Job specification for the position of : Cyber Security Analyst Reporting to : IT Governance and Security Manager OFFICE BASED IN WATFORD - FIVE DAYS PER WEEK - NON-NEGOTIABLE Must have a British passport or ILR (Indefinite leave to remain) - no sponsorship available Purpose of the role : The cyber security analyst is responsible for the day-to-day tasks which protect the business from cyber threats and attacks. Based in Watford, at head office, this role gives an opportunity to contribute to cyber response and to identify cyber risks, helping IT to protect the company's systems. Role overview : working closely with the IT governance and security manager, contributing to cyber strategy administering IT security systems identifying, mitigating and escalating IT security incidents identifying deviations from IT security standards analysing logs and reporting relevant information reporting trends and threats in e-mail and web traffic, as appropriate analysing security information and producing relevant reports administering and evaluating cyber security questionnaires co-ordinating and scheduling penetration tests managing third-party forensic investigations completing cyber security posture-reporting supporting excellent cyber security design, with the ability to contribute to good cyber security practices In detail, the role will involve : log-analysing security posture-monitoring Trellix antivirus-reporting and some EPO management tasks secure physical and electronic destruction of sensitive data helping the business to protect sensitive information (e.g. encrypting data) educating and awareness through spam-testing; supporting the training teams with e-learning monitoring public and third-party feeds for emerging cyber trends performing cyber risk assessments co-ordinating cyber security incidents defining cyber policies and cyber standards assessing third-party suppliers' cyber standards keeping abreast of current and emerging threats Skills required : understanding log management (at an analysis level only): Microsoft Windows and AD log structure network system log, e.g. Cisco and Checkpoint Office 365 and Defender security knowledge of Splunk the SIEM platform understanding of systems and integrity: Netwrix security solutions administration, including AD Auditor and Change Tracker Trellix and SkyHigh reporting and management, including Trellix antivirus-reporting and DLP using EPO operational security and incident management: experience of cyber security quickly analysing data and making decisions on security threats Salary and benefits : competitive salary 25 days' paid holiday (plus bank holidays) pro rata; head-office bonus scheme; free shares (after 18 months with the company); private medical insurance; contributory pension scheme Please note you will receive an automated response advising you that we have received your CV. Morgan Philips Group is a global talent solutions business that disrupts conventional thinking in executive search, recruitment and talent consulting. We operate in over 18 markets in Europe, North & South America, Asia, and the Middle East & Africa. We understand that the future is digital and social, so we embrace the latest technology, including video ads and CVs, as well as social recruiting. Our innovative services are tailored to the new world of work yet we do not lose sight of the fact that employees be they existing and potential are ultimately human beings. We are committed to ensuring that all job applicants are treated equally, without discrimination because of gender, sexual orientation, marital or civil partner status, gender reassignment, race, colour, nationality, ethnic or national origin, religion or belief, disability or age.
Jun 11, 2026
Full time
Job specification for the position of : Cyber Security Analyst Reporting to : IT Governance and Security Manager OFFICE BASED IN WATFORD - FIVE DAYS PER WEEK - NON-NEGOTIABLE Must have a British passport or ILR (Indefinite leave to remain) - no sponsorship available Purpose of the role : The cyber security analyst is responsible for the day-to-day tasks which protect the business from cyber threats and attacks. Based in Watford, at head office, this role gives an opportunity to contribute to cyber response and to identify cyber risks, helping IT to protect the company's systems. Role overview : working closely with the IT governance and security manager, contributing to cyber strategy administering IT security systems identifying, mitigating and escalating IT security incidents identifying deviations from IT security standards analysing logs and reporting relevant information reporting trends and threats in e-mail and web traffic, as appropriate analysing security information and producing relevant reports administering and evaluating cyber security questionnaires co-ordinating and scheduling penetration tests managing third-party forensic investigations completing cyber security posture-reporting supporting excellent cyber security design, with the ability to contribute to good cyber security practices In detail, the role will involve : log-analysing security posture-monitoring Trellix antivirus-reporting and some EPO management tasks secure physical and electronic destruction of sensitive data helping the business to protect sensitive information (e.g. encrypting data) educating and awareness through spam-testing; supporting the training teams with e-learning monitoring public and third-party feeds for emerging cyber trends performing cyber risk assessments co-ordinating cyber security incidents defining cyber policies and cyber standards assessing third-party suppliers' cyber standards keeping abreast of current and emerging threats Skills required : understanding log management (at an analysis level only): Microsoft Windows and AD log structure network system log, e.g. Cisco and Checkpoint Office 365 and Defender security knowledge of Splunk the SIEM platform understanding of systems and integrity: Netwrix security solutions administration, including AD Auditor and Change Tracker Trellix and SkyHigh reporting and management, including Trellix antivirus-reporting and DLP using EPO operational security and incident management: experience of cyber security quickly analysing data and making decisions on security threats Salary and benefits : competitive salary 25 days' paid holiday (plus bank holidays) pro rata; head-office bonus scheme; free shares (after 18 months with the company); private medical insurance; contributory pension scheme Please note you will receive an automated response advising you that we have received your CV. Morgan Philips Group is a global talent solutions business that disrupts conventional thinking in executive search, recruitment and talent consulting. We operate in over 18 markets in Europe, North & South America, Asia, and the Middle East & Africa. We understand that the future is digital and social, so we embrace the latest technology, including video ads and CVs, as well as social recruiting. Our innovative services are tailored to the new world of work yet we do not lose sight of the fact that employees be they existing and potential are ultimately human beings. We are committed to ensuring that all job applicants are treated equally, without discrimination because of gender, sexual orientation, marital or civil partner status, gender reassignment, race, colour, nationality, ethnic or national origin, religion or belief, disability or age.
Role: 2nd Line IT Support Engineer Location: Blackburn Salary: £30,000 - £34,500 Are you an experienced IT Support professional with strong networking skills and a passion for delivering exceptional customer service? We're recruiting for a growing Managed Service Provider seeking a 2nd Line IT Support Engineer to join their technical support team. This is an excellent opportunity for someone who enjoys troubleshooting complex issues, supporting a varied client base, and developing their technical expertise across infrastructure, networking, and cloud technologies. A full UK driving licence and access to a vehicle are essential, as occasional travel to customer sites will be required. The Role As a 2nd Line IT Support Engineer, you'll act as a key escalation point for technical issues, supporting a wide range of customers across multiple environments. You'll take ownership of incidents, service requests, and infrastructure-related issues, ensuring they are resolved efficiently and within agreed SLAs. You'll work closely with both internal teams and clients, providing expert technical support while contributing to projects, system improvements, and ongoing service delivery. Key Responsibilities Act as an escalation point for 1st Line Support Engineers Diagnose and resolve complex hardware, software, server, and network issues Manage incidents, service requests, and problems through to resolution Provide onsite and remote support to customers Assist with infrastructure projects and service improvements Support virtualised server environments and cloud-based technologies Create and maintain technical documentation and knowledge base articles Monitor system performance and identify opportunities for optimisation Mentor junior team members and share technical knowledge Maintain excellent customer communication throughout the support lifecycle Essential Skills & Experience Previous experience in a 2nd Line IT Support, Service Desk, or Infrastructure Support role Strong networking knowledge, including: Network troubleshooting Switches, routers, and firewalls Network patching and cable termination TCP/IP, DNS, DHCP, and VLANs Experience supporting Microsoft Windows Server environments Knowledge of Microsoft 365 and Azure technologies Experience with virtualisation technologies such as VMware or Hyper-V Excellent troubleshooting and diagnostic skills Strong customer-facing communication skills Full UK driving licence and own vehicle Desirable Skills Microsoft, CompTIA, Cisco, or other industry certifications Experience within an MSP environment Exposure to cybersecurity solutions and best practices Experience supporting backup and disaster recovery solutions What's On Offer? Salary of £30,000 - £34,500 Ongoing training and professional development Industry certification support Clear progression opportunities Company events and team activities Flexible working arrangements as the role develops Eye care scheme Supportive and collaborative team environment The client is looking to fill this opportunity immediately, so please apply ASAP or feel free to drop me an email with any questions to . com. SER-IN
Jun 11, 2026
Full time
Role: 2nd Line IT Support Engineer Location: Blackburn Salary: £30,000 - £34,500 Are you an experienced IT Support professional with strong networking skills and a passion for delivering exceptional customer service? We're recruiting for a growing Managed Service Provider seeking a 2nd Line IT Support Engineer to join their technical support team. This is an excellent opportunity for someone who enjoys troubleshooting complex issues, supporting a varied client base, and developing their technical expertise across infrastructure, networking, and cloud technologies. A full UK driving licence and access to a vehicle are essential, as occasional travel to customer sites will be required. The Role As a 2nd Line IT Support Engineer, you'll act as a key escalation point for technical issues, supporting a wide range of customers across multiple environments. You'll take ownership of incidents, service requests, and infrastructure-related issues, ensuring they are resolved efficiently and within agreed SLAs. You'll work closely with both internal teams and clients, providing expert technical support while contributing to projects, system improvements, and ongoing service delivery. Key Responsibilities Act as an escalation point for 1st Line Support Engineers Diagnose and resolve complex hardware, software, server, and network issues Manage incidents, service requests, and problems through to resolution Provide onsite and remote support to customers Assist with infrastructure projects and service improvements Support virtualised server environments and cloud-based technologies Create and maintain technical documentation and knowledge base articles Monitor system performance and identify opportunities for optimisation Mentor junior team members and share technical knowledge Maintain excellent customer communication throughout the support lifecycle Essential Skills & Experience Previous experience in a 2nd Line IT Support, Service Desk, or Infrastructure Support role Strong networking knowledge, including: Network troubleshooting Switches, routers, and firewalls Network patching and cable termination TCP/IP, DNS, DHCP, and VLANs Experience supporting Microsoft Windows Server environments Knowledge of Microsoft 365 and Azure technologies Experience with virtualisation technologies such as VMware or Hyper-V Excellent troubleshooting and diagnostic skills Strong customer-facing communication skills Full UK driving licence and own vehicle Desirable Skills Microsoft, CompTIA, Cisco, or other industry certifications Experience within an MSP environment Exposure to cybersecurity solutions and best practices Experience supporting backup and disaster recovery solutions What's On Offer? Salary of £30,000 - £34,500 Ongoing training and professional development Industry certification support Clear progression opportunities Company events and team activities Flexible working arrangements as the role develops Eye care scheme Supportive and collaborative team environment The client is looking to fill this opportunity immediately, so please apply ASAP or feel free to drop me an email with any questions to . com. SER-IN
SOC Analyst (Contract) - SC Cleared Required Location: Cheltenham (Remote - UK Based) Rate: 500 - 685 per day (Umbrella, Inside IR35) Contract Length: 3 Months SC Clearence: Due to the sensitive nature of the work, candidates must hold active UK Government Security Clearance (SC) . Applicants must have a minimum of 5 years UK address history at the point of application. The Opportunity We are looking for a SOC Analyst to join a high-performing Security Operations Centre (SOC) team delivering critical cyber defence capabilities within a secure client environment. This is an exciting opportunity to work on impactful projects, collaborating with experienced security professionals while gaining hands-on exposure to real-world cyber threats in a fast-paced, dynamic setting. Key Responsibilities As a SOC Analyst, you will: Monitor, triage, and respond to security alerts and incidents Investigate and analyse potential threats across multiple environments Escalate security events in line with defined processes Support continuous improvement through alert tuning and optimisation recommendations Produce clear and concise incident and performance reports Maintain awareness of the latest cyber threats, vulnerabilities, and attack techniques Collaborate with wider security teams to strengthen detection and response capabilities Skills & Experience Required Prior experience (1-2 years desirable) in a SOC Analyst or similar security role Strong understanding of: Computer networks Operating systems (Windows/Linux) Software, hardware, and general IT infrastructure Awareness of cybersecurity risks across technologies and how to mitigate them Working knowledge of security technologies, including: Network & application firewalls Host Intrusion Prevention Systems (HIPS) Antivirus / endpoint protection tools Relevant academic qualifications or industry training (e.g., Cyber Security, IT Security)
Jun 11, 2026
Contractor
SOC Analyst (Contract) - SC Cleared Required Location: Cheltenham (Remote - UK Based) Rate: 500 - 685 per day (Umbrella, Inside IR35) Contract Length: 3 Months SC Clearence: Due to the sensitive nature of the work, candidates must hold active UK Government Security Clearance (SC) . Applicants must have a minimum of 5 years UK address history at the point of application. The Opportunity We are looking for a SOC Analyst to join a high-performing Security Operations Centre (SOC) team delivering critical cyber defence capabilities within a secure client environment. This is an exciting opportunity to work on impactful projects, collaborating with experienced security professionals while gaining hands-on exposure to real-world cyber threats in a fast-paced, dynamic setting. Key Responsibilities As a SOC Analyst, you will: Monitor, triage, and respond to security alerts and incidents Investigate and analyse potential threats across multiple environments Escalate security events in line with defined processes Support continuous improvement through alert tuning and optimisation recommendations Produce clear and concise incident and performance reports Maintain awareness of the latest cyber threats, vulnerabilities, and attack techniques Collaborate with wider security teams to strengthen detection and response capabilities Skills & Experience Required Prior experience (1-2 years desirable) in a SOC Analyst or similar security role Strong understanding of: Computer networks Operating systems (Windows/Linux) Software, hardware, and general IT infrastructure Awareness of cybersecurity risks across technologies and how to mitigate them Working knowledge of security technologies, including: Network & application firewalls Host Intrusion Prevention Systems (HIPS) Antivirus / endpoint protection tools Relevant academic qualifications or industry training (e.g., Cyber Security, IT Security)
We are supporting a leading technology organisation in the search for a Cyber Security Analyst to join its Security Operations team. This is an excellent opportunity to join a fast-paced cybersecurity environment, helping to protect critical infrastructure and enterprise systems through proactive monitoring, incident response, and threat analysis. Working as part of a 24/7 operational security function, you will play a key role in identifying, investigating, and responding to security threats across both cloud-based and on-premise environments. Key Responsibilities Monitor security events, alerts, and incidents across enterprise networks and systems. Manage security cases and tickets through to resolution. Analyse logs and data from SIEM platforms, security monitoring tools, network infrastructure, and endpoint technologies. Investigate and triage security alerts to identify malicious activity and determine attack methods and techniques. Follow established incident response and escalation procedures to contain and mitigate security risks. Ensure all incidents are accurately documented, including indicators of compromise, evidence, and investigation findings. Identify and address false positives, providing feedback to improve detection capabilities. Support the development and optimisation of security monitoring rules and processes. Analyse data sets to identify security gaps and recommend improvements. Skills & Experience Essential Degree in Information Security, Computer Science, Digital Forensics, or a related discipline, or equivalent industry experience. 3+ years' experience in cyber security, security operations, threat analysis, or security monitoring. Experience investigating security incidents and working within a Security Operations Centre environment. Understanding of incident response processes, security event triage, and escalation procedures. Strong knowledge of networking protocols, authentication mechanisms, and common attack techniques. Good understanding of information security principles, technologies, and best practices. Experience securing and supporting Windows and Linux environments. Excellent written and verbal communication skills. Desirable Industry certifications such as GCIH, GCIA, or equivalent cyber security qualifications. Experience working with SIEM platforms and security monitoring technologies. Knowledge of Oracle and virtualised environments. What's on Offer Opportunity to work within a highly skilled cyber security team. Exposure to complex security environments and emerging threats. Ongoing professional development and training opportunities. Collaborative and supportive working culture. Competitive salary, bonus and benefits package. This is an excellent opportunity for a Cyber Security Analyst looking to further develop their incident response, threat analysis, and security operations expertise within a technically challenging environment. TT
Jun 11, 2026
Full time
We are supporting a leading technology organisation in the search for a Cyber Security Analyst to join its Security Operations team. This is an excellent opportunity to join a fast-paced cybersecurity environment, helping to protect critical infrastructure and enterprise systems through proactive monitoring, incident response, and threat analysis. Working as part of a 24/7 operational security function, you will play a key role in identifying, investigating, and responding to security threats across both cloud-based and on-premise environments. Key Responsibilities Monitor security events, alerts, and incidents across enterprise networks and systems. Manage security cases and tickets through to resolution. Analyse logs and data from SIEM platforms, security monitoring tools, network infrastructure, and endpoint technologies. Investigate and triage security alerts to identify malicious activity and determine attack methods and techniques. Follow established incident response and escalation procedures to contain and mitigate security risks. Ensure all incidents are accurately documented, including indicators of compromise, evidence, and investigation findings. Identify and address false positives, providing feedback to improve detection capabilities. Support the development and optimisation of security monitoring rules and processes. Analyse data sets to identify security gaps and recommend improvements. Skills & Experience Essential Degree in Information Security, Computer Science, Digital Forensics, or a related discipline, or equivalent industry experience. 3+ years' experience in cyber security, security operations, threat analysis, or security monitoring. Experience investigating security incidents and working within a Security Operations Centre environment. Understanding of incident response processes, security event triage, and escalation procedures. Strong knowledge of networking protocols, authentication mechanisms, and common attack techniques. Good understanding of information security principles, technologies, and best practices. Experience securing and supporting Windows and Linux environments. Excellent written and verbal communication skills. Desirable Industry certifications such as GCIH, GCIA, or equivalent cyber security qualifications. Experience working with SIEM platforms and security monitoring technologies. Knowledge of Oracle and virtualised environments. What's on Offer Opportunity to work within a highly skilled cyber security team. Exposure to complex security environments and emerging threats. Ongoing professional development and training opportunities. Collaborative and supportive working culture. Competitive salary, bonus and benefits package. This is an excellent opportunity for a Cyber Security Analyst looking to further develop their incident response, threat analysis, and security operations expertise within a technically challenging environment. TT
Senior Network & Security Analyst What's On Offer: Hybrid (2 days onsite; full-time in office for the first month) Enterprise-scale, highly regulated environment Hands-on cyber security & network projects Strong focus on development and progression Competitive salary + excellent benefits Permanent, full time (Flexibility is required for occasional weekend work when needed) - This is also an on call operational role, with operational overtime We are pleased to be working with a highly regarded financial services organisation based just outside of Epsom, who are looking for a Senior Cyber Security & Network Analyst to join its growing technology function. It's a hands-on role within a strong team, focused on keeping systems secure while improving the wider network and security setup. This role offers the chance to operate at the intersection of cyber security and network engineering, supporting both day to day operations and strategic projects, so you'll play a vital role in protecting the organisation's infrastructure while contributing to ongoing transformation initiatives. Key Responsibilities: Own day to day cyber security operations, keeping systems and data secure Support and improve security tooling (firewalls, SIEM, endpoint, encryption) Monitor, investigate and respond to security incidents Look after core network infrastructure (LAN/WAN, Wi-Fi, L2/3, remote access, load balancing) Run vulnerability checks and ensure patching is up to date Use SIEM tools to spot and act on potential threats early Support audits, access controls and compliance requirements Get involved in (and lead) security and infrastructure projects Keep documentation and processes up to date Work with third-party suppliers where needed Support disaster recovery and business continuity planning What We're Looking For: 5 - 7+ years' experience in network engineering with strong cyber security exposure Proven experience with: Next-generation firewalls (e.g. Palo Alto) Endpoint detection and response tools SIEM platforms Vulnerability management tools (e.g. Qualys) Cisco switching (Layer 2/3) and enterprise networking Wireless technologies (e.g. Aruba) Network load balancing Strong incident management and threat analysis capabilities Experience working in regulated or compliance driven environments is advantageous Demonstrable experience delivering infrastructure or security projects About You: Strong analytical and problem solving mindset Excellent communication skills, both written and verbal Highly organised with strong attention to detail Proactive, self-motivated and able to work independently Collaborative approach with the ability to work across technical and non-technical teams Refer a friend and earn a retail voucher worth up to £500! Unfortunately, due to high numbers of applications, we are only able to respond to shortlisted applicants. If you have not heard from us within 5 days, please assume that you have not been shortlisted on this occasion. By applying for this vacancy, you accept Lloyd Recruitment Services Privacy and GDPR Policy which can be found on our website and therefore gives us consent to contact you. Lloyd Recruitment Services are acting as a recruitment agency in relation to this vacancy and are an equal opportunities employer.ME15616
Jun 11, 2026
Full time
Senior Network & Security Analyst What's On Offer: Hybrid (2 days onsite; full-time in office for the first month) Enterprise-scale, highly regulated environment Hands-on cyber security & network projects Strong focus on development and progression Competitive salary + excellent benefits Permanent, full time (Flexibility is required for occasional weekend work when needed) - This is also an on call operational role, with operational overtime We are pleased to be working with a highly regarded financial services organisation based just outside of Epsom, who are looking for a Senior Cyber Security & Network Analyst to join its growing technology function. It's a hands-on role within a strong team, focused on keeping systems secure while improving the wider network and security setup. This role offers the chance to operate at the intersection of cyber security and network engineering, supporting both day to day operations and strategic projects, so you'll play a vital role in protecting the organisation's infrastructure while contributing to ongoing transformation initiatives. Key Responsibilities: Own day to day cyber security operations, keeping systems and data secure Support and improve security tooling (firewalls, SIEM, endpoint, encryption) Monitor, investigate and respond to security incidents Look after core network infrastructure (LAN/WAN, Wi-Fi, L2/3, remote access, load balancing) Run vulnerability checks and ensure patching is up to date Use SIEM tools to spot and act on potential threats early Support audits, access controls and compliance requirements Get involved in (and lead) security and infrastructure projects Keep documentation and processes up to date Work with third-party suppliers where needed Support disaster recovery and business continuity planning What We're Looking For: 5 - 7+ years' experience in network engineering with strong cyber security exposure Proven experience with: Next-generation firewalls (e.g. Palo Alto) Endpoint detection and response tools SIEM platforms Vulnerability management tools (e.g. Qualys) Cisco switching (Layer 2/3) and enterprise networking Wireless technologies (e.g. Aruba) Network load balancing Strong incident management and threat analysis capabilities Experience working in regulated or compliance driven environments is advantageous Demonstrable experience delivering infrastructure or security projects About You: Strong analytical and problem solving mindset Excellent communication skills, both written and verbal Highly organised with strong attention to detail Proactive, self-motivated and able to work independently Collaborative approach with the ability to work across technical and non-technical teams Refer a friend and earn a retail voucher worth up to £500! Unfortunately, due to high numbers of applications, we are only able to respond to shortlisted applicants. If you have not heard from us within 5 days, please assume that you have not been shortlisted on this occasion. By applying for this vacancy, you accept Lloyd Recruitment Services Privacy and GDPR Policy which can be found on our website and therefore gives us consent to contact you. Lloyd Recruitment Services are acting as a recruitment agency in relation to this vacancy and are an equal opportunities employer.ME15616
Sanderson Government & Defence
Hemel Hempstead, Hertfordshire
L2 SOC Analyst (Perm) - SC/DV Clearable Location : Hemel Hempstead Salary: £40,000 - £58,000 + 20% Shift Allowance Shift Pattern: 4 on, 4 off (12 hour shifts) Clearance: SC Cleared (Must be eligible for DV) Contingency: Must be a sole British National Sanderson G&D are seeking multiple SOC Analysts to join a fast-growing Security Operations Centre, where you'll help defend multiple organisations across a wide range of industries - from critical infrastructure to complex enterprise environments. As part of a SOC team, you'll play a key role in strengthening and maturing services, helping deliver smart, efficient and high-impact security outcomes for clients. What you'll be doing: Monitoring and analysing security alerts and events, conducting initial investigations responding. Escalating complex incidents to Senior Analysts for deeper analysis and resolution. Managing SOC incident queues. Maintaining and improving asset baselines across customer environments. Producing clear, insightful reports for both technical and non-technical audiences. Enhancing detection rules and use cases aligned to MITRE ATT&CK and threat-informed defence. What you'll bring: Hands-on experience with Microsoft Sentinel and Splunk. Knowledge of the MITRE ATT&CK framework. Understanding of Client Server and multi-tier applications, databases, Firewalls, VPNs and endpoint security. Solid networking fundamentals (TCP/IP, LAN/WAN, HTTP, SMTP, FTP, LDAP, etc.). Strong analytical thinking and structured problem-solving. An entry-level cyber security certification (eg Security+, CEH, CPSA) or similar. if you're interested in the above, apply or reach out to (see below) Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Jun 11, 2026
Full time
L2 SOC Analyst (Perm) - SC/DV Clearable Location : Hemel Hempstead Salary: £40,000 - £58,000 + 20% Shift Allowance Shift Pattern: 4 on, 4 off (12 hour shifts) Clearance: SC Cleared (Must be eligible for DV) Contingency: Must be a sole British National Sanderson G&D are seeking multiple SOC Analysts to join a fast-growing Security Operations Centre, where you'll help defend multiple organisations across a wide range of industries - from critical infrastructure to complex enterprise environments. As part of a SOC team, you'll play a key role in strengthening and maturing services, helping deliver smart, efficient and high-impact security outcomes for clients. What you'll be doing: Monitoring and analysing security alerts and events, conducting initial investigations responding. Escalating complex incidents to Senior Analysts for deeper analysis and resolution. Managing SOC incident queues. Maintaining and improving asset baselines across customer environments. Producing clear, insightful reports for both technical and non-technical audiences. Enhancing detection rules and use cases aligned to MITRE ATT&CK and threat-informed defence. What you'll bring: Hands-on experience with Microsoft Sentinel and Splunk. Knowledge of the MITRE ATT&CK framework. Understanding of Client Server and multi-tier applications, databases, Firewalls, VPNs and endpoint security. Solid networking fundamentals (TCP/IP, LAN/WAN, HTTP, SMTP, FTP, LDAP, etc.). Strong analytical thinking and structured problem-solving. An entry-level cyber security certification (eg Security+, CEH, CPSA) or similar. if you're interested in the above, apply or reach out to (see below) Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Introduction Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to keep people and society safe. Our UK presence has been growing at pace, meaning we can offer a wide range of opportunities for personal fulfilment and career growth. We currently employ over 600 people across eight sites in the UK, and our specialisations include software engineering, underwater robotics, radars, AI, and armed forces training. The Role: This is an initial 6 month contract role within our UK IT Business Unit. The IT Solution Architect will be responsible for designing and implementing technology solutions that align with business objectives and technical requirements. This role bridges the gap between business needs and IT capabilities, ensuring that solutions are scalable, secure, and cost-effective. The Solution Architect works closely with stakeholders, developers, and project managers to deliver robust architectures that support organisational goals. Key Responsibilities: Solution Design & Architecture to a high standard. Develop high-level and detailed solution architectures for IT systems and applications. Ensure solutions comply with enterprise architecture standards, security policies, and regulatory requirements. Create architectural diagrams, models, and documentation for proposed solutions. Stakeholder Engagement Collaborate with business analysts, project managers, and technical teams to understand requirements. Present architectural solutions to stakeholders and obtain buy-in. Technology Evaluation Assess emerging technologies and recommend adoption where appropriate. Conduct feasibility studies and cost-benefit analyses for proposed solutions. Governance & Standards Define and enforce architectural principles, guidelines, and best practices. Ensure consistency and integration across systems and platforms. Implementation Support Provide technical leadership during solution implementation. Troubleshoot architectural issues and guide development teams. Perform Risk Management. Identify potential risks in solution design and propose mitigation strategies. Ensure compliance with data protection and cybersecurity standards. Qualifications and Skills: Bachelor's degree in Computer Science, Information Technology, or related field. 7+ years in IT roles, with at least 3 years in solution architecture. Experience in large-scale system design and implementation. Certifications (Preferred). TOGAF, AWS/Azure Solution Architect, ITIL. Knowledge of enterprise architecture frameworks (e.g., TOGAF, Zachman). Proficiency in cloud platforms (AWS, Azure, GCP) and hybrid architectures. Experience with APIs, microservices, and integration patterns. Understanding of networking, security, and infrastructure principles. Analytical & Problem-Solving. Ability to translate business requirements into technical solutions. Strong analytical skills for evaluating complex systems. Communication & Leadership. Excellent verbal and written communication skills. Ability to influence and negotiate with stakeholders at all levels. Self-motivated, resilient and able to work under pressure. Excellent communication and presentation skills. By submitting an application to Saab UK you consent to undertaking workforce screening activities that may include but are not limited to: Baseline Personnel Security checks, National Security Vetting, reference checks, verification of working rights and in all circumstances preferred candidates will be placed through a security interview.
Jun 11, 2026
Contractor
Introduction Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to keep people and society safe. Our UK presence has been growing at pace, meaning we can offer a wide range of opportunities for personal fulfilment and career growth. We currently employ over 600 people across eight sites in the UK, and our specialisations include software engineering, underwater robotics, radars, AI, and armed forces training. The Role: This is an initial 6 month contract role within our UK IT Business Unit. The IT Solution Architect will be responsible for designing and implementing technology solutions that align with business objectives and technical requirements. This role bridges the gap between business needs and IT capabilities, ensuring that solutions are scalable, secure, and cost-effective. The Solution Architect works closely with stakeholders, developers, and project managers to deliver robust architectures that support organisational goals. Key Responsibilities: Solution Design & Architecture to a high standard. Develop high-level and detailed solution architectures for IT systems and applications. Ensure solutions comply with enterprise architecture standards, security policies, and regulatory requirements. Create architectural diagrams, models, and documentation for proposed solutions. Stakeholder Engagement Collaborate with business analysts, project managers, and technical teams to understand requirements. Present architectural solutions to stakeholders and obtain buy-in. Technology Evaluation Assess emerging technologies and recommend adoption where appropriate. Conduct feasibility studies and cost-benefit analyses for proposed solutions. Governance & Standards Define and enforce architectural principles, guidelines, and best practices. Ensure consistency and integration across systems and platforms. Implementation Support Provide technical leadership during solution implementation. Troubleshoot architectural issues and guide development teams. Perform Risk Management. Identify potential risks in solution design and propose mitigation strategies. Ensure compliance with data protection and cybersecurity standards. Qualifications and Skills: Bachelor's degree in Computer Science, Information Technology, or related field. 7+ years in IT roles, with at least 3 years in solution architecture. Experience in large-scale system design and implementation. Certifications (Preferred). TOGAF, AWS/Azure Solution Architect, ITIL. Knowledge of enterprise architecture frameworks (e.g., TOGAF, Zachman). Proficiency in cloud platforms (AWS, Azure, GCP) and hybrid architectures. Experience with APIs, microservices, and integration patterns. Understanding of networking, security, and infrastructure principles. Analytical & Problem-Solving. Ability to translate business requirements into technical solutions. Strong analytical skills for evaluating complex systems. Communication & Leadership. Excellent verbal and written communication skills. Ability to influence and negotiate with stakeholders at all levels. Self-motivated, resilient and able to work under pressure. Excellent communication and presentation skills. By submitting an application to Saab UK you consent to undertaking workforce screening activities that may include but are not limited to: Baseline Personnel Security checks, National Security Vetting, reference checks, verification of working rights and in all circumstances preferred candidates will be placed through a security interview.
Graduate IT Support Technician - 12 month placement Sheffield About the Role CV Screen is recruiting for a Graduate IT Support Technician to join a highly respected organisation based in Sheffield. Offering a salary of £25,000 plus an excellent benefits package, this is an outstanding opportunity for a recent graduate or aspiring IT professional looking to launch a successful career in technology. You'll gain hands-on experience across IT support, Microsoft 365 administration, device management and cloud technologies while supporting an organisation that plays an important role in maintaining professional standards within a regulated sector. This is a hybrid role with excellent training - open to recent graduates and also pre-graduates looking for a placement year in industry. Duties & Responsibilities Provide first-line technical support and resolve IT issues for internal users. Assist with the deployment, configuration and maintenance of Windows devices. Support Microsoft 365 administration, including user accounts, licences and access management. Maintain accurate IT asset records and assist with hardware refresh projects. Create and update technical documentation, knowledge base articles and support procedures. What Experience is Required? A degree in IT, Computing or a related subject, or equivalent technical knowledge. Strong communication skills with the ability to support non-technical users. An interest in Microsoft technologies, IT support and infrastructure, with a willingness to learn. Salary & Benefits Salary of £25,000 Excellent training and mentoring programme Exposure to Microsoft 365, Intune and cloud-based technologies Clear career progression into Infrastructure, Cloud and Cyber Security roles Generous benefits package Location Based in Sheffield, this role is easily commutable from Rotherham, Chesterfield, Barnsley, Doncaster, Worksop and Dronfield. How to Apply To apply, please send your CV to Giselle Whitton of CV Screen in strict confidence. Alternate Job Titles Graduate IT Support Analyst Junior Service Desk Analyst IT Support Engineer Junior Systems Administrator CV Screen Ltd acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the Privacy Policy which can be found on the CV Screen website. (url removed)
Jun 11, 2026
Full time
Graduate IT Support Technician - 12 month placement Sheffield About the Role CV Screen is recruiting for a Graduate IT Support Technician to join a highly respected organisation based in Sheffield. Offering a salary of £25,000 plus an excellent benefits package, this is an outstanding opportunity for a recent graduate or aspiring IT professional looking to launch a successful career in technology. You'll gain hands-on experience across IT support, Microsoft 365 administration, device management and cloud technologies while supporting an organisation that plays an important role in maintaining professional standards within a regulated sector. This is a hybrid role with excellent training - open to recent graduates and also pre-graduates looking for a placement year in industry. Duties & Responsibilities Provide first-line technical support and resolve IT issues for internal users. Assist with the deployment, configuration and maintenance of Windows devices. Support Microsoft 365 administration, including user accounts, licences and access management. Maintain accurate IT asset records and assist with hardware refresh projects. Create and update technical documentation, knowledge base articles and support procedures. What Experience is Required? A degree in IT, Computing or a related subject, or equivalent technical knowledge. Strong communication skills with the ability to support non-technical users. An interest in Microsoft technologies, IT support and infrastructure, with a willingness to learn. Salary & Benefits Salary of £25,000 Excellent training and mentoring programme Exposure to Microsoft 365, Intune and cloud-based technologies Clear career progression into Infrastructure, Cloud and Cyber Security roles Generous benefits package Location Based in Sheffield, this role is easily commutable from Rotherham, Chesterfield, Barnsley, Doncaster, Worksop and Dronfield. How to Apply To apply, please send your CV to Giselle Whitton of CV Screen in strict confidence. Alternate Job Titles Graduate IT Support Analyst Junior Service Desk Analyst IT Support Engineer Junior Systems Administrator CV Screen Ltd acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the Privacy Policy which can be found on the CV Screen website. (url removed)
CBSbutler Holdings Limited trading as CBSbutler
Corsham, Wiltshire
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 650 a day +Corsham / Portsmouth We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles. If you'd like to discuss this Senior SOC Analyst in more detail, please send your updated CV to (url removed) and I will get in touch.
Jun 11, 2026
Contractor
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 650 a day +Corsham / Portsmouth We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles. If you'd like to discuss this Senior SOC Analyst in more detail, please send your updated CV to (url removed) and I will get in touch.
Cyber Security Analyst Taunton, Somerset | On-site | Up to £50,000 per annum + Bonus | Permanent Our client is seeking a Cyber Security Analyst to join their IT department on a permanent basis. This is an excellent opportunity for an individual with a passion for cyber security to play a key role in protecting and enhancing the business's security posture. The successful candidate will support the monitoring, investigation and response to cyber threats, assist with vulnerability management, and help maintain secure systems, networks and infrastructure. Working closely with engineers across the IT team, you will contribute to security improvements, support compliance initiatives, and help ensure the organisation remains protected against evolving cyber risks. This role would suit someone with a strong interest in cyber security, a proactive approach to problem-solving, and a desire to develop their career within a collaborative and forward-thinking environment. Required Experience: Experience working within an IT support, infrastructure, cyber security or IT operations environment. Knowledge of core cyber security principles, including vulnerability management, threat detection and incident response. Experience monitoring and investigating security alerts and events. Understanding of network, endpoint and cloud security concepts. Familiarity with security tools such as SIEM, endpoint protection and vulnerability scanning solutions. Experience supporting security controls and maintaining secure system configurations. Knowledge of information security frameworks and standards such as ISO 27001, Cyber Essentials Plus and PCI DSS. Ability to analyse security data, identify trends and make recommendations for improvement. Strong troubleshooting, analytical and problem-solving skills. Excellent communication skills with the ability to explain technical concepts to a range of stakeholders. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Jun 11, 2026
Full time
Cyber Security Analyst Taunton, Somerset | On-site | Up to £50,000 per annum + Bonus | Permanent Our client is seeking a Cyber Security Analyst to join their IT department on a permanent basis. This is an excellent opportunity for an individual with a passion for cyber security to play a key role in protecting and enhancing the business's security posture. The successful candidate will support the monitoring, investigation and response to cyber threats, assist with vulnerability management, and help maintain secure systems, networks and infrastructure. Working closely with engineers across the IT team, you will contribute to security improvements, support compliance initiatives, and help ensure the organisation remains protected against evolving cyber risks. This role would suit someone with a strong interest in cyber security, a proactive approach to problem-solving, and a desire to develop their career within a collaborative and forward-thinking environment. Required Experience: Experience working within an IT support, infrastructure, cyber security or IT operations environment. Knowledge of core cyber security principles, including vulnerability management, threat detection and incident response. Experience monitoring and investigating security alerts and events. Understanding of network, endpoint and cloud security concepts. Familiarity with security tools such as SIEM, endpoint protection and vulnerability scanning solutions. Experience supporting security controls and maintaining secure system configurations. Knowledge of information security frameworks and standards such as ISO 27001, Cyber Essentials Plus and PCI DSS. Ability to analyse security data, identify trends and make recommendations for improvement. Strong troubleshooting, analytical and problem-solving skills. Excellent communication skills with the ability to explain technical concepts to a range of stakeholders. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
SOC Engineer required for global legal firm. You will be responsible for advancing the maturity of the SIEM platform alongside other strategic security solutions, working closely with internal teams to improve the organisation's overall security posture. This position focuses on onboarding new log sources, optimising data pipelines, developing advanced detection use cases, and strengthening overall security monitoring and response. It's an excellent opportunity for a security professional who enjoys building scalable, high-performing SOC environments and driving continuous improvement. The Role This role also involves contributing to security service improvements and core operational processes, including incident, change, and problem management, as well as supporting the design, implementation, and review of security controls. There may occasionally be a requirement to support out-of-hours changes or respond to critical security incidents. Key Responsibilities SIEM Engineering & Optimisation Enhance and optimise SIEM performance, coverage, and detection fidelity Assess and improve SIEM architecture, including ingestion pipelines, parsing, and correlation logic Implement automation and orchestration (SOAR) to streamline response activities Log Source Onboarding & Integration Identify and onboard new log sources across cloud, network, endpoint, and application environments Develop custom parsers, connectors, and ingestion playbooks Collaborate with internal teams and vendors to ensure reliable, high-quality telemetry Detection Engineering Design and implement detection use cases aligned to MITRE ATT&CK and threat intelligence Build and tune correlation rules, anomaly detections, dashboards, and alerting workflows Continuously refine detections to reduce false positives and improve effectiveness SOC & Incident Response Support Partner with SOC analysts to validate and improve detection logic Support investigations through advanced SIEM queries and data analysis Act as a subject matter expert on complex security incidents Documentation & Governance Maintain clear documentation of data models, integrations, and detection logic Ensure alignment with security standards, controls, and compliance requirements Skills & Experience Technical Expertise Hands-on experience with SIEM platforms such as Splunk, Microsoft Sentinel, QRadar, Elastic, ArcSight, LogRhythm, or Exabeam Strong understanding of log formats (JSON, syslog, XML, CEF) and ingestion methods (APIs, Kafka, Event Hubs, agents) Experience in detection engineering, threat modelling, and attacker behaviour analysis Proven ability to build and tune correlation rules, dashboards, and alerts Familiarity with SOAR tools and automation workflows Security Knowledge Solid understanding of networking, Windows/Linux systems, cloud platforms (Azure, AWS, GCP), identity systems, and endpoint security tools Knowledge of MITRE ATT&CK , cyber kill chain, and threat hunting techniques Requirements Degree (Level 4+) in a computing-related subject or equivalent experience Background across IT infrastructure and information security roles Relevant certifications (eg GIAC, SC-200/SC-100, CISSP, SSCP, CSIS ) Strong Scripting skills ( Python, PowerShell, PowerApps ) Excellent communication skills with the ability to engage stakeholders at all levels Proactive, self-driven approach with strong analytical capability Desirable Experience Data Loss Prevention (DLP) Secure remote access solutions Network security technologies Threat intelligence and open-source security tools Experience with SaaS, IaaS, PaaS, and DaaS environments Business continuity and disaster recovery planning Knowledge of data privacy regulations
Jun 11, 2026
SOC Engineer required for global legal firm. You will be responsible for advancing the maturity of the SIEM platform alongside other strategic security solutions, working closely with internal teams to improve the organisation's overall security posture. This position focuses on onboarding new log sources, optimising data pipelines, developing advanced detection use cases, and strengthening overall security monitoring and response. It's an excellent opportunity for a security professional who enjoys building scalable, high-performing SOC environments and driving continuous improvement. The Role This role also involves contributing to security service improvements and core operational processes, including incident, change, and problem management, as well as supporting the design, implementation, and review of security controls. There may occasionally be a requirement to support out-of-hours changes or respond to critical security incidents. Key Responsibilities SIEM Engineering & Optimisation Enhance and optimise SIEM performance, coverage, and detection fidelity Assess and improve SIEM architecture, including ingestion pipelines, parsing, and correlation logic Implement automation and orchestration (SOAR) to streamline response activities Log Source Onboarding & Integration Identify and onboard new log sources across cloud, network, endpoint, and application environments Develop custom parsers, connectors, and ingestion playbooks Collaborate with internal teams and vendors to ensure reliable, high-quality telemetry Detection Engineering Design and implement detection use cases aligned to MITRE ATT&CK and threat intelligence Build and tune correlation rules, anomaly detections, dashboards, and alerting workflows Continuously refine detections to reduce false positives and improve effectiveness SOC & Incident Response Support Partner with SOC analysts to validate and improve detection logic Support investigations through advanced SIEM queries and data analysis Act as a subject matter expert on complex security incidents Documentation & Governance Maintain clear documentation of data models, integrations, and detection logic Ensure alignment with security standards, controls, and compliance requirements Skills & Experience Technical Expertise Hands-on experience with SIEM platforms such as Splunk, Microsoft Sentinel, QRadar, Elastic, ArcSight, LogRhythm, or Exabeam Strong understanding of log formats (JSON, syslog, XML, CEF) and ingestion methods (APIs, Kafka, Event Hubs, agents) Experience in detection engineering, threat modelling, and attacker behaviour analysis Proven ability to build and tune correlation rules, dashboards, and alerts Familiarity with SOAR tools and automation workflows Security Knowledge Solid understanding of networking, Windows/Linux systems, cloud platforms (Azure, AWS, GCP), identity systems, and endpoint security tools Knowledge of MITRE ATT&CK , cyber kill chain, and threat hunting techniques Requirements Degree (Level 4+) in a computing-related subject or equivalent experience Background across IT infrastructure and information security roles Relevant certifications (eg GIAC, SC-200/SC-100, CISSP, SSCP, CSIS ) Strong Scripting skills ( Python, PowerShell, PowerApps ) Excellent communication skills with the ability to engage stakeholders at all levels Proactive, self-driven approach with strong analytical capability Desirable Experience Data Loss Prevention (DLP) Secure remote access solutions Network security technologies Threat intelligence and open-source security tools Experience with SaaS, IaaS, PaaS, and DaaS environments Business continuity and disaster recovery planning Knowledge of data privacy regulations
Want to join a company is a recognised innovation and technology leader, tackling highly complex challenges across multiple defence and aerospace domains? Join a business who deliver advanced systems and services to customers worldwide and is widely regarded as a trusted, high-performing organisation within its market! Important: All applicants must have current Security Clearance Working: 3 days onsite In this position, you will play a key role within the Project Management Office (PMO), providing financial assurance and supporting Project and Programme Managers in making informed business decisions. Key responsibilities include reviewing and approving expenses, ensuring accurate and timely client billing, and conducting variance analysis to help prevent cost overruns. You will also support forecasting activities and track project profitability throughout the lifecycle. You will work closely with a range of internal stakeholders, including Finance, Commercial teams, and senior leadership. This role offers excellent opportunities for career development while allowing you to contribute meaningfully to project delivery and overall business success. You'll be joining a collaborative and forward-thinking environment where project finance is central to decision-making. The role offers real ownership, visibility, and the opportunity to influence project direction from a financial perspective, while working alongside experienced professionals across both project and finance disciplines. Company Highlights: Join a globally recognised technology and defence leader, repeatedly awarded for innovation, patents and engineering excellence across aerospace, defence, space and cyber. An organisation trusted by governments worldwide, delivering mission-critical systems and recognised with Gold status by the UK Ministry of Defence for its support of the armed forces community. Be part of a business consistently ranked among the top innovators in the aerospace and defence sector, combining cutting-edge technology with long term programme stability, including high-profile contracts with government and allied partners worldwide. Explore the chance to work on cutting-edge, nationally significant projects with real-world impact, not theoretical R&D. A business, known for a strong culture of innovation, inclusion and long-term career development, backed by the scale and stability of a global industry leader. Key responsibilities: Monitor budgets and costs on a weekly basis, including labour and expenses, ensuring accurate time recording and variance analysis against forecasts Maintain accurate and up-to-date documentation, including client forecast trackers Support financial reporting, including assisting with quarterly Estimates at Completion (EACs) and validating contract balances Contribute to new business opportunities through financial modelling Oversee monthly invoicing processes, ensuring accurate client billing for project-related costs Submit forecasts to clients in line with agreed deadlines Essential Skills & Experience Strong organisational and time management skills Good understanding of budgeting, forecasting, and cost control Ability to thrive in fast-paced environments and manage multiple workstreams and priorities High attention to detail, ensuring accuracy and completeness in reporting Confident communicator, able to engage with stakeholders at all levels Ability to explain financial information clearly to non-finance audiences Proficiency in ERP systems (e.g. SAP) and advanced Excel skills Current Security Clearance Desirable Experience: Finance qualification desirable but not essential Even If you feel like you don't meet every requirement, we encourage you to reach out and apply.
Jun 11, 2026
Full time
Want to join a company is a recognised innovation and technology leader, tackling highly complex challenges across multiple defence and aerospace domains? Join a business who deliver advanced systems and services to customers worldwide and is widely regarded as a trusted, high-performing organisation within its market! Important: All applicants must have current Security Clearance Working: 3 days onsite In this position, you will play a key role within the Project Management Office (PMO), providing financial assurance and supporting Project and Programme Managers in making informed business decisions. Key responsibilities include reviewing and approving expenses, ensuring accurate and timely client billing, and conducting variance analysis to help prevent cost overruns. You will also support forecasting activities and track project profitability throughout the lifecycle. You will work closely with a range of internal stakeholders, including Finance, Commercial teams, and senior leadership. This role offers excellent opportunities for career development while allowing you to contribute meaningfully to project delivery and overall business success. You'll be joining a collaborative and forward-thinking environment where project finance is central to decision-making. The role offers real ownership, visibility, and the opportunity to influence project direction from a financial perspective, while working alongside experienced professionals across both project and finance disciplines. Company Highlights: Join a globally recognised technology and defence leader, repeatedly awarded for innovation, patents and engineering excellence across aerospace, defence, space and cyber. An organisation trusted by governments worldwide, delivering mission-critical systems and recognised with Gold status by the UK Ministry of Defence for its support of the armed forces community. Be part of a business consistently ranked among the top innovators in the aerospace and defence sector, combining cutting-edge technology with long term programme stability, including high-profile contracts with government and allied partners worldwide. Explore the chance to work on cutting-edge, nationally significant projects with real-world impact, not theoretical R&D. A business, known for a strong culture of innovation, inclusion and long-term career development, backed by the scale and stability of a global industry leader. Key responsibilities: Monitor budgets and costs on a weekly basis, including labour and expenses, ensuring accurate time recording and variance analysis against forecasts Maintain accurate and up-to-date documentation, including client forecast trackers Support financial reporting, including assisting with quarterly Estimates at Completion (EACs) and validating contract balances Contribute to new business opportunities through financial modelling Oversee monthly invoicing processes, ensuring accurate client billing for project-related costs Submit forecasts to clients in line with agreed deadlines Essential Skills & Experience Strong organisational and time management skills Good understanding of budgeting, forecasting, and cost control Ability to thrive in fast-paced environments and manage multiple workstreams and priorities High attention to detail, ensuring accuracy and completeness in reporting Confident communicator, able to engage with stakeholders at all levels Ability to explain financial information clearly to non-finance audiences Proficiency in ERP systems (e.g. SAP) and advanced Excel skills Current Security Clearance Desirable Experience: Finance qualification desirable but not essential Even If you feel like you don't meet every requirement, we encourage you to reach out and apply.
SOC Analyst Leeds (Hybrid) £50,000 - £58,000 Package 24/7 Shift Pattern Permanent 25 Days Hols (rising to 27 + Buy and Sell scheme) - Pension (5% Employer) - Healthcare - DIS x 4 Critical Illness Cover - Birthday off - Vendor Training and Accreditations SOC Analyst Join a Growing Cyber Security Operations Team An established international technology and cyber security services provider is investing heavily in its Security Operations capability and is looking to appoint a SOC Analyst to join a growing 24/7 Cyber Defence team based in Leeds. This is an excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond to security incidents while supporting the ongoing protection of critical business systems and infrastructure. The Role As a SOC Analyst, you will be responsible for monitoring and responding to cyber security events, supporting incident investigations and helping to maintain a strong security posture across customer environments. Key Responsibilities Monitor and investigate security alerts and events across cloud, endpoint, identity and network environments Support the management of security incidents through the incident response lifecycle Perform security investigations and root cause analysis Validate indicators of compromise and assess potential business impact Conduct proactive threat hunting activities Query and analyse security data using Microsoft Sentinel and KQL Support vulnerability management and remediation activities Work closely with technical teams to coordinate containment and recovery actions Produce incident reports, documentation and recommendations Contribute to the continuous improvement of security monitoring capabilities Technology Environment You'll gain exposure to a modern enterprise security stack including: Microsoft Sentinel Microsoft Defender XDR Defender for Endpoint Defender for Cloud Defender for Identity Defender for Cloud Apps Microsoft Intune Qualys AttackIQ XM Cyber Threat Intelligence Platforms What We're Looking For We're interested in speaking with candidates who have experience in one or more of the following: Security Operations Centre (SOC) environments Security Monitoring Incident Response Cyber Security Analysis Threat Detection Threat Hunting Vulnerability Management Security Operations You may currently be working as a: SOC Analyst Cyber Security Analyst Security Analyst Security Operations Analyst Threat Detection Analyst Blue Team Analyst Information Security Analyst Essential Skills Experience monitoring and investigating security events Understanding of cyber security threats, attack techniques and security controls Exposure to SIEM technologies Strong analytical and problem-solving skills Experience working within a security operations environment Excellent communication and documentation skills Desirable Skills Microsoft Sentinel experience KQL (Kusto Query Language) Microsoft Defender XDR technologies Threat Hunting experience Detection Engineering Security Automation Vulnerability Assessment platforms such as Qualys Knowledge of MITRE ATT&CK Exposure to NIST, ISO27001 or CIS Controls Experience supporting regulated environments Why Apply? This organisation is a recognised international technology and cyber security provider supporting customers globally. You'll join a collaborative team environment with genuine opportunities to develop your cyber security career, gain industry certifications and work with some of the most widely adopted security technologies in the market. Benefits 25 days annual leave (rising with service) Birthday day off Hybrid working model Home-based night shifts Private Medical Insurance Life Assurance Enhanced Pension Scheme Income Protection Learning & Development support Dedicated certification programme Microsoft, AWS, Cisco and Fortinet training pathways Leadership development opportunities Employee wellbeing initiatives Cycle to Work scheme Retail discounts programme Modern office environment This is an excellent opportunity for a SOC Analyst looking to join a mature cyber security operation and continue developing their incident response, threat detection and cyber defence skills within a highly respected technology organisation.
Jun 11, 2026
Full time
SOC Analyst Leeds (Hybrid) £50,000 - £58,000 Package 24/7 Shift Pattern Permanent 25 Days Hols (rising to 27 + Buy and Sell scheme) - Pension (5% Employer) - Healthcare - DIS x 4 Critical Illness Cover - Birthday off - Vendor Training and Accreditations SOC Analyst Join a Growing Cyber Security Operations Team An established international technology and cyber security services provider is investing heavily in its Security Operations capability and is looking to appoint a SOC Analyst to join a growing 24/7 Cyber Defence team based in Leeds. This is an excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond to security incidents while supporting the ongoing protection of critical business systems and infrastructure. The Role As a SOC Analyst, you will be responsible for monitoring and responding to cyber security events, supporting incident investigations and helping to maintain a strong security posture across customer environments. Key Responsibilities Monitor and investigate security alerts and events across cloud, endpoint, identity and network environments Support the management of security incidents through the incident response lifecycle Perform security investigations and root cause analysis Validate indicators of compromise and assess potential business impact Conduct proactive threat hunting activities Query and analyse security data using Microsoft Sentinel and KQL Support vulnerability management and remediation activities Work closely with technical teams to coordinate containment and recovery actions Produce incident reports, documentation and recommendations Contribute to the continuous improvement of security monitoring capabilities Technology Environment You'll gain exposure to a modern enterprise security stack including: Microsoft Sentinel Microsoft Defender XDR Defender for Endpoint Defender for Cloud Defender for Identity Defender for Cloud Apps Microsoft Intune Qualys AttackIQ XM Cyber Threat Intelligence Platforms What We're Looking For We're interested in speaking with candidates who have experience in one or more of the following: Security Operations Centre (SOC) environments Security Monitoring Incident Response Cyber Security Analysis Threat Detection Threat Hunting Vulnerability Management Security Operations You may currently be working as a: SOC Analyst Cyber Security Analyst Security Analyst Security Operations Analyst Threat Detection Analyst Blue Team Analyst Information Security Analyst Essential Skills Experience monitoring and investigating security events Understanding of cyber security threats, attack techniques and security controls Exposure to SIEM technologies Strong analytical and problem-solving skills Experience working within a security operations environment Excellent communication and documentation skills Desirable Skills Microsoft Sentinel experience KQL (Kusto Query Language) Microsoft Defender XDR technologies Threat Hunting experience Detection Engineering Security Automation Vulnerability Assessment platforms such as Qualys Knowledge of MITRE ATT&CK Exposure to NIST, ISO27001 or CIS Controls Experience supporting regulated environments Why Apply? This organisation is a recognised international technology and cyber security provider supporting customers globally. You'll join a collaborative team environment with genuine opportunities to develop your cyber security career, gain industry certifications and work with some of the most widely adopted security technologies in the market. Benefits 25 days annual leave (rising with service) Birthday day off Hybrid working model Home-based night shifts Private Medical Insurance Life Assurance Enhanced Pension Scheme Income Protection Learning & Development support Dedicated certification programme Microsoft, AWS, Cisco and Fortinet training pathways Leadership development opportunities Employee wellbeing initiatives Cycle to Work scheme Retail discounts programme Modern office environment This is an excellent opportunity for a SOC Analyst looking to join a mature cyber security operation and continue developing their incident response, threat detection and cyber defence skills within a highly respected technology organisation.
Senior Network Analyst - Hybrid Our client is urgently looking for an experienced Senior Network Analyst to join their team based near Epsom on a permanent basis. You will have a strong, hands-on background in Networking, as well as some added Cyber Security experience. Please note, the role is hybrid, with 2-3 days on-site each week. You will have a strong Network Engineering background ( a minimum of 5-7 years) with added Cyber experience and will have led and performed new installations/kit builds. You will be rewarded with an excellent salary, as well as a brilliant benefits package including bonus, annual leave, leading pension contribution (up to 21%), car schemes, on-site canteen, restaurant and gym (heavily subsidised), medical insurance, life assurance, income protection, hybrid working and a genuinely fantastic working culture! Senior Network Analyst - Key Skills: Palo Alto Firewalls and all associated NG services Endpoint detection and remediation Proven track record in Cyber security and understanding of cyber security analysis, tools and software Experience of implementing, supporting and developing L2/3 network infrastructure Qualys Vulnerability Management Aruba Wifi L2/3 switching - Cisco Nexus Network Load balancing Penetration Testing (3rd Party) Incident management Data Security Senior Network Analyst - Hybrid Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Jun 10, 2026
Full time
Senior Network Analyst - Hybrid Our client is urgently looking for an experienced Senior Network Analyst to join their team based near Epsom on a permanent basis. You will have a strong, hands-on background in Networking, as well as some added Cyber Security experience. Please note, the role is hybrid, with 2-3 days on-site each week. You will have a strong Network Engineering background ( a minimum of 5-7 years) with added Cyber experience and will have led and performed new installations/kit builds. You will be rewarded with an excellent salary, as well as a brilliant benefits package including bonus, annual leave, leading pension contribution (up to 21%), car schemes, on-site canteen, restaurant and gym (heavily subsidised), medical insurance, life assurance, income protection, hybrid working and a genuinely fantastic working culture! Senior Network Analyst - Key Skills: Palo Alto Firewalls and all associated NG services Endpoint detection and remediation Proven track record in Cyber security and understanding of cyber security analysis, tools and software Experience of implementing, supporting and developing L2/3 network infrastructure Qualys Vulnerability Management Aruba Wifi L2/3 switching - Cisco Nexus Network Load balancing Penetration Testing (3rd Party) Incident management Data Security Senior Network Analyst - Hybrid Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Leeds (Hybrid) 50,000 - 58,000 Package 24/7 Shift Pattern Permanent With extensive Benefits! 25 days annual leave (rising with service to 27) Birthday day off Hybrid working model but mostly work from home Home-based night shifts with certain day shifts also from home 4 days on 4 days off Private Medical Insurance Life Assurance Enhanced Pension Scheme Income Protection Learning & Development support Dedicated certification programme Microsoft, AWS, Cisco and Fortinet training pathways Leadership development opportunities Employee wellbeing initiatives Cycle to Work scheme Retail discounts programme Modern office environment Opportunity Join a Growing Cyber Security Operations Team This is an excellent opportunity for a CyberSecurity Analyst looking to join a mature cyber security operation and continue developing their incident response, threat detection and cyber defence skills within a highly respected technology organisation. An established international technology and cyber security services provider is investing heavily in its Security Operations capability and is looking to appoint a SOC Analyst to join a growing 24/7 Cyber Defence team based in Leeds. This is an excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond to security incidents while supporting the ongoing protection of critical business systems and infrastructure. The Role As a SOC Analyst, you will be responsible for monitoring and responding to cyber security events, supporting incident investigations and helping to maintain a strong security posture across customer environments. Key Responsibilities Monitor and investigate security alerts and events across cloud, endpoint, identity and network environments Support the management of security incidents through the incident response lifecycle Perform security investigations and root cause analysis Validate indicators of compromise and assess potential business impact Conduct proactive threat hunting activities Query and analyse security data using Microsoft Sentinel and KQL Support vulnerability management and remediation activities Work closely with technical teams to coordinate containment and recovery actions Produce incident reports, documentation and recommendations Contribute to the continuous improvement of security monitoring capabilities Technology Environment You'll gain exposure to a modern enterprise security stack including: Microsoft Sentinel Microsoft Defender XDR Defender for Endpoint Defender for Cloud Defender for Identity Defender for Cloud Apps Microsoft Intune Qualys AttackIQ XM Cyber Threat Intelligence Platforms What We're Looking For We're interested in speaking with candidates who have experience in one or more of the following: Security Operations Centre (SOC) environments Security Monitoring Incident Response Cyber Security Analysis Threat Detection Threat Hunting Vulnerability Management Security Operations You may currently be working as a: SOC Analyst Cyber Security Analyst Security Analyst Security Operations Analyst Threat Detection Analyst Blue Team Analyst Information Security Analyst Essential Skills Experience monitoring and investigating security events Understanding of cyber security threats, attack techniques and security controls Exposure to SIEM technologies Strong analytical and problem-solving skills Experience working within a security operations environment Excellent communication and documentation skills Desirable Skills Microsoft Sentinel experience KQL (Kusto Query Language) Microsoft Defender XDR technologies Threat Hunting experience Detection Engineering Security Automation Vulnerability Assessment platforms such as Qualys Knowledge of MITRE ATT&CK Exposure to NIST, ISO27001 or CIS Controls Experience supporting regulated environments Why Apply? This organisation is a recognised international technology and cyber security provider supporting customers globally. You'll join a collaborative team environment with genuine opportunities to develop your cyber security career, gain industry certifications and work with some of the most widely adopted security technologies in the market.
Jun 10, 2026
Full time
Leeds (Hybrid) 50,000 - 58,000 Package 24/7 Shift Pattern Permanent With extensive Benefits! 25 days annual leave (rising with service to 27) Birthday day off Hybrid working model but mostly work from home Home-based night shifts with certain day shifts also from home 4 days on 4 days off Private Medical Insurance Life Assurance Enhanced Pension Scheme Income Protection Learning & Development support Dedicated certification programme Microsoft, AWS, Cisco and Fortinet training pathways Leadership development opportunities Employee wellbeing initiatives Cycle to Work scheme Retail discounts programme Modern office environment Opportunity Join a Growing Cyber Security Operations Team This is an excellent opportunity for a CyberSecurity Analyst looking to join a mature cyber security operation and continue developing their incident response, threat detection and cyber defence skills within a highly respected technology organisation. An established international technology and cyber security services provider is investing heavily in its Security Operations capability and is looking to appoint a SOC Analyst to join a growing 24/7 Cyber Defence team based in Leeds. This is an excellent opportunity for a cyber security professional looking to further develop their experience within a mature Security Operations environment, gaining exposure to incident response, threat detection, vulnerability management and modern Microsoft security technologies. Working within a highly regulated customer environment, you will help monitor, investigate and respond to security incidents while supporting the ongoing protection of critical business systems and infrastructure. The Role As a SOC Analyst, you will be responsible for monitoring and responding to cyber security events, supporting incident investigations and helping to maintain a strong security posture across customer environments. Key Responsibilities Monitor and investigate security alerts and events across cloud, endpoint, identity and network environments Support the management of security incidents through the incident response lifecycle Perform security investigations and root cause analysis Validate indicators of compromise and assess potential business impact Conduct proactive threat hunting activities Query and analyse security data using Microsoft Sentinel and KQL Support vulnerability management and remediation activities Work closely with technical teams to coordinate containment and recovery actions Produce incident reports, documentation and recommendations Contribute to the continuous improvement of security monitoring capabilities Technology Environment You'll gain exposure to a modern enterprise security stack including: Microsoft Sentinel Microsoft Defender XDR Defender for Endpoint Defender for Cloud Defender for Identity Defender for Cloud Apps Microsoft Intune Qualys AttackIQ XM Cyber Threat Intelligence Platforms What We're Looking For We're interested in speaking with candidates who have experience in one or more of the following: Security Operations Centre (SOC) environments Security Monitoring Incident Response Cyber Security Analysis Threat Detection Threat Hunting Vulnerability Management Security Operations You may currently be working as a: SOC Analyst Cyber Security Analyst Security Analyst Security Operations Analyst Threat Detection Analyst Blue Team Analyst Information Security Analyst Essential Skills Experience monitoring and investigating security events Understanding of cyber security threats, attack techniques and security controls Exposure to SIEM technologies Strong analytical and problem-solving skills Experience working within a security operations environment Excellent communication and documentation skills Desirable Skills Microsoft Sentinel experience KQL (Kusto Query Language) Microsoft Defender XDR technologies Threat Hunting experience Detection Engineering Security Automation Vulnerability Assessment platforms such as Qualys Knowledge of MITRE ATT&CK Exposure to NIST, ISO27001 or CIS Controls Experience supporting regulated environments Why Apply? This organisation is a recognised international technology and cyber security provider supporting customers globally. You'll join a collaborative team environment with genuine opportunities to develop your cyber security career, gain industry certifications and work with some of the most widely adopted security technologies in the market.
Security Monitoring & SIEM Analyst Location: Berkshire (Onsite) Salary: 45,000 - 60,000 + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC (UK Nationals only) Company Overview An exciting opportunity to join a global technology organisation with a well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices to defend against evolving threats. Role Overview As a Security Monitoring & SIEM Analyst, you will play a key role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through effective monitoring and rapid response. Key Responsibilities Monitor, analyse, and investigate security alerts across SIEM and security tooling Conduct detailed investigations across log, endpoint, identity, and network telemetry Develop and optimise detection logic and SIEM queries to improve alert fidelity Analyse security events and correlate activity across multiple data sources Support incident response activities, including containment, escalation, and remediation Perform IOC analysis, enrichment, and validation using threat intelligence sources Identify gaps in detection capabilities and contribute to continuous improvement Work closely with infrastructure, SOC, and incident response teams to enhance response capability Produce clear and structured investigation reports and escalation summaries Skills & Experience Required Core SIEM & Detection Skills Strong knowledge of SIEM platforms (e.g. Microsoft Sentinel, Splunk, Elastic) Experience writing and tuning queries using: o Kusto Query Language (KQL) o ES QL / Kibana Query Language o Splunk SPL Understanding of event correlation, alerting, and detection use-case development Technical Foundations Strong knowledge of: o Linux and Windows operating systems o Core networking concepts (TCP/IP, DNS, HTTP/S, firewalls, VPNs) Experience analysing logs across: o Endpoint, identity, network, and cloud environments Threat Detection & Security Tooling Strong knowledge of: o EDR/XDR concepts and workflows o IDS/IPS technologies and signature-based detection Experience working with tools such as: o Microsoft Defender, CrowdStrike, SentinelOne, or similar Threat & Adversary Knowledge Understanding of attacker Tactics, Techniques and Procedures (TTPs) and how they manifest in logs and telemetry Familiarity with MITRE ATT&CK framework Evidence of staying up to date with: o Emerging threats o Adversary tradecraft o Defensive techniques Incident Handling & Investigation Experience handling security incidents through: o Detection and triage o Investigation and analysis o Handover to Incident Response teams Strong understanding of: o Incident management processes o Host-based forensic concepts Ability to apply post-incident review (PIR) learnings to improve detection and response Desirable Experience Experience within a SOC or cyber defence environment Exposure to threat hunting or detection engineering Experience in high-security or regulated environments Certifications (Beneficial) Microsoft SC-200 (Security Operations Analyst) GIAC / SANS certifications (GCIH, GCIA, GCED, etc.) CREST (CPIA, CRIA, CCTIA, CCBTP) Other recognised cyber security certifications Why Join? Work within a mature Security Operations environment Exposure to advanced SIEM tooling and large-scale environments Strong investment in training, certifications, and progression Opportunity to develop into: o Senior SIEM Analyst o Detection Engineer o Threat Hunter About Adecco Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client's supplier list for this role.
Jun 10, 2026
Full time
Security Monitoring & SIEM Analyst Location: Berkshire (Onsite) Salary: 45,000 - 60,000 + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC (UK Nationals only) Company Overview An exciting opportunity to join a global technology organisation with a well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices to defend against evolving threats. Role Overview As a Security Monitoring & SIEM Analyst, you will play a key role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through effective monitoring and rapid response. Key Responsibilities Monitor, analyse, and investigate security alerts across SIEM and security tooling Conduct detailed investigations across log, endpoint, identity, and network telemetry Develop and optimise detection logic and SIEM queries to improve alert fidelity Analyse security events and correlate activity across multiple data sources Support incident response activities, including containment, escalation, and remediation Perform IOC analysis, enrichment, and validation using threat intelligence sources Identify gaps in detection capabilities and contribute to continuous improvement Work closely with infrastructure, SOC, and incident response teams to enhance response capability Produce clear and structured investigation reports and escalation summaries Skills & Experience Required Core SIEM & Detection Skills Strong knowledge of SIEM platforms (e.g. Microsoft Sentinel, Splunk, Elastic) Experience writing and tuning queries using: o Kusto Query Language (KQL) o ES QL / Kibana Query Language o Splunk SPL Understanding of event correlation, alerting, and detection use-case development Technical Foundations Strong knowledge of: o Linux and Windows operating systems o Core networking concepts (TCP/IP, DNS, HTTP/S, firewalls, VPNs) Experience analysing logs across: o Endpoint, identity, network, and cloud environments Threat Detection & Security Tooling Strong knowledge of: o EDR/XDR concepts and workflows o IDS/IPS technologies and signature-based detection Experience working with tools such as: o Microsoft Defender, CrowdStrike, SentinelOne, or similar Threat & Adversary Knowledge Understanding of attacker Tactics, Techniques and Procedures (TTPs) and how they manifest in logs and telemetry Familiarity with MITRE ATT&CK framework Evidence of staying up to date with: o Emerging threats o Adversary tradecraft o Defensive techniques Incident Handling & Investigation Experience handling security incidents through: o Detection and triage o Investigation and analysis o Handover to Incident Response teams Strong understanding of: o Incident management processes o Host-based forensic concepts Ability to apply post-incident review (PIR) learnings to improve detection and response Desirable Experience Experience within a SOC or cyber defence environment Exposure to threat hunting or detection engineering Experience in high-security or regulated environments Certifications (Beneficial) Microsoft SC-200 (Security Operations Analyst) GIAC / SANS certifications (GCIH, GCIA, GCED, etc.) CREST (CPIA, CRIA, CCTIA, CCBTP) Other recognised cyber security certifications Why Join? Work within a mature Security Operations environment Exposure to advanced SIEM tooling and large-scale environments Strong investment in training, certifications, and progression Opportunity to develop into: o Senior SIEM Analyst o Detection Engineer o Threat Hunter About Adecco Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client's supplier list for this role.
LA International Computer Consultants Ltd
Bracknell, Berkshire
Cyber security analyst Location: Full time on site in Bracknell Duration: 6 months + 24/7 shift working Shift: 4 week rotation. Across 4 weeks there are 3 shift cycles. Shift pattern 1: 2 days 3 nights 4 off Shift pattern 2: 3 days 2 nights 5 off Shift pattern 3: 2 days 2 nights 5 off Your role will involve oversight of shift's Security Operators providing security monitoring services, performing initial investigation of potential threats by use of Security Incident and Event Management (SIEM) tooling, and monitoring the SIEM tooling for faults. Working as part of an on-site 24x7 shift team, you will contribute to maintaining the confidentiality, integrity, and availability of our customer's services by performing routine security incident management to identify, prioritise, and escalate potential threats. Your transferable skills and experience: *Experience in cyber security. *Technical leadership. *Good communication. *Technical skills in an enterprise IT area (eg networking, Servers). Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take a minimum 18 weeks. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. An award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over multiple years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.
Jun 10, 2026
Contractor
Cyber security analyst Location: Full time on site in Bracknell Duration: 6 months + 24/7 shift working Shift: 4 week rotation. Across 4 weeks there are 3 shift cycles. Shift pattern 1: 2 days 3 nights 4 off Shift pattern 2: 3 days 2 nights 5 off Shift pattern 3: 2 days 2 nights 5 off Your role will involve oversight of shift's Security Operators providing security monitoring services, performing initial investigation of potential threats by use of Security Incident and Event Management (SIEM) tooling, and monitoring the SIEM tooling for faults. Working as part of an on-site 24x7 shift team, you will contribute to maintaining the confidentiality, integrity, and availability of our customer's services by performing routine security incident management to identify, prioritise, and escalate potential threats. Your transferable skills and experience: *Experience in cyber security. *Technical leadership. *Good communication. *Technical skills in an enterprise IT area (eg networking, Servers). Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take a minimum 18 weeks. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. An award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over multiple years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.
Senior Cyber Security & Network Analyst - Hybrid Our client is urgently looking for an experienced Senior Cyber Security & Network Analyst to join their team based near Epsom on a permanent basis. Please note, the role is hybrid, with 2-3 days on-site each week. You will have a strong Network Engineering background ( a minimum of 5-7 years) with added Cyber experience and will have led and performed new installations/kit builds. You will be rewarded with an excellent salary, as well as a brilliant benefits package including bonus, annual leave, leading pension contribution (up to 21%), car schemes, on-site canteen, restaurant and gym (heavily subsidised), medical insurance, life assurance, income protection, hybrid working and a genuinely fantastic working culture! Senior Cyber Security & Network Analyst - Key Skills: Palo Alto Firewalls and all associated NG services Endpoint detection and remediation Proven track record in Cyber security and understanding of cyber security analysis, tools and software Experience of implementing, supporting and developing L2/3 network infrastructure Qualys Vulnerability Management Aruba Wifi L2/3 switching - Cisco Nexus Network Load balancing Penetration Testing (3rd Party) Incident management Data Security Senior Cyber Security & Network Analyst - Hybrid Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Jun 10, 2026
Full time
Senior Cyber Security & Network Analyst - Hybrid Our client is urgently looking for an experienced Senior Cyber Security & Network Analyst to join their team based near Epsom on a permanent basis. Please note, the role is hybrid, with 2-3 days on-site each week. You will have a strong Network Engineering background ( a minimum of 5-7 years) with added Cyber experience and will have led and performed new installations/kit builds. You will be rewarded with an excellent salary, as well as a brilliant benefits package including bonus, annual leave, leading pension contribution (up to 21%), car schemes, on-site canteen, restaurant and gym (heavily subsidised), medical insurance, life assurance, income protection, hybrid working and a genuinely fantastic working culture! Senior Cyber Security & Network Analyst - Key Skills: Palo Alto Firewalls and all associated NG services Endpoint detection and remediation Proven track record in Cyber security and understanding of cyber security analysis, tools and software Experience of implementing, supporting and developing L2/3 network infrastructure Qualys Vulnerability Management Aruba Wifi L2/3 switching - Cisco Nexus Network Load balancing Penetration Testing (3rd Party) Incident management Data Security Senior Cyber Security & Network Analyst - Hybrid Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
The Group Cyber Security Awareness Analyst is responsible for supporting the design, delivery, and continuous improvement of Compass Group's global cyber security awareness programme. This is a maternity leave cover role focused on ensuring continuity and effectiveness of awareness, phishing simulation, and learning activities. This role focuses on embedding safer cyber behaviours across the organisation through role-relevant learning, phishing simulations, and targeted guidance. Working closely with Group cyber security and local market technology teams, HR, and external partners, the role ensures security awareness activities are aligned to real business risk and operational priorities. The role plays a key part in driving measurable behaviour change by using data and insight to continually refine content, targeting, and engagement across Compass Group's global workforce. Key accountabilities: Security Awareness Programme Delivery: Own and support the ongoing delivery and continuous improvement of the global cyber security awareness programme, ensuring alignment to business risks, threat trends, and operational priorities. Phishing & Learning Platform Management: Lead the rollout and day-to-day operation of phishing simulation and learning development platforms. Support market onboarding, define clear operating models, and manage support boundaries and ownership transitions between Group and markets. Role-Relevant Guidance & Training: Develop and deliver targeted, role-appropriate guidance and training for employees, leaders, and incident responders to influence safer day-to-day decision-making and consistent reporting behaviours. Measurement & Effectiveness: Measure programme effectiveness using meaningful KPIs such as training completion, phishing simulation outcomes, and reporting rates. Use data and insight to identify trends, adjust programme focus, and drive measurable behaviour change. Stakeholder Engagement: Work closely with Group and market stakeholders to promote awareness activities, support local adoption, and ensure programmes are relevant, practical, and well understood. Continuous Improvement: Stay informed on emerging social engineering techniques and awareness best practices. Continuously refine content, delivery methods, and engagement approaches to maintain effectiveness over time. Team Support & Flexibility: Provide support to wider Group cyber security activities where required, assisting with cross-team initiatives, operational priorities, and ad-hoc activities to ensure overall team effectiveness and resilience. Business Dimensions: This role supports Compass Group PLC applications and users globally, with a focus on enterprise-wide security awareness and behaviour change across multiple markets. The role reports into the Group Deputy CISO. The role has no direct reports. Expected Role KPIs: Development in line with the Personal Development Plan Accurate and insightful reporting Timely delivery of awareness campaigns and platform rollouts Projects and improvement activities delivered to schedule Key Skills and Experience Experience in cyber security awareness, training, learning platforms, or behavioural change programmes Understanding of phishing, social engineering, and human-centric cyber risk Experience supporting or operating learning management and phishing simulation platforms Strong data analysis skills with the ability to translate metrics into insight and action Strong written and verbal communication skills Ability to engage effectively with technical and non-technical stakeholders Highly organised with strong attention to detail Familiarity with security frameworks and standards (e.g. NIST, ISO 27001) is desirable Possible Next Career Steps: This role is a cover position focused on maintaining continuity and effectiveness of the Group cyber security awareness programme. While formal progression opportunities may be limited within this role, it provides valuable exposure to global cyber security operations, stakeholder engagement, and behavioural risk management, supporting the development of transferable skills applicable to future roles within cyber security, risk, or technology functions.
Jun 10, 2026
Full time
The Group Cyber Security Awareness Analyst is responsible for supporting the design, delivery, and continuous improvement of Compass Group's global cyber security awareness programme. This is a maternity leave cover role focused on ensuring continuity and effectiveness of awareness, phishing simulation, and learning activities. This role focuses on embedding safer cyber behaviours across the organisation through role-relevant learning, phishing simulations, and targeted guidance. Working closely with Group cyber security and local market technology teams, HR, and external partners, the role ensures security awareness activities are aligned to real business risk and operational priorities. The role plays a key part in driving measurable behaviour change by using data and insight to continually refine content, targeting, and engagement across Compass Group's global workforce. Key accountabilities: Security Awareness Programme Delivery: Own and support the ongoing delivery and continuous improvement of the global cyber security awareness programme, ensuring alignment to business risks, threat trends, and operational priorities. Phishing & Learning Platform Management: Lead the rollout and day-to-day operation of phishing simulation and learning development platforms. Support market onboarding, define clear operating models, and manage support boundaries and ownership transitions between Group and markets. Role-Relevant Guidance & Training: Develop and deliver targeted, role-appropriate guidance and training for employees, leaders, and incident responders to influence safer day-to-day decision-making and consistent reporting behaviours. Measurement & Effectiveness: Measure programme effectiveness using meaningful KPIs such as training completion, phishing simulation outcomes, and reporting rates. Use data and insight to identify trends, adjust programme focus, and drive measurable behaviour change. Stakeholder Engagement: Work closely with Group and market stakeholders to promote awareness activities, support local adoption, and ensure programmes are relevant, practical, and well understood. Continuous Improvement: Stay informed on emerging social engineering techniques and awareness best practices. Continuously refine content, delivery methods, and engagement approaches to maintain effectiveness over time. Team Support & Flexibility: Provide support to wider Group cyber security activities where required, assisting with cross-team initiatives, operational priorities, and ad-hoc activities to ensure overall team effectiveness and resilience. Business Dimensions: This role supports Compass Group PLC applications and users globally, with a focus on enterprise-wide security awareness and behaviour change across multiple markets. The role reports into the Group Deputy CISO. The role has no direct reports. Expected Role KPIs: Development in line with the Personal Development Plan Accurate and insightful reporting Timely delivery of awareness campaigns and platform rollouts Projects and improvement activities delivered to schedule Key Skills and Experience Experience in cyber security awareness, training, learning platforms, or behavioural change programmes Understanding of phishing, social engineering, and human-centric cyber risk Experience supporting or operating learning management and phishing simulation platforms Strong data analysis skills with the ability to translate metrics into insight and action Strong written and verbal communication skills Ability to engage effectively with technical and non-technical stakeholders Highly organised with strong attention to detail Familiarity with security frameworks and standards (e.g. NIST, ISO 27001) is desirable Possible Next Career Steps: This role is a cover position focused on maintaining continuity and effectiveness of the Group cyber security awareness programme. While formal progression opportunities may be limited within this role, it provides valuable exposure to global cyber security operations, stakeholder engagement, and behavioural risk management, supporting the development of transferable skills applicable to future roles within cyber security, risk, or technology functions.
Job Title: DV Cleared Cyber Security Operations - Senior Analyst Location: Corsham 5 days Duration: Until 31/12/2026 Rate: Up to 850 per day via an approved umbrella company Must be willing and eligible to go through the DV clearance process Are you an experienced cyber security professional with a passion for protecting critical assets? Our client, a reputable organisation, is hiring for a Senior Analyst to join their Cyber Security Operations team. This is a fantastic opportunity to work within a dynamic environment, supporting the delivery of essential security controls aligned with the NIST Cyber Security Framework. What you'll be doing: Maintain and optimise SOC PROTECT, DETECT, and RESPOND toolsets, including SIEM, SOAR, and vulnerability scanning tools. Support the development, configuration, and automation of security tooling to enhance threat detection and incident response. Conduct forensic analysis, malware reverse engineering, and develop IOCs and detection signatures. Manage and integrate logs from various sources, ensuring full visibility and compliance. Analyse attacker TTPs and manage threat intelligence, including incident assessment and reporting. Collaborate with stakeholders to ensure operational effectiveness and continuous process improvement. Maintain knowledge of current cyber threats and emerging trends. What you'll bring: Proven hands-on experience with SIEM and SOAR platforms such as Trend, Elastic, or SolarWinds. Strong understanding of Windows and Linux OS, log collection, and threat detection techniques. Ability to create and modify detection rules, automate scripts, and correlate data from multiple sources. Knowledge of malware analysis, threat intelligence, and forensic techniques. Current DV clearance is essential. Skills in Python, PowerShell, BASH, or similar scripting languages. Familiarity with ISO 27001, MITRE ATT&CK, and ITIL frameworks. Desired skills: Certifications like CompTIA Security+, CySA+, PenTest+, or MCSE. Experience with network forensics and intrusion detection systems. Join a forward-thinking team where your expertise will make a real impact. If you're ready to take on a challenging role in cyber security, apply now to support our client's mission to stay ahead of evolving threats. If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
Jun 10, 2026
Contractor
Job Title: DV Cleared Cyber Security Operations - Senior Analyst Location: Corsham 5 days Duration: Until 31/12/2026 Rate: Up to 850 per day via an approved umbrella company Must be willing and eligible to go through the DV clearance process Are you an experienced cyber security professional with a passion for protecting critical assets? Our client, a reputable organisation, is hiring for a Senior Analyst to join their Cyber Security Operations team. This is a fantastic opportunity to work within a dynamic environment, supporting the delivery of essential security controls aligned with the NIST Cyber Security Framework. What you'll be doing: Maintain and optimise SOC PROTECT, DETECT, and RESPOND toolsets, including SIEM, SOAR, and vulnerability scanning tools. Support the development, configuration, and automation of security tooling to enhance threat detection and incident response. Conduct forensic analysis, malware reverse engineering, and develop IOCs and detection signatures. Manage and integrate logs from various sources, ensuring full visibility and compliance. Analyse attacker TTPs and manage threat intelligence, including incident assessment and reporting. Collaborate with stakeholders to ensure operational effectiveness and continuous process improvement. Maintain knowledge of current cyber threats and emerging trends. What you'll bring: Proven hands-on experience with SIEM and SOAR platforms such as Trend, Elastic, or SolarWinds. Strong understanding of Windows and Linux OS, log collection, and threat detection techniques. Ability to create and modify detection rules, automate scripts, and correlate data from multiple sources. Knowledge of malware analysis, threat intelligence, and forensic techniques. Current DV clearance is essential. Skills in Python, PowerShell, BASH, or similar scripting languages. Familiarity with ISO 27001, MITRE ATT&CK, and ITIL frameworks. Desired skills: Certifications like CompTIA Security+, CySA+, PenTest+, or MCSE. Experience with network forensics and intrusion detection systems. Join a forward-thinking team where your expertise will make a real impact. If you're ready to take on a challenging role in cyber security, apply now to support our client's mission to stay ahead of evolving threats. If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
