site and 2 days working from home. How to Apply: If you are interested in hearing more about this IT security analyst vacancy or interested in applying for the role please email me at or contact Principal IT Directly on LinkedIn. INDGH
May 30, 2026
Full time
IT Security Analyst - 40,000/ 45,000 per annum - Brandesburton (Hybrid) Principal IT are proud to be supporting a leading provider of modular buildings for various sectors, such as education, healthcare, defence, and justice. This is an excellent opportunity for someone with a passion for cybersecurity who is looking to play a key role in strengthening and developing an organisation's overall security posture and cyber resilience strategy. Working closely with the Infrastructure & Security Manager, you will be responsible for monitoring, detecting, investigating, and responding to security threats across the organisation's infrastructure and systems. You will also support vulnerability management, compliance initiatives, and wider security improvement projects across the business. This role would suit someone with 2-4 years' experience in a cybersecurity, SOC, or infrastructure security-focused position who enjoys working across a broad technology estate and keeping up to date with emerging threats and security technologies. Key Responsibilities: Monitor and develop SIEM and threat detection platforms Investigate and respond to security incidents and alerts Support vulnerability scanning, remediation, and reporting activities Assist with development of security policies, procedures, and controls Work alongside Infrastructure and Technical Services teams to improve security across the estate Support compliance activities aligned to ISO27001, GDPR, and NIST frameworks Conduct security awareness initiatives including phishing simulations and end-user training Maintain and improve endpoint protection, IDS/IPS, EDR, XDR, and MDR solutions Assist with backup, disaster recovery, and digital asset protection strategies Stay up to date with emerging cyber threats and recommend improvements where appropriate Key Skills & Experience: 2-4 years' experience within a cybersecurity or infrastructure security role Experience working with SIEM tools and vulnerability management platforms Strong understanding of EDR, XDR, MDR, IDS/IPS technologies Good knowledge of Microsoft security technologies and infrastructure environments Understanding of ISO27001, NIST, GDPR, and security best practices Experience investigating security incidents and producing clear documentation Full UK driving licence Desirable: CompTIA Security+ CISSP Associate Microsoft certifications Experience with Azure environments Scripting or automation knowledge Experience working with ERP systems This is a fantastic opportunity to join a business investing heavily in cybersecurity, where you will have the chance to influence security best practices, work with modern technologies, and continue developing your technical skillset within a collaborative environment. The Package: If successful our client is offering a salary of between 40,000/ 45,000 per annum, favorable holiday allowance, company contributed pension scheme and opportunities for professional development including training and advancement. This a hybrid working role 3 days on site and 2 days working from home. How to Apply: If you are interested in hearing more about this IT security analyst vacancy or interested in applying for the role please email me at or contact Principal IT Directly on LinkedIn. INDGH
IT Governance Analyst Offshore Wind Industry Location: Copenhagen HQ, Norwich, Vejle Salary : Competitive Vacancy Type: Permanent, Full Time Are you passionate about IT governance, cyber security, risk management, and building structured, compliant processes that strengthen organizational resilience? Do you want to work in the offshore wind industry where your skills and expertise will help secure a sustainable future based on renewable energy? Then keep reading Cadeler is looking for a IT Governance Analyst with your skills and interests! Cadeler is a global partner in the offshore wind industry, specializing in wind farm construction and maintenance. We are part of an industry that is now, more than ever, both relevant and play a critical role in the energy transition with a strong long-term outlook. As our industry continues to develop, so do we! What will you do? As our new IT Governance Analyst, you will support and strengthen our IT governance, cyber security, and risk management framework. You will help structure and maintain IT risk and control processes, support audits and reporting activities, and contribute to improving how compliance and security information is managed across the organization. Your main tasks include: Supporting and maturing the IT governance and cyber security processes aligned with NIS2 requirements Maintaining and structuring the IT Risk & Control Matrix (RCM) and IT risk register Supporting IT risk assessments and Business Impact Analysis (BIA) activities Ensuring risks, controls, and documentation are maintained in a clear and audit-ready manner Collaborating with IT suppliers on security-related matters and client security assessments Contributing to reporting on IT risk, governance, and cyber security posture Identifying opportunities to simplify, standardize, and automate governance and compliance processes Supporting continuous improvement of IT risk and compliance frameworks across the organization To succeed in this role Being part of the Cadeler community means you will have a natural interest and care for the environment and our shared mission to speed up the green energy transition. Your environmental considerations and the safety of our people and the planet will be a key priority in your daily work. We are looking for a structured and solution-oriented profile, who is curious, detail-oriented, and motivated to support and improve IT governance and cyber security processes across the organization. We think you will be a good match if you: Hold a relevant educational background within IT, Information Security, Governance, Risk Management, or similar Have around 1 3 years of experience within cyber security, IT risk, compliance, or governance-related areas Have knowledge of security frameworks and regulations such as ISO 27001, NIST, CIS18 Controls, NIS2, GDPR, or similar Are comfortable working with Microsoft tools such as M365, SharePoint, Power BI, Purview, and Azure environments Have an interest in process improvement, data structuring, and automation Communicate clearly and professionally in English, both written and spoken It is considered an advantage if you have experience with supplier risk assessments, automation tools such as Power Automate, or knowledge of maritime and OT environments. Come work with us! By becoming a Cadeler employee, you will be part of a rapidly growing company with a diverse and energetic team. We offer an exciting position focused on delivering excellence in the face of interesting new challenges, within a positive and rewarding work environment in an international company with great development possibilities. Cadeler is headquartered in Copenhagen, but we also have offices in Vejle, UK, US, and Taiwan, as well as colleagues working offshore aboard our fleet of Wind Farm Installation Vessels (WFIV). To Apply If you feel you are a suitable candidate and would like to work for Cadeler, please click apply to be redirected to their website to complete your application.
May 30, 2026
Full time
IT Governance Analyst Offshore Wind Industry Location: Copenhagen HQ, Norwich, Vejle Salary : Competitive Vacancy Type: Permanent, Full Time Are you passionate about IT governance, cyber security, risk management, and building structured, compliant processes that strengthen organizational resilience? Do you want to work in the offshore wind industry where your skills and expertise will help secure a sustainable future based on renewable energy? Then keep reading Cadeler is looking for a IT Governance Analyst with your skills and interests! Cadeler is a global partner in the offshore wind industry, specializing in wind farm construction and maintenance. We are part of an industry that is now, more than ever, both relevant and play a critical role in the energy transition with a strong long-term outlook. As our industry continues to develop, so do we! What will you do? As our new IT Governance Analyst, you will support and strengthen our IT governance, cyber security, and risk management framework. You will help structure and maintain IT risk and control processes, support audits and reporting activities, and contribute to improving how compliance and security information is managed across the organization. Your main tasks include: Supporting and maturing the IT governance and cyber security processes aligned with NIS2 requirements Maintaining and structuring the IT Risk & Control Matrix (RCM) and IT risk register Supporting IT risk assessments and Business Impact Analysis (BIA) activities Ensuring risks, controls, and documentation are maintained in a clear and audit-ready manner Collaborating with IT suppliers on security-related matters and client security assessments Contributing to reporting on IT risk, governance, and cyber security posture Identifying opportunities to simplify, standardize, and automate governance and compliance processes Supporting continuous improvement of IT risk and compliance frameworks across the organization To succeed in this role Being part of the Cadeler community means you will have a natural interest and care for the environment and our shared mission to speed up the green energy transition. Your environmental considerations and the safety of our people and the planet will be a key priority in your daily work. We are looking for a structured and solution-oriented profile, who is curious, detail-oriented, and motivated to support and improve IT governance and cyber security processes across the organization. We think you will be a good match if you: Hold a relevant educational background within IT, Information Security, Governance, Risk Management, or similar Have around 1 3 years of experience within cyber security, IT risk, compliance, or governance-related areas Have knowledge of security frameworks and regulations such as ISO 27001, NIST, CIS18 Controls, NIS2, GDPR, or similar Are comfortable working with Microsoft tools such as M365, SharePoint, Power BI, Purview, and Azure environments Have an interest in process improvement, data structuring, and automation Communicate clearly and professionally in English, both written and spoken It is considered an advantage if you have experience with supplier risk assessments, automation tools such as Power Automate, or knowledge of maritime and OT environments. Come work with us! By becoming a Cadeler employee, you will be part of a rapidly growing company with a diverse and energetic team. We offer an exciting position focused on delivering excellence in the face of interesting new challenges, within a positive and rewarding work environment in an international company with great development possibilities. Cadeler is headquartered in Copenhagen, but we also have offices in Vejle, UK, US, and Taiwan, as well as colleagues working offshore aboard our fleet of Wind Farm Installation Vessels (WFIV). To Apply If you feel you are a suitable candidate and would like to work for Cadeler, please click apply to be redirected to their website to complete your application.
Senior Cyber Security & Network Analyst Location: Surrey - 2-3 days on-site Type: Permanent Overview We're looking for a Senior Cyber Security & Network Analyst to join a high-performing IT function responsible for protecting and supporting a complex enterprise environment. This is a hands-on, hybrid role combining cyber security operations, security engineering, and network infrastructure ownership . You'll play a key part in safeguarding systems, responding to threats, and driving continuous improvements across the organisation's security posture. What You'll Be Doing Lead day-to-day cyber security operations , ensuring systems remain protected and resilient Monitor and respond to threats via SIEM tools , investigating incidents and implementing fixes Manage and optimise next-generation firewalls (Palo Alto) and endpoint security platforms Oversee vulnerability management and patching (e.g. Qualys) Maintain and support network infrastructure (LAN, WAN, Wi-Fi, load balancing, connectivity) Analyse security data to identify risks, threats, and vulnerabilities Deliver security-focused projects , including new tool implementation and enhancements Support security audits, access controls, and compliance requirements Collaborate with internal teams and third-party vendors to resolve complex issues Produce and maintain technical documentation, policies, and procedures Key Skills & Experience We're particularly interested in candidates with a strong mix of security + networking expertise, including: Proven experience in cyber security operations and engineering Strong hands-on experience with: Palo Alto Firewalls (essential) SIEM tools Endpoint Detection & Response (EDR) Vulnerability management tools (e.g. Qualys) Solid networking knowledge: L2/L3 switching (Cisco Nexus) LAN/WAN, Wi-Fi (Aruba), load balancing Experience managing security incidents and threat response Understanding of data security, risk management, and compliance environments Exposure to working within structured or regulated environments is beneficial
May 29, 2026
Full time
Senior Cyber Security & Network Analyst Location: Surrey - 2-3 days on-site Type: Permanent Overview We're looking for a Senior Cyber Security & Network Analyst to join a high-performing IT function responsible for protecting and supporting a complex enterprise environment. This is a hands-on, hybrid role combining cyber security operations, security engineering, and network infrastructure ownership . You'll play a key part in safeguarding systems, responding to threats, and driving continuous improvements across the organisation's security posture. What You'll Be Doing Lead day-to-day cyber security operations , ensuring systems remain protected and resilient Monitor and respond to threats via SIEM tools , investigating incidents and implementing fixes Manage and optimise next-generation firewalls (Palo Alto) and endpoint security platforms Oversee vulnerability management and patching (e.g. Qualys) Maintain and support network infrastructure (LAN, WAN, Wi-Fi, load balancing, connectivity) Analyse security data to identify risks, threats, and vulnerabilities Deliver security-focused projects , including new tool implementation and enhancements Support security audits, access controls, and compliance requirements Collaborate with internal teams and third-party vendors to resolve complex issues Produce and maintain technical documentation, policies, and procedures Key Skills & Experience We're particularly interested in candidates with a strong mix of security + networking expertise, including: Proven experience in cyber security operations and engineering Strong hands-on experience with: Palo Alto Firewalls (essential) SIEM tools Endpoint Detection & Response (EDR) Vulnerability management tools (e.g. Qualys) Solid networking knowledge: L2/L3 switching (Cisco Nexus) LAN/WAN, Wi-Fi (Aruba), load balancing Experience managing security incidents and threat response Understanding of data security, risk management, and compliance environments Exposure to working within structured or regulated environments is beneficial
Prestigious opportunity for an IT Support & Systems Analyst to join our team in Warrington.Market leaders in the design and manufacture of high quality solutions for the aerospace, defence, power generation, and high performance engineering sectors, we are inviting you to join our success story. With operations in the UK and Europe, we deliver cost effective, high quality solutions while partnering closely with customers across the full life cycle from design to in-service support. This is an excellent opportunity for someone with IT support experience who wants to broaden their skills across IT operations, systems, and cybersecurity. You'll play a key role in supporting end users while gaining exposure to infrastructure, compliance, and continuous improvement initiatives. Your responsibilities will be to: - Deliver 1st & 2nd line support across office and shop-floor environments Assist with Microsoft 365 & Active Directory administration Troubleshoot hardware, software, and access issues Manage onboarding/offboarding, user accounts, and permissions Support a range of devices including PCs, laptops and mobile devices Provide a high level of customer service and user training Device Management and patching Support IT Security, Audit and Compliance If you possess a combination of some of the following skills, then LETS TALK! Experience in IT support or service desk roles Strong knowledge of Windows, Microsoft 365, Active Directory Experience supporting end users, devices and applications Solid troubleshooting and problem-solving skills Understanding of cybersecurity best practices (MFA, patching, endpoint protection) Strong communication and user-focused mindset Knowledge of the following is advantageous but not essential: - Exposure to audits or compliance requirements Experience with endpoint security or patch management tools ERP or manufacturing environment experience Basic networking knowledge (DNS, DHCP, TCP/IP) In return, you will be rewarded with ongoing career development and training and an enviable benefits package. Hybrid working is available upon completion of probation. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
May 29, 2026
Full time
Prestigious opportunity for an IT Support & Systems Analyst to join our team in Warrington.Market leaders in the design and manufacture of high quality solutions for the aerospace, defence, power generation, and high performance engineering sectors, we are inviting you to join our success story. With operations in the UK and Europe, we deliver cost effective, high quality solutions while partnering closely with customers across the full life cycle from design to in-service support. This is an excellent opportunity for someone with IT support experience who wants to broaden their skills across IT operations, systems, and cybersecurity. You'll play a key role in supporting end users while gaining exposure to infrastructure, compliance, and continuous improvement initiatives. Your responsibilities will be to: - Deliver 1st & 2nd line support across office and shop-floor environments Assist with Microsoft 365 & Active Directory administration Troubleshoot hardware, software, and access issues Manage onboarding/offboarding, user accounts, and permissions Support a range of devices including PCs, laptops and mobile devices Provide a high level of customer service and user training Device Management and patching Support IT Security, Audit and Compliance If you possess a combination of some of the following skills, then LETS TALK! Experience in IT support or service desk roles Strong knowledge of Windows, Microsoft 365, Active Directory Experience supporting end users, devices and applications Solid troubleshooting and problem-solving skills Understanding of cybersecurity best practices (MFA, patching, endpoint protection) Strong communication and user-focused mindset Knowledge of the following is advantageous but not essential: - Exposure to audits or compliance requirements Experience with endpoint security or patch management tools ERP or manufacturing environment experience Basic networking knowledge (DNS, DHCP, TCP/IP) In return, you will be rewarded with ongoing career development and training and an enviable benefits package. Hybrid working is available upon completion of probation. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Role: OT Cyber Security Analyst Location: Culham - 2 days per week on site (hybrid) Contract length: Until 18/12/2026 Day rate: Approx. 50/hour (Umbrella) or 36.43/hour (PAYE) IR35: In scope This role sits at the heart of operational technology security within critical infrastructure, giving you the chance to shape and mature OT security controls and governance in a highly visible environment. What you will be doing Implement, operate, and continuously improve OT security controls and monitoring capabilities across complex OT environments. Apply and embed an OT Security Strategy, policies, and standards across industrial control and critical infrastructure systems. Align OT security with leading frameworks such as IEC 62443, NIST CSF, CAF and ISO 27001. Carry out OT security risk assessments, gap analyses and remediation planning. Work closely with operations, engineering teams and MSPs to ensure security controls are implemented and sustained. Contribute to governance artefacts - policies, standards and documentation that underpin OT security. Support integration with SIEM/SOC functions for OT environments. What our client is looking for Strong OT security experience within ICS or critical infrastructure - ideally from oil & gas, rail, chemical, or similar process industries. Hands-on experience implementing OT security strategies, policies and standards. Solid understanding of OT networks, segmentation and common industrial protocols. Familiarity with SIEM/SOC integration for OT environments. Experience working with operations/engineering teams and advising MSPs or third-party security providers. Excellent communication and documentation skills, especially around policies and standards. Maximum notice period of 2 weeks. Desirable Experience with OT asset discovery, monitoring and OT security tools. Exposure to regulatory requirements for critical infrastructure (e.g. NIS Directive, UK CAF). Understanding of project / service delivery lifecycles and ITSM controls. Security clearance Active SC clearance or SC that has lapsed within the last 12 months is required (no flexibility on this). This is a strong opportunity for someone who wants to work at the intersection of OT, cyber security and critical national infrastructure, with the stability of a contract running to the end of 2026.
May 29, 2026
Contractor
Role: OT Cyber Security Analyst Location: Culham - 2 days per week on site (hybrid) Contract length: Until 18/12/2026 Day rate: Approx. 50/hour (Umbrella) or 36.43/hour (PAYE) IR35: In scope This role sits at the heart of operational technology security within critical infrastructure, giving you the chance to shape and mature OT security controls and governance in a highly visible environment. What you will be doing Implement, operate, and continuously improve OT security controls and monitoring capabilities across complex OT environments. Apply and embed an OT Security Strategy, policies, and standards across industrial control and critical infrastructure systems. Align OT security with leading frameworks such as IEC 62443, NIST CSF, CAF and ISO 27001. Carry out OT security risk assessments, gap analyses and remediation planning. Work closely with operations, engineering teams and MSPs to ensure security controls are implemented and sustained. Contribute to governance artefacts - policies, standards and documentation that underpin OT security. Support integration with SIEM/SOC functions for OT environments. What our client is looking for Strong OT security experience within ICS or critical infrastructure - ideally from oil & gas, rail, chemical, or similar process industries. Hands-on experience implementing OT security strategies, policies and standards. Solid understanding of OT networks, segmentation and common industrial protocols. Familiarity with SIEM/SOC integration for OT environments. Experience working with operations/engineering teams and advising MSPs or third-party security providers. Excellent communication and documentation skills, especially around policies and standards. Maximum notice period of 2 weeks. Desirable Experience with OT asset discovery, monitoring and OT security tools. Exposure to regulatory requirements for critical infrastructure (e.g. NIS Directive, UK CAF). Understanding of project / service delivery lifecycles and ITSM controls. Security clearance Active SC clearance or SC that has lapsed within the last 12 months is required (no flexibility on this). This is a strong opportunity for someone who wants to work at the intersection of OT, cyber security and critical national infrastructure, with the stability of a contract running to the end of 2026.
We are partnered with a growing cyber security business in Buckinghamshire, supporting customers with threat monitoring and incident response services. They are looking for a Cyber Security Analyst to join their growing SOC team, helping to investigate and respond to live security threats across customer environments. In this Cyber Security Analyst role, you will: Investigate and respond to security alerts across endpoint, network, and cloud environments Carry out deeper analysis on suspicious activity and support incident response actions Work closely with wider technical teams during live investigations and escalations Help improve detection processes, alert quality, and day-to-day SOC operations The ideal Cyber Security Analyst will have: Commercial experience within a SOC or cyber security operations environment Good understanding of threats such as phishing, malware, ransomware, and account compromise Experience using security tools such as SIEM, EDR, firewalls, or detection platforms A calm, methodical approach to investigation and problem solving under pressure This is a hybrid role (3 days per week at their Buckinghamshire office) with normal office hours (no shift pattern). You will receive ongoing training and exposure to a broad range of customer environments and technologies. This is a great opportunity for someone looking to continue developing within cyber operation. For more information on this Cyber Security Analyst role in Buckinghamshire, email Ed at (url removed) or call (phone number removed).
May 29, 2026
Full time
We are partnered with a growing cyber security business in Buckinghamshire, supporting customers with threat monitoring and incident response services. They are looking for a Cyber Security Analyst to join their growing SOC team, helping to investigate and respond to live security threats across customer environments. In this Cyber Security Analyst role, you will: Investigate and respond to security alerts across endpoint, network, and cloud environments Carry out deeper analysis on suspicious activity and support incident response actions Work closely with wider technical teams during live investigations and escalations Help improve detection processes, alert quality, and day-to-day SOC operations The ideal Cyber Security Analyst will have: Commercial experience within a SOC or cyber security operations environment Good understanding of threats such as phishing, malware, ransomware, and account compromise Experience using security tools such as SIEM, EDR, firewalls, or detection platforms A calm, methodical approach to investigation and problem solving under pressure This is a hybrid role (3 days per week at their Buckinghamshire office) with normal office hours (no shift pattern). You will receive ongoing training and exposure to a broad range of customer environments and technologies. This is a great opportunity for someone looking to continue developing within cyber operation. For more information on this Cyber Security Analyst role in Buckinghamshire, email Ed at (url removed) or call (phone number removed).
Senior Network & Security Analyst What's On Offer: Hybrid (2 days onsite; full-time in office for the first month) Enterprise-scale, highly regulated environment Hands-on cyber security & network projects Strong focus on development and progression Competitive salary + excellent benefits Permanent, full time (Flexibility is required for occasional weekend work when needed) - This is also an on call operational role, with operational overtime We are pleased to be working with a highly regarded financial services organisation based just outside of Epsom, who are looking for a Senior Cyber Security & Network Analyst to join its growing technology function. It's a hands-on role within a strong team, focused on keeping systems secure while improving the wider network and security setup. This role offers the chance to operate at the intersection of cyber security and network engineering, supporting both day to day operations and strategic projects, so you'll play a vital role in protecting the organisation's infrastructure while contributing to ongoing transformation initiatives. Key Responsibilities: Own day to day cyber security operations, keeping systems and data secure Support and improve security tooling (firewalls, SIEM, endpoint, encryption) Monitor, investigate and respond to security incidents Look after core network infrastructure (LAN/WAN, Wi-Fi, L2/3, remote access, load balancing) Run vulnerability checks and ensure patching is up to date Use SIEM tools to spot and act on potential threats early Support audits, access controls and compliance requirements Get involved in (and lead) security and infrastructure projects Keep documentation and processes up to date Work with third-party suppliers where needed Support disaster recovery and business continuity planning What We're Looking For: 5 - 7+ years' experience in network engineering with strong cyber security exposure Proven experience with: Next-generation firewalls (e.g. Palo Alto) Endpoint detection and response tools SIEM platforms Vulnerability management tools (e.g. Qualys) Cisco switching (Layer 2/3) and enterprise networking Wireless technologies (e.g. Aruba) Network load balancing Strong incident management and threat analysis capabilities Experience working in regulated or compliance driven environments is advantageous Demonstrable experience delivering infrastructure or security projects About You: Strong analytical and problem solving mindset Excellent communication skills, both written and verbal Highly organised with strong attention to detail Proactive, self-motivated and able to work independently Collaborative approach with the ability to work across technical and non-technical teams Refer a friend and earn a retail voucher worth up to 500! Unfortunately, due to high numbers of applications, we are only able to respond to shortlisted applicants. If you have not heard from us within 5 days, please assume that you have not been shortlisted on this occasion. By applying for this vacancy, you accept Lloyd Recruitment Services Privacy and GDPR Policy which can be found on our website and therefore gives us consent to contact you. Lloyd Recruitment Services are acting as a recruitment agency in relation to this vacancy and are an equal opportunities employer. ME15616
May 29, 2026
Full time
Senior Network & Security Analyst What's On Offer: Hybrid (2 days onsite; full-time in office for the first month) Enterprise-scale, highly regulated environment Hands-on cyber security & network projects Strong focus on development and progression Competitive salary + excellent benefits Permanent, full time (Flexibility is required for occasional weekend work when needed) - This is also an on call operational role, with operational overtime We are pleased to be working with a highly regarded financial services organisation based just outside of Epsom, who are looking for a Senior Cyber Security & Network Analyst to join its growing technology function. It's a hands-on role within a strong team, focused on keeping systems secure while improving the wider network and security setup. This role offers the chance to operate at the intersection of cyber security and network engineering, supporting both day to day operations and strategic projects, so you'll play a vital role in protecting the organisation's infrastructure while contributing to ongoing transformation initiatives. Key Responsibilities: Own day to day cyber security operations, keeping systems and data secure Support and improve security tooling (firewalls, SIEM, endpoint, encryption) Monitor, investigate and respond to security incidents Look after core network infrastructure (LAN/WAN, Wi-Fi, L2/3, remote access, load balancing) Run vulnerability checks and ensure patching is up to date Use SIEM tools to spot and act on potential threats early Support audits, access controls and compliance requirements Get involved in (and lead) security and infrastructure projects Keep documentation and processes up to date Work with third-party suppliers where needed Support disaster recovery and business continuity planning What We're Looking For: 5 - 7+ years' experience in network engineering with strong cyber security exposure Proven experience with: Next-generation firewalls (e.g. Palo Alto) Endpoint detection and response tools SIEM platforms Vulnerability management tools (e.g. Qualys) Cisco switching (Layer 2/3) and enterprise networking Wireless technologies (e.g. Aruba) Network load balancing Strong incident management and threat analysis capabilities Experience working in regulated or compliance driven environments is advantageous Demonstrable experience delivering infrastructure or security projects About You: Strong analytical and problem solving mindset Excellent communication skills, both written and verbal Highly organised with strong attention to detail Proactive, self-motivated and able to work independently Collaborative approach with the ability to work across technical and non-technical teams Refer a friend and earn a retail voucher worth up to 500! Unfortunately, due to high numbers of applications, we are only able to respond to shortlisted applicants. If you have not heard from us within 5 days, please assume that you have not been shortlisted on this occasion. By applying for this vacancy, you accept Lloyd Recruitment Services Privacy and GDPR Policy which can be found on our website and therefore gives us consent to contact you. Lloyd Recruitment Services are acting as a recruitment agency in relation to this vacancy and are an equal opportunities employer. ME15616
Cyber Security Operations Manager Liverpool (Hybrid) 70,000 - 75,000 Looking to take the next step in your cyber security career? We're looking for a Cyber Security Operations Manager to join a growing technology team and play a key role in strengthening and evolving the organisation's security capability. Whether you're already leading a Security Operations function or you're a Senior Security Engineer or Team Lead looking for more ownership, this is an opportunity to make a real impact within a business that is investing heavily in cyber security and resilience. The Opportunity You'll be responsible for helping shape the future of cyber security operations across the business, working closely with infrastructure, cloud and technology teams to improve security posture, strengthen detection and response capabilities, and ensure the organisation remains protected against emerging threats. This role offers a blend of leadership, technical oversight and strategic influence. What You'll Be Doing Leading and developing the Security Operations capability Managing cyber security incidents and coordinating effective responses Driving improvements across monitoring, threat detection and vulnerability management Working closely with technology teams to improve security across cloud, infrastructure and end-user environments Helping optimise security tools, processes and automation Supporting security audits, compliance initiatives and governance requirements Providing regular updates and insight to senior stakeholders on security risks and performance Contributing to the wider cyber security strategy and roadmap What We're Looking For We're interested in speaking with candidates from backgrounds such as: Security Operations Manager Lead Security Engineer Senior Security Engineer Senior SOC Analyst Detection & Response Lead Cyber Security Team Lead You'll ideally bring experience across some of the following: Security Operations and Incident Response SIEM, EDR/XDR and security monitoring tools Vulnerability Management Threat Detection and Threat Hunting Cloud Security (Azure, AWS or GCP) Security Frameworks such as ISO 27001, NIST or CIS Controls Most importantly, we're looking for someone who enjoys solving security challenges, improving processes and helping build a mature and effective cyber security function. Why Join? Opportunity to shape and influence the cyber security function High-profile role with strong visibility across the business Significant investment in cyber security and resilience Blend of leadership, technical oversight and strategic influence Supportive team environment with genuine opportunities for growth If you're looking for a role where you can take ownership, influence security strategy and make a real impact, we'd love to hear from you. Apply today or get in touch for a confidential conversation. BH36094
May 29, 2026
Full time
Cyber Security Operations Manager Liverpool (Hybrid) 70,000 - 75,000 Looking to take the next step in your cyber security career? We're looking for a Cyber Security Operations Manager to join a growing technology team and play a key role in strengthening and evolving the organisation's security capability. Whether you're already leading a Security Operations function or you're a Senior Security Engineer or Team Lead looking for more ownership, this is an opportunity to make a real impact within a business that is investing heavily in cyber security and resilience. The Opportunity You'll be responsible for helping shape the future of cyber security operations across the business, working closely with infrastructure, cloud and technology teams to improve security posture, strengthen detection and response capabilities, and ensure the organisation remains protected against emerging threats. This role offers a blend of leadership, technical oversight and strategic influence. What You'll Be Doing Leading and developing the Security Operations capability Managing cyber security incidents and coordinating effective responses Driving improvements across monitoring, threat detection and vulnerability management Working closely with technology teams to improve security across cloud, infrastructure and end-user environments Helping optimise security tools, processes and automation Supporting security audits, compliance initiatives and governance requirements Providing regular updates and insight to senior stakeholders on security risks and performance Contributing to the wider cyber security strategy and roadmap What We're Looking For We're interested in speaking with candidates from backgrounds such as: Security Operations Manager Lead Security Engineer Senior Security Engineer Senior SOC Analyst Detection & Response Lead Cyber Security Team Lead You'll ideally bring experience across some of the following: Security Operations and Incident Response SIEM, EDR/XDR and security monitoring tools Vulnerability Management Threat Detection and Threat Hunting Cloud Security (Azure, AWS or GCP) Security Frameworks such as ISO 27001, NIST or CIS Controls Most importantly, we're looking for someone who enjoys solving security challenges, improving processes and helping build a mature and effective cyber security function. Why Join? Opportunity to shape and influence the cyber security function High-profile role with strong visibility across the business Significant investment in cyber security and resilience Blend of leadership, technical oversight and strategic influence Supportive team environment with genuine opportunities for growth If you're looking for a role where you can take ownership, influence security strategy and make a real impact, we'd love to hear from you. Apply today or get in touch for a confidential conversation. BH36094
Role: Cyber Security Analyst (SOC Analyst) Location: Corsham - 100% on-site Day Rate: Up to 640 Contract Length: Until 26th April 2027, with potential for extension IR35: In scope Why this could interest you Rare chance to work in a high-impact, mission-critical Defence environment. Long-term stability to 2027, with possibility of extension depending on funding. Tier 2/3 level work - genuinely complex incidents, not just first-line alert handling. Key responsibilities Tier 2/3 SOC analysis in an enterprise environment. Perform triage of security events - determine scope, priority and impact, and recommend rapid remediation actions. Conduct real-time management of security incidents from detection through to resolution. Work with SIEM technologies and SIEM engineering, including tool configuration (e.g. ArcSight). Create and maintain use cases, analytics and playbooks. Contribute to security monitoring across on-prem and cloud technologies. Shift pattern & working conditions 13-hour shifts - days and nights, including some weekends. 4 on 5 off, then 5 on 4 off - averaging a standard 37-hour week. Fully on-site in Corsham. Essential requirements Strongly preffeed to have Active DV Clearance (Developed Vetting) and eligibility for Sensitive Post Check. Industry-standard SOC security qualifications (e.g. SANS, ISC2). Proven Tier 2/3 SOC Analyst experience (2+ years). Hands-on experience with SIEM technologies and engineering (ideally including ArcSight). Experience creating SOC use cases, analytics and playbooks. Desirable Degree in a technical, engineering or computing discipline. Defence / MOD experience. Previous lead-level SOC experience (though an experienced Tier 2 Analyst would also be considered).
May 29, 2026
Contractor
Role: Cyber Security Analyst (SOC Analyst) Location: Corsham - 100% on-site Day Rate: Up to 640 Contract Length: Until 26th April 2027, with potential for extension IR35: In scope Why this could interest you Rare chance to work in a high-impact, mission-critical Defence environment. Long-term stability to 2027, with possibility of extension depending on funding. Tier 2/3 level work - genuinely complex incidents, not just first-line alert handling. Key responsibilities Tier 2/3 SOC analysis in an enterprise environment. Perform triage of security events - determine scope, priority and impact, and recommend rapid remediation actions. Conduct real-time management of security incidents from detection through to resolution. Work with SIEM technologies and SIEM engineering, including tool configuration (e.g. ArcSight). Create and maintain use cases, analytics and playbooks. Contribute to security monitoring across on-prem and cloud technologies. Shift pattern & working conditions 13-hour shifts - days and nights, including some weekends. 4 on 5 off, then 5 on 4 off - averaging a standard 37-hour week. Fully on-site in Corsham. Essential requirements Strongly preffeed to have Active DV Clearance (Developed Vetting) and eligibility for Sensitive Post Check. Industry-standard SOC security qualifications (e.g. SANS, ISC2). Proven Tier 2/3 SOC Analyst experience (2+ years). Hands-on experience with SIEM technologies and engineering (ideally including ArcSight). Experience creating SOC use cases, analytics and playbooks. Desirable Degree in a technical, engineering or computing discipline. Defence / MOD experience. Previous lead-level SOC experience (though an experienced Tier 2 Analyst would also be considered).
Cyber Security Analyst (SOC) Role: Cyber Security Analyst (SOC) Specialism(s): Security Operations, Security Alerts, Security Incident Management, SIEM, Defender, Cofense, Azure, Email Security, Conditional Access Policies, User Authentication, EDR, Playbooks Security Assessment, Vulnerability Analysis, Risk Analysis, SOAR Type: Contract, Daily Rate Pay Rate: 300 - 400 per day (Inside IR35) Location: Remote (UK Only) Start: ASAP/Urgent Duration: 6-12 Months Cyber Security Analyst (SOC) CPS Group UK are delighted to be working with a leading organisation to appoint a Cyber Cyber Security Analyst (SOC) to join an existing team to monitor infrastructure for threats, investigate and respond to security alerts and act as the escalation point for junior analyst queries. The Cyber Security Operations Analyst will respond to verified security incidents and undertake prompt remediation activities to eradicate threats. The Analyst will require strong hands-on experience with the Microsoft security stack (Entra, Defender, Sentinel) as well as exposure to email security, phishing and SOAR tooling. The Cyber Security Operations Analyst is able to work remotely (UK only) and will be required to work 12 hour shifts on a 4 days on / 4 days off shift pattern (days and nights). Candidates must be eligible for UK Security Clearance Role Requirements Play an active role in the CSOC Operations team by: o Monitor active SIEM solutions and platforms o Investigate and triage to security alerts and incidents o Be the escalation point for junior analysts, offering knowledge and mentorship where required o Ensure infrastructure and data security through the use of layered security controls (e.g. EDR, Email Security, User Authentication, Conditional Access) o Oversee security assessments across PAM, endpoint, email and cloud security o Provide direct updates to stakeholders regarding security incidents and initiatives o Undertake on-going analysis of emerging threats using TTP's and existing knowledge o Support the production of alert/incident 'playbooks' Required Skills & Experience 3-4+ years' experience in a Security Operations/SOC-based role Hands-on experience with Microsoft security stack (Entra, Defender, Sentinel) Strong technical understanding of security alert/incident management and threats Knowledge of security threat techniques Proven experience of robust incident response within defined SLA's Proven experience using SIEM, SOAR & Email Security tooling Ability to mentor and upskill junior team members Ability to create (or enhance) cyber security playbooks Familiarity with ITIL Various Cyber Security certifications (e.g. Microsoft SC-200, AZ-500) For more information or immediate consideration for this opportunity, please contact Charlie Grant at CPS Group UK on (phone number removed) or email (url removed) By applying to this advert you are giving CPS Group (UK) Ltd authority to hold and process your data for this specific role and any other roles we may deem suitable to you over time. We will not pass your data to any third party without your verbal or written permission to do so. All incoming and outgoing calls are recorded for training and compliance purposes. CPS Group (UK) Ltd is acting as an Employment Agency in relation to this vacancy. Our new privacy policy can be found here (url removed)
May 29, 2026
Contractor
Cyber Security Analyst (SOC) Role: Cyber Security Analyst (SOC) Specialism(s): Security Operations, Security Alerts, Security Incident Management, SIEM, Defender, Cofense, Azure, Email Security, Conditional Access Policies, User Authentication, EDR, Playbooks Security Assessment, Vulnerability Analysis, Risk Analysis, SOAR Type: Contract, Daily Rate Pay Rate: 300 - 400 per day (Inside IR35) Location: Remote (UK Only) Start: ASAP/Urgent Duration: 6-12 Months Cyber Security Analyst (SOC) CPS Group UK are delighted to be working with a leading organisation to appoint a Cyber Cyber Security Analyst (SOC) to join an existing team to monitor infrastructure for threats, investigate and respond to security alerts and act as the escalation point for junior analyst queries. The Cyber Security Operations Analyst will respond to verified security incidents and undertake prompt remediation activities to eradicate threats. The Analyst will require strong hands-on experience with the Microsoft security stack (Entra, Defender, Sentinel) as well as exposure to email security, phishing and SOAR tooling. The Cyber Security Operations Analyst is able to work remotely (UK only) and will be required to work 12 hour shifts on a 4 days on / 4 days off shift pattern (days and nights). Candidates must be eligible for UK Security Clearance Role Requirements Play an active role in the CSOC Operations team by: o Monitor active SIEM solutions and platforms o Investigate and triage to security alerts and incidents o Be the escalation point for junior analysts, offering knowledge and mentorship where required o Ensure infrastructure and data security through the use of layered security controls (e.g. EDR, Email Security, User Authentication, Conditional Access) o Oversee security assessments across PAM, endpoint, email and cloud security o Provide direct updates to stakeholders regarding security incidents and initiatives o Undertake on-going analysis of emerging threats using TTP's and existing knowledge o Support the production of alert/incident 'playbooks' Required Skills & Experience 3-4+ years' experience in a Security Operations/SOC-based role Hands-on experience with Microsoft security stack (Entra, Defender, Sentinel) Strong technical understanding of security alert/incident management and threats Knowledge of security threat techniques Proven experience of robust incident response within defined SLA's Proven experience using SIEM, SOAR & Email Security tooling Ability to mentor and upskill junior team members Ability to create (or enhance) cyber security playbooks Familiarity with ITIL Various Cyber Security certifications (e.g. Microsoft SC-200, AZ-500) For more information or immediate consideration for this opportunity, please contact Charlie Grant at CPS Group UK on (phone number removed) or email (url removed) By applying to this advert you are giving CPS Group (UK) Ltd authority to hold and process your data for this specific role and any other roles we may deem suitable to you over time. We will not pass your data to any third party without your verbal or written permission to do so. All incoming and outgoing calls are recorded for training and compliance purposes. CPS Group (UK) Ltd is acting as an Employment Agency in relation to this vacancy. Our new privacy policy can be found here (url removed)
Information Security Analyst - Audit & Compliance We're working with a global leader in CX and workforce management solutions to find a certified Security Auditor. This is a fantastic opportunity to join a company that's setting the highest standards in cybersecurity and security compliance. You'll play a key role in ensuring compliance with leading security frameworks, preparing for and conducting audits, and contributing to security operations. You'll be joining a collaborative, ambitious team where there are genuine long-term career prospects and endless opportunities to develop. The Role Lead and conduct internal audits across ISO 27001, GDPR, DORA, Cyber Essentials & more. Prepare teams for external audits and manage the audit process end-to-end. Monitor changes in compliance frameworks and maintain alignment. Support the Cyber Security Operations Centre (CSOC) in incident monitoring and response. Develop and maintain policies, procedures, and security documentation. Collaborate with IT & Security teams to identify and remediate vulnerabilities. What We're Looking For Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials Assessor, or equivalent). Eligible for UK Security Clearance. What's In It For You? Salary approx 90,000 + Bonus, Pension, Healthcare, Flexi-Working and much more. Hybrid working (2 days in the London office). Excellent long-term career growth with a global organisation. Work alongside some of the best minds in the industry. This is a unique chance to be part of a company that's innovating in cybersecurity and compliance at a global scale. Hit apply to upload your CV Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
May 29, 2026
Full time
Information Security Analyst - Audit & Compliance We're working with a global leader in CX and workforce management solutions to find a certified Security Auditor. This is a fantastic opportunity to join a company that's setting the highest standards in cybersecurity and security compliance. You'll play a key role in ensuring compliance with leading security frameworks, preparing for and conducting audits, and contributing to security operations. You'll be joining a collaborative, ambitious team where there are genuine long-term career prospects and endless opportunities to develop. The Role Lead and conduct internal audits across ISO 27001, GDPR, DORA, Cyber Essentials & more. Prepare teams for external audits and manage the audit process end-to-end. Monitor changes in compliance frameworks and maintain alignment. Support the Cyber Security Operations Centre (CSOC) in incident monitoring and response. Develop and maintain policies, procedures, and security documentation. Collaborate with IT & Security teams to identify and remediate vulnerabilities. What We're Looking For Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials Assessor, or equivalent). Eligible for UK Security Clearance. What's In It For You? Salary approx 90,000 + Bonus, Pension, Healthcare, Flexi-Working and much more. Hybrid working (2 days in the London office). Excellent long-term career growth with a global organisation. Work alongside some of the best minds in the industry. This is a unique chance to be part of a company that's innovating in cybersecurity and compliance at a global scale. Hit apply to upload your CV Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Cyber Security Analyst 5 months initially Location: Bracknell (Onsite, 24/7 Shift Pattern) Inside IR35 - Umbrella only Active DV clearance required Are you passionate about safeguarding digital environments and ready to make an impact? Our client, a reputable organisation, is hiring a dedicated Cyber Security Analyst to join their on-site 24x7 shift team in Bracknell. This is an exciting opportunity to contribute to critical security operations and protect vital services. What you'll be doing: Overseeing Security Operators during shifts, ensuring continuous security monitoring Performing initial investigations of potential threats using Security Incident and Event Management (SIEM) tools Monitoring SIEM systems for faults and anomalies Contributing to routine security incident management by identifying, prioritising, and escalating threats Supporting the confidentiality, integrity, and availability of customer services through proactive security measures What you'll bring: Proven experience in cyber security, with a solid understanding of security monitoring and incident response Technical leadership skills and the ability to guide and support team members Strong communication skills to clearly articulate findings and escalate issues effectively Technical knowledge in enterprise IT areas such as networking and servers Active DV clearance to meet security requirements This role offers a dynamic environment where your expertise will directly contribute to organisational security. If you're ready to work in a collaborative team with a focus on continuous improvement, we want to hear from you! If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
May 28, 2026
Contractor
Cyber Security Analyst 5 months initially Location: Bracknell (Onsite, 24/7 Shift Pattern) Inside IR35 - Umbrella only Active DV clearance required Are you passionate about safeguarding digital environments and ready to make an impact? Our client, a reputable organisation, is hiring a dedicated Cyber Security Analyst to join their on-site 24x7 shift team in Bracknell. This is an exciting opportunity to contribute to critical security operations and protect vital services. What you'll be doing: Overseeing Security Operators during shifts, ensuring continuous security monitoring Performing initial investigations of potential threats using Security Incident and Event Management (SIEM) tools Monitoring SIEM systems for faults and anomalies Contributing to routine security incident management by identifying, prioritising, and escalating threats Supporting the confidentiality, integrity, and availability of customer services through proactive security measures What you'll bring: Proven experience in cyber security, with a solid understanding of security monitoring and incident response Technical leadership skills and the ability to guide and support team members Strong communication skills to clearly articulate findings and escalate issues effectively Technical knowledge in enterprise IT areas such as networking and servers Active DV clearance to meet security requirements This role offers a dynamic environment where your expertise will directly contribute to organisational security. If you're ready to work in a collaborative team with a focus on continuous improvement, we want to hear from you! If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
Senior Cyber Security Analyst Permanent - Full time 55,000 plus bonus Bolton - 3 days per week onsite About the Role We are working with a leading global organization during a pivotal moment who seeking a Senior Cyber Security Analyst to help strengthen its security posture and safeguard critical systems. This is an excellent opportunity for someone passionate about incident response and proactive threat management within a dynamic, fast-paced environment. The ideal candidate will have a positive go-getter attitude, and will have experience of incident response, using MS security tools and ideally an understanding of Tanium. Key Responsibilities Working with the Head of Information Security to mature the incident response capability Using your understanding of the contemporary threat environment to assist with your vulnerability investigations and response Lead remediation efforts for identified vulnerabilities in collaboration with technology teams. Acting as an escalation point for any cyber security incidents and documenting processes Respond to incidents alongside the Head of Cyber Work with the existing MSSP across incident response and proactive monitoring and detection Maintain and optimise Microsoft Sentinel SIEM, XDR/MDR/EDR solutions, and supporting tools. Track deployment and health of all security products across the business. Stay ahead of emerging threats and evolving technologies. What We're Looking For Experience working in a cyber role in an enterprise environment Experience with the Microsoft Defender suite and Tanium would be ideal Solid understanding of cybersecurity principles and incident response processes. Experience exposure to red-teaming would be great but not crucial Experience of use case development An understanding of security best practice frameworks (NIST, ISO27001 etc) Good understanding of threat assessment A technical IT background Strong problem-solving skills and go-getter attitude Excellent communication skills and ability to work independently in a fast-paced setting. What's on Offer 45,000 - 55,000 plus bonus 25 days annual leave, plus moveable bank holidays and up to 5 days buy and sell Pension and company specific benefits Flexible and hybrid working options Career development opportunities and access to accredited qualifications. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
May 28, 2026
Full time
Senior Cyber Security Analyst Permanent - Full time 55,000 plus bonus Bolton - 3 days per week onsite About the Role We are working with a leading global organization during a pivotal moment who seeking a Senior Cyber Security Analyst to help strengthen its security posture and safeguard critical systems. This is an excellent opportunity for someone passionate about incident response and proactive threat management within a dynamic, fast-paced environment. The ideal candidate will have a positive go-getter attitude, and will have experience of incident response, using MS security tools and ideally an understanding of Tanium. Key Responsibilities Working with the Head of Information Security to mature the incident response capability Using your understanding of the contemporary threat environment to assist with your vulnerability investigations and response Lead remediation efforts for identified vulnerabilities in collaboration with technology teams. Acting as an escalation point for any cyber security incidents and documenting processes Respond to incidents alongside the Head of Cyber Work with the existing MSSP across incident response and proactive monitoring and detection Maintain and optimise Microsoft Sentinel SIEM, XDR/MDR/EDR solutions, and supporting tools. Track deployment and health of all security products across the business. Stay ahead of emerging threats and evolving technologies. What We're Looking For Experience working in a cyber role in an enterprise environment Experience with the Microsoft Defender suite and Tanium would be ideal Solid understanding of cybersecurity principles and incident response processes. Experience exposure to red-teaming would be great but not crucial Experience of use case development An understanding of security best practice frameworks (NIST, ISO27001 etc) Good understanding of threat assessment A technical IT background Strong problem-solving skills and go-getter attitude Excellent communication skills and ability to work independently in a fast-paced setting. What's on Offer 45,000 - 55,000 plus bonus 25 days annual leave, plus moveable bank holidays and up to 5 days buy and sell Pension and company specific benefits Flexible and hybrid working options Career development opportunities and access to accredited qualifications. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
The Role The Senior Security Engineer is responsible for the day-to-day operation, maintenance, and optimisation of security platforms supporting a financial services client in a regulated environment. This is a hands-on engineering role where you will ensure security tooling is fully operational, integrated, and performing as expected. You will work closely with the 24/7 Security Analyst team, supporting investigations, resolving platform issues, and driving improvements across detection and response capabilities. This role is client-aligned with 3 days onsite in London . Key Responsibilities Maintain and configure security platforms including SIEM, XDR/EDR, vulnerability and cloud security tooling Perform lifecycle activities including patching, upgrades, and configuration changes Ensure security platforms are fully integrated across on-prem and cloud environments Monitor platform health, performance, and availability, resolving issues proactively Support service transitions, upgrades, and controlled change activities Act as escalation point for platform issues raised by the Security Analyst team Provide engineering support during complex incidents and investigations Implement platform-level changes to support incident response and remediation Support detection engineering including rule deployment, tuning, and validation Resolve data quality, alerting, and detection gaps impacting operational effectiveness Support automation and SOAR initiatives (e.g. Sentinel, Logic Apps) Collaborate with SOC providers to maintain SIEM configuration and log ingestion Maintain accurate engineering documentation, runbooks, and platform records Ensure all platforms meet regulatory, audit, and compliance requirements Contribute to governance, reporting, and continuous improvement initiatives Experience & Knowledge Essential: Strong experience in security engineering and platform management Experience supporting SOC tooling and security operations environments Hands-on experience with Microsoft Defender and Microsoft Sentinel Strong understanding of SIEM, XDR, and security platform integrations Experience in hybrid (on-prem and cloud) environments Strong troubleshooting skills across platforms, integrations, and data pipelines Experience with scripting/automation (PowerShell, Python or similar) Strong understanding of networking, cloud, and infrastructure fundamentals Experience in regulated environments (e.g. financial services) Strong documentation and communication skills Desirable: Experience with vulnerability and scanning tools (e.g. Qualys) Familiarity with exposure management and BAS tools (XM Cyber, AttackIQ) Knowledge of DLP, email security, and cloud security platforms Awareness of PAM and data security tools (e.g. CyberArk, Varonis)
May 28, 2026
Full time
The Role The Senior Security Engineer is responsible for the day-to-day operation, maintenance, and optimisation of security platforms supporting a financial services client in a regulated environment. This is a hands-on engineering role where you will ensure security tooling is fully operational, integrated, and performing as expected. You will work closely with the 24/7 Security Analyst team, supporting investigations, resolving platform issues, and driving improvements across detection and response capabilities. This role is client-aligned with 3 days onsite in London . Key Responsibilities Maintain and configure security platforms including SIEM, XDR/EDR, vulnerability and cloud security tooling Perform lifecycle activities including patching, upgrades, and configuration changes Ensure security platforms are fully integrated across on-prem and cloud environments Monitor platform health, performance, and availability, resolving issues proactively Support service transitions, upgrades, and controlled change activities Act as escalation point for platform issues raised by the Security Analyst team Provide engineering support during complex incidents and investigations Implement platform-level changes to support incident response and remediation Support detection engineering including rule deployment, tuning, and validation Resolve data quality, alerting, and detection gaps impacting operational effectiveness Support automation and SOAR initiatives (e.g. Sentinel, Logic Apps) Collaborate with SOC providers to maintain SIEM configuration and log ingestion Maintain accurate engineering documentation, runbooks, and platform records Ensure all platforms meet regulatory, audit, and compliance requirements Contribute to governance, reporting, and continuous improvement initiatives Experience & Knowledge Essential: Strong experience in security engineering and platform management Experience supporting SOC tooling and security operations environments Hands-on experience with Microsoft Defender and Microsoft Sentinel Strong understanding of SIEM, XDR, and security platform integrations Experience in hybrid (on-prem and cloud) environments Strong troubleshooting skills across platforms, integrations, and data pipelines Experience with scripting/automation (PowerShell, Python or similar) Strong understanding of networking, cloud, and infrastructure fundamentals Experience in regulated environments (e.g. financial services) Strong documentation and communication skills Desirable: Experience with vulnerability and scanning tools (e.g. Qualys) Familiarity with exposure management and BAS tools (XM Cyber, AttackIQ) Knowledge of DLP, email security, and cloud security platforms Awareness of PAM and data security tools (e.g. CyberArk, Varonis)
SIEM Analyst / Cyber Threat Detection Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a SIEM Analyst Cyber Threat Detection, you will play a hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats are identified. We are open to experienced SOC Analysts where threat hunting, investigations, and proactive detection have formed a significant part of their role, and who are looking to further develop in a more hunting-led environment. This position is well suited to analysts who enjoy thinking like an attacker, have worked alongside or supported red team or purple team activities, and want to deepen their expertise in threat detection and detection engineering. Skills & Experience We're Seeking Experience in threat hunting, cyber threat detection, SOC, blue team, or cyber defence environments, with ideally around five years hands on experience. Strong hands-on experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary tradecraft Experience working with Indicators of Compromise (IOCs) and threat intelligence feeds Solid experience across the security event life cycle, including detection, investigation, and incident management Hands-on experience with EDR/XDR technologies such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black Strong knowledge of networking fundamentals (TCP/IP, DNS, HTTP/S, Firewalls, VPNs, Proxy technologies) Experience analysing telemetry from Windows, Linux, identity, endpoint, and network sources Strong analytical mindset with the ability to clearly communicate findings, impact, and risk Key Responsibilities Conduct proactive threat hunting activities across log, endpoint, and network telemetry to identify suspicious, stealthy, or previously unknown threats Develop and execute hunt hypotheses aligned to MITRE ATT&CK TTPs, adversary behaviours, and emerging threat intelligence Write, refine, and optimise SIEM queries using KQL, SPL, Elastic/ESQL, and Kibana Query Language Perform IOC analysis, enrichment, and validation, integrating internal and external threat intelligence sources Lead investigations from initial detection through scoping, root cause analysis, and impact assessment Support incident management and incident response activities, including containment, remediation, escalation, and lessons learned Collaborate closely with SOC teams, incident responders, red teams, and purple teams to validate detections and improve defensive coverage Contribute to detection logic improvements, use-case development, and continuous enhancement of hunting methodologies Produce clear investigation write-ups, timelines, and recommendations for technical and non-technical stakeholders Security Certifications (Highly Beneficial) SANS/GIAC certifications, including but not limited to: GCIH - Incident Handler GCIA - Intrusion Analyst GCED - Enterprise Defender GCTI - Cyber Threat Intelligence GMON - Continuous Monitoring GDAT - Defending Advanced Threats GCAT - Advanced Threat Intelligence OSCP or equivalent offensive security qualifications Crest certifications, such as: Crest Practitioner Intrusion Analyst (CPIA) Crest Registered Intrusion Analyst (CRIA) Crest Certified Threat Intelligence Analyst (CCTIA) Crest Certified Blue Team Professional (CCBTP) Microsoft SC-200 or related detection and response certifications Other recognised cyber security or threat intelligence credentials
May 28, 2026
Full time
SIEM Analyst / Cyber Threat Detection Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a SIEM Analyst Cyber Threat Detection, you will play a hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats are identified. We are open to experienced SOC Analysts where threat hunting, investigations, and proactive detection have formed a significant part of their role, and who are looking to further develop in a more hunting-led environment. This position is well suited to analysts who enjoy thinking like an attacker, have worked alongside or supported red team or purple team activities, and want to deepen their expertise in threat detection and detection engineering. Skills & Experience We're Seeking Experience in threat hunting, cyber threat detection, SOC, blue team, or cyber defence environments, with ideally around five years hands on experience. Strong hands-on experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary tradecraft Experience working with Indicators of Compromise (IOCs) and threat intelligence feeds Solid experience across the security event life cycle, including detection, investigation, and incident management Hands-on experience with EDR/XDR technologies such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black Strong knowledge of networking fundamentals (TCP/IP, DNS, HTTP/S, Firewalls, VPNs, Proxy technologies) Experience analysing telemetry from Windows, Linux, identity, endpoint, and network sources Strong analytical mindset with the ability to clearly communicate findings, impact, and risk Key Responsibilities Conduct proactive threat hunting activities across log, endpoint, and network telemetry to identify suspicious, stealthy, or previously unknown threats Develop and execute hunt hypotheses aligned to MITRE ATT&CK TTPs, adversary behaviours, and emerging threat intelligence Write, refine, and optimise SIEM queries using KQL, SPL, Elastic/ESQL, and Kibana Query Language Perform IOC analysis, enrichment, and validation, integrating internal and external threat intelligence sources Lead investigations from initial detection through scoping, root cause analysis, and impact assessment Support incident management and incident response activities, including containment, remediation, escalation, and lessons learned Collaborate closely with SOC teams, incident responders, red teams, and purple teams to validate detections and improve defensive coverage Contribute to detection logic improvements, use-case development, and continuous enhancement of hunting methodologies Produce clear investigation write-ups, timelines, and recommendations for technical and non-technical stakeholders Security Certifications (Highly Beneficial) SANS/GIAC certifications, including but not limited to: GCIH - Incident Handler GCIA - Intrusion Analyst GCED - Enterprise Defender GCTI - Cyber Threat Intelligence GMON - Continuous Monitoring GDAT - Defending Advanced Threats GCAT - Advanced Threat Intelligence OSCP or equivalent offensive security qualifications Crest certifications, such as: Crest Practitioner Intrusion Analyst (CPIA) Crest Registered Intrusion Analyst (CRIA) Crest Certified Threat Intelligence Analyst (CCTIA) Crest Certified Blue Team Professional (CCBTP) Microsoft SC-200 or related detection and response certifications Other recognised cyber security or threat intelligence credentials
