Cyber Security Engineer Glasgow - Hybrid Competitive salary - 12-month FTC VIQU is working with a leading global professional services organisation to recruit a Cyber Security Engineer to join their Security Operations team on a 12-month fixed term contract. This role will focus on the hands-on implementation, maintenance, and optimisation of security tooling and controls across a complex enterprise environment, alongside contributing to security governance, compliance, and best practice delivery. You will play a key role in strengthening detection and response capability across cloud and on-prem infrastructure, while supporting both BAU operations and ongoing transformation projects. Key Responsibilities of the Cyber Security Engineer: Deploy, configure, and maintain security tooling (SIEM, EDR, DLP, vulnerability management, PAM) across cloud and on-prem environments Monitor, investigate, and respond to security incidents, including root cause analysis and forensic support Manage vulnerability scanning and remediation tracking across infrastructure and cloud (Azure desirable) Support secure configuration, security best practices, and alignment to ISO27001 and NIST Contribute to security documentation (policies, SOPs, playbooks) and continuous improvement of controls Support BAU operations, projects, and penetration testing activities as required Key Requirements of the Cyber Security Engineer: Experience in a Cyber Security Engineer, SecOps, or similar hands-on security role Strong experience with enterprise security tooling including SIEM, EDR, DLP, and vulnerability management platforms Familiarity with tools such as CrowdStrike, Absolute, Sumo Logic, and Rapid7 (or similar technologies) Experience supporting cloud environments, ideally Azure, within a security operations context Strong understanding of security frameworks such as ISO27001 and NIST Experience across both BAU security operations and project delivery Strong incident response experience, including investigation, escalation, and root cause analysis Ability to produce clear technical documentation (SOPs, playbooks, and standards) Strong communication and stakeholder management skills across technical and non-technical teams Comfortable working in a fast-paced environment with multiple priorities Apply now to speak with VIQU IT in confidence, or reach out to Katie Dark via the VIQU IT website. Do you know someone great? We'll thank you with up to £1,000 if your referral is successful (terms apply). For more opportunities, follow us on IT Recruitment. Cyber Security Engineer Glasgow - Hybrid Competitive salary - 12-month FTC
Jun 11, 2026
Full time
Cyber Security Engineer Glasgow - Hybrid Competitive salary - 12-month FTC VIQU is working with a leading global professional services organisation to recruit a Cyber Security Engineer to join their Security Operations team on a 12-month fixed term contract. This role will focus on the hands-on implementation, maintenance, and optimisation of security tooling and controls across a complex enterprise environment, alongside contributing to security governance, compliance, and best practice delivery. You will play a key role in strengthening detection and response capability across cloud and on-prem infrastructure, while supporting both BAU operations and ongoing transformation projects. Key Responsibilities of the Cyber Security Engineer: Deploy, configure, and maintain security tooling (SIEM, EDR, DLP, vulnerability management, PAM) across cloud and on-prem environments Monitor, investigate, and respond to security incidents, including root cause analysis and forensic support Manage vulnerability scanning and remediation tracking across infrastructure and cloud (Azure desirable) Support secure configuration, security best practices, and alignment to ISO27001 and NIST Contribute to security documentation (policies, SOPs, playbooks) and continuous improvement of controls Support BAU operations, projects, and penetration testing activities as required Key Requirements of the Cyber Security Engineer: Experience in a Cyber Security Engineer, SecOps, or similar hands-on security role Strong experience with enterprise security tooling including SIEM, EDR, DLP, and vulnerability management platforms Familiarity with tools such as CrowdStrike, Absolute, Sumo Logic, and Rapid7 (or similar technologies) Experience supporting cloud environments, ideally Azure, within a security operations context Strong understanding of security frameworks such as ISO27001 and NIST Experience across both BAU security operations and project delivery Strong incident response experience, including investigation, escalation, and root cause analysis Ability to produce clear technical documentation (SOPs, playbooks, and standards) Strong communication and stakeholder management skills across technical and non-technical teams Comfortable working in a fast-paced environment with multiple priorities Apply now to speak with VIQU IT in confidence, or reach out to Katie Dark via the VIQU IT website. Do you know someone great? We'll thank you with up to £1,000 if your referral is successful (terms apply). For more opportunities, follow us on IT Recruitment. Cyber Security Engineer Glasgow - Hybrid Competitive salary - 12-month FTC
J ob Description We are looking for an experienced and highly organised Senior Cyber Security Engineer for a local government client. This position provides an opportunity to contribute to public safety and community resilience. The ideal candidate will be a technical expert in CrowdStrike for endpoint protection and Splunk for security telemetry, capable of transforming raw data into actionable intelligence. Key Responsibilities Endpoint Strategy: Lead the deployment, policy configuration, and maintenance of the CrowdStrike Falcon platform, playing a crucial role in strengthening our security posture. SIEM Mastery: Collaborate with our SOC partner to design and optimise Splunk dashboards, alerts, and data models to identify sophisticated threats. Incident Response: Act as a technical escalation point for high-priority security incidents, utilising EDR and SIEM tools to enable rapid containment. Automation: Develop Security Orchestration, Automation, and Response (SOAR) workflows to minimise manual intervention and enhance response times. Threat Hunting: Proactively search for undetected malicious activity using specialised queries. Training: Enhance the CrowdStrike, Splunk, and security analysis skills of the existing team, providing opportunities for professional development and leadership. Qualifications Essential and Desired Cyber Security Foundational Certifications: CompTIA Security+, Network+, CYSA+, GSEC Advanced Certifications: CISSP, GCIH, GCIA, CCSP CrowdStrike Certifications: Ideally, possess 2 or more of the following: CCFA (CrowdStrike Certified Falcon Administrator) CCFR (CrowdStrike Certified Falcon Responder) CCSE (CrowdStrike Certified SIEM Engineer) Splunk Certification: Splunk Certified Cybersecurity Defence Engineer (Mandatory) Criteria for Shortlisting - Ideal Candidate Profile: Experience: 5+ years in a dedicated Cyber Security Engineering or SOC Tier 3 role. CrowdStrike Expertise: Solid hands-on experience with Falcon Prevent, Insight, and Discover. Certification (CCFA/CCFR) is a significant advantage. Splunk Proficiency: Skilled in writing complex Search Processing Language (SPL) queries and managing Splunk Enterprise Security (ES). Technical Knowledge: Strong Understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. Vulnerability Assessment: 2+ years of experience using vulnerability assessment tools is a bonus. Penetration Testing Experience: Familiarity with penetration testing and web application testing. Compliance Requirements Willingness to participate in the mandatory Right to Work Checks as part of the pre-screening application process. Diamond Blaque Group, a leading public-sector provider, acts as the employment business for this vacancy. We are committed to fostering an inclusive environment that values diversity and equal opportunity in the workplace.
Jun 10, 2026
Contractor
J ob Description We are looking for an experienced and highly organised Senior Cyber Security Engineer for a local government client. This position provides an opportunity to contribute to public safety and community resilience. The ideal candidate will be a technical expert in CrowdStrike for endpoint protection and Splunk for security telemetry, capable of transforming raw data into actionable intelligence. Key Responsibilities Endpoint Strategy: Lead the deployment, policy configuration, and maintenance of the CrowdStrike Falcon platform, playing a crucial role in strengthening our security posture. SIEM Mastery: Collaborate with our SOC partner to design and optimise Splunk dashboards, alerts, and data models to identify sophisticated threats. Incident Response: Act as a technical escalation point for high-priority security incidents, utilising EDR and SIEM tools to enable rapid containment. Automation: Develop Security Orchestration, Automation, and Response (SOAR) workflows to minimise manual intervention and enhance response times. Threat Hunting: Proactively search for undetected malicious activity using specialised queries. Training: Enhance the CrowdStrike, Splunk, and security analysis skills of the existing team, providing opportunities for professional development and leadership. Qualifications Essential and Desired Cyber Security Foundational Certifications: CompTIA Security+, Network+, CYSA+, GSEC Advanced Certifications: CISSP, GCIH, GCIA, CCSP CrowdStrike Certifications: Ideally, possess 2 or more of the following: CCFA (CrowdStrike Certified Falcon Administrator) CCFR (CrowdStrike Certified Falcon Responder) CCSE (CrowdStrike Certified SIEM Engineer) Splunk Certification: Splunk Certified Cybersecurity Defence Engineer (Mandatory) Criteria for Shortlisting - Ideal Candidate Profile: Experience: 5+ years in a dedicated Cyber Security Engineering or SOC Tier 3 role. CrowdStrike Expertise: Solid hands-on experience with Falcon Prevent, Insight, and Discover. Certification (CCFA/CCFR) is a significant advantage. Splunk Proficiency: Skilled in writing complex Search Processing Language (SPL) queries and managing Splunk Enterprise Security (ES). Technical Knowledge: Strong Understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. Vulnerability Assessment: 2+ years of experience using vulnerability assessment tools is a bonus. Penetration Testing Experience: Familiarity with penetration testing and web application testing. Compliance Requirements Willingness to participate in the mandatory Right to Work Checks as part of the pre-screening application process. Diamond Blaque Group, a leading public-sector provider, acts as the employment business for this vacancy. We are committed to fostering an inclusive environment that values diversity and equal opportunity in the workplace.
Security Monitoring & SIEM Analyst Location: Berkshire (Onsite) Salary: 45,000 - 60,000 + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC (UK Nationals only) Company Overview An exciting opportunity to join a global technology organisation with a well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices to defend against evolving threats. Role Overview As a Security Monitoring & SIEM Analyst, you will play a key role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through effective monitoring and rapid response. Key Responsibilities Monitor, analyse, and investigate security alerts across SIEM and security tooling Conduct detailed investigations across log, endpoint, identity, and network telemetry Develop and optimise detection logic and SIEM queries to improve alert fidelity Analyse security events and correlate activity across multiple data sources Support incident response activities, including containment, escalation, and remediation Perform IOC analysis, enrichment, and validation using threat intelligence sources Identify gaps in detection capabilities and contribute to continuous improvement Work closely with infrastructure, SOC, and incident response teams to enhance response capability Produce clear and structured investigation reports and escalation summaries Skills & Experience Required Core SIEM & Detection Skills Strong knowledge of SIEM platforms (e.g. Microsoft Sentinel, Splunk, Elastic) Experience writing and tuning queries using: o Kusto Query Language (KQL) o ES QL / Kibana Query Language o Splunk SPL Understanding of event correlation, alerting, and detection use-case development Technical Foundations Strong knowledge of: o Linux and Windows operating systems o Core networking concepts (TCP/IP, DNS, HTTP/S, firewalls, VPNs) Experience analysing logs across: o Endpoint, identity, network, and cloud environments Threat Detection & Security Tooling Strong knowledge of: o EDR/XDR concepts and workflows o IDS/IPS technologies and signature-based detection Experience working with tools such as: o Microsoft Defender, CrowdStrike, SentinelOne, or similar Threat & Adversary Knowledge Understanding of attacker Tactics, Techniques and Procedures (TTPs) and how they manifest in logs and telemetry Familiarity with MITRE ATT&CK framework Evidence of staying up to date with: o Emerging threats o Adversary tradecraft o Defensive techniques Incident Handling & Investigation Experience handling security incidents through: o Detection and triage o Investigation and analysis o Handover to Incident Response teams Strong understanding of: o Incident management processes o Host-based forensic concepts Ability to apply post-incident review (PIR) learnings to improve detection and response Desirable Experience Experience within a SOC or cyber defence environment Exposure to threat hunting or detection engineering Experience in high-security or regulated environments Certifications (Beneficial) Microsoft SC-200 (Security Operations Analyst) GIAC / SANS certifications (GCIH, GCIA, GCED, etc.) CREST (CPIA, CRIA, CCTIA, CCBTP) Other recognised cyber security certifications Why Join? Work within a mature Security Operations environment Exposure to advanced SIEM tooling and large-scale environments Strong investment in training, certifications, and progression Opportunity to develop into: o Senior SIEM Analyst o Detection Engineer o Threat Hunter About Adecco Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client's supplier list for this role.
Jun 10, 2026
Full time
Security Monitoring & SIEM Analyst Location: Berkshire (Onsite) Salary: 45,000 - 60,000 + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC (UK Nationals only) Company Overview An exciting opportunity to join a global technology organisation with a well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices to defend against evolving threats. Role Overview As a Security Monitoring & SIEM Analyst, you will play a key role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through effective monitoring and rapid response. Key Responsibilities Monitor, analyse, and investigate security alerts across SIEM and security tooling Conduct detailed investigations across log, endpoint, identity, and network telemetry Develop and optimise detection logic and SIEM queries to improve alert fidelity Analyse security events and correlate activity across multiple data sources Support incident response activities, including containment, escalation, and remediation Perform IOC analysis, enrichment, and validation using threat intelligence sources Identify gaps in detection capabilities and contribute to continuous improvement Work closely with infrastructure, SOC, and incident response teams to enhance response capability Produce clear and structured investigation reports and escalation summaries Skills & Experience Required Core SIEM & Detection Skills Strong knowledge of SIEM platforms (e.g. Microsoft Sentinel, Splunk, Elastic) Experience writing and tuning queries using: o Kusto Query Language (KQL) o ES QL / Kibana Query Language o Splunk SPL Understanding of event correlation, alerting, and detection use-case development Technical Foundations Strong knowledge of: o Linux and Windows operating systems o Core networking concepts (TCP/IP, DNS, HTTP/S, firewalls, VPNs) Experience analysing logs across: o Endpoint, identity, network, and cloud environments Threat Detection & Security Tooling Strong knowledge of: o EDR/XDR concepts and workflows o IDS/IPS technologies and signature-based detection Experience working with tools such as: o Microsoft Defender, CrowdStrike, SentinelOne, or similar Threat & Adversary Knowledge Understanding of attacker Tactics, Techniques and Procedures (TTPs) and how they manifest in logs and telemetry Familiarity with MITRE ATT&CK framework Evidence of staying up to date with: o Emerging threats o Adversary tradecraft o Defensive techniques Incident Handling & Investigation Experience handling security incidents through: o Detection and triage o Investigation and analysis o Handover to Incident Response teams Strong understanding of: o Incident management processes o Host-based forensic concepts Ability to apply post-incident review (PIR) learnings to improve detection and response Desirable Experience Experience within a SOC or cyber defence environment Exposure to threat hunting or detection engineering Experience in high-security or regulated environments Certifications (Beneficial) Microsoft SC-200 (Security Operations Analyst) GIAC / SANS certifications (GCIH, GCIA, GCED, etc.) CREST (CPIA, CRIA, CCTIA, CCBTP) Other recognised cyber security certifications Why Join? Work within a mature Security Operations environment Exposure to advanced SIEM tooling and large-scale environments Strong investment in training, certifications, and progression Opportunity to develop into: o Senior SIEM Analyst o Detection Engineer o Threat Hunter About Adecco Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client's supplier list for this role.
Location: Birmingham (Hybrid - 3 days onsite) Salary: £45,000 - £50,000 + Excellent Benefits Contract Type: Permanent The Role - SOC Engineer - Cyber We're looking for a hands-on SOC Engineer to join a rapidly growing Cyber Security function within a large enterprise technology environment. This is an opportunity to work in one of the most modern and well-equipped SOC environments in the market, supporting enterprise customers across a broad range of managed security services and cloud technologies. This is a genuinely engineering-led role rather than a traditional SOC analyst position. You'll be heavily involved in infrastructure, cloud security, security tooling, automation, and operational cyber engineering across enterprise-scale environments. Working from a Birmingham-based SOC three days a week, you'll play a key role in supporting customer environments, improving cyber capabilities, and helping showcase a cutting-edge SOC environment to visiting customers and stakeholders. What's in it for you as our Cyber SOC Engineer? Salary of £45,000 - £50,000 Hybrid working environment Excellent company benefits package Flexible benefits scheme Access to industry-leading SOC technology and tooling Dedicated training and development time each week Fully funded learning opportunities and partner-led certifications Opportunities to attend conferences and industry events Career progression within a large enterprise technology organisation Exposure to enterprise-scale cloud and cyber environments Supportive, collaborative, and highly technical team environment Duties as SOC Engineer - Cyber As a Cyber SOC Engineer, you will: Act as a technical escalation point and engineering SME across SOC technologies including SIEM, MDR/XDR, EDR, vulnerability management, and cloud security tooling Support, maintain, and improve cyber security infrastructure across enterprise customer environments Work closely with internal teams and customers to onboard, configure, and optimise security technologies and services Investigate and resolve platform issues, security alerts, log source health problems, and tooling-related incidents Configure and support technologies such as Microsoft Defender, Sentinel, CrowdStrike, Tenable, and related security platforms Assist with vulnerability scanning, remediation support, and operational security improvements Contribute to automation and scripting initiatives using tools such as KQL, PowerShell, Python, or Bash Produce and maintain technical documentation, operational runbooks, and security playbooks Support governance and compliance activities aligned to standards such as ISO27001, GDPR, and NCSC guidance Work collaboratively across infrastructure, cloud, networking, and cyber teams to improve service delivery and operational resilience Stay up to date with emerging cyber threats, technologies, and security best practice Contribute to continual improvement initiatives across the SOC function Who are we looking for as our Cyber SOC Engineer? We're looking for a technically capable and proactive engineer who enjoys solving problems, learning new technologies, and working collaboratively in a fast-paced environment. This role would suit someone from a SOC Engineering, Cloud Security, Infrastructure Security, or Cyber Engineering background who enjoys hands-on technical work rather than purely monitoring or analyst-based responsibilities. You'll ideally have experience with: Microsoft Sentinel and Microsoft Defender EDR/XDR/MDR technologies Vulnerability management tools such as Tenable or Qualys Azure, Microsoft 365, Intune, or AWS environments Security tooling, infrastructure, and cloud platforms Linux and Windows operating systems SIEM technologies and security monitoring Basic scripting or automation using KQL, PowerShell, Python, or Bash ITIL environments and structured change control processes Firewall, endpoint, or cloud security technologies We'd especially like to hear from candidates who are: Strong communicators who can work confidently with both technical and non-technical stakeholders Organised, collaborative, and eager to learn Comfortable working in a customer-facing environment Self-driven and proactive in solving problems Able to take ownership while also working well within a team Interested in developing their cyber engineering and cloud security expertise further Relevant certifications such as SC-200, SC-900, AZ-500, CISSP, or similar would be advantageous, but practical engineering experience is equally important. Please note: Candidates must be eligible for UK Security Clearance (SC/BPSS), including having the right to work in the UK and meeting residency requirements. INDHS
Jun 07, 2026
Full time
Location: Birmingham (Hybrid - 3 days onsite) Salary: £45,000 - £50,000 + Excellent Benefits Contract Type: Permanent The Role - SOC Engineer - Cyber We're looking for a hands-on SOC Engineer to join a rapidly growing Cyber Security function within a large enterprise technology environment. This is an opportunity to work in one of the most modern and well-equipped SOC environments in the market, supporting enterprise customers across a broad range of managed security services and cloud technologies. This is a genuinely engineering-led role rather than a traditional SOC analyst position. You'll be heavily involved in infrastructure, cloud security, security tooling, automation, and operational cyber engineering across enterprise-scale environments. Working from a Birmingham-based SOC three days a week, you'll play a key role in supporting customer environments, improving cyber capabilities, and helping showcase a cutting-edge SOC environment to visiting customers and stakeholders. What's in it for you as our Cyber SOC Engineer? Salary of £45,000 - £50,000 Hybrid working environment Excellent company benefits package Flexible benefits scheme Access to industry-leading SOC technology and tooling Dedicated training and development time each week Fully funded learning opportunities and partner-led certifications Opportunities to attend conferences and industry events Career progression within a large enterprise technology organisation Exposure to enterprise-scale cloud and cyber environments Supportive, collaborative, and highly technical team environment Duties as SOC Engineer - Cyber As a Cyber SOC Engineer, you will: Act as a technical escalation point and engineering SME across SOC technologies including SIEM, MDR/XDR, EDR, vulnerability management, and cloud security tooling Support, maintain, and improve cyber security infrastructure across enterprise customer environments Work closely with internal teams and customers to onboard, configure, and optimise security technologies and services Investigate and resolve platform issues, security alerts, log source health problems, and tooling-related incidents Configure and support technologies such as Microsoft Defender, Sentinel, CrowdStrike, Tenable, and related security platforms Assist with vulnerability scanning, remediation support, and operational security improvements Contribute to automation and scripting initiatives using tools such as KQL, PowerShell, Python, or Bash Produce and maintain technical documentation, operational runbooks, and security playbooks Support governance and compliance activities aligned to standards such as ISO27001, GDPR, and NCSC guidance Work collaboratively across infrastructure, cloud, networking, and cyber teams to improve service delivery and operational resilience Stay up to date with emerging cyber threats, technologies, and security best practice Contribute to continual improvement initiatives across the SOC function Who are we looking for as our Cyber SOC Engineer? We're looking for a technically capable and proactive engineer who enjoys solving problems, learning new technologies, and working collaboratively in a fast-paced environment. This role would suit someone from a SOC Engineering, Cloud Security, Infrastructure Security, or Cyber Engineering background who enjoys hands-on technical work rather than purely monitoring or analyst-based responsibilities. You'll ideally have experience with: Microsoft Sentinel and Microsoft Defender EDR/XDR/MDR technologies Vulnerability management tools such as Tenable or Qualys Azure, Microsoft 365, Intune, or AWS environments Security tooling, infrastructure, and cloud platforms Linux and Windows operating systems SIEM technologies and security monitoring Basic scripting or automation using KQL, PowerShell, Python, or Bash ITIL environments and structured change control processes Firewall, endpoint, or cloud security technologies We'd especially like to hear from candidates who are: Strong communicators who can work confidently with both technical and non-technical stakeholders Organised, collaborative, and eager to learn Comfortable working in a customer-facing environment Self-driven and proactive in solving problems Able to take ownership while also working well within a team Interested in developing their cyber engineering and cloud security expertise further Relevant certifications such as SC-200, SC-900, AZ-500, CISSP, or similar would be advantageous, but practical engineering experience is equally important. Please note: Candidates must be eligible for UK Security Clearance (SC/BPSS), including having the right to work in the UK and meeting residency requirements. INDHS
