54 jobs found

Cyber Threat Intelligence Analyst Summer-Browning Associates is supporting our client in the Central Government, who is seeking a Cyber Threat Intelligence Analyst for an initial 12-month assignment, with the possibility of extension. Location: London Hybrid The ideal candidates will hold an active Security clearance and have a proven background in Cyber Security Threat Intelligence, with the following skills and experience: Experience in risk and threat modelling within high-threat government environments. Experience with cyber threat frameworks, such as MITRE ATT&CK, the Diamond Model, and the Intelligence Cycle. Proficiency in using open-source and commercial research methods & threat intelligence platforms. Proven experience in researching, analysing, and reporting on cyber threats or related security issues. Experience in Threat Modelling System and Security Information and Event Management (SIEM) solutions Ability to triage security events to determine their scope, priority, and impact, while making recommendations for efficient remediation. Relevant professional qualifications or training in intelligence analysis or cyber security. To apply, please submit your latest CV for review.

The Threat-Led Detection Engineer will design, build, and maintain high-quality threat detections within WTW's Global Information and Cyber Security Defence (ICSD) function, helping WTW detect adversary activity quickly and accurately across its global estate. This is a hands-on engineering role for someone with a strong cyber security mindset and a genuine interest in how attackers operate. You will write and tune detection rules, map coverage to real adversary behaviour, and contribute to a well-maintained, version-controlled detection library. Working closely with SOC, Threat Hunting, Cyber Threat Intelligence (CTI), and Incident Response, you will turn intelligence and hunt findings into reliable detections, embracing a threat-led, Detection-as-Code approach. The individual will work as part of a global, multi-disciplined security community with strong support across the business, helping to foster a security-aware culture while ensuring WTW remains a great place to work. With WTW's large global footprint, this role offers a varied and stimulating range of work, and occasional global travel may be required. The role is based in London and follows a hybrid working model, with the expectation of attending the office as and when required on business demand. The Role: The Threat-Led Detection Engineer will build and maintain detections within WTW's Global Cyber Security Defence team. Responsibilities of this role will include: - Design, write, test, and maintain high-fidelity detection rules across SIEM, EDR/XDR, cloud, identity, and network data sources. - Apply a threat-led approach, developing detections mapped to adversary tradecraft using the MITRE ATT&CK framework, the Cyber Kill Chain, and the Diamond Model. - Rapidly create new detections in response to emerging threats, Cyber Threat Intelligence, and incident or hunt findings. - Contribute to the detection library, ensuring detections are version-controlled, documented, tested, and mapped to MITRE ATT&CK coverage. - Tune and optimise existing detections to reduce false positives and continuously improve fidelity. - Practise Detection-as-Code, using Git-based workflows, peer review, and automated testing for detection content. - Validate detections through adversary emulation and testing (e.g. Atomic Red Team) and collaborate on purple-team exercises. - Support the integration of AI and automation into detection and triage workflows, and help build detections for AI/GenAI-specific threats. - Collaborate with SOC, Threat Hunting, CTI, and Incident Response to close detection gaps surfaced during hunts and incidents. - Write clear detection documentation and response guidance so each detection is actionable for analysts. - Onboard and validate new log sources and telemetry to expand detection coverage. - Contribute to detection coverage and quality metrics to help measure and improve detection effectiveness. What you'll bring: We are looking for a candidate for the Threat-Led Detection Engineer role who has the following: Must-have: Strong background in cyber security with hands-on detection engineering, SOC, or threat-hunting experience. Strong cyber security mindset and a solid, thorough understanding of attacker behaviour and the modern threat landscape. Working knowledge of the MITRE ATT&CK framework, the Cyber Kill Chain, and the Diamond Model, with the ability to map detections to them. Hands-on experience writing and tuning detection rules using query languages such as KQL, SPL, EQL, or Sigma on platforms like Microsoft Sentinel, Splunk, Elastic, CrowdStrike, or Microsoft Defender XDR. Ability to develop high-fidelity detections swiftly in response to emerging threats and intelligence. Experience maintaining detection content and contributing to a detection library. Familiarity with Detection-as-Code concepts: Git, version control, and automated testing of detection content. Awareness of AI/ML in security operations and AI-specific threats (e.g. prompt injection, sensitive-data exposure via GenAI), with awareness of the OWASP LLM Top 10 and MITRE ATLAS. Exposure to cloud detection across Azure, AWS, and/or GCP and to cloud and identity log sources (e.g. Entra ID, CloudTrail). Good written and verbal communication skills, able to document detections clearly and collaborate across teams. Good to have: Threat-hunting mindset and experience hunting for novel or emerging threats to feed detection development. Experience with adversary emulation and breach-and-attack-simulation tooling (Atomic Red Team, Caldera) and purple teaming. Scripting skills (e.g. Python, PowerShell) for automation and enrichment. What we offer: Enjoy a benefits package designed to help you thrive, both professionally and personally. You'll receive 25 days of annual leave plus an extra WTW day to relax and recharge. Our comprehensive health and wellbeing offering includes private healthcare, life insurance, group income protection, and regular health assessments, all giving you peace of mind. Secure your future with our defined contribution pension scheme, featuring matched contributions up to 10% from the company. We support your growth and balance with hybrid working options, access to an employee assistance programme, and a fully paid volunteer day to make a difference in your community. On top of these, you can opt into a variety of additional perks including an electric vehicle car scheme, share scheme, cycle-to-work programme, dental and optical cover, critical illness protection, and much more. Start making the most of your career and wellbeing with a range of benefits tailored for you. Equal Opportunity Employer We're committed to equal employment opportunity and provide application, interview and workplace adjustments and accommodations to all applicants.

Cyber Security Analyst Permanent - 42k - 48k + strong benefits Location: Hybrid - South Wales Your new company: I am looking to recruit a Cyber Security Analyst to join a leader in the utilities space. The business has been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The company has a strong reputation, and we have placed numerous people into careers there, with strong feedback. The role responsibilities: This is an interesting opportunity where you will work with the cyber resilience team and assist with the Security Operations function, including EDR, SIEM, gathering security control framework evidence and general day-to-day assistance with security tasks. You will help deliver a strategy which will enhance the organisations security resilience, proactively contributing to mitigating threats, at a good time when the company are expanding and investing in their IT and cyber security estate. Key parts of the role: You will require knowledge and understanding of attack and exploitation techniques and adversarial TTP's. Help to provide resilience to our threat monitoring and response capabilities. Handle security incident response with internal teams and other third parties to ensure that the incident response life cycle is undertaken to a high standard. Monitor and respond to security incidents, alerts and breaches Monitor and track remediation to all identified vulnerabilities Monitor the risks using security tooling to carry out routine checks. Monitor and report on user behavioural analysis such as awareness training and social engineering campaigns. Stay informed about emerging cyber threats and vulnerabilities. You will need: Good knowledge and understanding of SOC processes and procedures. Basic experience using SIEM systems such as MS Sentinel, LogRhythm, AlienVault, Splunk Good understanding of incident response stages and handling. Basic knowledge and experience using leading endpoint detection and threat management products and managing their operation. Good knowledge and awareness of global Information Security Standards, including ISO27k, CIS, CAF, NIST CSF. Ability to work independently and as part of a team. Excellent communication and interpersonal skills. Ability to obtain UK Security Clearance What you'll get in return: Salary of between 42k- 48k Hybrid working 2/3 days in South Wales per week Possible bonus 5% pension contribution from you, the company pays 10% Enhanced pay for parental leave And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)

IT Support Engineer - Fareham - Not For Profit Sector - Up to 28,000 - 37 hour week + Benefits, 25 Days Holiday (Rising to 30) + Bank Holidays We are looking for a proactive and detail-oriented IT Support Engineer to join a well-established Not for Profit organisation based in Fareham. You'll be working within a collaborative IT team, maintaining and supporting the businesses IT systems. The organisation employ close to 400 people and are expanding. This is a fantastic opportunity for someone with a passion for IT to take ownership of a varied role, working closely with internal stakeholders and end users to strengthen IT. The environment encourages continuous improvement, knowledge sharing, and the opportunity to influence practices across the organisation. IT Support Engineer Key Skills: Microsoft 365 Solutions Microsoft Entra Intune Exchange Online Teams administration Autopilot Active Directory Users/Computers Management Networking Experience of managing SaaS based systems Used to handling access control requests Microsoft SharePoint Maintain quality and governance in recording data Cyber security awareness You will be an analytical and organised IT Support Engineer with strong problem-solving skills and the ability to communicate effectively with both technical and non-technical stakeholders. A collaborative mindset and willingness to learn are essential. We are not expecting the IT Security Analyst to be an expert in all the technologies above, just a solid foundation and a genuine interest in developing within IT industry. We are actively interviewing, so apply now for immediate consideration for the IT Support Engineer role or contact us for further information.

Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Principal IAM Engineer is the senior technical authority for identity services, responsible for designing, implementing, and governing enterprise-wide IAM capabilities across workforce, partner, and customer identities. This role combines deep hands-on engineering with architecture and leadership, driving the modernization of authentication, authorization, identity lifecycle, and privileged access controls across our cloud and on-prem environments. Responsibilities: Own the end to end technical delivery of IAM services, including identity lifecycle management, authentication, authorization, SSO, and privileged access controls, ensuring they are secure, scalable, and highly available. Lead design sessions, collaborating with Entrprise Architecture, and implementation of IAM integrations for SaaS, on prem, and AWS cloud platforms, including federation (SAML, OIDC, OAuth), MFA, and Passwordless capabilities. Serve as the primary escalation point for complex IAM engineering issues; perform root cause analysis and drive long term remediation and hardening of IAM platforms and related services. Partner with security architecture, infrastructure, application, and HR/IT teams to align IAM solutions with enterprise security strategy, compliance obligations, and business objectives. Define IAM engineering standards, patterns, and reference architectures; guide other engineers in implementing secure onboarding patterns for applications into IGA, PAM, and SSO platforms. Lead modernization initiatives. Contribute to audits, risk assessments, and regulatory reviews by providing technical evidence, designing compensating controls, and closing identified IAM control gaps. Mentor and coach IAM engineers and analysts, promoting engineering excellence, documentation discipline, and a culture of continuous learning and improvement. What You'll Bring 10+ years of experience in information security or infrastructure engineering, with at least 5 years of hands-on-keyboard experience with core IAM platforms. Deep expertise with the majority of our IAM stack Strong hands-on experience with Microsoft Entra ID and Active Directory as foundational directory services, and extensive experience implementing federation protocols (SAML, OIDC, OAuth2). Proven track record designing and implementing IAM solutions in hybrid multi-cloud environments, including the automation of provisioning, access reviews, and RBAC/ABAC models. Experience with secrets management solutions. Proficiency in at least one scripting or programming language (such as PowerShell, Python, or Java) to automate tasks and build custom connectors for our IAM tools. Excellent communication skills with the ability to translate complex technical concepts related to our IAM ecosystem for both technical and non-technical stakeholders. Exceptional sense of ownership and the ability to work with a limited set of requirements. Highly advanced ability to breakdown work to deliver value incrementally. Experience leading large-scale IAM programs. Prior responsibility as a technical lead or architect for IAM, including mentoring teams and influencing roadmaps beyond direct reporting lines. Demonstrated ability to balance security, usability, and operational efficiency, with a strong bias toward automation and measurable risk reduction. Define and lead the implementation of the organization's security strategy, with a focus on Cloud Security, Identity Access Management, and all other aspects of Cybersecurity Oversee the deployment of IAM solutions across both on-premise and cloud environments, ensuring they meet the highest standards of security. Lead the most complex security assessments, including threat modeling, red teaming, and cloud security reviews. Collaborate with executive leadership to ensure that security initiatives align with the organization's strategic goals and risk appetite. Act as the technical lead for large-scale security projects, coordinating cross-functional teams to ensure successful delivery. Architect and implement solutions across workforce IAM, PAM, and customer IAM ecosystems. Provide thought leadership in adopting passwordless authentication, passkeys, adaptive MFA, and AI-driven access orchestration strategies Engineer integrations with Agentic AI tools for intelligent decisioning, policy enforcement, and autonomous identity lifecycle operations. Develop and implement automated provisioning/deprovisioning workflows Ensure integration of IAM with cloud platforms (Azure, AWS, GCP) and SaaS applications. Mentor and develop the skills of senior security engineers, fostering a culture of continuous improvement and innovation. Technical Experience Must-Have: Privileged Access management (CyberArk) Authentication/AuthN (Okta) Federated Identity (EntraID) Cloud Identity (AWS, GCP, Azure) Automation (terraform, codex, claude) Application SSO (OIDC, SAML) Identity Governance (Sailpoint, Okta, Veza) Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.

Salary: £43,090 - £46,500 Contract Type: Permanent Working Pattern: This post is available on a full-time, part-time or job-share basis, and flexible working hours can be accommodated. Location: Darlington The Resilience & Resolution team is hiring a policy adviser to support the team's work in identifying and managing emerging risks to the financial stability of the UK, and preparing and responding where risks crystalise. About the Team The Resilience & Resolution (R&R) team works at the heart of government, partnering with the Bank of England, financial regulators and departments across Whitehall to spot risks to the financial sector and lead the Treasury's response when issues arise. It's a fast-paced, high-profile team with regular exposure to senior officials and ministers. We're a friendly and inclusive team that genuinely prioritises wellbeing, supporting you to deliver while maintaining a healthy work/life balance. About the Job This is a varied and stretching role, offering the chance to work across a broad range of high-profile policy issues and build strong stakeholder relationships. Your work will directly support UK national security, reflecting HMT's role as Lead Government Department for the finance sector. In this role, you will: Provide expert advice on cyber security issues in the financial sector, shaping policy across HMT and wider government. You'll develop and own policy in areas such as cyber legislation, ransomware and artificial intelligence. Build and maintain strong relationships with key stakeholders across the Bank of England, regulators, national security partners and government departments to help deliver HMT's objectives. Represent HMT internationally, including at G7 Cyber Experts' Group workstreams, and lead engagement with key partners such as the Five Eyes to influence the global resilience agenda. Play an active role in responding to operational incidents, including cyber attacks, to help minimise impacts on the financial sector and consumers. The team's work is fast-moving and diverse - from designing policy, to running war-game exercises, to working with international partners. You'll also have regular opportunities to contribute to advice for senior officials and ministers, making this a great role for someone curious, proactive and keen to make an impact. About You We're looking for someone who can build strong relationships across teams and use those connections to move work forward. You'll be confident working with complex information, able to weigh up different options and clearly explain your recommendations. You'll also be comfortable delivering at pace, managing competing priorities and staying focused when demands shift. Some of the Benefits our people love! 25 days annual leave (rising to 30 after 5 years), plus 8 public holidays and the King's birthday (unless you have a legacy arrangement as an existing Civil Servant). Additionally, we operate flexitime systems, allowing employees to take up to an additional 2 days off each month Flexible working patterns (part-time, job-share, condensed hours) Generous parental and adoption leave packages Access to a generous Defined Benefit pension scheme with employer contributions of 28.97% Access to a cycle-to-work salary sacrifice scheme and season ticket advances A range of active staff networks, based around interests (e.g. analysts, music society, sports and social club) and diversity For more information about the role and how to apply, please follow the apply link. If you need any reasonable adjustments to take part in the selection process, please tell us about this in your online application form, or speak to the recruitment team at .

An exciting opportunity for a passionate Network Security Engineer to join a unique, multi-national Information Management function. Ideal candidates should be committed to protecting our critical systems and ensuring the integrity and security of our network infrastructure. Salary: Circa £50,000depending on experience+ shift allowance Dynamic (hybrid) working: 5 days per week on-site due to workload classification, working a 24/7 Shift Pattern Security Clearance: British Citizen This role will require DV Clearance. Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS) and a Security Check (SC) clearance, which are managed by the MBDA Personnel Security Team. What we can offer you: Company bonus: Up to £2,500 (based on company performance and will vary year to year) Pension: maximum total (employer and employee) contribution of up to 14% Overtime: opportunity for paid overtime Flexi Leave: Up to 15 additional days Enhanced parental leave: offers up to 26 weeks for maternity, adoption and shared parental leave -enhancements are available for paternity leave, neonatal leave and fertility testing and treatments Facilities: Fantastic site facilities including subsidised meals, free car parking and much more The opportunity: Join our forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions to protect against evolving threats. Collaborating with cross-functional teams, you will work on implementing changes securely, identifying vulnerabilities, managing security incidents and ensuring compliance with industry best practices. The role will be involved in the optimisation of network security tools to remediate "purple team" highlighted areas identified for improvement. You will also have the opportunity to immerse your time into the standardisation of network tools. This is a dynamic opportunity to contribute to security initiatives, solve complex challenges, and have a direct impact on the overall resilience of our IT environment. If you are passionate about security and proactive defence, this role is the perfect fit. If you are looking to leverage your technical skills in a values-led company that values innovation and diversity, this is the place to make an impact. What we're looking for from you: ESSENTIALS Solid understanding of networking principles (TCP/IP, DNS, routing, switching, VLANS and load balancing) Strong expertise in configuring, maintaining and troubleshooting firewalls e.g. Cisco, Checkpoint, Palo Alto Demonstrable hands-on experience in next-gen firewalls and advancing security features like IPS/IDS, SSL decryption and deep packet inspection. Proven experience in managing secure proxy solutions (e.g. Bluecoat, F5) and the ability to implement policies for content filtering, SSL inspection and network traffic monitoring. In depth knowledge of security protocols such as IPSec, SSL / TLS, VPNs and two factor authentication. Understanding of network architectures and security zones (DMZ, internal networks). Proficient in monitoring technologies e.g. PRTG, Nagios. DESIRABLES Understanding of cyber security capabilities and their integrations to networks infrastructure. Existing knowledge of / aptitude to learn Darktrace Antigena and Respond, Splunk ES or Log Rhythm tools. Strong ability to interpret complex information via use of packet capture in order to identify malicious traffic in detail, revealing attacker behaviours like C2, exploitation, lateral movement, or data exfiltration. Proven ability to review SOC alerting in collaboration with SOC analysts to effectively triage and manage Tier 1 SOC alerts to the appropriate outcome. Experience with LDAP, and application traffic flow root cause analysis. Previous experience to identify root cause from (TBC for review - Demonstrable understanding of the OSI Reference Model and the network communication protocols, including but not limited to DNS, HTTP/S, SSL, SMTP, FTP/S, LDAP/S. Demonstrable experience with Security Information Event Monitoring Tools and/or Network Packet Capture tools). Our company: Peace is not a given, Freedom is not a given, Sovereignty is not a given MBDA is a leading defence organisation. We are proud of the role we play in supporting the Armed Forces who protect our nations. We partner with governments to work together towards a common goal, defending our freedom. We are proud of our employee-led networks, examples include: Gender Equality, Pride, Menopause Matters, Parents and Carers, Armed Forces, Ethnic Diversity, Neurodiversity, Disability and more We recognise that everyone is unique, and we encourage you to speak to us should you require any advice, support or adjustments throughout our recruitment process. Follow us on LinkedIn (MBDA), X Instagram (MBDA_UK) and Glassdoor or visit our MBDA Careers website for more information.

Cyber Security Officer Based in Broxbourne, Hertfordshire Permanent, full-time, 37 hours per week Salary: £46,631 - £51,813 We have an exciting opportunity for a cybersecurity professional with experience in information security, risk management, and compliance, along with the ability to communicate complex security matters to a range of stakeholders. In this role, you ll help protect our systems, data and people by supporting and enhancing our cybersecurity framework. Working closely with colleagues, suppliers and senior stakeholders, you ll co-ordinate cyber risk management activities, maintain key security controls and ensure compliance with relevant standards and best practice. You ll play an important role in strengthening our cyber resilience, leading security awareness initiatives, supporting incident response and helping to embed a security-first culture across the business. Through your work, you ll help ensure security considerations are integrated into projects, processes and decision-making, enabling us to operate safely and confidently in an evolving threat landscape. We re looking for someone with - Experience in an information security and/or cybersecurity role - Experience producing clear policies, procedures, risk registers and reports for non-technical audiences - Good working knowledge of Microsoft 365 and/or Azure AD (Entra ID), endpoint security, email security and core network concepts - An understanding of UK data protection principles and how security controls support compliance - Strong stakeholder management skills - A relevant qualification(s) or evidence of continuous professional development (e.g., Cyber Essentials/Plus familiarity, CompTIA Security+, SC-900, ISO 27001 Foundation, or equivalent experience) A basic DBS check will be required for this role, which we will pay for. We re a social business, based in Turnford and across southeast Hertfordshire, helping local people by renting or selling affordable homes. We offer services designed to help our customers live comfortably in their homes, and we work to keep our buildings and estates maintained, offering support when money becomes an issue or when people get older. Our mission is to make a sustainable, positive change to the housing crisis for our customers and communities. We enjoy a benefits package that offers something for everyone, including - 27 days holiday per year plus bank holidays (pro rata for part-time colleagues). - Buy and sell holiday scheme. - Cross-organisational bonus scheme. - Up to 12% pension contribution. - Life assurance cover. - Funded health cash plan or subsidised private medical insurance. - Discount vouchers. - Enhanced family leave. - Range of special leave. - Car loans, cycle to work and electric car lease scheme. The closing date for this vacancy is 15th June 2026. We are a Disability Confident employer, which means that we offer an interview to a fair and proportionate number of disabled applicants who meet the minimum selection criteria for the job. Other organisations may call this role Cyber Security Analyst, Information Security Officer, Information Security Analyst, Cyber Security Specialist, IT Security Officer, IT Security Analyst, Cyber Risk Officer, or Security and Compliance Officer. We re committed to building an inclusive workplace where equity, diversity and inclusion are part of our culture, as we recognise the benefits of a diverse workforce. Our 3-year EDI strategy outlines how we ll achieve this. We strongly welcome applications from underrepresented groups and groups which are identified as a priority within our strategy, including LGBTQIA+, Black, Asian and Minority Ethnic communities, applicants with disabilities and people under 30. We understand that some candidates, particularly from certain groups, may hesitate to apply unless they meet every requirement. While we re looking for people with the right skills and experience, we also value diverse backgrounds and transferable skills. If you meet most of the criteria and believe you d thrive in the role, we encourage you to apply. All our vacancies are open to flexible working arrangements, something we are really proud of. The extent to which flexible working is possible will vary between jobs according to the needs of the business and our customers. So, if you d like to join us as a Cyber Security Officer, please apply via the button shown. This vacancy is being advertised by Webrecruit. The services advertised by Webrecruit are those of an Employment Agency.

Level 1 Cyber Security Analyst Must have an Active DV Clearance as immediate starts available Level 1 Cyber Security Analyst Responsibilities Monitor SIEM tooling to identify potential security threats. Perform initial investigation and triage of security alerts. Escalate incidents in line with defined processes. Oversee Security Operators during shift activities. Identify and report faults within monitoring tools. Support continuous security monitoring across a 24x7 operation. Follow incident management processes to ensure timely response. Level 1 Cyber Security Analyst Skills and Experience Experience within cyber security or security operations environments. Strong understanding of SIEM tools and alert handling. Technical knowledge across enterprise IT such as networks or Servers. Ability to lead activities within a shift environment. Strong communication skills across technical teams. Level 1 Cyber Security Analyst Additional Information To apply, please send your CV by pressing the apply button Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take a minimum 18 weeks. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. An award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over multiple years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

We are supporting a leading technology organisation in the search for a Cyber Security Analyst to join its Security Operations team. This is an excellent opportunity to join a fast-paced cybersecurity environment, helping to protect critical infrastructure and enterprise systems through proactive monitoring, incident response, and threat analysis. Working as part of a 24/7 operational security function, you will play a key role in identifying, investigating, and responding to security threats across both cloud-based and on-premise environments. Key Responsibilities Monitor security events, alerts, and incidents across enterprise networks and systems. Manage security cases and tickets through to resolution. Analyse logs and data from SIEM platforms, security monitoring tools, network infrastructure, and endpoint technologies. Investigate and triage security alerts to identify malicious activity and determine attack methods and techniques. Follow established incident response and escalation procedures to contain and mitigate security risks. Ensure all incidents are accurately documented, including indicators of compromise, evidence, and investigation findings. Identify and address false positives, providing feedback to improve detection capabilities. Support the development and optimisation of security monitoring rules and processes. Analyse data sets to identify security gaps and recommend improvements. Skills & Experience Essential Degree in Information Security, Computer Science, Digital Forensics, or a related discipline, or equivalent industry experience. 3+ years' experience in cyber security, security operations, threat analysis, or security monitoring. Experience investigating security incidents and working within a Security Operations Centre environment. Understanding of incident response processes, security event triage, and escalation procedures. Strong knowledge of networking protocols, authentication mechanisms, and common attack techniques. Good understanding of information security principles, technologies, and best practices. Experience securing and supporting Windows and Linux environments. Excellent written and verbal communication skills. Desirable Industry certifications such as GCIH, GCIA, or equivalent cyber security qualifications. Experience working with SIEM platforms and security monitoring technologies. Knowledge of Oracle and virtualised environments. What's on Offer Opportunity to work within a highly skilled cyber security team. Exposure to complex security environments and emerging threats. Ongoing professional development and training opportunities. Collaborative and supportive working culture. Competitive salary, bonus and benefits package. This is an excellent opportunity for a Cyber Security Analyst looking to further develop their incident response, threat analysis, and security operations expertise within a technically challenging environment. TT

Summer-Browning Associates is supporting our client in the Central Government who is seeking a SECURITY OPERATIONS CENTER (SOC) ANALYST for an initial 12-month assignment, with the possibility of extension. Location: Hybrid working - 2 days per week onsite at East Kilbride The ideal candidates will hold active SC or DV clearance and have a proven background in Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform triage of security events to determine their scope, priority, and impact, while making recommendations for efficient remediation. Experience in network security principles, firewalls, and access control mechanisms. Preferred Qualifications: - Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable

Cyber Security Analyst Taunton, Somerset | On-site | Up to £50,000 per annum + Bonus | Permanent Our client is seeking a Cyber Security Analyst to join their IT department on a permanent basis. This is an excellent opportunity for an individual with a passion for cyber security to play a key role in protecting and enhancing the business's security posture. The successful candidate will support the monitoring, investigation and response to cyber threats, assist with vulnerability management, and help maintain secure systems, networks and infrastructure. Working closely with engineers across the IT team, you will contribute to security improvements, support compliance initiatives, and help ensure the organisation remains protected against evolving cyber risks. This role would suit someone with a strong interest in cyber security, a proactive approach to problem-solving, and a desire to develop their career within a collaborative and forward-thinking environment. Required Experience: Experience working within an IT support, infrastructure, cyber security or IT operations environment. Knowledge of core cyber security principles, including vulnerability management, threat detection and incident response. Experience monitoring and investigating security alerts and events. Understanding of network, endpoint and cloud security concepts. Familiarity with security tools such as SIEM, endpoint protection and vulnerability scanning solutions. Experience supporting security controls and maintaining secure system configurations. Knowledge of information security frameworks and standards such as ISO 27001, Cyber Essentials Plus and PCI DSS. Ability to analyse security data, identify trends and make recommendations for improvement. Strong troubleshooting, analytical and problem-solving skills. Excellent communication skills with the ability to explain technical concepts to a range of stakeholders. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website

Senior Cyber Security Analyst - Hackney Contract 6 months initially Hybrid 1-2 days onsite, 3-4 days working from home £500.00 per day Umbrella Full time Summary of the responsibilities of the post: The Senior Cyber Security Analyst will join the Council s central ICT Cyber Security team to strengthen operational resilience and support our active Cyber Transformation Programme. This is a hands-on role focused primarily on supporting day-to-day security operations, endpoint threat detection and internal compliance tracking. This role acts as a bridge between technical security functions and governance frameworks. The successful contractor will leverage their existing exposure to Endpoint Detection and Response (EDR) platforms - specifically CrowdStrike Falcon - and have experience working with compliance frameworks. SERVICE SPECIFIC ACCOUNTABILITIES The contractor will have responsibility and accountability for the following: 1. Security Monitoring: Maintain visibility over the Council's security posture by monitoring alert queues via CrowdStrike Falcon and integrated log management tools. Investigate and escalate alerts where required. 2. Compliance & Governance Support: Assist in maintaining alignment with NIST CSF, track documentation, policy compliance, and audit requirements across ICT teams. 3. Vulnerability Tracking & Reporting: Oversee regular vulnerability scanning schedules. Analyze scan results and recent Penetration Testing reports, prioritizing. To find out more information please contact Abbie at (url removed) Recruitment is done in line with safe recruitment practices. We are an equal opportunity agency.

Security Analyst SOC, Tier 2 SOC Analyst to join an award winning managed service provider 24x7 security team. As a Tier 2 Analyst, you will lead the investigation, containment, and coordination of security incidents, working closely with Tier 1 analysts, internal IT teams, and external stakeholders. Taking ownership of complex alerts, support threat hunting and intelligence efforts, and contribute to the refinement of detection rules, playbooks, and response procedures. You will be involved in • Incident Detection & Response • Threat Intelligence and Analysis • Security Monitoring and Detection Engineering • Compliance, Reporting and Documentation • Vulnerability Management • Collaboration and knowledge sharing This would suit an experienced security analyst who has proved experience working in a busy security department, working in security operations. Strong alert triage, incident response, security monitoring, and threat analysis. Experience handling real-world security incidents and working with SIEM, EDR, or vulnerability management tools. Ideally have a strong bachelor s degree in computer science, Information Security, Cyber Security or related field with any SIEM-specific certification or vendor-specific training. Relevant cybersecurity certifications such as Certified Cloud Security Professional (CCSP) or other relevant security certifications, Security+ (CompTIA), CEH (Certified Ethical Hacker), CISSP, BTL1, BTL2 or others are highly desirable but not essential. Office based in Stoke on Trent, shifts, rota basis of 4 days on working - early's, late's and nights. This is an excellent opportunity for an experienced security analyst ready to take the next step with a chance to mentor junior analysts, deepen your technical expertise, and help shape our evolving security posture in a collaborative, hands-on environment.

Security Assurance Manager Up to 55,000 per annum 2x per month on site - Portsmouth We have a brilliant opportunity to join an industry-leading utility company based in the Southeast. They are going through a period of growth, undergoing multiple digital, and tech transformations. As a UK Critical National Infrastructure provider, Information Security is an integral part of their business operation, so this role is critical to the business. We are looking for an Information Security Assurance Manager who will 'fly the flag' for Information Security, providing assurance to the leadership team regarding the design and operating effectiveness of IT security controls within future IT projects and implementation. You will be responsible for reviewing and identifying security control gaps in design documents, providing recommendations for amendments and mitigation. We are looking for: Strong experience of performing threat modelling exercises Experience of reviewing high/low level architecture definition documents for compliance against security policies and standards Knowledge of technology risk and controls including relevant tools and techniques Good understanding and practical experience of Cyber Security Frameworks including NCSC CAF, NIST and ISO 27001 Must have at least 2 years' cyber security experience. Excellent communication skills with the ability to deal with conflicting priorities. In turn, we can offer you: The opportunity to work in a highly skilled team, with exposure to OT technologies. Salary sacrifice pension scheme. 25 days holiday + Bank Holidays. You will need to be eligible for SC Clearance/have an active SC Clearance to be considered for this role. There couldn't be a more exciting time to join this organisation while they take huge steps to decarbonise their network and modernise and innovate like never before. If this sounds of interest, please apply today.

IT Analyst Garelochhead, Helensburgh Are you an IT professional with experience supporting users across a range of technical abilities? Do you enjoy troubleshooting issues and improving IT systems in a hands-on environment? Would you like a role where you can develop your infrastructure skills while contributing to a secure and resilient IT function? What's in it for you? 30,000 basic salary 30 days holiday plus bank holidays Option to buy or sell up to 5 additional days of annual leave Pension scheme with up to 15% employer contribution (7% employee contribution) Hybrid working pattern - Monday to Thursday on site, Friday working from home Opportunity to work across a varied, multi-site organisation supporting around 300 users What will you be doing? Providing day-to-day support for the organisation's IT infrastructure and end users Resolving and escalating technical issues in a timely manner Monitoring systems to ensure security measures remain effective against cyber threats Supporting the administration and maintenance of business systems and IT services Managing the ordering, configuration and deployment of end-user hardware Liaising with third-party software, hardware and support providers Maintaining technical documentation, records and recovery procedures Supporting IT projects, including coordinating implementations when required Assisting with backup management and system recovery planning Identifying and resolving potential compatibility issues across the IT environment Ensuring IT policies and change management processes are followed Where you'll be doing it You'll be joining a well-established organisation operating critical infrastructure across multiple sites throughout the UK. Working from a site close to Faslane, you'll become part of a small, friendly IT team focused on delivering reliable, secure and fit-for-purpose technology services that support the wider business. What you'll need Relevant IT qualification or demonstrable experience within an IT support or infrastructure environment Typically 1-2 years' experience in a technical IT role such as 1st/2nd Line Support, Desktop Support or Junior Systems Administration Experience supporting users with varying levels of technical knowledge Good understanding of Windows Operating Systems and Microsoft 365 applications Experience performing basic Active Directory tasks, including user creation, password resets and group membership management Knowledge of basic networking concepts, including DNS, DHCP and IP addressing Experience configuring and troubleshooting laptops and desktop devices Ability to create and maintain clear documentation and accurate records Understanding of Microsoft 365 and Azure cloud services, with a willingness to expand your knowledge Willingness to learn and support technologies including SharePoint Online, Intune/Endpoint Manager and Group Policy Comfortable working with third-party support providers Full UK driving licence, with flexibility to travel occasionally to other UK sites including overnight stays when required Ability to commute to Garelochhead within approximately 45 minutes to one hour We appreciate your CV may not be up to date. No problem, just apply and we can deal with that later. Important Information: We endeavour to process your personal data in a fair and transparent manner. In applying for this role, Russell Taylor will be acting within your interest and will contact you in relation to the role, either by email, phone or text message. For more information see our Privacy Policy on our website. It is important you are aware of your individual rights and the provisions the company has put in place to protect your data. If you would like further information on the policy or GDPR please get in touch with us here.

SOC Analyst (Level 2) Aylesbury 3 Days Onsite 45,000 I'm working with a growing cyber security business looking to add a SOC Analyst to its Security Operations team. This is a great opportunity for someone with experience investigating security alerts, responding to incidents and working with SIEM and EDR technologies in a fast-paced environment. What you'll be doing: Monitoring and investigating security alerts and incidents. Triaging and responding to security events. Supporting incident response activities. Improving detection rules and SOC processes. Producing incident reports and documentation. What we're looking for: Previous SOC Analyst experience. Experience with SIEM platforms such as Sumo Logic, Splunk, Sentinel or QRadar. Exposure to CrowdStrike or similar EDR technologies. Good understanding of networking fundamentals (TCP/IP, DNS etc.). Strong analytical and problem-solving skills. Desirable: Security certifications (Security+, CySA+, SC-200). PowerShell or Python scripting experience. MSSP or managed services experience. For more information or a confidential discussion, please get in touch.

Robert Walters is working partnership with a nationwide retail and distribution company delivering products to customers through a network of branches and digital sales channels. Due to continued growth, they are keen to appoint an experienced Senior Information Security Analyst to be based out of the Wolverhampton offices on a hybrid basis, paying a range of £55,000 to £60,000. As an experienced Senior Information Security Analyst you will develop, implement and oversee groups InfoSec strategy, in addition you will ensure compliance and regulatory standards. You will hold deep cyber security and cloud security expertise. Senior Information Security Analyst: Duties Develop/Maintain InfoSec polices, procedures and risk management frameworks Manage cloud platforms - AWS, Azure, Google Cloud Ensure cloud platforms config meets best practise/compliance Manage security vendors Conduct risk assessments Monitor security events - SIEM, IDS/IPS, Sentinel1 Lead incident response, coordinate with vendors during breach Ensure compliance with regulations - GDPR, HIPAA, PCI-DSS, ISO27001, NIST Work with IT teams to secure infrastructure, applications and endpoints Integrate security into cloud deployments Develop/Test incident response, DR and BC Senior Information Security Analyst: Experience Cloud security platforms - AWS Security Hub, Azure Security Centre Identity management and encryption Managing security vendors Security tech: Firewalls, VPNs, Endpoint protection Frameworks - NIST, CIS Controls Scripting or automation tools Certifications - Desirable but not essential : CISSP, CISM, AWS Certified Security, CRISC The permanent opportunity for a Senior Information Security Analyst will pay a salary range of £55,000 to £60,000 plus benefits with a hybrid working model from the Wolverhampton offices. For further information please apply with an updated CV and reach out to Ajay Hayre on (see below) Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates

Information Security Analyst - ISO 27001, SOC2, PCI DSS Audit & Compliance - Large Government Projects London Hybrid. Full-Time Permanent 80,000 - 90,000 plus bonus & benefits We're working with a global leader in workforce management solutions to find a certified Information Security Analyst well versed in ISO Audit & Compliance. You'll join a talented team and contribute towards delivering compliance with leading security frameworks, preparing for and conducting audits, and contributing to security operations. You'll be joining a collaborative, ambitious team delivering GRC initiatives across large government projects. The Role Lead and conduct internal audits across ISO 27001, GDPR, DORA, Cyber Essentials & more. Prepare teams for external audits and manage the audit process end-to-end. Monitor changes in compliance frameworks and maintain alignment. Support the Cyber Security Operations Centre (CSOC) in incident monitoring and response. Develop and maintain policies, procedures, and security documentation. Collaborate with IT & Security teams to identify and remediate vulnerabilities. What We're Looking For Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials Assessor, or equivalent). Eligible for UK Security Clearance. This is a great opportunity to work with Hit apply to upload your CV Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.

SAP Basis Administrator 60,000 - 65,000 + Bonus and Benefits Full Time / Permanent Hybrid / Birmingham The Role I am looking for a driven SAP Basis Administrator / Analyst to join a large and nationally recognised manufacturing client based in the Birmingham area as the continue on their digital evolution. As a SAP Basis Administrator / Analyst you will be a key member of a dynamic internal IT team acting as the technical subject matter expert for all things SAP infrastructure. The successful candidate will work across a broad technical landscape - translating business needs into innovative SAP platform solutions, ensuring system availability, security, and performance. Responsibilities Lead SAP infrastructure service management activities, ensuring reliable, secure and cost-effective solutions. Manage third-party SAP hosting providers, ensuring delivery against SLAs and governance standards. Acting as SAP SME on IT and business transformation projects. Monitor system performance, capacity, and availability - and planning smart enhancements. Support compliance with SOx, audit and security standards such as ISO27001 and Cyber Essentials. Investigate and resolve incidents, support users, and ensure root cause analysis is actioned. The Person Experience in a similar SAP Basis Administration role in a large enterprise environment Extensive experience of SAP infrastructure and associated technologies Strong knowledge of IT governance, audit, and service management principles Ability to translate business requirements into robust, scalable solutions Excellent communication and stakeholder engagement skills Please apply via the link or contact (url removed) for more information Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.