The role: We are looking for a Senior Cloud Infrastructure Analyst to join our IT department in Bristol. At Simmons & Simmons, technology is central to delivering exceptional client service. We are seeking a talented and motivated Senior Cloud Infrastructure Analyst to join our Platforms team and help build, automate and operate the Azure platform underpinning our applications and services. This is a hands-on engineering role focused on designing and delivering secure, scalable and resilient cloud solutions in Microsoft Azure, using Infrastructure as Code and CI/CD automation as the default approach. You will work closely with architects, security and application teams to implement cloud platform patterns and enable delivery teams to deploy safely and consistently. You will be required to act as senior technical authority within the platforms team, supporting decision-making, mentoring engineers, and shaping the Azure roadmap. What will you do: Azure Infrastructure as Code (IaC) & CI/CD automation Build, deploy, and maintain Azure infrastructure using IaC (Bicep and/or Terraform) with peer review and version control. Strong familiarity working in IaC and pipelines to ensure quality, security and adherence to baseline standards. Cloud reliability, operations & incident/problem support (engineering-led) Act as a senior escalation point for complex Azure platform incidents; leading to troubleshoot, perform root cause analysis, and implement sustainable fixes (automation over repeated manual intervention). Monitor and improve platform health using Azure observability tooling (e.g., Azure Monitor, Log Analytics/KQL, Application Insights, Science Logic), and improve alerting and diagnostics. Lead reliability and resilience improvements such as such as performance tuning, resource optimisation, cost optimization using FinOps and provide availability enhancements, aligned to our service- level expectations. A senior analyst is expected to be a point of contact and escalation at all times, taking ownership of incident management, while providing 3rd & 4th level and technical support. Any experience working within the Agile framework using Scrum. Security, compliance & governance Embed security controls and compliance checks into delivery pipelines (DevSecOps approach), ensuring cloud systems are configured securely and remain compliant. Contribute to platform governance initiatives such as naming/tagging conventions, logging standards, Key Vault/secret patterns, and controlled change via Github Push/Pull requests. Work closely with Security and CISO stakeholders and the wider networks team to maintain a strong and compliant security posture across our Azure public cloud. What we are looking for: The role deliberately covers a relatively broad brief of technologies, targeted at enabling effective communication and efficient working practices. We would expect the role holder to be able to demonstrate a skill base that spans a range of the following topics and, where necessary, to demonstrate the aptitude and desire to develop to meet the entire brief. Knowledge of a range of enterprise IT application technologies, including a demonstrated track record in operating and administering or working with infrastructure applications as part of the: Microsoft Application Stack such as Exchange 365; Active Directory, AD connect, Azure site recovery (ASR) and Azure Virtual Desktop (AVD) and Azure SQL. Experience of working with VMware vSphere, HPE Servers & Storage, upgrades and maintenance procedures. Hands-on experience engineering solutions in Microsoft Azure, including a solid understanding of Azure IaaS and PaaS services (e.g., VMs, Storage, App Services, Front Door, API Management, Azure Functions, Azure SQL, Azure Networking). Strong experience with Infrastructure as Code in either (Bicep and/or Terraform; ARM knowledge acceptable where relevant). Practical experience with Azure DevOps (Pipelines, Repos, CI/CD concepts) and Git-based version control. Azure networking knowledge including VNETs, vWAN, ExpressRoute, VPN gateways, hub-and-spoke, and traffic management concepts. Azure security fundamentals including Managed Identities, Key Vault, Conditional Access, Defender for Cloud/Security Centre. Strong scripting capability in PowerShell (and/or Bash), and the ability to automate operational tasks and deployments. Strong troubleshooting mindset: diagnosing complex issues and driving them to resolution with appropriate escalation and RCA. Clear communication skills, including the ability to explain technical topics in plain English in a professional services environment. A Strong problem-solver with proactive, engineering-led mindset. Self-motivated technical lead and mentor. Comfortable working as a senior engineer in a collaborative, geographically diverse and inclusive team. Preferably either: 5-years relevant experience working in a similar role, or a qualification in Computer Science or Engineering or Microsoft accredited Azure Certifications (e.g., Azure Administrator / DevOps / Cloud Engineering) and relevant experience working in a similar role. Excellent Knowledge of the Azure and Windows Stack. Career Level: The career level assigned to this role is level 3. The career level framework provides a formal structure for the business services functions at the firm. The framework, which ranges from level 1 to level 7, clearly defines the responsibilities, skills and competencies required at each level. Here at Simmons & Simmons: At Simmons, we are proud of our collaborative, open and non-hierarchical culture, where everyone is treated with respect and dignity and the wellbeing of our people is paramount. Our dynamic minds work as one integrated team, partnering with leading organisations on inspirational and thought-provoking projects that matter. From day one, irrespective of job title, qualification or background, everyone s voice is heard, and you are encouraged to have an enquiring mind and share ideas that drive the firm forward. Through innovative learning and development opportunities, you will have a platform to excel, exceed your career ambitions, and achieve things you never thought possible. Some key information: We offer a competitive package including bonuses dependant on role/level, private medical insurance and pension contribution. Our global skills academy provides our people, regardless of their role and location, with excellent learning opportunities (including live workshops, podcasts, short videos and practical learning experiences). We have adopted a hybrid working approach with a requirement for a minimum of three days in the office with flexibility dependant on role/team/client demands. We are proud to rank as a Times Top 50 Employer for Gender Equality, a Stonewall Top Global Employer, and a Top 75 Employer for Social Mobility. We have a range of social and sports committees, summer and winter parties and monthly get togethers. We have a range of diversity networks to connect people and celebrate our differences which is integral to our inclusive culture. All UK offices have their own artwork collections including Damien Hirst and Tracey Emin pieces in the London office. We have a long-standing history in supporting the art community especially up-and-coming artists. We have recently introduced a Strategic Advisory Council which is a mix of associates and business services who will propose strategic initiatives that align with our firm's mission and support the delivery of our business plan, shaping the future of our next-generation law firm. Our in-house generative AI tool, Percy, won the Innovation in Automation and AI Tools category at the 2024 FT Innovative Lawyers Europe Awards. This achievement highlights our commitment to technological innovation and client service. We have been commended in The Times Best Law Firms 2026 across three categories: construction, employment, and intellectual property. Our profile is highly positive, highlighting our sector specialisms and notable case and transactional work. Equal opportunities: We are committed to fostering equality, diversity and inclusion within our firm and to ensuring equal employment opportunities. We believe that this commitment creates a vibrant and rewarding work environment. We are therefore committed to: Upholding equal opportunities, regardless of race, ethnicity, religion, belief, age, disability, sexual orientation, sex, gender reassignment, gender identity, marital status, or pregnancy, including maternity and paternity. This commitment extends to addressing any instances of perceived or associative discrimination and harassment. We also ensure fair treatment during recruitment and selection processes for those who are serving or have served in the armed forces, along with their families. Accommodating requests for flexible working arrangements whenever possible. We encourage you to discuss your needs with us if this is something you require. Making our roles accessible to individuals with diverse abilities. If you need any reasonable adjustments during the recruitment process, please let us know so we can meet your needs. We offer a range of employee networks to support our colleagues . click apply for full job details
Jun 15, 2026
Full time
The role: We are looking for a Senior Cloud Infrastructure Analyst to join our IT department in Bristol. At Simmons & Simmons, technology is central to delivering exceptional client service. We are seeking a talented and motivated Senior Cloud Infrastructure Analyst to join our Platforms team and help build, automate and operate the Azure platform underpinning our applications and services. This is a hands-on engineering role focused on designing and delivering secure, scalable and resilient cloud solutions in Microsoft Azure, using Infrastructure as Code and CI/CD automation as the default approach. You will work closely with architects, security and application teams to implement cloud platform patterns and enable delivery teams to deploy safely and consistently. You will be required to act as senior technical authority within the platforms team, supporting decision-making, mentoring engineers, and shaping the Azure roadmap. What will you do: Azure Infrastructure as Code (IaC) & CI/CD automation Build, deploy, and maintain Azure infrastructure using IaC (Bicep and/or Terraform) with peer review and version control. Strong familiarity working in IaC and pipelines to ensure quality, security and adherence to baseline standards. Cloud reliability, operations & incident/problem support (engineering-led) Act as a senior escalation point for complex Azure platform incidents; leading to troubleshoot, perform root cause analysis, and implement sustainable fixes (automation over repeated manual intervention). Monitor and improve platform health using Azure observability tooling (e.g., Azure Monitor, Log Analytics/KQL, Application Insights, Science Logic), and improve alerting and diagnostics. Lead reliability and resilience improvements such as such as performance tuning, resource optimisation, cost optimization using FinOps and provide availability enhancements, aligned to our service- level expectations. A senior analyst is expected to be a point of contact and escalation at all times, taking ownership of incident management, while providing 3rd & 4th level and technical support. Any experience working within the Agile framework using Scrum. Security, compliance & governance Embed security controls and compliance checks into delivery pipelines (DevSecOps approach), ensuring cloud systems are configured securely and remain compliant. Contribute to platform governance initiatives such as naming/tagging conventions, logging standards, Key Vault/secret patterns, and controlled change via Github Push/Pull requests. Work closely with Security and CISO stakeholders and the wider networks team to maintain a strong and compliant security posture across our Azure public cloud. What we are looking for: The role deliberately covers a relatively broad brief of technologies, targeted at enabling effective communication and efficient working practices. We would expect the role holder to be able to demonstrate a skill base that spans a range of the following topics and, where necessary, to demonstrate the aptitude and desire to develop to meet the entire brief. Knowledge of a range of enterprise IT application technologies, including a demonstrated track record in operating and administering or working with infrastructure applications as part of the: Microsoft Application Stack such as Exchange 365; Active Directory, AD connect, Azure site recovery (ASR) and Azure Virtual Desktop (AVD) and Azure SQL. Experience of working with VMware vSphere, HPE Servers & Storage, upgrades and maintenance procedures. Hands-on experience engineering solutions in Microsoft Azure, including a solid understanding of Azure IaaS and PaaS services (e.g., VMs, Storage, App Services, Front Door, API Management, Azure Functions, Azure SQL, Azure Networking). Strong experience with Infrastructure as Code in either (Bicep and/or Terraform; ARM knowledge acceptable where relevant). Practical experience with Azure DevOps (Pipelines, Repos, CI/CD concepts) and Git-based version control. Azure networking knowledge including VNETs, vWAN, ExpressRoute, VPN gateways, hub-and-spoke, and traffic management concepts. Azure security fundamentals including Managed Identities, Key Vault, Conditional Access, Defender for Cloud/Security Centre. Strong scripting capability in PowerShell (and/or Bash), and the ability to automate operational tasks and deployments. Strong troubleshooting mindset: diagnosing complex issues and driving them to resolution with appropriate escalation and RCA. Clear communication skills, including the ability to explain technical topics in plain English in a professional services environment. A Strong problem-solver with proactive, engineering-led mindset. Self-motivated technical lead and mentor. Comfortable working as a senior engineer in a collaborative, geographically diverse and inclusive team. Preferably either: 5-years relevant experience working in a similar role, or a qualification in Computer Science or Engineering or Microsoft accredited Azure Certifications (e.g., Azure Administrator / DevOps / Cloud Engineering) and relevant experience working in a similar role. Excellent Knowledge of the Azure and Windows Stack. Career Level: The career level assigned to this role is level 3. The career level framework provides a formal structure for the business services functions at the firm. The framework, which ranges from level 1 to level 7, clearly defines the responsibilities, skills and competencies required at each level. Here at Simmons & Simmons: At Simmons, we are proud of our collaborative, open and non-hierarchical culture, where everyone is treated with respect and dignity and the wellbeing of our people is paramount. Our dynamic minds work as one integrated team, partnering with leading organisations on inspirational and thought-provoking projects that matter. From day one, irrespective of job title, qualification or background, everyone s voice is heard, and you are encouraged to have an enquiring mind and share ideas that drive the firm forward. Through innovative learning and development opportunities, you will have a platform to excel, exceed your career ambitions, and achieve things you never thought possible. Some key information: We offer a competitive package including bonuses dependant on role/level, private medical insurance and pension contribution. Our global skills academy provides our people, regardless of their role and location, with excellent learning opportunities (including live workshops, podcasts, short videos and practical learning experiences). We have adopted a hybrid working approach with a requirement for a minimum of three days in the office with flexibility dependant on role/team/client demands. We are proud to rank as a Times Top 50 Employer for Gender Equality, a Stonewall Top Global Employer, and a Top 75 Employer for Social Mobility. We have a range of social and sports committees, summer and winter parties and monthly get togethers. We have a range of diversity networks to connect people and celebrate our differences which is integral to our inclusive culture. All UK offices have their own artwork collections including Damien Hirst and Tracey Emin pieces in the London office. We have a long-standing history in supporting the art community especially up-and-coming artists. We have recently introduced a Strategic Advisory Council which is a mix of associates and business services who will propose strategic initiatives that align with our firm's mission and support the delivery of our business plan, shaping the future of our next-generation law firm. Our in-house generative AI tool, Percy, won the Innovation in Automation and AI Tools category at the 2024 FT Innovative Lawyers Europe Awards. This achievement highlights our commitment to technological innovation and client service. We have been commended in The Times Best Law Firms 2026 across three categories: construction, employment, and intellectual property. Our profile is highly positive, highlighting our sector specialisms and notable case and transactional work. Equal opportunities: We are committed to fostering equality, diversity and inclusion within our firm and to ensuring equal employment opportunities. We believe that this commitment creates a vibrant and rewarding work environment. We are therefore committed to: Upholding equal opportunities, regardless of race, ethnicity, religion, belief, age, disability, sexual orientation, sex, gender reassignment, gender identity, marital status, or pregnancy, including maternity and paternity. This commitment extends to addressing any instances of perceived or associative discrimination and harassment. We also ensure fair treatment during recruitment and selection processes for those who are serving or have served in the armed forces, along with their families. Accommodating requests for flexible working arrangements whenever possible. We encourage you to discuss your needs with us if this is something you require. Making our roles accessible to individuals with diverse abilities. If you need any reasonable adjustments during the recruitment process, please let us know so we can meet your needs. We offer a range of employee networks to support our colleagues . click apply for full job details
Location This post can be based in London (1 Horse Guards Road), Norwich (Rosebery Court) or Darlington (Feethams House). About the job Job summary If you're interested in making a difference to people's lives, the Treasury can offer you an exciting opportunity to influence decision making that affects the whole of the UK. Working at the heart of government, we collaborate across government to promote responsible public spending and drive strong and sustainable economic growth. Our work ranges from protecting customers through the regulation of the financial sector, helping to reduce carbon emissions and creating a greener economy, to promoting British trade around the world and supporting people across the country on jobs, growth and more. We are part of the Darlington Economic Campus , a cross-government hub bringing people together to tackle key national issues while working closer to the communities we serve. Job description Treasury Business Solutions (TBS) is the part of the Corporate Centre Group responsible for the delivery and effective management of Treasury's IT and communications systems and services, Property management, information management and knowledge Information Services, security and business continuity services and change projects to continually improve our work tools and environment. We have over 60 staff across all three locations and provide services to over 3500 people across the UK in Treasury and our Arm's Length Bodies. We're recruiting for two roles: Role 1 - Lead Business Analyst in Technology Change Lead and mature the Technology Change Business Analysis service - Own the development and continuous improvement of BA capability across technology change, setting standards, tools and ways of working that position business analysis as a strategic enabler of policy and operational delivery. Provide expert business analysis leadership and assurance - Lead the provision of high quality business analysis across the technology change portfolio, ensuring proportionate, evidence based analysis (including requirements, modelling, options appraisal, business cases, benefits and impacts) to support sound decision making and value for money. Enable effective delivery of policy through technology change - Work closely with multidisciplinary delivery teams to ensure technology change initiatives are driven by clear user needs and outcomes, supporting successful and timely delivery of ministerial and policy priorities. Enable effective delivery of IT services through technology change - Collaborate with Service Delivery and Commercial teams to support effective procurement, design and delivery of IT services to end users. Shape and prioritise strategic business change demand - Ensure significant requests for business or operational change are clearly articulated, assessed and prioritised, advising senior stakeholders on feasibility, risk, dependencies and alignment with HMT and TBS strategic objectives. Own BA deliver outcomes and benefits realisation - Plan, assign and oversee BA activity across the Tech Change portfolio, tracking progress, quality and benefits realisation to ensure solutions meet agreed user, business and policy outcomes. Manage and lead other Business Analysts in team - Line manage and develop a Fast Stream Business Analyst from September, providing coaching, feedback and stretch opportunities, while building strong, trusted relationships with senior stakeholders across policy, corporate and digital functions. Manage any external BAs working in the team. Role 2 - Appian Business Analyst Lead business analysis for the Appian platform and automation portfolio - Provide strategic and hands on business analysis leadership for the Appian platform, ensuring business process automation initiatives are driven by clear user needs, robust analysis and deliver measurable improvements to HMT operations. Provide expert business analysis leadership and assurance - Provide high quality business analysis across the Appian portfolio, ensuring proportionate, evidence based analysis (including requirements, modelling, options appraisal, business cases, benefits and impacts) to support sound decision making and value for money. Shape and assure end to end process automation delivery - Lead the elicitation, analysis and prioritisation of complex business processes for automation, defining future state processes, requirements and success measures, and assuring quality across design, build, test and implementation. Work as part of HMT's Appian Team - Work collaboratively with others in our internal Appian team (1 x product and 1x delivery manager) to drive delivery, building capability, develop supplier partnerships and create a high performing team focused on continuous improvement and delivery outcomes. Work in close partnership with external development suppliers - Act as the senior team interface with external Appian development partners, ensuring a shared understanding of business needs, effective backlog management, clear acceptance criteria, and strong alignment between HMT objectives and supplier delivery. Ensure alignment with HMT strategy, standards and governance - Ensure Appian solutions and business analysis practices align with HMT strategy, DDAT standards, service design principles and assurance requirements, supporting value for money and sustainable, reusable automation patterns. If you would like to speak to the hiring manager informally prior to the closing date, please contact Nick Matthews - Person specification Application Stage Required Qualifications BCS International Diploma in Business Analysis OR you are more than 50% towards completing the diploma (i.e. you possess 2 or more valid certificates). In your application form, you'll be asked to confirm that you hold this qualification. You will need to provide evidence of this qualification if you are invited to interview.
Jun 15, 2026
Full time
Location This post can be based in London (1 Horse Guards Road), Norwich (Rosebery Court) or Darlington (Feethams House). About the job Job summary If you're interested in making a difference to people's lives, the Treasury can offer you an exciting opportunity to influence decision making that affects the whole of the UK. Working at the heart of government, we collaborate across government to promote responsible public spending and drive strong and sustainable economic growth. Our work ranges from protecting customers through the regulation of the financial sector, helping to reduce carbon emissions and creating a greener economy, to promoting British trade around the world and supporting people across the country on jobs, growth and more. We are part of the Darlington Economic Campus , a cross-government hub bringing people together to tackle key national issues while working closer to the communities we serve. Job description Treasury Business Solutions (TBS) is the part of the Corporate Centre Group responsible for the delivery and effective management of Treasury's IT and communications systems and services, Property management, information management and knowledge Information Services, security and business continuity services and change projects to continually improve our work tools and environment. We have over 60 staff across all three locations and provide services to over 3500 people across the UK in Treasury and our Arm's Length Bodies. We're recruiting for two roles: Role 1 - Lead Business Analyst in Technology Change Lead and mature the Technology Change Business Analysis service - Own the development and continuous improvement of BA capability across technology change, setting standards, tools and ways of working that position business analysis as a strategic enabler of policy and operational delivery. Provide expert business analysis leadership and assurance - Lead the provision of high quality business analysis across the technology change portfolio, ensuring proportionate, evidence based analysis (including requirements, modelling, options appraisal, business cases, benefits and impacts) to support sound decision making and value for money. Enable effective delivery of policy through technology change - Work closely with multidisciplinary delivery teams to ensure technology change initiatives are driven by clear user needs and outcomes, supporting successful and timely delivery of ministerial and policy priorities. Enable effective delivery of IT services through technology change - Collaborate with Service Delivery and Commercial teams to support effective procurement, design and delivery of IT services to end users. Shape and prioritise strategic business change demand - Ensure significant requests for business or operational change are clearly articulated, assessed and prioritised, advising senior stakeholders on feasibility, risk, dependencies and alignment with HMT and TBS strategic objectives. Own BA deliver outcomes and benefits realisation - Plan, assign and oversee BA activity across the Tech Change portfolio, tracking progress, quality and benefits realisation to ensure solutions meet agreed user, business and policy outcomes. Manage and lead other Business Analysts in team - Line manage and develop a Fast Stream Business Analyst from September, providing coaching, feedback and stretch opportunities, while building strong, trusted relationships with senior stakeholders across policy, corporate and digital functions. Manage any external BAs working in the team. Role 2 - Appian Business Analyst Lead business analysis for the Appian platform and automation portfolio - Provide strategic and hands on business analysis leadership for the Appian platform, ensuring business process automation initiatives are driven by clear user needs, robust analysis and deliver measurable improvements to HMT operations. Provide expert business analysis leadership and assurance - Provide high quality business analysis across the Appian portfolio, ensuring proportionate, evidence based analysis (including requirements, modelling, options appraisal, business cases, benefits and impacts) to support sound decision making and value for money. Shape and assure end to end process automation delivery - Lead the elicitation, analysis and prioritisation of complex business processes for automation, defining future state processes, requirements and success measures, and assuring quality across design, build, test and implementation. Work as part of HMT's Appian Team - Work collaboratively with others in our internal Appian team (1 x product and 1x delivery manager) to drive delivery, building capability, develop supplier partnerships and create a high performing team focused on continuous improvement and delivery outcomes. Work in close partnership with external development suppliers - Act as the senior team interface with external Appian development partners, ensuring a shared understanding of business needs, effective backlog management, clear acceptance criteria, and strong alignment between HMT objectives and supplier delivery. Ensure alignment with HMT strategy, standards and governance - Ensure Appian solutions and business analysis practices align with HMT strategy, DDAT standards, service design principles and assurance requirements, supporting value for money and sustainable, reusable automation patterns. If you would like to speak to the hiring manager informally prior to the closing date, please contact Nick Matthews - Person specification Application Stage Required Qualifications BCS International Diploma in Business Analysis OR you are more than 50% towards completing the diploma (i.e. you possess 2 or more valid certificates). In your application form, you'll be asked to confirm that you hold this qualification. You will need to provide evidence of this qualification if you are invited to interview.
CBSbutler Holdings Limited trading as CBSbutler
Portsmouth, Hampshire
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 630 a day +Corsham / Portsmouth Key Skills: ISO27001 DV Cleareance SIEM/SOAR - Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles.
Jun 12, 2026
Contractor
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 630 a day +Corsham / Portsmouth Key Skills: ISO27001 DV Cleareance SIEM/SOAR - Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles.
We re Hiring: Senior Cyber Security Analyst Corsham I m currently looking for a Senior Cyber Security Analyst to join our SOC team at Computer Network Defence Ltd (CND). This is a key hire within our MSSP Security Operations Centre, offering the opportunity to take a lead role in incident analysis, client engagement, and mentoring junior analysts, while shaping how the SOC continues to evolve. The Role As a Senior Cyber Security Analyst, you will support the SOC Team Lead and play a central role in monitoring, triaging, and investigating security events across a range of client environments. You ll be working across SIEM platforms, vulnerability management tools, threat intelligence sources, and network telemetry to deliver effective detection and response. You will also take on client-facing responsibilities, presenting findings, trends, and insights, as well as contributing to reporting and continuous improvement within the SOC. Key Responsibilities Monitor, triage and investigate security alerts across multiple platforms Conduct in-depth incident analysis and support ongoing client investigations Act as deputy to the SOC Team Lead when required Review and assess escalated Tier 2 alerts for urgency and impact Deliver weekly and monthly reporting to clients and stakeholders Communicate security findings and trends directly to clients Support vulnerability management analysis and remediation efforts Lead false-positive reduction and SIEM tuning activities Mentor and support development of Tier 1 and junior analysts Contribute to SOC process improvement and operational efficiency Participate in incident response activities as part of the wider team Lead internal SOC initiatives and projects where required Create and deliver presentations for clients and internal teams What We re Looking For Strong experience within a SOC or cyber security operations environment Proven ability to investigate and analyse complex security incidents Experience with SIEM platforms, threat intelligence, and security tooling Strong stakeholder and client communication skills Ability to mentor and develop junior team members Proactive approach to problem-solving and continuous improvement Good understanding of current cyber threats, tactics and trends Package & Details Location: Isle of Man (relocation package)/Corsham Hours: 37.5 hours per week, plus on-call rota Working pattern: Monday to Friday, 09 00 (early Friday finish at 16:00, workload permitting) Clearance: SC Cleared This is a great opportunity for someone looking to step into a more senior, visible role within a growing SOC, with real influence over both technical delivery and team development.
Jun 11, 2026
Full time
We re Hiring: Senior Cyber Security Analyst Corsham I m currently looking for a Senior Cyber Security Analyst to join our SOC team at Computer Network Defence Ltd (CND). This is a key hire within our MSSP Security Operations Centre, offering the opportunity to take a lead role in incident analysis, client engagement, and mentoring junior analysts, while shaping how the SOC continues to evolve. The Role As a Senior Cyber Security Analyst, you will support the SOC Team Lead and play a central role in monitoring, triaging, and investigating security events across a range of client environments. You ll be working across SIEM platforms, vulnerability management tools, threat intelligence sources, and network telemetry to deliver effective detection and response. You will also take on client-facing responsibilities, presenting findings, trends, and insights, as well as contributing to reporting and continuous improvement within the SOC. Key Responsibilities Monitor, triage and investigate security alerts across multiple platforms Conduct in-depth incident analysis and support ongoing client investigations Act as deputy to the SOC Team Lead when required Review and assess escalated Tier 2 alerts for urgency and impact Deliver weekly and monthly reporting to clients and stakeholders Communicate security findings and trends directly to clients Support vulnerability management analysis and remediation efforts Lead false-positive reduction and SIEM tuning activities Mentor and support development of Tier 1 and junior analysts Contribute to SOC process improvement and operational efficiency Participate in incident response activities as part of the wider team Lead internal SOC initiatives and projects where required Create and deliver presentations for clients and internal teams What We re Looking For Strong experience within a SOC or cyber security operations environment Proven ability to investigate and analyse complex security incidents Experience with SIEM platforms, threat intelligence, and security tooling Strong stakeholder and client communication skills Ability to mentor and develop junior team members Proactive approach to problem-solving and continuous improvement Good understanding of current cyber threats, tactics and trends Package & Details Location: Isle of Man (relocation package)/Corsham Hours: 37.5 hours per week, plus on-call rota Working pattern: Monday to Friday, 09 00 (early Friday finish at 16:00, workload permitting) Clearance: SC Cleared This is a great opportunity for someone looking to step into a more senior, visible role within a growing SOC, with real influence over both technical delivery and team development.
Join Our Team as a Security & Operations Control Analyst (Security Operations Centre / Control Room Based) Are you ready to step into a vital role that ensures safety and security? Our client is looking for dedicated Security Operations Centre (SOC) Operators to support their Physical Security Operations Centre in Sighthill North, Edinburgh. If you thrive in a fast-paced environment and have a passion for customer service, we want to hear from you! Contract Details: Type: Temporary Location: 100% Office Based in Sighthill North, Edinburgh Pay Rate: 15.81 per hour, Night shifts attract additional payment for unsociable hours. Contract Length: Until End of December 2026. Shift Type: Rotating days and nights (12-hour shifts) Shift Pattern: Full flexibility required; shifts include weekends and bank holidays. Blocks of day shifts followed by night shifts, with 4-5 rest days between rotations. 10 hours paid, 2 hours unpaid breaks per shift. About the Role: In this dynamic desk-based role, you'll be at the forefront of security operations, managing a high volume of live incidents, alarms, and inquiries across various channels, primarily via telephone. You'll be working in a busy environment handling a high volume of incidents across the estate, requiring the ability to prioritise and work at pace throughout the shift. Your calm demeanour and attention to detail will help ensure the safety of colleagues, customers, and property. This is not a physical security or guarding role, all work is carried out from a control room environment. Key Responsibilities: Receive and manage inquiries via telephone, email, and IT ticketing systems. Monitor and respond to physical security alarms and incidents. Handle high volume inbound and outbound calls with professionalism. Manage incidents from start to finish, following approved systems and playbooks. Liaise with colleagues, suppliers, contractors, and emergency services. Accurately document all incidents and actions taken. Contribute to continuous improvement and quality assurance activities. Who We're Looking For: Essential Skills: Strong customer service or call centre background. Confident in handling high-volume telephone calls. Ability to remain calm and focused under pressure. Excellent attention to detail and accuracy. Strong IT literacy and ability to work across multiple systems. Clear and professional communication skills. Self-motivated and comfortable working independently, especially during night shifts. Desirable Experience: Background in security operations, alarm monitoring, or incident response. Familiarity with IT ticketing systems (e.g., ServiceNow). Experience in regulated or time-critical environments. Ideal Candidate Profile: Calm and resilient under pressure. Strong communicator with excellent customer service instincts. Highly organized and detail-focused. Proactive and motivated. Comfortable with a phone-heavy role and independent working during nights. Training and Support: Enjoy a structured 6-week training program with classroom learning, on-the-job coaching, and buddying with experienced operators. Ongoing senior support is available during nights and weekends. Performance Measurement: Your performance will be assessed through SLA adherence, accuracy in incident handling, and your ability to work at pace in a high-volume environment. Vetting & Compliance: Full vetting required (DBS and credit checks). Candidates must be eligible to work in the UK. Why Join Us? Initial contract until December with a strong likelihood of internal movement for high performers. Regular permanent and contract opportunities within the organization. Exposure to a wider Physical Security and Operations team. If you're ready to make a difference and be part of a dedicated team, apply now! Your next career adventure awaits! Adecco is a disability-confident employer. It is important to us that we run an inclusive and accessible recruitment process to support candidates of all backgrounds and all abilities to apply. Adecco is committed to building a supportive environment for you to explore the next steps in your career. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you. Adecco acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. The Adecco Group UK & Ireland is an Equal Opportunities Employer. By applying for this role your details will be submitted to Adecco. Our Candidate Privacy Information Statement explains how we will use your information - please copy and paste the following link in to your browser (url removed)
Jun 11, 2026
Seasonal
Join Our Team as a Security & Operations Control Analyst (Security Operations Centre / Control Room Based) Are you ready to step into a vital role that ensures safety and security? Our client is looking for dedicated Security Operations Centre (SOC) Operators to support their Physical Security Operations Centre in Sighthill North, Edinburgh. If you thrive in a fast-paced environment and have a passion for customer service, we want to hear from you! Contract Details: Type: Temporary Location: 100% Office Based in Sighthill North, Edinburgh Pay Rate: 15.81 per hour, Night shifts attract additional payment for unsociable hours. Contract Length: Until End of December 2026. Shift Type: Rotating days and nights (12-hour shifts) Shift Pattern: Full flexibility required; shifts include weekends and bank holidays. Blocks of day shifts followed by night shifts, with 4-5 rest days between rotations. 10 hours paid, 2 hours unpaid breaks per shift. About the Role: In this dynamic desk-based role, you'll be at the forefront of security operations, managing a high volume of live incidents, alarms, and inquiries across various channels, primarily via telephone. You'll be working in a busy environment handling a high volume of incidents across the estate, requiring the ability to prioritise and work at pace throughout the shift. Your calm demeanour and attention to detail will help ensure the safety of colleagues, customers, and property. This is not a physical security or guarding role, all work is carried out from a control room environment. Key Responsibilities: Receive and manage inquiries via telephone, email, and IT ticketing systems. Monitor and respond to physical security alarms and incidents. Handle high volume inbound and outbound calls with professionalism. Manage incidents from start to finish, following approved systems and playbooks. Liaise with colleagues, suppliers, contractors, and emergency services. Accurately document all incidents and actions taken. Contribute to continuous improvement and quality assurance activities. Who We're Looking For: Essential Skills: Strong customer service or call centre background. Confident in handling high-volume telephone calls. Ability to remain calm and focused under pressure. Excellent attention to detail and accuracy. Strong IT literacy and ability to work across multiple systems. Clear and professional communication skills. Self-motivated and comfortable working independently, especially during night shifts. Desirable Experience: Background in security operations, alarm monitoring, or incident response. Familiarity with IT ticketing systems (e.g., ServiceNow). Experience in regulated or time-critical environments. Ideal Candidate Profile: Calm and resilient under pressure. Strong communicator with excellent customer service instincts. Highly organized and detail-focused. Proactive and motivated. Comfortable with a phone-heavy role and independent working during nights. Training and Support: Enjoy a structured 6-week training program with classroom learning, on-the-job coaching, and buddying with experienced operators. Ongoing senior support is available during nights and weekends. Performance Measurement: Your performance will be assessed through SLA adherence, accuracy in incident handling, and your ability to work at pace in a high-volume environment. Vetting & Compliance: Full vetting required (DBS and credit checks). Candidates must be eligible to work in the UK. Why Join Us? Initial contract until December with a strong likelihood of internal movement for high performers. Regular permanent and contract opportunities within the organization. Exposure to a wider Physical Security and Operations team. If you're ready to make a difference and be part of a dedicated team, apply now! Your next career adventure awaits! Adecco is a disability-confident employer. It is important to us that we run an inclusive and accessible recruitment process to support candidates of all backgrounds and all abilities to apply. Adecco is committed to building a supportive environment for you to explore the next steps in your career. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you. Adecco acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. The Adecco Group UK & Ireland is an Equal Opportunities Employer. By applying for this role your details will be submitted to Adecco. Our Candidate Privacy Information Statement explains how we will use your information - please copy and paste the following link in to your browser (url removed)
Sanderson Government & Defence
Hemel Hempstead, Hertfordshire
L2 SOC Analyst (Perm) - SC/DV Clearable Location : Hemel Hempstead Salary: £40,000 - £58,000 + 20% Shift Allowance Shift Pattern: 4 on, 4 off (12 hour shifts) Clearance: SC Cleared (Must be eligible for DV) Contingency: Must be a sole British National Sanderson G&D are seeking multiple SOC Analysts to join a fast-growing Security Operations Centre, where you'll help defend multiple organisations across a wide range of industries - from critical infrastructure to complex enterprise environments. As part of a SOC team, you'll play a key role in strengthening and maturing services, helping deliver smart, efficient and high-impact security outcomes for clients. What you'll be doing: Monitoring and analysing security alerts and events, conducting initial investigations responding. Escalating complex incidents to Senior Analysts for deeper analysis and resolution. Managing SOC incident queues. Maintaining and improving asset baselines across customer environments. Producing clear, insightful reports for both technical and non-technical audiences. Enhancing detection rules and use cases aligned to MITRE ATT&CK and threat-informed defence. What you'll bring: Hands-on experience with Microsoft Sentinel and Splunk. Knowledge of the MITRE ATT&CK framework. Understanding of Client Server and multi-tier applications, databases, Firewalls, VPNs and endpoint security. Solid networking fundamentals (TCP/IP, LAN/WAN, HTTP, SMTP, FTP, LDAP, etc.). Strong analytical thinking and structured problem-solving. An entry-level cyber security certification (eg Security+, CEH, CPSA) or similar. if you're interested in the above, apply or reach out to (see below) Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Jun 11, 2026
Full time
L2 SOC Analyst (Perm) - SC/DV Clearable Location : Hemel Hempstead Salary: £40,000 - £58,000 + 20% Shift Allowance Shift Pattern: 4 on, 4 off (12 hour shifts) Clearance: SC Cleared (Must be eligible for DV) Contingency: Must be a sole British National Sanderson G&D are seeking multiple SOC Analysts to join a fast-growing Security Operations Centre, where you'll help defend multiple organisations across a wide range of industries - from critical infrastructure to complex enterprise environments. As part of a SOC team, you'll play a key role in strengthening and maturing services, helping deliver smart, efficient and high-impact security outcomes for clients. What you'll be doing: Monitoring and analysing security alerts and events, conducting initial investigations responding. Escalating complex incidents to Senior Analysts for deeper analysis and resolution. Managing SOC incident queues. Maintaining and improving asset baselines across customer environments. Producing clear, insightful reports for both technical and non-technical audiences. Enhancing detection rules and use cases aligned to MITRE ATT&CK and threat-informed defence. What you'll bring: Hands-on experience with Microsoft Sentinel and Splunk. Knowledge of the MITRE ATT&CK framework. Understanding of Client Server and multi-tier applications, databases, Firewalls, VPNs and endpoint security. Solid networking fundamentals (TCP/IP, LAN/WAN, HTTP, SMTP, FTP, LDAP, etc.). Strong analytical thinking and structured problem-solving. An entry-level cyber security certification (eg Security+, CEH, CPSA) or similar. if you're interested in the above, apply or reach out to (see below) Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
CBSbutler Holdings Limited trading as CBSbutler
Corsham, Wiltshire
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 650 a day +Corsham / Portsmouth We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles. If you'd like to discuss this Senior SOC Analyst in more detail, please send your updated CV to (url removed) and I will get in touch.
Jun 11, 2026
Contractor
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 650 a day +Corsham / Portsmouth We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles. If you'd like to discuss this Senior SOC Analyst in more detail, please send your updated CV to (url removed) and I will get in touch.
Cyber Security Specialist (Operational) Salary: £57,528 - £64,750 per annum Location: Manchester Vacancy Type: Permanent Closing date: 21/06/2026 The National Institute for Health and Care Excellence (NICE) is the independent organisation responsible for providing national guidance and advice on promoting high quality health, public health and social care. We have modern offices in Manchester city centre and Stratford, London. Please take into consideration that you may be required to commute to one of our offices for business purposes if necessary. Job overview Do you want to do meaningful work that makes a genuine difference to society? Our main purpose here at The National Institute for Health and Care Excellence (NICE) is to improve health and wellbeing by putting science and evidence at the heart of health and care decision-making. As an organisation we all collaborate to achieve this goal by empowering our workforce to do great things! Please note that this role may not be eligible for sponsorship under the Skilled Worker route. Please refer to the DirectGov website for more information on eligibility. We reserve the right to close the advert early should we receive sufficient applications, so please don t delay your submission. Main duties of the job As a Cyber Security Specialist (Operational), you will play a key hands on role in protecting NICE s digital platforms, systems, and data from cyber threats. Working as part of a collaborative cyber security function, you will investigate security alerts, manage vulnerabilities, respond to incidents and help ensure our services remain secure, resilient and compliant. The role combines technical expertise with clear communication, supporting both operational delivery and the continual improvement of NICE s cyber security posture. What the candidate will be expected to do / bring Act as a hands on cyber security specialist, investigating security alerts, responding to incidents and supporting day to day operational cyber resilience Configure, manage and maintain security tooling and infrastructure across on premise and cloud environments, embedding secure by design principles Carry out routine vulnerability assessments, threat analysis and horizon scanning to identify and mitigate emerging risks Serve as a technical escalation point for complex security issues, contributing expert analysis and practical solutions Support compliance with recognised security standards and frameworks (e.g. Cyber Essentials, ISO27001), maintaining clear and auditable records Communicate complex technical risks and findings clearly to both technical and non technical stakeholders Person specification Essential: Holds highly developed specialist knowledge and expertise acquired through master s degree level or equivalent qualification/experience. Additionally holds specialist knowledge of the relevant area(s) of expertise as outlined in the person specification, acquired through relevant practical experience and training/development Proven hands on experience in cyber security operations, such as working as a Security Analyst, SOC Analyst or in a similar technical cyber security role Demonstrable experience of incident response and security configuration, with the ability to systematically analyse issues, identify root causes and implement effective solutions Strong technical knowledge of cyber security tooling and techniques, including vulnerability management, incident investigation and monitoring tools such as SIEM, EDR and vulnerability scanners Practical understanding of core cyber security concepts, including network, infrastructure and system security across Windows and Linux environments, with awareness across networking, operating systems and cloud platforms Desirable: One or more of the following qualifications, or equivalent experience, is desirable for this role: FEDIP Senior Practitioner, Cyber Security Professional (ACSP) ,BCS Certificate in Information Security Management Principles (CISMP), SSCP Systems Security Certified Practitioner Working for our organisation The Infrastructure, Cyber & IT Operations team plays a critical role in ensuring NICE s digital services are secure, resilient, and reliable. The team is responsible for safeguarding systems and information, supporting users across the organisation, and maintaining operational stability with minimal risk or disruption. As part of this team, you will help protect nationally important digital services while enabling NICE to deliver trusted guidance and information to health and care users across England. We are passionate and proud of the work we do and the impact we make. NICE offer: Generous NHS Pension Secure your future with one of the most rewarding pension schemes in the UK Flexible working Enjoy a healthy work-life balance with options like remote working, compressed hours and flexible start/finish times Exclusive discounts Save on shopping, dining and more with a Blue Light Card Time to recharge Start with 27 days annual leave plus bank holidays Inclusive staff networks Join supportive communities like Women in NICE, Race Equality Network, Disability Advocacy and NICE and Proud we celebrate diversity Tailored development Grow your career with personalised learning and development opportunities If you feel this is the type of environment you will enjoy working in, apply today! To Apply If you feel you are a suitable candidate and would like to work for The National Institute for Health and Care Excellence (NICE), please click apply to be redirected to our website to complete your application.
Jun 09, 2026
Full time
Cyber Security Specialist (Operational) Salary: £57,528 - £64,750 per annum Location: Manchester Vacancy Type: Permanent Closing date: 21/06/2026 The National Institute for Health and Care Excellence (NICE) is the independent organisation responsible for providing national guidance and advice on promoting high quality health, public health and social care. We have modern offices in Manchester city centre and Stratford, London. Please take into consideration that you may be required to commute to one of our offices for business purposes if necessary. Job overview Do you want to do meaningful work that makes a genuine difference to society? Our main purpose here at The National Institute for Health and Care Excellence (NICE) is to improve health and wellbeing by putting science and evidence at the heart of health and care decision-making. As an organisation we all collaborate to achieve this goal by empowering our workforce to do great things! Please note that this role may not be eligible for sponsorship under the Skilled Worker route. Please refer to the DirectGov website for more information on eligibility. We reserve the right to close the advert early should we receive sufficient applications, so please don t delay your submission. Main duties of the job As a Cyber Security Specialist (Operational), you will play a key hands on role in protecting NICE s digital platforms, systems, and data from cyber threats. Working as part of a collaborative cyber security function, you will investigate security alerts, manage vulnerabilities, respond to incidents and help ensure our services remain secure, resilient and compliant. The role combines technical expertise with clear communication, supporting both operational delivery and the continual improvement of NICE s cyber security posture. What the candidate will be expected to do / bring Act as a hands on cyber security specialist, investigating security alerts, responding to incidents and supporting day to day operational cyber resilience Configure, manage and maintain security tooling and infrastructure across on premise and cloud environments, embedding secure by design principles Carry out routine vulnerability assessments, threat analysis and horizon scanning to identify and mitigate emerging risks Serve as a technical escalation point for complex security issues, contributing expert analysis and practical solutions Support compliance with recognised security standards and frameworks (e.g. Cyber Essentials, ISO27001), maintaining clear and auditable records Communicate complex technical risks and findings clearly to both technical and non technical stakeholders Person specification Essential: Holds highly developed specialist knowledge and expertise acquired through master s degree level or equivalent qualification/experience. Additionally holds specialist knowledge of the relevant area(s) of expertise as outlined in the person specification, acquired through relevant practical experience and training/development Proven hands on experience in cyber security operations, such as working as a Security Analyst, SOC Analyst or in a similar technical cyber security role Demonstrable experience of incident response and security configuration, with the ability to systematically analyse issues, identify root causes and implement effective solutions Strong technical knowledge of cyber security tooling and techniques, including vulnerability management, incident investigation and monitoring tools such as SIEM, EDR and vulnerability scanners Practical understanding of core cyber security concepts, including network, infrastructure and system security across Windows and Linux environments, with awareness across networking, operating systems and cloud platforms Desirable: One or more of the following qualifications, or equivalent experience, is desirable for this role: FEDIP Senior Practitioner, Cyber Security Professional (ACSP) ,BCS Certificate in Information Security Management Principles (CISMP), SSCP Systems Security Certified Practitioner Working for our organisation The Infrastructure, Cyber & IT Operations team plays a critical role in ensuring NICE s digital services are secure, resilient, and reliable. The team is responsible for safeguarding systems and information, supporting users across the organisation, and maintaining operational stability with minimal risk or disruption. As part of this team, you will help protect nationally important digital services while enabling NICE to deliver trusted guidance and information to health and care users across England. We are passionate and proud of the work we do and the impact we make. NICE offer: Generous NHS Pension Secure your future with one of the most rewarding pension schemes in the UK Flexible working Enjoy a healthy work-life balance with options like remote working, compressed hours and flexible start/finish times Exclusive discounts Save on shopping, dining and more with a Blue Light Card Time to recharge Start with 27 days annual leave plus bank holidays Inclusive staff networks Join supportive communities like Women in NICE, Race Equality Network, Disability Advocacy and NICE and Proud we celebrate diversity Tailored development Grow your career with personalised learning and development opportunities If you feel this is the type of environment you will enjoy working in, apply today! To Apply If you feel you are a suitable candidate and would like to work for The National Institute for Health and Care Excellence (NICE), please click apply to be redirected to our website to complete your application.
Senior Incident Responder £71000 GBP Onsite WORKING Location: Birmingham, West Midlands - United Kingdom Type: Permanent Senior Incident Responder - SOC Analyst (L3) Birmingham or Glasgow Up to £71,000 + Bonus + Benefits Hybrid SC Clearance Required or Eligible Our client - a global technology and services firm - is expanding its Managed Security Operations Centre and seeking a Senior Incident Re click apply for full job details
Oct 29, 2025
Full time
Senior Incident Responder £71000 GBP Onsite WORKING Location: Birmingham, West Midlands - United Kingdom Type: Permanent Senior Incident Responder - SOC Analyst (L3) Birmingham or Glasgow Up to £71,000 + Bonus + Benefits Hybrid SC Clearance Required or Eligible Our client - a global technology and services firm - is expanding its Managed Security Operations Centre and seeking a Senior Incident Re click apply for full job details
SOC Manager required for innovative MSP. You will lead the strategic direction, performance, and day-to-day operations of their Security Operations Centre (SOC). As a central figure in security services, you'll ensure the efficient detection, analysis, and response to cyber threats across a diverse client portfolio. This leadership role involves mentoring your team, enhancing our security processes, and driving ongoing improvements in threat detection and incident response capabilities. Key Responsibilities Team Leadership & Development Lead and mentor a team of SOC analysts, fostering a collaborative, high-performing environment. Manage team scheduling, conduct performance reviews, and support professional growth and development. SOC Operations Oversight Supervise 24/7/365 monitoring of client environments, ensuring consistent adherence to SLAs for threat detection and incident response. Drive operational efficiency and ensure timely escalation and resolution of security incidents. Incident Response Management Serve as the main escalation point for significant security incidents. Coordinate response efforts and ensure clear communication with both internal teams and external clients. Process & Workflow Optimization Continuously review, update, and document SOC processes, playbooks, and standard operating procedures (SOPs) to improve operational effectiveness. Technology Oversight Ensure the reliability and performance of security tools, including SIEM and EDR platforms. Lead the evaluation, selection, and implementation of new security technologies and enhancements. Reporting & Analytics Develop and maintain KPIs and metrics to assess SOC performance. Deliver regular reports and insights to senior leadership and clients on security trends and incident management. Client Relationship Management Act as a trusted advisor to clients, contributing to service reviews and providing expert security guidance. Required Experience & Skills Proven experience working in a Security Operations Centre (SOC) or related cybersecurity environment. Industry-recognised certifications (preferred), such as a cybersecurity degree, Network+, Security+, or equivalent technical qualifications. Strong hands-on knowledge of SIEM and EDR platforms, including experience configuring and writing queries (eg, SQL, KQL). Familiarity with cloud platforms (AWS, Azure, etc.) and securing hybrid IT environments. Excellent communication skills, both verbal and written, with the ability to translate technical information for non-technical audiences. Previous experience in an incident response role and a solid understanding of IR processes. Demonstrated experience leading or managing a security-focused team. Understanding of key security frameworks and standards, such as ISO 27001, NIST, and Crest.
Oct 02, 2025
Full time
SOC Manager required for innovative MSP. You will lead the strategic direction, performance, and day-to-day operations of their Security Operations Centre (SOC). As a central figure in security services, you'll ensure the efficient detection, analysis, and response to cyber threats across a diverse client portfolio. This leadership role involves mentoring your team, enhancing our security processes, and driving ongoing improvements in threat detection and incident response capabilities. Key Responsibilities Team Leadership & Development Lead and mentor a team of SOC analysts, fostering a collaborative, high-performing environment. Manage team scheduling, conduct performance reviews, and support professional growth and development. SOC Operations Oversight Supervise 24/7/365 monitoring of client environments, ensuring consistent adherence to SLAs for threat detection and incident response. Drive operational efficiency and ensure timely escalation and resolution of security incidents. Incident Response Management Serve as the main escalation point for significant security incidents. Coordinate response efforts and ensure clear communication with both internal teams and external clients. Process & Workflow Optimization Continuously review, update, and document SOC processes, playbooks, and standard operating procedures (SOPs) to improve operational effectiveness. Technology Oversight Ensure the reliability and performance of security tools, including SIEM and EDR platforms. Lead the evaluation, selection, and implementation of new security technologies and enhancements. Reporting & Analytics Develop and maintain KPIs and metrics to assess SOC performance. Deliver regular reports and insights to senior leadership and clients on security trends and incident management. Client Relationship Management Act as a trusted advisor to clients, contributing to service reviews and providing expert security guidance. Required Experience & Skills Proven experience working in a Security Operations Centre (SOC) or related cybersecurity environment. Industry-recognised certifications (preferred), such as a cybersecurity degree, Network+, Security+, or equivalent technical qualifications. Strong hands-on knowledge of SIEM and EDR platforms, including experience configuring and writing queries (eg, SQL, KQL). Familiarity with cloud platforms (AWS, Azure, etc.) and securing hybrid IT environments. Excellent communication skills, both verbal and written, with the ability to translate technical information for non-technical audiences. Previous experience in an incident response role and a solid understanding of IR processes. Demonstrated experience leading or managing a security-focused team. Understanding of key security frameworks and standards, such as ISO 27001, NIST, and Crest.
