The Role The Senior Security Engineer is responsible for the day-to-day operation, maintenance, and optimisation of security platforms supporting a financial services client in a regulated environment. This is a hands-on engineering role where you will ensure security tooling is fully operational, integrated, and performing as expected. You will work closely with the 24/7 Security Analyst team, supporting investigations, resolving platform issues, and driving improvements across detection and response capabilities. This role is client-aligned with 3 days onsite in London . Key Responsibilities Maintain and configure security platforms including SIEM, XDR/EDR, vulnerability and cloud security tooling Perform lifecycle activities including patching, upgrades, and configuration changes Ensure security platforms are fully integrated across on-prem and cloud environments Monitor platform health, performance, and availability, resolving issues proactively Support service transitions, upgrades, and controlled change activities Act as escalation point for platform issues raised by the Security Analyst team Provide engineering support during complex incidents and investigations Implement platform-level changes to support incident response and remediation Support detection engineering including rule deployment, tuning, and validation Resolve data quality, alerting, and detection gaps impacting operational effectiveness Support automation and SOAR initiatives (e.g. Sentinel, Logic Apps) Collaborate with SOC providers to maintain SIEM configuration and log ingestion Maintain accurate engineering documentation, runbooks, and platform records Ensure all platforms meet regulatory, audit, and compliance requirements Contribute to governance, reporting, and continuous improvement initiatives Experience & Knowledge Essential: Strong experience in security engineering and platform management Experience supporting SOC tooling and security operations environments Hands-on experience with Microsoft Defender and Microsoft Sentinel Strong understanding of SIEM, XDR, and security platform integrations Experience in hybrid (on-prem and cloud) environments Strong troubleshooting skills across platforms, integrations, and data pipelines Experience with scripting/automation (PowerShell, Python or similar) Strong understanding of networking, cloud, and infrastructure fundamentals Experience in regulated environments (e.g. financial services) Strong documentation and communication skills Desirable: Experience with vulnerability and scanning tools (e.g. Qualys) Familiarity with exposure management and BAS tools (XM Cyber, AttackIQ) Knowledge of DLP, email security, and cloud security platforms Awareness of PAM and data security tools (e.g. CyberArk, Varonis)
Jun 26, 2026
Full time
The Role The Senior Security Engineer is responsible for the day-to-day operation, maintenance, and optimisation of security platforms supporting a financial services client in a regulated environment. This is a hands-on engineering role where you will ensure security tooling is fully operational, integrated, and performing as expected. You will work closely with the 24/7 Security Analyst team, supporting investigations, resolving platform issues, and driving improvements across detection and response capabilities. This role is client-aligned with 3 days onsite in London . Key Responsibilities Maintain and configure security platforms including SIEM, XDR/EDR, vulnerability and cloud security tooling Perform lifecycle activities including patching, upgrades, and configuration changes Ensure security platforms are fully integrated across on-prem and cloud environments Monitor platform health, performance, and availability, resolving issues proactively Support service transitions, upgrades, and controlled change activities Act as escalation point for platform issues raised by the Security Analyst team Provide engineering support during complex incidents and investigations Implement platform-level changes to support incident response and remediation Support detection engineering including rule deployment, tuning, and validation Resolve data quality, alerting, and detection gaps impacting operational effectiveness Support automation and SOAR initiatives (e.g. Sentinel, Logic Apps) Collaborate with SOC providers to maintain SIEM configuration and log ingestion Maintain accurate engineering documentation, runbooks, and platform records Ensure all platforms meet regulatory, audit, and compliance requirements Contribute to governance, reporting, and continuous improvement initiatives Experience & Knowledge Essential: Strong experience in security engineering and platform management Experience supporting SOC tooling and security operations environments Hands-on experience with Microsoft Defender and Microsoft Sentinel Strong understanding of SIEM, XDR, and security platform integrations Experience in hybrid (on-prem and cloud) environments Strong troubleshooting skills across platforms, integrations, and data pipelines Experience with scripting/automation (PowerShell, Python or similar) Strong understanding of networking, cloud, and infrastructure fundamentals Experience in regulated environments (e.g. financial services) Strong documentation and communication skills Desirable: Experience with vulnerability and scanning tools (e.g. Qualys) Familiarity with exposure management and BAS tools (XM Cyber, AttackIQ) Knowledge of DLP, email security, and cloud security platforms Awareness of PAM and data security tools (e.g. CyberArk, Varonis)
Cyber Security Officer Based in Broxbourne, Hertfordshire Permanent, full-time, 37 hours per week Salary: £46,631 - £51,813 We have an exciting opportunity for a cybersecurity professional with experience in information security, risk management, and compliance, along with the ability to communicate complex security matters to a range of stakeholders. In this role, you ll help protect our systems, data and people by supporting and enhancing our cybersecurity framework. Working closely with colleagues, suppliers and senior stakeholders, you ll co-ordinate cyber risk management activities, maintain key security controls and ensure compliance with relevant standards and best practice. You ll play an important role in strengthening our cyber resilience, leading security awareness initiatives, supporting incident response and helping to embed a security-first culture across the business. Through your work, you ll help ensure security considerations are integrated into projects, processes and decision-making, enabling us to operate safely and confidently in an evolving threat landscape. We re looking for someone with - Experience in an information security and/or cybersecurity role - Experience producing clear policies, procedures, risk registers and reports for non-technical audiences - Good working knowledge of Microsoft 365 and/or Azure AD (Entra ID), endpoint security, email security and core network concepts - An understanding of UK data protection principles and how security controls support compliance - Strong stakeholder management skills - A relevant qualification(s) or evidence of continuous professional development (e.g., Cyber Essentials/Plus familiarity, CompTIA Security+, SC-900, ISO 27001 Foundation, or equivalent experience) A basic DBS check will be required for this role, which we will pay for. We re a social business, based in Turnford and across southeast Hertfordshire, helping local people by renting or selling affordable homes. We offer services designed to help our customers live comfortably in their homes, and we work to keep our buildings and estates maintained, offering support when money becomes an issue or when people get older. Our mission is to make a sustainable, positive change to the housing crisis for our customers and communities. We enjoy a benefits package that offers something for everyone, including - 27 days holiday per year plus bank holidays (pro rata for part-time colleagues). - Buy and sell holiday scheme. - Cross-organisational bonus scheme. - Up to 12% pension contribution. - Life assurance cover. - Funded health cash plan or subsidised private medical insurance. - Discount vouchers. - Enhanced family leave. - Range of special leave. - Car loans, cycle to work and electric car lease scheme. The closing date for this vacancy is 15th June 2026. We are a Disability Confident employer, which means that we offer an interview to a fair and proportionate number of disabled applicants who meet the minimum selection criteria for the job. Other organisations may call this role Cyber Security Analyst, Information Security Officer, Information Security Analyst, Cyber Security Specialist, IT Security Officer, IT Security Analyst, Cyber Risk Officer, or Security and Compliance Officer. We re committed to building an inclusive workplace where equity, diversity and inclusion are part of our culture, as we recognise the benefits of a diverse workforce. Our 3-year EDI strategy outlines how we ll achieve this. We strongly welcome applications from underrepresented groups and groups which are identified as a priority within our strategy, including LGBTQIA+, Black, Asian and Minority Ethnic communities, applicants with disabilities and people under 30. We understand that some candidates, particularly from certain groups, may hesitate to apply unless they meet every requirement. While we re looking for people with the right skills and experience, we also value diverse backgrounds and transferable skills. If you meet most of the criteria and believe you d thrive in the role, we encourage you to apply. All our vacancies are open to flexible working arrangements, something we are really proud of. The extent to which flexible working is possible will vary between jobs according to the needs of the business and our customers. So, if you d like to join us as a Cyber Security Officer, please apply via the button shown. This vacancy is being advertised by Webrecruit. The services advertised by Webrecruit are those of an Employment Agency.
Jun 25, 2026
Full time
Cyber Security Officer Based in Broxbourne, Hertfordshire Permanent, full-time, 37 hours per week Salary: £46,631 - £51,813 We have an exciting opportunity for a cybersecurity professional with experience in information security, risk management, and compliance, along with the ability to communicate complex security matters to a range of stakeholders. In this role, you ll help protect our systems, data and people by supporting and enhancing our cybersecurity framework. Working closely with colleagues, suppliers and senior stakeholders, you ll co-ordinate cyber risk management activities, maintain key security controls and ensure compliance with relevant standards and best practice. You ll play an important role in strengthening our cyber resilience, leading security awareness initiatives, supporting incident response and helping to embed a security-first culture across the business. Through your work, you ll help ensure security considerations are integrated into projects, processes and decision-making, enabling us to operate safely and confidently in an evolving threat landscape. We re looking for someone with - Experience in an information security and/or cybersecurity role - Experience producing clear policies, procedures, risk registers and reports for non-technical audiences - Good working knowledge of Microsoft 365 and/or Azure AD (Entra ID), endpoint security, email security and core network concepts - An understanding of UK data protection principles and how security controls support compliance - Strong stakeholder management skills - A relevant qualification(s) or evidence of continuous professional development (e.g., Cyber Essentials/Plus familiarity, CompTIA Security+, SC-900, ISO 27001 Foundation, or equivalent experience) A basic DBS check will be required for this role, which we will pay for. We re a social business, based in Turnford and across southeast Hertfordshire, helping local people by renting or selling affordable homes. We offer services designed to help our customers live comfortably in their homes, and we work to keep our buildings and estates maintained, offering support when money becomes an issue or when people get older. Our mission is to make a sustainable, positive change to the housing crisis for our customers and communities. We enjoy a benefits package that offers something for everyone, including - 27 days holiday per year plus bank holidays (pro rata for part-time colleagues). - Buy and sell holiday scheme. - Cross-organisational bonus scheme. - Up to 12% pension contribution. - Life assurance cover. - Funded health cash plan or subsidised private medical insurance. - Discount vouchers. - Enhanced family leave. - Range of special leave. - Car loans, cycle to work and electric car lease scheme. The closing date for this vacancy is 15th June 2026. We are a Disability Confident employer, which means that we offer an interview to a fair and proportionate number of disabled applicants who meet the minimum selection criteria for the job. Other organisations may call this role Cyber Security Analyst, Information Security Officer, Information Security Analyst, Cyber Security Specialist, IT Security Officer, IT Security Analyst, Cyber Risk Officer, or Security and Compliance Officer. We re committed to building an inclusive workplace where equity, diversity and inclusion are part of our culture, as we recognise the benefits of a diverse workforce. Our 3-year EDI strategy outlines how we ll achieve this. We strongly welcome applications from underrepresented groups and groups which are identified as a priority within our strategy, including LGBTQIA+, Black, Asian and Minority Ethnic communities, applicants with disabilities and people under 30. We understand that some candidates, particularly from certain groups, may hesitate to apply unless they meet every requirement. While we re looking for people with the right skills and experience, we also value diverse backgrounds and transferable skills. If you meet most of the criteria and believe you d thrive in the role, we encourage you to apply. All our vacancies are open to flexible working arrangements, something we are really proud of. The extent to which flexible working is possible will vary between jobs according to the needs of the business and our customers. So, if you d like to join us as a Cyber Security Officer, please apply via the button shown. This vacancy is being advertised by Webrecruit. The services advertised by Webrecruit are those of an Employment Agency.
Senior Cyber Security Analyst 6 Month Contract 450 / inside 1-2 days per week in office We are seeking an experienced Senior Cyber Security Analyst to join a London Boroughon an initial 6-month contract (£450 per day, hybrid working) . This is a hands-on role within a central ICT Cyber Security team, supporting an active cyber transformation programme and strengthening day-to-day security operations. You'll play a key role in security monitoring, threat detection, and vulnerability management , working closely with tools such as CrowdStrike Falcon (EDR) . The position also involves supporting compliance and governance frameworks (NIST, ISO 27001) , coordinating remediation activities, and maintaining risk and incident tracking across ICT teams. We're looking for someone with strong EDR experience (ideally CrowdStrike) , a solid understanding of security frameworks, and the ability to bridge technical and compliance teams. Experience with Microsoft Entra, Google Workspace , or the public sector would be advantageous. Morgan Hunt is a multi-award-winning recruitment business for interim, contract and temporary recruitment and acts as an Employment Agency in relation to permanent vacancies. Morgan Hunt is an equal opportunities employer. Job suitability is assessed on merit in accordance with the individual's skills, qualifications and abilities to perform the relevant duties required in a particular role.
Jun 25, 2026
Contractor
Senior Cyber Security Analyst 6 Month Contract 450 / inside 1-2 days per week in office We are seeking an experienced Senior Cyber Security Analyst to join a London Boroughon an initial 6-month contract (£450 per day, hybrid working) . This is a hands-on role within a central ICT Cyber Security team, supporting an active cyber transformation programme and strengthening day-to-day security operations. You'll play a key role in security monitoring, threat detection, and vulnerability management , working closely with tools such as CrowdStrike Falcon (EDR) . The position also involves supporting compliance and governance frameworks (NIST, ISO 27001) , coordinating remediation activities, and maintaining risk and incident tracking across ICT teams. We're looking for someone with strong EDR experience (ideally CrowdStrike) , a solid understanding of security frameworks, and the ability to bridge technical and compliance teams. Experience with Microsoft Entra, Google Workspace , or the public sector would be advantageous. Morgan Hunt is a multi-award-winning recruitment business for interim, contract and temporary recruitment and acts as an Employment Agency in relation to permanent vacancies. Morgan Hunt is an equal opportunities employer. Job suitability is assessed on merit in accordance with the individual's skills, qualifications and abilities to perform the relevant duties required in a particular role.
Senior Cyber Security Analyst - Hackney Contract 6 months initially Hybrid 1-2 days onsite, 3-4 days working from home £500.00 per day Umbrella Full time Summary of the responsibilities of the post: The Senior Cyber Security Analyst will join the Council s central ICT Cyber Security team to strengthen operational resilience and support our active Cyber Transformation Programme. This is a hands-on role focused primarily on supporting day-to-day security operations, endpoint threat detection and internal compliance tracking. This role acts as a bridge between technical security functions and governance frameworks. The successful contractor will leverage their existing exposure to Endpoint Detection and Response (EDR) platforms - specifically CrowdStrike Falcon - and have experience working with compliance frameworks. SERVICE SPECIFIC ACCOUNTABILITIES The contractor will have responsibility and accountability for the following: 1. Security Monitoring: Maintain visibility over the Council's security posture by monitoring alert queues via CrowdStrike Falcon and integrated log management tools. Investigate and escalate alerts where required. 2. Compliance & Governance Support: Assist in maintaining alignment with NIST CSF, track documentation, policy compliance, and audit requirements across ICT teams. 3. Vulnerability Tracking & Reporting: Oversee regular vulnerability scanning schedules. Analyze scan results and recent Penetration Testing reports, prioritizing. To find out more information please contact Abbie at (url removed) Recruitment is done in line with safe recruitment practices. We are an equal opportunity agency.
Jun 25, 2026
Contractor
Senior Cyber Security Analyst - Hackney Contract 6 months initially Hybrid 1-2 days onsite, 3-4 days working from home £500.00 per day Umbrella Full time Summary of the responsibilities of the post: The Senior Cyber Security Analyst will join the Council s central ICT Cyber Security team to strengthen operational resilience and support our active Cyber Transformation Programme. This is a hands-on role focused primarily on supporting day-to-day security operations, endpoint threat detection and internal compliance tracking. This role acts as a bridge between technical security functions and governance frameworks. The successful contractor will leverage their existing exposure to Endpoint Detection and Response (EDR) platforms - specifically CrowdStrike Falcon - and have experience working with compliance frameworks. SERVICE SPECIFIC ACCOUNTABILITIES The contractor will have responsibility and accountability for the following: 1. Security Monitoring: Maintain visibility over the Council's security posture by monitoring alert queues via CrowdStrike Falcon and integrated log management tools. Investigate and escalate alerts where required. 2. Compliance & Governance Support: Assist in maintaining alignment with NIST CSF, track documentation, policy compliance, and audit requirements across ICT teams. 3. Vulnerability Tracking & Reporting: Oversee regular vulnerability scanning schedules. Analyze scan results and recent Penetration Testing reports, prioritizing. To find out more information please contact Abbie at (url removed) Recruitment is done in line with safe recruitment practices. We are an equal opportunity agency.
Senior Technical Support Analyst Edinburgh Up to 35,000 + excellent benefits (including bonus) Are you a proactive IT professional who thrives on solving complex technical challenges and supporting clients in a meaningful way? We're working with a well-established IT services provider that has spent over two decades helping organisations deliver secure, efficient, and future-ready technology strategies. This organisation prides itself on building long-term partnerships with clients, taking a people-first approach to technology, and delivering solutions that genuinely improve day-to-day operations. The Role As a Senior Technical Support Analyst, you'll join a highly collaborative team in a hands-on, client-facing position. You'll act as a key escalation point within the service desk, taking ownership of complex issues and ensuring high-quality resolutions as well as playing an important role in project delivery. What Makes This Opportunity Stand Out This client is deeply committed to learning and development. They actively invest in their people through: Quarterly coaching and structured development sessions Paid training and certification opportunities Ongoing mentoring from experienced colleagues Clear pathways for progression and skill development What You'll Bring Strong experience in 2nd line IT support Expertise across Microsoft 365, Windows Server, networking, and virtualisation A customer-focused mindset with excellent problem-solving skills Ability to manage priorities effectively and communicate clearly with clients Desirable experience includes Azure, and knowledge of cyber security frameworks If this sounds of interest, please apply now for a confidential chat to find out more!
Jun 24, 2026
Full time
Senior Technical Support Analyst Edinburgh Up to 35,000 + excellent benefits (including bonus) Are you a proactive IT professional who thrives on solving complex technical challenges and supporting clients in a meaningful way? We're working with a well-established IT services provider that has spent over two decades helping organisations deliver secure, efficient, and future-ready technology strategies. This organisation prides itself on building long-term partnerships with clients, taking a people-first approach to technology, and delivering solutions that genuinely improve day-to-day operations. The Role As a Senior Technical Support Analyst, you'll join a highly collaborative team in a hands-on, client-facing position. You'll act as a key escalation point within the service desk, taking ownership of complex issues and ensuring high-quality resolutions as well as playing an important role in project delivery. What Makes This Opportunity Stand Out This client is deeply committed to learning and development. They actively invest in their people through: Quarterly coaching and structured development sessions Paid training and certification opportunities Ongoing mentoring from experienced colleagues Clear pathways for progression and skill development What You'll Bring Strong experience in 2nd line IT support Expertise across Microsoft 365, Windows Server, networking, and virtualisation A customer-focused mindset with excellent problem-solving skills Ability to manage priorities effectively and communicate clearly with clients Desirable experience includes Azure, and knowledge of cyber security frameworks If this sounds of interest, please apply now for a confidential chat to find out more!
A job opportunity has arisen for an experienced IT Programme Manager to join a highly established organisation during a period of rapid technical and business transformation. Reporting to the Head of Programme Management, you will take responsibility for managing and delivering a critical, multi-year programme of IT/Technology transformation and cyber security projects. You will liaise with several key senior stakeholders, successfully influencing key decision making to ensure the IT Security Programme of works is initiated and delivered within the required timelines. Working as part of an innovative and fast-paced IT team, you will be responsible for line managing a team of three IT Project Managers, whilst taking ownership for the overall programme of work. You will work closely with Project Managers, PMO, IT Business Analysts, key business sponsors and key stakeholders to support project definition, to initiative, plan and deliver projects, demonstrating strong governance and reporting progress tracking to plan. Furthermore, you will take ownership of the IT Programme of project work and ensure delivery to time, budget, and quality measures. You will work alongside IT Team colleagues to review business requirements and suggest appropriate solutions, manage any external tender selection events with the procurement team and support investment sign off to help shape project business cases. The successful candidate should be able to demonstrate: A proven track record of having worked as an IT Programme Manager, including experience of having delivered highly regulated projects/programmes You should ideally have experience working in the Utilities sector / experience of delivering IT solutions in or for utilities clients Have experience at managing a portfolio of projects and/or a programme of works in a largely outsourced environment Have extensive programme or portfolio management implementation experience, being able to control and deliver a programme or portfolio to time and budget requirements IT Programme/Portfolio Delivery experience Project implementation expertise Contractual/Commercial awareness and experience Process and Governance design and implementation expertise Degree level educated PRINCE2 Practitioner or equivalent Project Management qualification is essential Experience of tools such as MS DevOps, JIRA, MS Project Planner, etc. This position offers excellent scope for career progression plus a benefits package that includes: 25 days annual leave plus bank holidays Pension scheme (5% employee contribution, 10% employer contribution) Bonus scheme 14 x salary Life Insurance Flexible benefits scheme options including corporate gym memberships, dental insurance and health cash-plans Access to Financial Wellbeing Programme Enhanced pay for parental leave Retail discounts and cashback scheme Flexible/hybrid working options If you would like to discuss this position in more detail, please apply with an updated CV or contact me for a confidential discussion. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Jun 23, 2026
Full time
A job opportunity has arisen for an experienced IT Programme Manager to join a highly established organisation during a period of rapid technical and business transformation. Reporting to the Head of Programme Management, you will take responsibility for managing and delivering a critical, multi-year programme of IT/Technology transformation and cyber security projects. You will liaise with several key senior stakeholders, successfully influencing key decision making to ensure the IT Security Programme of works is initiated and delivered within the required timelines. Working as part of an innovative and fast-paced IT team, you will be responsible for line managing a team of three IT Project Managers, whilst taking ownership for the overall programme of work. You will work closely with Project Managers, PMO, IT Business Analysts, key business sponsors and key stakeholders to support project definition, to initiative, plan and deliver projects, demonstrating strong governance and reporting progress tracking to plan. Furthermore, you will take ownership of the IT Programme of project work and ensure delivery to time, budget, and quality measures. You will work alongside IT Team colleagues to review business requirements and suggest appropriate solutions, manage any external tender selection events with the procurement team and support investment sign off to help shape project business cases. The successful candidate should be able to demonstrate: A proven track record of having worked as an IT Programme Manager, including experience of having delivered highly regulated projects/programmes You should ideally have experience working in the Utilities sector / experience of delivering IT solutions in or for utilities clients Have experience at managing a portfolio of projects and/or a programme of works in a largely outsourced environment Have extensive programme or portfolio management implementation experience, being able to control and deliver a programme or portfolio to time and budget requirements IT Programme/Portfolio Delivery experience Project implementation expertise Contractual/Commercial awareness and experience Process and Governance design and implementation expertise Degree level educated PRINCE2 Practitioner or equivalent Project Management qualification is essential Experience of tools such as MS DevOps, JIRA, MS Project Planner, etc. This position offers excellent scope for career progression plus a benefits package that includes: 25 days annual leave plus bank holidays Pension scheme (5% employee contribution, 10% employer contribution) Bonus scheme 14 x salary Life Insurance Flexible benefits scheme options including corporate gym memberships, dental insurance and health cash-plans Access to Financial Wellbeing Programme Enhanced pay for parental leave Retail discounts and cashback scheme Flexible/hybrid working options If you would like to discuss this position in more detail, please apply with an updated CV or contact me for a confidential discussion. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Senior Cyber Security Analyst Central London (1 day per week onsite) up to 85,000 + benefits About the Role This is a highly visible opportunity to join a growing global Cyber Defence function at an exciting stage of transformation and centralisation. Cyber security remains a core strategic priority for the organisation as it continues to modernise operations and strengthen resilience across a complex international environment. The successful individual will play a critical role in strengthening operational security capabilities while helping shape the future direction of the team as the wider security function evolves. This role offers genuine ownership, senior stakeholder exposure and strong progression potential into future lead or management responsibilities over time. The Opportunity We are seeking an experienced Senior Cyber Security Analyst to join a global Cyber Defence function. This is not a traditional SOC analyst position focused purely on alert investigation. Instead, this role requires an individual capable of leading cyber incidents operationally, technically and commercially from end-to-end. You will act as a senior technical subject matter expert across incident response, detection engineering, cloud security and vulnerability management, while also providing calm, structured leadership during high-pressure situations. The environment is heavily Microsoft-focused, with particular emphasis on: Microsoft Sentinel Microsoft Defender XDR Azure security and secure-by-design principles Detection engineering and automation Threat and vulnerability management You will work closely with global technology and cyber teams to continuously improve monitoring, detection, response and remediation capabilities across hybrid cloud and on-premise environments. Key Responsibilities Incident Response & Major Incident Management Lead the end-to-end management of cyber security incidents across global environments. Take ownership of incident triage, severity assessment and response coordination across P1-P4 incidents. Lead incident bridge calls and coordinate technical and business stakeholders throughout the incident lifecycle. Assess technical, operational and commercial impact to support effective decision-making under pressure. Provide clear, calm and structured communications to both technical teams and senior leadership. Drive containment, eradication, recovery and post-incident improvement activities. Conduct root cause analysis and ensure lessons learned are embedded into operational processes and controls. Develop and maintain incident response procedures, playbooks and documentation aligned to industry best practice. Detection Engineering & Security Automation Configure, optimise and continuously improve Microsoft Sentinel and Microsoft Defender technologies. Develop and tune detection logic using KQL to identify emerging threats and attacker behaviours. Build and maintain automated SOAR workflows using Logic Apps and related technologies. Integrate Microsoft security tooling with third-party technologies and service providers. Identify monitoring gaps and improve visibility across cloud and on-premise environments. Maintain high-quality technical documentation for detections, automations and operational workflows. Cloud Security & Secure-by-Design Support secure configuration and operational security across Azure and associated cloud services. Collaborate with infrastructure and engineering teams to embed secure-by-design principles. Evaluate configuration changes and ensure alignment with security standards and controls. Support implementation and optimisation of Microsoft Defender security policies across endpoint, identity, cloud and email platforms. Contribute to the continuous improvement of cloud security posture across global operations. Threat & Vulnerability Management Support and enhance the vulnerability management programme across infrastructure, cloud and endpoint environments. Work with tools such as Microsoft Defender Vulnerability Management and Tenable to identify and prioritise vulnerabilities. Translate vulnerability findings into actionable remediation plans with technology stakeholders. Leverage cyber threat intelligence to improve detection capabilities and prioritisation decisions. Track remediation progress and provide meaningful risk reporting to cyber leadership. Stakeholder Management & Collaboration Partner with Group IT, Regional IT and wider technology teams across multiple geographies. Act as a trusted advisor across operational security, incident response and cyber defence activities. Balance technical risk with operational realities and business priorities. Demonstrate strong stakeholder management and communication skills at all levels of the organisation. Contribute to a positive cyber security culture and continuous improvement mindset across the business. What We're Looking For Essential Experience Proven experience leading cyber security incidents end-to-end within enterprise environments. Strong background in Security Operations, Cyber Defence, Incident Response or Blue Team functions. Experience operating within hybrid cloud and on-premise environments. Hands-on experience with Microsoft Sentinel, Microsoft Defender XDR and Azure security technologies. Experience with detection engineering, threat detection and security automation. Exposure to vulnerability management platforms such as Tenable or Microsoft Defender Vulnerability Management. Experience managing stakeholder communications during high-severity incidents. Strong understanding of attacker tactics, techniques and procedures (TTPs). Technical Skills Strong Microsoft security ecosystem expertise. Advanced KQL experience for investigations, detections and reporting. Experience building automation workflows using Logic Apps or similar technologies. Knowledge of cloud security principles across Azure and ideally AWS or Google Cloud. Familiarity with industry frameworks such as NIST and ISO 27001. Personal Attributes We are particularly interested in individuals who demonstrate: Calmness under pressure Strong ownership and accountability Excellent communication and stakeholder management skills Commercial awareness alongside technical depth Gravitas and confidence leading senior incident discussions The ability to know when to stop investigating and start managing the wider incident process What's on Offer Highly visible role within a growing global cyber security function Genuine ownership and influence across security operations Opportunity to shape and mature cyber defence capabilities globally Strong balance of technical depth and business engagement Clear long-term progression opportunities as the team expands Flexible hybrid working with only 1 day per week onsite in Central London To apply for this fantastic opportunity please send your CV
Jun 23, 2026
Full time
Senior Cyber Security Analyst Central London (1 day per week onsite) up to 85,000 + benefits About the Role This is a highly visible opportunity to join a growing global Cyber Defence function at an exciting stage of transformation and centralisation. Cyber security remains a core strategic priority for the organisation as it continues to modernise operations and strengthen resilience across a complex international environment. The successful individual will play a critical role in strengthening operational security capabilities while helping shape the future direction of the team as the wider security function evolves. This role offers genuine ownership, senior stakeholder exposure and strong progression potential into future lead or management responsibilities over time. The Opportunity We are seeking an experienced Senior Cyber Security Analyst to join a global Cyber Defence function. This is not a traditional SOC analyst position focused purely on alert investigation. Instead, this role requires an individual capable of leading cyber incidents operationally, technically and commercially from end-to-end. You will act as a senior technical subject matter expert across incident response, detection engineering, cloud security and vulnerability management, while also providing calm, structured leadership during high-pressure situations. The environment is heavily Microsoft-focused, with particular emphasis on: Microsoft Sentinel Microsoft Defender XDR Azure security and secure-by-design principles Detection engineering and automation Threat and vulnerability management You will work closely with global technology and cyber teams to continuously improve monitoring, detection, response and remediation capabilities across hybrid cloud and on-premise environments. Key Responsibilities Incident Response & Major Incident Management Lead the end-to-end management of cyber security incidents across global environments. Take ownership of incident triage, severity assessment and response coordination across P1-P4 incidents. Lead incident bridge calls and coordinate technical and business stakeholders throughout the incident lifecycle. Assess technical, operational and commercial impact to support effective decision-making under pressure. Provide clear, calm and structured communications to both technical teams and senior leadership. Drive containment, eradication, recovery and post-incident improvement activities. Conduct root cause analysis and ensure lessons learned are embedded into operational processes and controls. Develop and maintain incident response procedures, playbooks and documentation aligned to industry best practice. Detection Engineering & Security Automation Configure, optimise and continuously improve Microsoft Sentinel and Microsoft Defender technologies. Develop and tune detection logic using KQL to identify emerging threats and attacker behaviours. Build and maintain automated SOAR workflows using Logic Apps and related technologies. Integrate Microsoft security tooling with third-party technologies and service providers. Identify monitoring gaps and improve visibility across cloud and on-premise environments. Maintain high-quality technical documentation for detections, automations and operational workflows. Cloud Security & Secure-by-Design Support secure configuration and operational security across Azure and associated cloud services. Collaborate with infrastructure and engineering teams to embed secure-by-design principles. Evaluate configuration changes and ensure alignment with security standards and controls. Support implementation and optimisation of Microsoft Defender security policies across endpoint, identity, cloud and email platforms. Contribute to the continuous improvement of cloud security posture across global operations. Threat & Vulnerability Management Support and enhance the vulnerability management programme across infrastructure, cloud and endpoint environments. Work with tools such as Microsoft Defender Vulnerability Management and Tenable to identify and prioritise vulnerabilities. Translate vulnerability findings into actionable remediation plans with technology stakeholders. Leverage cyber threat intelligence to improve detection capabilities and prioritisation decisions. Track remediation progress and provide meaningful risk reporting to cyber leadership. Stakeholder Management & Collaboration Partner with Group IT, Regional IT and wider technology teams across multiple geographies. Act as a trusted advisor across operational security, incident response and cyber defence activities. Balance technical risk with operational realities and business priorities. Demonstrate strong stakeholder management and communication skills at all levels of the organisation. Contribute to a positive cyber security culture and continuous improvement mindset across the business. What We're Looking For Essential Experience Proven experience leading cyber security incidents end-to-end within enterprise environments. Strong background in Security Operations, Cyber Defence, Incident Response or Blue Team functions. Experience operating within hybrid cloud and on-premise environments. Hands-on experience with Microsoft Sentinel, Microsoft Defender XDR and Azure security technologies. Experience with detection engineering, threat detection and security automation. Exposure to vulnerability management platforms such as Tenable or Microsoft Defender Vulnerability Management. Experience managing stakeholder communications during high-severity incidents. Strong understanding of attacker tactics, techniques and procedures (TTPs). Technical Skills Strong Microsoft security ecosystem expertise. Advanced KQL experience for investigations, detections and reporting. Experience building automation workflows using Logic Apps or similar technologies. Knowledge of cloud security principles across Azure and ideally AWS or Google Cloud. Familiarity with industry frameworks such as NIST and ISO 27001. Personal Attributes We are particularly interested in individuals who demonstrate: Calmness under pressure Strong ownership and accountability Excellent communication and stakeholder management skills Commercial awareness alongside technical depth Gravitas and confidence leading senior incident discussions The ability to know when to stop investigating and start managing the wider incident process What's on Offer Highly visible role within a growing global cyber security function Genuine ownership and influence across security operations Opportunity to shape and mature cyber defence capabilities globally Strong balance of technical depth and business engagement Clear long-term progression opportunities as the team expands Flexible hybrid working with only 1 day per week onsite in Central London To apply for this fantastic opportunity please send your CV
Robert Walters is working partnership with a nationwide retail and distribution company delivering products to customers through a network of branches and digital sales channels. Due to continued growth, they are keen to appoint an experienced Senior Information Security Analyst to be based out of the Wolverhampton offices on a hybrid basis, paying a range of £55,000 to £60,000. As an experienced Senior Information Security Analyst you will develop, implement and oversee groups InfoSec strategy, in addition you will ensure compliance and regulatory standards. You will hold deep cyber security and cloud security expertise. Senior Information Security Analyst: Duties Develop/Maintain InfoSec polices, procedures and risk management frameworks Manage cloud platforms - AWS, Azure, Google Cloud Ensure cloud platforms config meets best practise/compliance Manage security vendors Conduct risk assessments Monitor security events - SIEM, IDS/IPS, Sentinel1 Lead incident response, coordinate with vendors during breach Ensure compliance with regulations - GDPR, HIPAA, PCI-DSS, ISO27001, NIST Work with IT teams to secure infrastructure, applications and endpoints Integrate security into cloud deployments Develop/Test incident response, DR and BC Senior Information Security Analyst: Experience Cloud security platforms - AWS Security Hub, Azure Security Centre Identity management and encryption Managing security vendors Security tech: Firewalls, VPNs, Endpoint protection Frameworks - NIST, CIS Controls Scripting or automation tools Certifications - Desirable but not essential : CISSP, CISM, AWS Certified Security, CRISC The permanent opportunity for a Senior Information Security Analyst will pay a salary range of £55,000 to £60,000 plus benefits with a hybrid working model from the Wolverhampton offices. For further information please apply with an updated CV and reach out to Ajay Hayre on (see below) Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
Jun 23, 2026
Full time
Robert Walters is working partnership with a nationwide retail and distribution company delivering products to customers through a network of branches and digital sales channels. Due to continued growth, they are keen to appoint an experienced Senior Information Security Analyst to be based out of the Wolverhampton offices on a hybrid basis, paying a range of £55,000 to £60,000. As an experienced Senior Information Security Analyst you will develop, implement and oversee groups InfoSec strategy, in addition you will ensure compliance and regulatory standards. You will hold deep cyber security and cloud security expertise. Senior Information Security Analyst: Duties Develop/Maintain InfoSec polices, procedures and risk management frameworks Manage cloud platforms - AWS, Azure, Google Cloud Ensure cloud platforms config meets best practise/compliance Manage security vendors Conduct risk assessments Monitor security events - SIEM, IDS/IPS, Sentinel1 Lead incident response, coordinate with vendors during breach Ensure compliance with regulations - GDPR, HIPAA, PCI-DSS, ISO27001, NIST Work with IT teams to secure infrastructure, applications and endpoints Integrate security into cloud deployments Develop/Test incident response, DR and BC Senior Information Security Analyst: Experience Cloud security platforms - AWS Security Hub, Azure Security Centre Identity management and encryption Managing security vendors Security tech: Firewalls, VPNs, Endpoint protection Frameworks - NIST, CIS Controls Scripting or automation tools Certifications - Desirable but not essential : CISSP, CISM, AWS Certified Security, CRISC The permanent opportunity for a Senior Information Security Analyst will pay a salary range of £55,000 to £60,000 plus benefits with a hybrid working model from the Wolverhampton offices. For further information please apply with an updated CV and reach out to Ajay Hayre on (see below) Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
Senior Security Analyst - Cyber Security - SIEM - Qualys - IPS - IT security systems - Firewalls My client who are leaders in their field are looking for a Senior Cyber Security and Network Analyst to provide effective and timely operational support, development and management of the IT network and security infrastructure to meet business requirements and objectives. Responsibilities: Support the delivery and maintenance of the organisation's cyber security and network infrastructure, ensuring systems remain secure, resilient, and aligned to business needs Manage day-to-day security operations, including monitoring SIEM platforms, Firewalls, endpoint protection, and threat detection tools Investigate security incidents and vulnerabilities, recommending and implementing corrective actions where required Maintain and support network technologies including LAN/WAN, Wi-Fi, Internet connectivity, and Layer 2/3 infrastructure Contribute to cyber security and infrastructure projects, including the implementation of new security controls and technologies Perform patching, upgrades, and ongoing maintenance across security and network environments to minimise risk and downtime Develop and maintain security policies, operational procedures, technical documentation, and compliance standards Support disaster recovery and business continuity planning, testing, and readiness activities Key Experience & Skills: Palo Alto Firewalls and all associated NG services Endpoint detection and remediation Proven track record in Cyber security and understanding of cyber security analysis, tools and software Experience of implementing, supporting and developing L2/3 network infrastructure Qualys Vulnerability Management Aruba Wifi L2/3 switching - Cisco Nexus Network Load balancing Penetration Testing (3rd Party) Incident management Data Security
Jun 23, 2026
Full time
Senior Security Analyst - Cyber Security - SIEM - Qualys - IPS - IT security systems - Firewalls My client who are leaders in their field are looking for a Senior Cyber Security and Network Analyst to provide effective and timely operational support, development and management of the IT network and security infrastructure to meet business requirements and objectives. Responsibilities: Support the delivery and maintenance of the organisation's cyber security and network infrastructure, ensuring systems remain secure, resilient, and aligned to business needs Manage day-to-day security operations, including monitoring SIEM platforms, Firewalls, endpoint protection, and threat detection tools Investigate security incidents and vulnerabilities, recommending and implementing corrective actions where required Maintain and support network technologies including LAN/WAN, Wi-Fi, Internet connectivity, and Layer 2/3 infrastructure Contribute to cyber security and infrastructure projects, including the implementation of new security controls and technologies Perform patching, upgrades, and ongoing maintenance across security and network environments to minimise risk and downtime Develop and maintain security policies, operational procedures, technical documentation, and compliance standards Support disaster recovery and business continuity planning, testing, and readiness activities Key Experience & Skills: Palo Alto Firewalls and all associated NG services Endpoint detection and remediation Proven track record in Cyber security and understanding of cyber security analysis, tools and software Experience of implementing, supporting and developing L2/3 network infrastructure Qualys Vulnerability Management Aruba Wifi L2/3 switching - Cisco Nexus Network Load balancing Penetration Testing (3rd Party) Incident management Data Security
Senior Network and Security Analyst - L2/L3 Network Infrastructure - Cyber Security - SIEM tools My client who are leaders in their field are looking for a Senior Cyber Security and Network Analyst to provide effective and timely operational support, development and management of the IT network and security infrastructure to meet business requirements and objectives. Responsibilities: Support the delivery and maintenance of the organisation's cyber security and network infrastructure, ensuring systems remain secure, resilient, and aligned to business needs Manage day-to-day security operations, including monitoring SIEM platforms, Firewalls, endpoint protection, and threat detection tools Investigate security incidents and vulnerabilities, recommending and implementing corrective actions where required Maintain and support network technologies including LAN/WAN, Wi-Fi, Internet connectivity, and Layer 2/3 infrastructure Contribute to cyber security and infrastructure projects, including the implementation of new security controls and technologies Perform patching, upgrades, and ongoing maintenance across security and network environments to minimise risk and downtime Develop and maintain security policies, operational procedures, technical documentation, and compliance standards Support disaster recovery and business continuity planning, testing, and readiness activities Key Experience & Skills: Palo Alto Firewalls and all associated NG services Endpoint detection and remediation Proven track record in Cyber security and understanding of cyber security analysis, tools and software Experience of implementing, supporting and developing L2/3 network infrastructure Qualys Vulnerability Management Aruba Wifi L2/3 switching - Cisco Nexus Network Load balancing Penetration Testing (3rd Party) Incident management Data Security
Jun 23, 2026
Full time
Senior Network and Security Analyst - L2/L3 Network Infrastructure - Cyber Security - SIEM tools My client who are leaders in their field are looking for a Senior Cyber Security and Network Analyst to provide effective and timely operational support, development and management of the IT network and security infrastructure to meet business requirements and objectives. Responsibilities: Support the delivery and maintenance of the organisation's cyber security and network infrastructure, ensuring systems remain secure, resilient, and aligned to business needs Manage day-to-day security operations, including monitoring SIEM platforms, Firewalls, endpoint protection, and threat detection tools Investigate security incidents and vulnerabilities, recommending and implementing corrective actions where required Maintain and support network technologies including LAN/WAN, Wi-Fi, Internet connectivity, and Layer 2/3 infrastructure Contribute to cyber security and infrastructure projects, including the implementation of new security controls and technologies Perform patching, upgrades, and ongoing maintenance across security and network environments to minimise risk and downtime Develop and maintain security policies, operational procedures, technical documentation, and compliance standards Support disaster recovery and business continuity planning, testing, and readiness activities Key Experience & Skills: Palo Alto Firewalls and all associated NG services Endpoint detection and remediation Proven track record in Cyber security and understanding of cyber security analysis, tools and software Experience of implementing, supporting and developing L2/3 network infrastructure Qualys Vulnerability Management Aruba Wifi L2/3 switching - Cisco Nexus Network Load balancing Penetration Testing (3rd Party) Incident management Data Security
Senior Cyber Security Analyst Permanent - Full time 55,000 plus bonus Bolton - 3 days per week onsite About the Role We are working with a leading global organization during a pivotal moment who seeking a Senior Cyber Security Analyst to help strengthen its security posture and safeguard critical systems. This is an excellent opportunity for someone passionate about incident response and proactive threat management within a dynamic, fast-paced environment. The ideal candidate will have a positive go-getter attitude, and will have experience of incident response, using MS security tools and ideally an understanding of Tanium. Key Responsibilities Working with the Head of Cyber to mature the incident response capability Using your understanding of the contemporary threat environment to assist with your vulnerability investigations and response Lead remediation efforts for identified vulnerabilities in collaboration with technology teams. Respond to incidents alongside the Head of Cyber Work with the existing MSSP across incident response and proactive monitoring and detection Maintain and optimise Microsoft Sentinel SIEM, XDR/MDR/EDR solutions, and supporting tools. Track deployment and health of all security products across the business. Stay ahead of emerging threats and evolving technologies. What We're Looking For Experience working in a cyber role in an enterprise environment Experience with the Microsoft Defender suite and Tanium would be ideal Solid understanding of cybersecurity principles and incident response processes. Experience exposure to red-teaming would be great but not crucial Experience of use case development An understanding of security best practice frameworks (NIST, ISO27001 etc) Good understanding of threat assessment A technical IT background Strong problem-solving skills and go-getter attitude Excellent communication skills and ability to work independently in a fast-paced setting. What's on Offer 45,000 - 55,000 plus bonus 25 days annual leave, plus moveable bank holidays and up to 5 days buy and sell Pension and company specific benefits Flexible and hybrid working options Career development opportunities and access to accredited qualifications. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Jun 23, 2026
Full time
Senior Cyber Security Analyst Permanent - Full time 55,000 plus bonus Bolton - 3 days per week onsite About the Role We are working with a leading global organization during a pivotal moment who seeking a Senior Cyber Security Analyst to help strengthen its security posture and safeguard critical systems. This is an excellent opportunity for someone passionate about incident response and proactive threat management within a dynamic, fast-paced environment. The ideal candidate will have a positive go-getter attitude, and will have experience of incident response, using MS security tools and ideally an understanding of Tanium. Key Responsibilities Working with the Head of Cyber to mature the incident response capability Using your understanding of the contemporary threat environment to assist with your vulnerability investigations and response Lead remediation efforts for identified vulnerabilities in collaboration with technology teams. Respond to incidents alongside the Head of Cyber Work with the existing MSSP across incident response and proactive monitoring and detection Maintain and optimise Microsoft Sentinel SIEM, XDR/MDR/EDR solutions, and supporting tools. Track deployment and health of all security products across the business. Stay ahead of emerging threats and evolving technologies. What We're Looking For Experience working in a cyber role in an enterprise environment Experience with the Microsoft Defender suite and Tanium would be ideal Solid understanding of cybersecurity principles and incident response processes. Experience exposure to red-teaming would be great but not crucial Experience of use case development An understanding of security best practice frameworks (NIST, ISO27001 etc) Good understanding of threat assessment A technical IT background Strong problem-solving skills and go-getter attitude Excellent communication skills and ability to work independently in a fast-paced setting. What's on Offer 45,000 - 55,000 plus bonus 25 days annual leave, plus moveable bank holidays and up to 5 days buy and sell Pension and company specific benefits Flexible and hybrid working options Career development opportunities and access to accredited qualifications. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Senior Cyber Security & Network Analyst The Opportunity in a Nutshell On behalf of our client, a leader in their industry , we are seeking a senior, hands-on technology professional with a deep foundation in Network Engineering (minimum 5-7 years of experience) coupled with strong Cyber Security expertise. This is not a purely monitoring role; the client requires an engineer who can lead from the front, physically and logically build infrastructure, and own complex technical projects from inception to completion. You will ensure the client's digital ecosystem remains resilient, highly performant, and securely aligned with evolving business objectives. Core Responsibilities As a senior technical anchor within the operations team, your daily focus will heavily lean into robust network engineering, system build-outs, and defensive security protocols: Infrastructure Installations & Kit Builds: Act as the technical lead for configuring, assembling, installing, and deploying new network and security hardware. Ensure all engineering documentation is immaculately maintained. Network Architecture Ownership: Maintain, optimize, and scale the client's Layer 2/3 environment, specifically managing Cisco Nexus routing, LAN/WAN frameworks, wireless networks, B2B links, and network load balancing solutions. Project Leadership: Spearhead mid-to-large scale infrastructure initiatives, ensuring deliverables are hit on time and within budget. You will be expected to demonstrate the tangible business value your technical decisions bring to the overall deployment process. Infrastructure Defense & Monitoring: Oversee next-generation Palo Alto firewalls, intrusion prevention systems, and data encryption protocols. Monitor SIEM platforms and threat feeds to isolate, investigate, and remediate digital vulnerabilities. Collaboration & Mentorship: Partner closely with internal technical squads and coordinate with external vendor partners. Provide coaching and technical advice to team members to foster a culture of continuous improvement. What The Client Is Looking For To thrive in this fast-paced environment, candidates must possess a blend of seasoned engineering experience and a structured, methodical approach to problem-solving. Technical Competencies: Minimum of 5-7 years of dedicated experience implementing, supporting, and developing complex L2/3 network architectures. Proven track record of leading and performing new network installations and physical/logical kit builds. Deep technical proficiency configuring and supporting L2/3 Cisco Nexus switching frameworks and Aruba Wi-Fi environments. Solid understanding of Network Load Balancing mechanisms and coordinating third-party Penetration Testing. Strong secondary expertise in Cyber Security, specifically administering Palo Alto Firewalls alongside their advanced next-gen service suites. Background utilizing Qualys Vulnerability Management tools and endpoint detection/remediation software. Previous experience navigating SOX compliance frameworks and handling fast-paced data environments is highly desirable. Application Requirement: Project Examples Our client values real-world execution. As part of your application, please be prepared to provide specific examples of projects where you led from the front on network or security kit deployments. We will look for details on: The scope of the hardware/software deployment you personally executed. The specific technical challenges you overcame during the installation or build phase. The tangible value and security/performance improvements your role brought to that process. Growth, Support & Culture Our client believes in empowering their people to reach their full potential. Joining this team means benefiting from: Structured Progression: Clear objective setting, tailored 1:1 mentorship sessions, and consistent coaching to elevate your architectural capabilities. Empowerment & Autonomy: An inclusive culture that grants ownership of meaningful outcomes and encourages exploration of development opportunities outside your immediate remit. A Collaborative Space: A supportive management philosophy designed to give employees the resources they need to excel while allowing them to bring their authentic selves to work every day.
Jun 22, 2026
Full time
Senior Cyber Security & Network Analyst The Opportunity in a Nutshell On behalf of our client, a leader in their industry , we are seeking a senior, hands-on technology professional with a deep foundation in Network Engineering (minimum 5-7 years of experience) coupled with strong Cyber Security expertise. This is not a purely monitoring role; the client requires an engineer who can lead from the front, physically and logically build infrastructure, and own complex technical projects from inception to completion. You will ensure the client's digital ecosystem remains resilient, highly performant, and securely aligned with evolving business objectives. Core Responsibilities As a senior technical anchor within the operations team, your daily focus will heavily lean into robust network engineering, system build-outs, and defensive security protocols: Infrastructure Installations & Kit Builds: Act as the technical lead for configuring, assembling, installing, and deploying new network and security hardware. Ensure all engineering documentation is immaculately maintained. Network Architecture Ownership: Maintain, optimize, and scale the client's Layer 2/3 environment, specifically managing Cisco Nexus routing, LAN/WAN frameworks, wireless networks, B2B links, and network load balancing solutions. Project Leadership: Spearhead mid-to-large scale infrastructure initiatives, ensuring deliverables are hit on time and within budget. You will be expected to demonstrate the tangible business value your technical decisions bring to the overall deployment process. Infrastructure Defense & Monitoring: Oversee next-generation Palo Alto firewalls, intrusion prevention systems, and data encryption protocols. Monitor SIEM platforms and threat feeds to isolate, investigate, and remediate digital vulnerabilities. Collaboration & Mentorship: Partner closely with internal technical squads and coordinate with external vendor partners. Provide coaching and technical advice to team members to foster a culture of continuous improvement. What The Client Is Looking For To thrive in this fast-paced environment, candidates must possess a blend of seasoned engineering experience and a structured, methodical approach to problem-solving. Technical Competencies: Minimum of 5-7 years of dedicated experience implementing, supporting, and developing complex L2/3 network architectures. Proven track record of leading and performing new network installations and physical/logical kit builds. Deep technical proficiency configuring and supporting L2/3 Cisco Nexus switching frameworks and Aruba Wi-Fi environments. Solid understanding of Network Load Balancing mechanisms and coordinating third-party Penetration Testing. Strong secondary expertise in Cyber Security, specifically administering Palo Alto Firewalls alongside their advanced next-gen service suites. Background utilizing Qualys Vulnerability Management tools and endpoint detection/remediation software. Previous experience navigating SOX compliance frameworks and handling fast-paced data environments is highly desirable. Application Requirement: Project Examples Our client values real-world execution. As part of your application, please be prepared to provide specific examples of projects where you led from the front on network or security kit deployments. We will look for details on: The scope of the hardware/software deployment you personally executed. The specific technical challenges you overcame during the installation or build phase. The tangible value and security/performance improvements your role brought to that process. Growth, Support & Culture Our client believes in empowering their people to reach their full potential. Joining this team means benefiting from: Structured Progression: Clear objective setting, tailored 1:1 mentorship sessions, and consistent coaching to elevate your architectural capabilities. Empowerment & Autonomy: An inclusive culture that grants ownership of meaningful outcomes and encourages exploration of development opportunities outside your immediate remit. A Collaborative Space: A supportive management philosophy designed to give employees the resources they need to excel while allowing them to bring their authentic selves to work every day.
This role provides interim leadership of network, cyber, and infrastructure services within a public sector organisation. You will manage a team of engineers while ensuring secure, resilient, and high-performing IT operations. Client Details Our client is a well-established organisation within the public sector, delivering critical services across a diverse and dynamic environment. They are seeking an experienced Interim IT Network Manager to provide interim leadership across their network and cyber functions, ensuring the continued stability, security, and performance of their IT services. Description Lead and manage a team of approximately 10 Network and Cyber Analysts and Engineers, providing direction, mentoring, and performance management. Oversee the organisation's network infrastructure, cyber security posture, and core IT services. Ensure high levels of system resilience, availability, and security across all infrastructure. Drive best practice across network operations, cyber governance, and infrastructure management. Collaborate with senior stakeholders to align IT services with organisational priorities. Manage incident response, risk mitigation, and continuous service improvement initiatives. Contribute to IT strategy, roadmap planning, and transformation programmes. This is a fractional role, working 4 days per week, with 50% of that time at the head office in Gloucestershire. Profile As the successful Interim IT Network Manager you should have strong technical knowledge in: Enterprise networking (LAN/WAN, firewalls, routing & switching). Cyber security principles, standards, and best practice. Broad IT infrastructure (servers, cloud platforms, end-user environments). In addition, you will have Proven experience managing technical IT teams, particularly within networking or infrastructure environments. Ability to lead in a people-focused, hands-off but technically credible role. Experience within public sector or regulated environments is desirable. Strong stakeholder management and communication skills. Delivery-focused and pragmatic with strong problem-solving ability. Job Offer Day rate: 500 - 600 (Inside IR35) Contract: 4 days per week (fractional role) Duration: 12 Months Location: 50% onsite in Gloucestershire, remainder remote Opportunity to lead an established, high-performing team Blend of strategic leadership and technical oversight Immediate impact in a service-driven organisation This is a fantastic opportunity for an experienced Interim IT Network Manager to make a meaningful impact within the public sector. If you're ready to take the next step in your career, we encourage you to apply today.
Jun 21, 2026
Contractor
This role provides interim leadership of network, cyber, and infrastructure services within a public sector organisation. You will manage a team of engineers while ensuring secure, resilient, and high-performing IT operations. Client Details Our client is a well-established organisation within the public sector, delivering critical services across a diverse and dynamic environment. They are seeking an experienced Interim IT Network Manager to provide interim leadership across their network and cyber functions, ensuring the continued stability, security, and performance of their IT services. Description Lead and manage a team of approximately 10 Network and Cyber Analysts and Engineers, providing direction, mentoring, and performance management. Oversee the organisation's network infrastructure, cyber security posture, and core IT services. Ensure high levels of system resilience, availability, and security across all infrastructure. Drive best practice across network operations, cyber governance, and infrastructure management. Collaborate with senior stakeholders to align IT services with organisational priorities. Manage incident response, risk mitigation, and continuous service improvement initiatives. Contribute to IT strategy, roadmap planning, and transformation programmes. This is a fractional role, working 4 days per week, with 50% of that time at the head office in Gloucestershire. Profile As the successful Interim IT Network Manager you should have strong technical knowledge in: Enterprise networking (LAN/WAN, firewalls, routing & switching). Cyber security principles, standards, and best practice. Broad IT infrastructure (servers, cloud platforms, end-user environments). In addition, you will have Proven experience managing technical IT teams, particularly within networking or infrastructure environments. Ability to lead in a people-focused, hands-off but technically credible role. Experience within public sector or regulated environments is desirable. Strong stakeholder management and communication skills. Delivery-focused and pragmatic with strong problem-solving ability. Job Offer Day rate: 500 - 600 (Inside IR35) Contract: 4 days per week (fractional role) Duration: 12 Months Location: 50% onsite in Gloucestershire, remainder remote Opportunity to lead an established, high-performing team Blend of strategic leadership and technical oversight Immediate impact in a service-driven organisation This is a fantastic opportunity for an experienced Interim IT Network Manager to make a meaningful impact within the public sector. If you're ready to take the next step in your career, we encourage you to apply today.
Cyber Security Operations Manager Liverpool (Hybrid) 70,000 - 75,000 Looking to take the next step in your cyber security career? We're looking for a Cyber Security Operations Manager to join a growing technology team and play a key role in strengthening and evolving the organisation's security capability. Whether you're already leading a Security Operations function or you're a Senior Security Engineer or Team Lead looking for more ownership, this is an opportunity to make a real impact within a business that is investing heavily in cyber security and resilience. The Opportunity You'll be responsible for helping shape the future of cyber security operations across the business, working closely with infrastructure, cloud and technology teams to improve security posture, strengthen detection and response capabilities, and ensure the organisation remains protected against emerging threats. This role offers a blend of leadership, technical oversight and strategic influence. What You'll Be Doing Leading and developing the Security Operations capability Managing cyber security incidents and coordinating effective responses Driving improvements across monitoring, threat detection and vulnerability management Working closely with technology teams to improve security across cloud, infrastructure and end-user environments Helping optimise security tools, processes and automation Supporting security audits, compliance initiatives and governance requirements Providing regular updates and insight to senior stakeholders on security risks and performance Contributing to the wider cyber security strategy and roadmap What We're Looking For We're interested in speaking with candidates from backgrounds such as: Security Operations Manager Lead Security Engineer Senior Security Engineer Senior SOC Analyst Detection & Response Lead Cyber Security Team Lead You'll ideally bring experience across some of the following: Security Operations and Incident Response SIEM, EDR/XDR and security monitoring tools Vulnerability Management Threat Detection and Threat Hunting Cloud Security (Azure, AWS or GCP) Security Frameworks such as ISO 27001, NIST or CIS Controls Most importantly, we're looking for someone who enjoys solving security challenges, improving processes and helping build a mature and effective cyber security function. Why Join? Opportunity to shape and influence the cyber security function High-profile role with strong visibility across the business Significant investment in cyber security and resilience Blend of leadership, technical oversight and strategic influence Supportive team environment with genuine opportunities for growth If you're looking for a role where you can take ownership, influence security strategy and make a real impact, we'd love to hear from you. Apply today or get in touch for a confidential conversation. BH36094
Jun 20, 2026
Full time
Cyber Security Operations Manager Liverpool (Hybrid) 70,000 - 75,000 Looking to take the next step in your cyber security career? We're looking for a Cyber Security Operations Manager to join a growing technology team and play a key role in strengthening and evolving the organisation's security capability. Whether you're already leading a Security Operations function or you're a Senior Security Engineer or Team Lead looking for more ownership, this is an opportunity to make a real impact within a business that is investing heavily in cyber security and resilience. The Opportunity You'll be responsible for helping shape the future of cyber security operations across the business, working closely with infrastructure, cloud and technology teams to improve security posture, strengthen detection and response capabilities, and ensure the organisation remains protected against emerging threats. This role offers a blend of leadership, technical oversight and strategic influence. What You'll Be Doing Leading and developing the Security Operations capability Managing cyber security incidents and coordinating effective responses Driving improvements across monitoring, threat detection and vulnerability management Working closely with technology teams to improve security across cloud, infrastructure and end-user environments Helping optimise security tools, processes and automation Supporting security audits, compliance initiatives and governance requirements Providing regular updates and insight to senior stakeholders on security risks and performance Contributing to the wider cyber security strategy and roadmap What We're Looking For We're interested in speaking with candidates from backgrounds such as: Security Operations Manager Lead Security Engineer Senior Security Engineer Senior SOC Analyst Detection & Response Lead Cyber Security Team Lead You'll ideally bring experience across some of the following: Security Operations and Incident Response SIEM, EDR/XDR and security monitoring tools Vulnerability Management Threat Detection and Threat Hunting Cloud Security (Azure, AWS or GCP) Security Frameworks such as ISO 27001, NIST or CIS Controls Most importantly, we're looking for someone who enjoys solving security challenges, improving processes and helping build a mature and effective cyber security function. Why Join? Opportunity to shape and influence the cyber security function High-profile role with strong visibility across the business Significant investment in cyber security and resilience Blend of leadership, technical oversight and strategic influence Supportive team environment with genuine opportunities for growth If you're looking for a role where you can take ownership, influence security strategy and make a real impact, we'd love to hear from you. Apply today or get in touch for a confidential conversation. BH36094
At DXC Technology were continuing to expand our high-security Cyber Defence capability and are looking for an experienced Tier 3 Security Analyst to join our growing Security Operations Centre (SOC) team based in Farnborough. Were passionate about building diverse, inclusive teams and actively encourage applications from women, underrepresented groups, and neurodivergent candidates, with support a click apply for full job details
Jun 20, 2026
Full time
At DXC Technology were continuing to expand our high-security Cyber Defence capability and are looking for an experienced Tier 3 Security Analyst to join our growing Security Operations Centre (SOC) team based in Farnborough. Were passionate about building diverse, inclusive teams and actively encourage applications from women, underrepresented groups, and neurodivergent candidates, with support a click apply for full job details
Role: Operational Analyst Location: Hybrid UK-based working with travel to MOD, defence industry, and secure customer sites as required Duration: Initial 3-month contract with extension options available Clearance: SC clearance required Rate: £500-£750/day Key skills Operational Analysis, Operational Research, Defence Capability Assessment, Modelling & Simulation, Data Analytics, AI-enabled Defence Systems You ve worked in defence, national security, or complex government environments where decisions cannot be based on guesswork. You know how to take large amounts of operational, technical, or programme data and turn it into evidence that actually helps people make better decisions. Whether that s assessing military capability, analysing operational effectiveness, modelling future scenarios, or supporting investment decisions, you understand how valuable good analysis can be in high-stakes environments. You re probably also someone who enjoys solving difficult problems. The kind of person who likes understanding how systems, people, technology, and operational requirements all fit together. If that sounds like you, this role is well worth a look. I m working with a cyber security technology company that is looking for an Operational Analyst to support major capability development, experimentation, and operational research programmes across the MOD R&D landscape. This is the kind of role where your work will directly contribute towards future defence capability, operational advantage, and strategic decision-making. You ll be involved in analysing emerging technologies, assessing military utility, supporting experimentation activities, and helping shape future operating concepts across complex defence programmes. There s also a major focus around modern digital capability and AI-enabled defence systems. You ll be working in an environment exploring technologies such as artificial intelligence, autonomous systems, data fabric, data-centred security, and modern command-and-control platforms. They re looking for someone who understands how analytical methods and operational research can support the adoption of these technologies in real-world defence settings. This role will see you conducting both quantitative and qualitative operational analysis, building analytical models, carrying out scenario assessments, analysing operational risks and dependencies, and developing evidence-based recommendations for senior stakeholders. You ll also support experimentation programmes, capability assessments, and investment decision-making activities, helping ensure that future defence capabilities are backed by robust operational evidence. A big part of the role involves engaging with stakeholders across MOD delivery teams, front-line commands, defence science organisations, industry partners, and senior military personnel, so being able to communicate complex findings clearly is very important here. From a technical perspective, they re looking for someone with experience across areas such as: Operational Analysis and Operational Research Defence capability assessment and capability planning Modelling and simulation Statistical analysis and data analytics Risk and cost-effectiveness analysis Scenario modelling and experimentation Defence capability development and acquisition programmes Experience with tools such as Python, R, MATLAB, Power BI, Tableau, Simul8, AnyLogic, Arena, or similar analytical platforms would be very beneficial. Experience working within MOD, NATO, defence industry, or secure government environments is highly desirable, particularly if you ve supported defence experimentation, capability development, or operational research activities previously. They re looking for someone who can work comfortably in complex R&D environments, engage confidently with senior stakeholders, and bring analytical rigour to programmes where the quality of evidence genuinely matters. If you enjoy operational research, defence analysis, emerging technology, and work that has real strategic importance, this is a genuinely interesting opportunity to get involved in. If it sounds like the kind of challenge you d enjoy, apply now or get in touch to find out more. We welcome diverse applicants and are dedicated to treating all applicants with dignity and respect, regardless of background.
Jun 20, 2026
Contractor
Role: Operational Analyst Location: Hybrid UK-based working with travel to MOD, defence industry, and secure customer sites as required Duration: Initial 3-month contract with extension options available Clearance: SC clearance required Rate: £500-£750/day Key skills Operational Analysis, Operational Research, Defence Capability Assessment, Modelling & Simulation, Data Analytics, AI-enabled Defence Systems You ve worked in defence, national security, or complex government environments where decisions cannot be based on guesswork. You know how to take large amounts of operational, technical, or programme data and turn it into evidence that actually helps people make better decisions. Whether that s assessing military capability, analysing operational effectiveness, modelling future scenarios, or supporting investment decisions, you understand how valuable good analysis can be in high-stakes environments. You re probably also someone who enjoys solving difficult problems. The kind of person who likes understanding how systems, people, technology, and operational requirements all fit together. If that sounds like you, this role is well worth a look. I m working with a cyber security technology company that is looking for an Operational Analyst to support major capability development, experimentation, and operational research programmes across the MOD R&D landscape. This is the kind of role where your work will directly contribute towards future defence capability, operational advantage, and strategic decision-making. You ll be involved in analysing emerging technologies, assessing military utility, supporting experimentation activities, and helping shape future operating concepts across complex defence programmes. There s also a major focus around modern digital capability and AI-enabled defence systems. You ll be working in an environment exploring technologies such as artificial intelligence, autonomous systems, data fabric, data-centred security, and modern command-and-control platforms. They re looking for someone who understands how analytical methods and operational research can support the adoption of these technologies in real-world defence settings. This role will see you conducting both quantitative and qualitative operational analysis, building analytical models, carrying out scenario assessments, analysing operational risks and dependencies, and developing evidence-based recommendations for senior stakeholders. You ll also support experimentation programmes, capability assessments, and investment decision-making activities, helping ensure that future defence capabilities are backed by robust operational evidence. A big part of the role involves engaging with stakeholders across MOD delivery teams, front-line commands, defence science organisations, industry partners, and senior military personnel, so being able to communicate complex findings clearly is very important here. From a technical perspective, they re looking for someone with experience across areas such as: Operational Analysis and Operational Research Defence capability assessment and capability planning Modelling and simulation Statistical analysis and data analytics Risk and cost-effectiveness analysis Scenario modelling and experimentation Defence capability development and acquisition programmes Experience with tools such as Python, R, MATLAB, Power BI, Tableau, Simul8, AnyLogic, Arena, or similar analytical platforms would be very beneficial. Experience working within MOD, NATO, defence industry, or secure government environments is highly desirable, particularly if you ve supported defence experimentation, capability development, or operational research activities previously. They re looking for someone who can work comfortably in complex R&D environments, engage confidently with senior stakeholders, and bring analytical rigour to programmes where the quality of evidence genuinely matters. If you enjoy operational research, defence analysis, emerging technology, and work that has real strategic importance, this is a genuinely interesting opportunity to get involved in. If it sounds like the kind of challenge you d enjoy, apply now or get in touch to find out more. We welcome diverse applicants and are dedicated to treating all applicants with dignity and respect, regardless of background.
CBSbutler Holdings Limited trading as CBSbutler
Portsmouth, Hampshire
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 630 a day +Corsham / Portsmouth Key Skills: ISO27001 DV Cleareance SIEM/SOAR - Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles.
Jun 20, 2026
Contractor
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 630 a day +Corsham / Portsmouth Key Skills: ISO27001 DV Cleareance SIEM/SOAR - Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles.
Position Summary The Senior Security Analyst is a dedicated security operations role providing continuous security coverage for a client operating in a regulated industry. You are embedded within a small, senior team delivering operational security services across detection, investigation, response, and proactive security operations, with direct responsibility for outcomes. You own security incidents end-to-end, from initial detection through investigation, containment, and coordination of remediation with internal and third-party teams. When the incident queue is clear, you carry out proactive security operations work including vulnerability scanning, web application scanning, breach and attack simulation, and validation of security tooling, actively maintaining and improving the client's security posture. Beyond incident response, you liaise directly with the client's IT and cloud teams to ensure remediation actions are completed, and you coordinate across teams to drive issues through to resolution. You bridge the gap between security operations and engineering, escalating platform issues to the security engineering team and supporting engineers during major incidents. The tooling scope has a strong Microsoft orientation. You work alongside the client's SOC provider where applicable, receiving escalated SIEM alerts while also monitoring and operating endpoint, vulnerability, and simulation tooling directly. You have direct access for investigation and threat hunting purposes. You bring experience beyond security tooling, with the ability to navigate the infrastructure and application technologies within the client's hybrid (on-premise and cloud) environment. Role Mission To deliver reliable, high-quality operational security for the client by owning detection, investigation, and response, while proactively strengthening the security environment through hands-on security operations work and cross-team coordination. Objectives & Key Results The key objectives will be to: Maintain SLA compliance for incident detection, investigation, and response across all priority levels Own security incidents through to resolution, ensuring remediation actions are completed Operate and validate proactive security tooling (e.g. Qualys, XM Cyber, AttackIQ) to an agreed schedule, identifying and acting on findings Reduce detection gaps by contributing to detection rule tuning, false-positive reduction, and threat hunting activities Share insights that improve SOC response times, detection accuracy, and coverage Maintain high standards of documentation, communication, and compliance to audit standards Support the security engineering team during major incidents and platform changes Complete a minimum of 40 hours of professional training per year, aligned to client requirements Duties and Responsibilities Essential Roles & Responsibilities Incident Detection, Investigation & Response Monitor and investigate alerts from Microsoft Defender and related email, endpoint and cloud security tooling Receive and act on escalated alerts from the client's SOC provider or SIEM platform Take ownership of all security incidents, validating indicators of compromise and determining impact Perform detailed investigations using KQL queries in Microsoft Sentinel and telemetry from across the security stack, going beyond initial triage to full root-cause analysis Reconstruct event chains and identify root causes, including correlation across endpoint, identity, cloud, and network data sources Determine credibility and severity of threats in the context of the client's risk profile and regulatory obligations Investigate potential IOCs using multi-source telemetry and threat intelligence Make evidence-based decisions on containment actions and remediation plans, coordinating response actions with the client's IT, cloud, and workplace teams Recommend immediate defensive or containment actions where appropriate, and support teams across the business in the resolution of incidents and post-event analysis and reporting Handle incidents end-to-end where tooling and access allow, escalating to the security engineering team or client security leadership when required Operate within tight SLAs appropriate to a regulated client environment
Jun 20, 2026
Full time
Position Summary The Senior Security Analyst is a dedicated security operations role providing continuous security coverage for a client operating in a regulated industry. You are embedded within a small, senior team delivering operational security services across detection, investigation, response, and proactive security operations, with direct responsibility for outcomes. You own security incidents end-to-end, from initial detection through investigation, containment, and coordination of remediation with internal and third-party teams. When the incident queue is clear, you carry out proactive security operations work including vulnerability scanning, web application scanning, breach and attack simulation, and validation of security tooling, actively maintaining and improving the client's security posture. Beyond incident response, you liaise directly with the client's IT and cloud teams to ensure remediation actions are completed, and you coordinate across teams to drive issues through to resolution. You bridge the gap between security operations and engineering, escalating platform issues to the security engineering team and supporting engineers during major incidents. The tooling scope has a strong Microsoft orientation. You work alongside the client's SOC provider where applicable, receiving escalated SIEM alerts while also monitoring and operating endpoint, vulnerability, and simulation tooling directly. You have direct access for investigation and threat hunting purposes. You bring experience beyond security tooling, with the ability to navigate the infrastructure and application technologies within the client's hybrid (on-premise and cloud) environment. Role Mission To deliver reliable, high-quality operational security for the client by owning detection, investigation, and response, while proactively strengthening the security environment through hands-on security operations work and cross-team coordination. Objectives & Key Results The key objectives will be to: Maintain SLA compliance for incident detection, investigation, and response across all priority levels Own security incidents through to resolution, ensuring remediation actions are completed Operate and validate proactive security tooling (e.g. Qualys, XM Cyber, AttackIQ) to an agreed schedule, identifying and acting on findings Reduce detection gaps by contributing to detection rule tuning, false-positive reduction, and threat hunting activities Share insights that improve SOC response times, detection accuracy, and coverage Maintain high standards of documentation, communication, and compliance to audit standards Support the security engineering team during major incidents and platform changes Complete a minimum of 40 hours of professional training per year, aligned to client requirements Duties and Responsibilities Essential Roles & Responsibilities Incident Detection, Investigation & Response Monitor and investigate alerts from Microsoft Defender and related email, endpoint and cloud security tooling Receive and act on escalated alerts from the client's SOC provider or SIEM platform Take ownership of all security incidents, validating indicators of compromise and determining impact Perform detailed investigations using KQL queries in Microsoft Sentinel and telemetry from across the security stack, going beyond initial triage to full root-cause analysis Reconstruct event chains and identify root causes, including correlation across endpoint, identity, cloud, and network data sources Determine credibility and severity of threats in the context of the client's risk profile and regulatory obligations Investigate potential IOCs using multi-source telemetry and threat intelligence Make evidence-based decisions on containment actions and remediation plans, coordinating response actions with the client's IT, cloud, and workplace teams Recommend immediate defensive or containment actions where appropriate, and support teams across the business in the resolution of incidents and post-event analysis and reporting Handle incidents end-to-end where tooling and access allow, escalating to the security engineering team or client security leadership when required Operate within tight SLAs appropriate to a regulated client environment
Salary: £43,090 - £46,500 Contract Type: Permanent Working Pattern: This post is available on a full-time, part-time or job-share basis, and flexible working hours can be accommodated. Location: Darlington The Resilience & Resolution team is hiring a policy adviser to support the team's work in identifying and managing emerging risks to the financial stability of the UK, and preparing and responding where risks crystalise. About the Team The Resilience & Resolution (R&R) team works at the heart of government, partnering with the Bank of England, financial regulators and departments across Whitehall to spot risks to the financial sector and lead the Treasury's response when issues arise. It's a fast-paced, high-profile team with regular exposure to senior officials and ministers. We're a friendly and inclusive team that genuinely prioritises wellbeing, supporting you to deliver while maintaining a healthy work/life balance. About the Job This is a varied and stretching role, offering the chance to work across a broad range of high-profile policy issues and build strong stakeholder relationships. Your work will directly support UK national security, reflecting HMT's role as Lead Government Department for the finance sector. In this role, you will: Provide expert advice on cyber security issues in the financial sector, shaping policy across HMT and wider government. You'll develop and own policy in areas such as cyber legislation, ransomware and artificial intelligence. Build and maintain strong relationships with key stakeholders across the Bank of England, regulators, national security partners and government departments to help deliver HMT's objectives. Represent HMT internationally, including at G7 Cyber Experts' Group workstreams, and lead engagement with key partners such as the Five Eyes to influence the global resilience agenda. Play an active role in responding to operational incidents, including cyber attacks, to help minimise impacts on the financial sector and consumers. The team's work is fast-moving and diverse - from designing policy, to running war-game exercises, to working with international partners. You'll also have regular opportunities to contribute to advice for senior officials and ministers, making this a great role for someone curious, proactive and keen to make an impact. About You We're looking for someone who can build strong relationships across teams and use those connections to move work forward. You'll be confident working with complex information, able to weigh up different options and clearly explain your recommendations. You'll also be comfortable delivering at pace, managing competing priorities and staying focused when demands shift. Some of the Benefits our people love! 25 days annual leave (rising to 30 after 5 years), plus 8 public holidays and the King's birthday (unless you have a legacy arrangement as an existing Civil Servant). Additionally, we operate flexitime systems, allowing employees to take up to an additional 2 days off each month Flexible working patterns (part-time, job-share, condensed hours) Generous parental and adoption leave packages Access to a generous Defined Benefit pension scheme with employer contributions of 28.97% Access to a cycle-to-work salary sacrifice scheme and season ticket advances A range of active staff networks, based around interests (e.g. analysts, music society, sports and social club) and diversity For more information about the role and how to apply, please follow the apply link. If you need any reasonable adjustments to take part in the selection process, please tell us about this in your online application form, or speak to the recruitment team at .
Jun 19, 2026
Full time
Salary: £43,090 - £46,500 Contract Type: Permanent Working Pattern: This post is available on a full-time, part-time or job-share basis, and flexible working hours can be accommodated. Location: Darlington The Resilience & Resolution team is hiring a policy adviser to support the team's work in identifying and managing emerging risks to the financial stability of the UK, and preparing and responding where risks crystalise. About the Team The Resilience & Resolution (R&R) team works at the heart of government, partnering with the Bank of England, financial regulators and departments across Whitehall to spot risks to the financial sector and lead the Treasury's response when issues arise. It's a fast-paced, high-profile team with regular exposure to senior officials and ministers. We're a friendly and inclusive team that genuinely prioritises wellbeing, supporting you to deliver while maintaining a healthy work/life balance. About the Job This is a varied and stretching role, offering the chance to work across a broad range of high-profile policy issues and build strong stakeholder relationships. Your work will directly support UK national security, reflecting HMT's role as Lead Government Department for the finance sector. In this role, you will: Provide expert advice on cyber security issues in the financial sector, shaping policy across HMT and wider government. You'll develop and own policy in areas such as cyber legislation, ransomware and artificial intelligence. Build and maintain strong relationships with key stakeholders across the Bank of England, regulators, national security partners and government departments to help deliver HMT's objectives. Represent HMT internationally, including at G7 Cyber Experts' Group workstreams, and lead engagement with key partners such as the Five Eyes to influence the global resilience agenda. Play an active role in responding to operational incidents, including cyber attacks, to help minimise impacts on the financial sector and consumers. The team's work is fast-moving and diverse - from designing policy, to running war-game exercises, to working with international partners. You'll also have regular opportunities to contribute to advice for senior officials and ministers, making this a great role for someone curious, proactive and keen to make an impact. About You We're looking for someone who can build strong relationships across teams and use those connections to move work forward. You'll be confident working with complex information, able to weigh up different options and clearly explain your recommendations. You'll also be comfortable delivering at pace, managing competing priorities and staying focused when demands shift. Some of the Benefits our people love! 25 days annual leave (rising to 30 after 5 years), plus 8 public holidays and the King's birthday (unless you have a legacy arrangement as an existing Civil Servant). Additionally, we operate flexitime systems, allowing employees to take up to an additional 2 days off each month Flexible working patterns (part-time, job-share, condensed hours) Generous parental and adoption leave packages Access to a generous Defined Benefit pension scheme with employer contributions of 28.97% Access to a cycle-to-work salary sacrifice scheme and season ticket advances A range of active staff networks, based around interests (e.g. analysts, music society, sports and social club) and diversity For more information about the role and how to apply, please follow the apply link. If you need any reasonable adjustments to take part in the selection process, please tell us about this in your online application form, or speak to the recruitment team at .
We re Hiring: Senior Cyber Security Analyst Corsham I m currently looking for a Senior Cyber Security Analyst to join our SOC team at Computer Network Defence Ltd (CND). This is a key hire within our MSSP Security Operations Centre, offering the opportunity to take a lead role in incident analysis, client engagement, and mentoring junior analysts, while shaping how the SOC continues to evolve. The Role As a Senior Cyber Security Analyst, you will support the SOC Team Lead and play a central role in monitoring, triaging, and investigating security events across a range of client environments. You ll be working across SIEM platforms, vulnerability management tools, threat intelligence sources, and network telemetry to deliver effective detection and response. You will also take on client-facing responsibilities, presenting findings, trends, and insights, as well as contributing to reporting and continuous improvement within the SOC. Key Responsibilities Monitor, triage and investigate security alerts across multiple platforms Conduct in-depth incident analysis and support ongoing client investigations Act as deputy to the SOC Team Lead when required Review and assess escalated Tier 2 alerts for urgency and impact Deliver weekly and monthly reporting to clients and stakeholders Communicate security findings and trends directly to clients Support vulnerability management analysis and remediation efforts Lead false-positive reduction and SIEM tuning activities Mentor and support development of Tier 1 and junior analysts Contribute to SOC process improvement and operational efficiency Participate in incident response activities as part of the wider team Lead internal SOC initiatives and projects where required Create and deliver presentations for clients and internal teams What We re Looking For Strong experience within a SOC or cyber security operations environment Proven ability to investigate and analyse complex security incidents Experience with SIEM platforms, threat intelligence, and security tooling Strong stakeholder and client communication skills Ability to mentor and develop junior team members Proactive approach to problem-solving and continuous improvement Good understanding of current cyber threats, tactics and trends Package & Details Location: Isle of Man (relocation package)/Corsham Hours: 37.5 hours per week, plus on-call rota Working pattern: Monday to Friday, 09 00 (early Friday finish at 16:00, workload permitting) Clearance: SC Cleared This is a great opportunity for someone looking to step into a more senior, visible role within a growing SOC, with real influence over both technical delivery and team development.
Jun 19, 2026
Full time
We re Hiring: Senior Cyber Security Analyst Corsham I m currently looking for a Senior Cyber Security Analyst to join our SOC team at Computer Network Defence Ltd (CND). This is a key hire within our MSSP Security Operations Centre, offering the opportunity to take a lead role in incident analysis, client engagement, and mentoring junior analysts, while shaping how the SOC continues to evolve. The Role As a Senior Cyber Security Analyst, you will support the SOC Team Lead and play a central role in monitoring, triaging, and investigating security events across a range of client environments. You ll be working across SIEM platforms, vulnerability management tools, threat intelligence sources, and network telemetry to deliver effective detection and response. You will also take on client-facing responsibilities, presenting findings, trends, and insights, as well as contributing to reporting and continuous improvement within the SOC. Key Responsibilities Monitor, triage and investigate security alerts across multiple platforms Conduct in-depth incident analysis and support ongoing client investigations Act as deputy to the SOC Team Lead when required Review and assess escalated Tier 2 alerts for urgency and impact Deliver weekly and monthly reporting to clients and stakeholders Communicate security findings and trends directly to clients Support vulnerability management analysis and remediation efforts Lead false-positive reduction and SIEM tuning activities Mentor and support development of Tier 1 and junior analysts Contribute to SOC process improvement and operational efficiency Participate in incident response activities as part of the wider team Lead internal SOC initiatives and projects where required Create and deliver presentations for clients and internal teams What We re Looking For Strong experience within a SOC or cyber security operations environment Proven ability to investigate and analyse complex security incidents Experience with SIEM platforms, threat intelligence, and security tooling Strong stakeholder and client communication skills Ability to mentor and develop junior team members Proactive approach to problem-solving and continuous improvement Good understanding of current cyber threats, tactics and trends Package & Details Location: Isle of Man (relocation package)/Corsham Hours: 37.5 hours per week, plus on-call rota Working pattern: Monday to Friday, 09 00 (early Friday finish at 16:00, workload permitting) Clearance: SC Cleared This is a great opportunity for someone looking to step into a more senior, visible role within a growing SOC, with real influence over both technical delivery and team development.
