186 Aviation Security Personnel jobs in the United Kingdom

**The team you'll be working with:**
**Security Operations Director JD**
We are currently recruiting for a dynamic Security Operations Director to join our growing Security Operations Centre business.
This vacancy is hybrid variable Birmingham or London
**About Us**
NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to do great things. We believe that by bringing everyone together, we can solve problems using innovative technology that can create a world that is sustainable and secure.
This is a great opportunity for you to play a pivotal role in helping to shape our client's transformation journeys.
**What you'll be doing:**
**What you'll be doing;**
The Security Operations Director is responsible for overseeing security operations at both strategic and operational levels. The role ensures the effectiveness of security practices, manages incidents, drives operational maturity improvements, and oversees containment and recovery activities. Operating at SFIA Level 6, the role requires the initiation, definition, and oversight of high-impact security operations activities, including incident response, operational maturity improvement, containment, and recovery efforts. The Director is responsible for aligning security initiatives with business objectives and ensuring the organisation's resilience against evolving threats.
**What to expect:**
Using your background in SOC Service Delivery background and experience, you will:
+ **Pre-Sales Support and Business Development**
+ Partner with sales and business development teams to define and articulate the value proposition of the security offerings, including SOC services, incident response, threat intelligence, vulnerability management, and compliance.
+ Represent the security operations function in client engagements, pre-sales discussions, and technical assessments, positioning the organisation's capabilities to meet client needs.
+ Design and present tailored solutions and service models based on customer-specific challenges, industry regulations, and threat landscapes.
+ Collaborate with delivery teams to create accurate statements of work (SOWs) and ensure alignment between client requirements and achievable security operations deliverables.
+ Influence product roadmaps by providing feedback from client conversations, ensuring services meet market demands and technological advancements.
+ **Service Delivery Assurance**
+ Oversee the performance and quality of security services delivered to customers, ensuring compliance with agreed service-level agreements (SLAs) and adherence to key performance indicators (KPIs).
+ Implement governance mechanisms to standardise service delivery processes, ensuring scalability and operational consistency.
+ Drive the adoption of best practices, playbooks, and standardised methodologies to optimise efficiency and ensure repeatable, high-quality engagements across the MSSP space.
+ Act as the primary escalation point for high-profile or complex client engagements, resolving concerns effectively to maintain satisfaction and long-term partnerships.
+ Conduct regular client reviews to assess alignment with evolving business needs, strengthen relationships, and identify opportunities for service enhancements or upselling.
+ **Budget and Financial Management**
+ Develop and manage the overall financial plan for the security operations function, including budgeting, cost control, and profitability analysis.
+ Monitor operational expenses and identify opportunities for cost reduction through improved processes, technology adoption, and automation.
+ Ensure the profitability of MSSP services through meticulous financial forecasting, revenue tracking, and margin analysis.
+ Track the return on investment (ROI) of SOC tools, technologies, and team members, ensuring financial decisions support the organisation's strategic goals.
+ Collaborate with finance teams to refine MSSP pricing models, maintaining market competitiveness while ensuring profit margins meet or exceed targets.
+ Lead efforts to reduce non-billable activities and maximise the utilisation of SOC personnel for billable client engagements.
+ **Incident Response and Management**
+ Develop and implement incident response frameworks and playbooks in alignment with industry best practices (e.g., NIST CSF, MITRE ATT&CK, ISO 27035) to standardise and optimise response efforts.
+ Oversee the deployment, configuration, and utilisation of security tools such as SIEMs, IDS/IPS, endpoint protection systems, forensics tools, and threat intelligence feeds to enhance detection and response capabilities.
+ Direct teams during high-severity incidents, ensuring coordination between SOC teams, internal business units, and external stakeholders to minimise business disruption.
+ Act as the primary escalation point for operational challenges during incident response processes and ensure timely resolution of complex technical security incidents.
+ Supervise the execution of routine security operations, including monitoring, vulnerability assessments, penetration testing, and remediation, ensuring compliance with organisational and regulatory security policies.
+ Drive post-incident reviews to evaluate response effectiveness, extract insights, and implement lessons learned to improve future incident handling.
+ Leverage insights from incidents and operational metrics to identify weaknesses in existing systems or processes and recommend long-term improvements.
+ **Security Operations Maturity Improvement**
+ Assess the overall maturity of the Security Operations Center (SOC) against industry-accepted models (e.g., SOC-CMM) and implement improvements.
+ Drive automation and modernisation initiatives, such as deploying SOAR tools to improve response times and process efficiency.
+ Define and monitor metrics such as Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR), ensuring continuous operational improvement.
+ Strengthen SOC team capabilities through tailored training programs and coaching, promoting professional development.
**Key Performance Indicators (KPIs)**
+ Reduction in Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR).
+ Success rate of incident containment efforts within predefined response windows.
+ Time to full system recovery after incidents, aligned with BC/DR objectives.
+ SOC maturity improvements against established benchmarks (e.g., SOC-CMM).
+ Satisfaction levels of stakeholders during significant incidents and operational reviews.
+ Operation of the Security Operations in line with financial revenue, growth and profitability targets
**What experience you'll bring:**
**What you'll be doing;**
It starts with amazing people, challenging projects and a work environment that supports the creation of tangible solutions that make an impact. You will need to have a broad experience of security service delivery management and have evidence of experience in a number of the following fields of expertise:
+ At least 10 years of experience in providing technical support and advice for a Security Operations Centre and 5 years in leadership role managing SOC's and Security Operations.
+ Proven success in managing large-scale incident response, enhancing operational maturity, and aligning security strategies with organisational goals.
+ Excellent communication and client relationship skills to interface with clients, stakeholders, and senior leadership.
+ Significant experience and ability to manage and lead in crisis situations, ensuring a swift and effective response.
+ Demonstrable experience in leading and coordinating diverse teams effectively.
+ Excellent English writing skills for technical documents and improving processes (such as policies and reports).
+ Outstanding English verbal communication skills with the ability to explain things in a clear and non-technical way.
+ Strong attention to detail and the ability to deliver high quality work and build high performing teams.
+ A relevant and recognised professional Security / Risk / Compliance certification supporting the role, such as CISSP, CISM, CCISO, GCIH, CRISC, etc.
+ A valid right to work in the UK.
+ Have held UK SC clearance or be eligible for obtaining UK SC clearance.
**Who we are:**
We're a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects.
Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women's Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network.
For more information on Diversity, Equity and Inclusion please click here: Creating Inclusion Together at NTT DATA UK | NTT DATA ( we'll offer you:**
We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.
You can find more information about NTT DATA UK & Ireland here: are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team.
Back to search Email to a friend Apply now

Security Operations Manager - Central London

Hybrid Working:

A market leading professional services company based in London are looking for a Security Operations Manager to join their Information Security department on a permanent basis.

The post holder will work closely with the Group Chief Information Security Officer on the companies Information Security Strategy.

The role will see you splitting your time between being technically hands on and leading a team of security specialists.

Responsibilities:

• Design, build and manage the security operations systems.
• Help maintain, support and improve systems, tools and processes.
• Manage and mentor a team of Security Specialists.
• Create detailed Security documentation and best practise material.
• Develop incident response procedures.
• Be the escalation point for high level security issues.
• Work closely with Security Architecture, GRC and Technology teams.

Experience Required:

• Extensive experience in the information security field.
• Extensive experience leading and motivating teams of Security Engineers.
• Deep understanding of Security Operations, DevOps, Automation, Cloud and Incident Response Tools.
• A degree in Computer Science or Information Security would be beneficial but not essential.

In line with the Conduct Regulations 2003, when advertising permanent vacancies JNC Recruitment are acting as an Employment Agency, and when advertising temporary/contract vacancies JNC Recruitment are acting as an Employment Business

Our client, a prominent player in the aviation industry, is seeking a dynamic and experienced Aviation Security Operations Manager to oversee security operations at their hub in London, England, UK . This pivotal role requires a strategic leader with a comprehensive understanding of aviation security regulations, threat assessment, and risk management. You will be responsible for developing, implementing, and enforcing robust security protocols across all airport operations, ensuring the safety and security of passengers, staff, and assets. Your duties will include managing and mentoring a large team of security personnel, conducting regular training sessions, and ensuring compliance with national and international aviation security standards. The ideal candidate will have a proven track record in a similar security management role within the aviation sector, demonstrating strong leadership capabilities and an exceptional ability to respond effectively to security incidents. You will collaborate closely with regulatory bodies, law enforcement agencies, and airline partners to maintain a secure environment. Key responsibilities include overseeing baggage screening, passenger screening, cargo security, and access control. You will also be involved in security audits, investigations, and the continuous improvement of security procedures. This position offers a hybrid working model, combining essential on-site leadership with strategic planning and reporting from a remote or office-based setting. We are looking for individuals with a sharp analytical mind, excellent decision-making skills under pressure, and a deep commitment to aviation safety and security. Your expertise will be crucial in safeguarding operations and upholding the highest security standards in a complex and fast-paced environment.

Responsibilities:

• Develop, implement, and manage comprehensive aviation security programs.
• Lead, train, and manage a team of security personnel.
• Ensure compliance with all relevant aviation security regulations (e.g., DfT, TSA, ICAO).
• Oversee passenger, baggage, cargo, and personnel screening operations.
• Conduct risk assessments and develop mitigation strategies.
• Respond to and manage security incidents and emergencies.
• Liaise with regulatory authorities, law enforcement, and airline stakeholders.
• Conduct regular security audits and inspections.
• Develop and deliver security awareness training.
• Manage security budgets and resources effectively.

Qualifications:

• Extensive experience in aviation security management.
• In-depth knowledge of aviation security legislation and best practices.
• Proven leadership and team management skills.
• Strong understanding of threat assessment and risk management principles.
• Experience with security screening technologies and procedures.
• Excellent communication, reporting, and stakeholder management skills.
• Ability to make critical decisions in high-pressure situations.
• Relevant security management certifications are highly desirable.
• Experience in crisis management and incident response.

Infrastructure & Security Operations Lead

Slough (Onsite with Flexibility) | Up to £70,000 Basic + £6k Car Allowance + Up to 20% Bonus

An Infrastructure Manager role for a hands-on, multi-domain generalist who can take ownership of a live IT estate spanning network, infrastructure, and cybersecurity. You’ll be the operational glue – managing third-party vendors, owning high-priority incidents, and driving platform consistency, performance, and security across a complex multi-site business. Ideal for someone calm under pressure, confident managing internal and external teams, and comfortable switching between technical detail and high-level oversight.

What’s on offer:

Up to 20% performance bonus, private healthcare, generous Christmas hamper, optional car allowance, and entry into a company-wide partnership scheme after 12 months (profit share model).

What we’re looking for:

• 5–10 years in infrastructure or IT operations, ideally in a multi-site environment
li>Strong knowledge of Microsoft tech – Entra ID, Intune, Azure, Active Directory, Office 365 < i>Skilled in DNS, VPNs, Citrix, scripting (PowerShell), monitoring, and firewall management
• Calm and structured under pressure – a safe pair of hands for business-critical systems
< i>Proven experience leading incident response and owning service escalations
• Strong vendor management skills and a focus on cost, compliance, and documentation

This is a key role for a reliable, service-minded professional who takes pride in uptime, security, and continuous improvement.

Infrastructure & Security Operations Lead

Slough (Onsite with Flexibility) | Up to £70,000 Basic + £6k Car Allowance + Up to 20% Bonus

An Infrastructure Manager role for a hands-on, multi-domain generalist who can take ownership of a live IT estate spanning network, infrastructure, and cybersecurity. You’ll be the operational glue – managing third-party vendors, owning high-priority incidents, and driving platform consistency, performance, and security across a complex multi-site business. Ideal for someone calm under pressure, confident managing internal and external teams, and comfortable switching between technical detail and high-level oversight.

What’s on offer:

Up to 20% performance bonus, private healthcare, generous Christmas hamper, optional car allowance, and entry into a company-wide partnership scheme after 12 months (profit share model).

What we’re looking for:

• 5–10 years in infrastructure or IT operations, ideally in a multi-site environment
li>Strong knowledge of Microsoft tech – Entra ID, Intune, Azure, Active Directory, Office 365 < i>Skilled in DNS, VPNs, Citrix, scripting (PowerShell), monitoring, and firewall management
• Calm and structured under pressure – a safe pair of hands for business-critical systems
< i>Proven experience leading incident response and owning service escalations
• Strong vendor management skills and a focus on cost, compliance, and documentation

This is a key role for a reliable, service-minded professional who takes pride in uptime, security, and continuous improvement.

About the Role:
Pearson is looking for an experienced Security Operations Center (SOC) analyst. This role is responsible for performing day-to-day security operations, continuous process improvement, detection engineering and project work related to SOC functions.
Responsibilities:
+ Identify, triage and contain security events, using automation and AI capabilities to reduce mean time to containment.
+ Perform in-depth investigation into the underlying root cause of issues.
+ Identify new detection opportunities and refine existing playbooks.
+ Implement and improve security processes and procedures within the SOC.
+ Ability and willingness to engage in a collaborative and high-performing team environment.
+ Maintain awareness and understanding of the current threat landscape. Analyze threat intelligence with an aim to mitigate emerging risks.
Qualifications:
+ Hands on experience and understanding of fundamental security concepts, SOAR, EDR, NDR and SIEM technologies.
+ Hands on experience with one or more Cloud Service Providers (AWS, Azure, GCP, etc).
+ Demonstrate the ability to multitask, adapt and thrive within a fast-paced environment.
+ Have excellent communication skills and stakeholder management.
+ SANS GCIH certification or equivalent.
+ +4 years' experience working in a Security Operations role.
**Who we are:**
At Pearson, our purpose is simple: to help people realize the life they imagine through learning. We believe that every learning opportunity is a chance for a personal breakthrough. We are the world's lifelong learning company. For us, learning isn't just what we do. It's who we are. To learn more: We are Pearson.
Pearson is an Equal Opportunity Employer and a member of E-Verify. Employment decisions are based on qualifications, merit and business need. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, gender expression, age, national origin, protected veteran status, disability status or any other group protected by law. We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act.
If you are an individual with a disability and are unable or limited in your ability to use or access our career site as a result of your disability, you may request reasonable accommodations by emailing
**Job:** Security
**Job Family:** TECHNOLOGY
**Organization:** Corporate Strategy & Technology
**Schedule:** FULL_TIME
**Workplace Type:**
**Req ID:** 20801

Our client, a leading financial services firm committed to robust cybersecurity, is seeking an experienced and visionary Lead Security Operations Engineer to spearhead their Security Operations Center (SOC) team. This is a fully remote position, offering the opportunity to shape and direct cutting-edge security operations from anywhere. You will be responsible for the strategic direction, implementation, and continuous improvement of the organization's security monitoring, detection, and incident response capabilities. This includes managing and mentoring a team of security analysts and engineers, overseeing the deployment and optimization of SIEM, SOAR, EDR, and other security technologies. Your role will involve developing and refining incident response playbooks, conducting threat hunting exercises, and leading the charge during critical security incidents. A deep understanding of threat landscapes, attack vectors, and defensive strategies is essential. You will work closely with other IT and security leadership to ensure that security operations align with business objectives and regulatory requirements. The ideal candidate will possess exceptional leadership qualities, strong technical expertise in security operations, and a proactive approach to cybersecurity. This is a pivotal role for an individual passionate about building and leading high-performing security teams to protect an organization against sophisticated cyber threats in a dynamic environment.
Key Responsibilities:

• Leading and mentoring the Security Operations Center (SOC) team.
• Developing and implementing strategic security operations initiatives.
• Overseeing the management and tuning of SIEM, SOAR, and EDR platforms.
• Establishing and refining incident response procedures and playbooks.
• Conducting proactive threat hunting and vulnerability assessments.
• Managing and coordinating responses to security incidents.
• Analyzing security alerts and investigating potential threats.
• Collaborating with IT and engineering teams on security architecture and solutions.
• Staying current with emerging threats, vulnerabilities, and security technologies.
• Reporting on security operations performance and key metrics to senior management.

Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, or a related field.
• Minimum of 7 years of experience in security operations, with at least 2 years in a leadership role.
• Expertise in SIEM, SOAR, EDR, and other security monitoring tools.
• Proven experience in incident response and digital forensics.
• Strong understanding of network security, cloud security, and threat intelligence.
• Excellent leadership, communication, and analytical skills.
• Relevant security certifications such as CISSP, GIAC, or CISM are highly desirable.
• Ability to work effectively in a fully remote team environment.

This fully remote role requires a self-starter with excellent organizational and communication skills.

Our client, a leading financial services firm in Bristol, South West England, UK , is seeking a highly skilled and experienced Senior Security Operations Analyst to join their dynamic Information Security team. This role is vital in protecting the organization's digital assets and ensuring the integrity and confidentiality of sensitive data. You will be responsible for monitoring security alerts, investigating security incidents, performing threat hunting, and contributing to the continuous improvement of security monitoring and incident response capabilities. The ideal candidate will possess a strong understanding of common attack vectors, security technologies (SIEM, IDS/IPS, EDR), and threat intelligence. Experience in scripting for automation (e.g., Python, PowerShell) and a solid grasp of network security principles are essential. You will play a key role in analyzing complex security events, developing playbooks for incident response, and collaborating with other security teams to mitigate risks. A proactive approach to threat detection and a commitment to staying ahead of evolving cyber threats are crucial. This is an excellent opportunity to work in a challenging and rewarding cybersecurity environment, contributing to the protection of a significant financial institution.

Key Responsibilities:

• Monitor and analyze security alerts from various security tools (SIEM, IDS/IPS, EDR, etc.).
• Investigate security incidents, determine scope and impact, and perform forensic analysis.
• Conduct proactive threat hunting to identify and mitigate emerging threats.
• Develop and refine security incident response playbooks and procedures.
• Collaborate with internal teams (IT, Legal, Compliance) during incident response efforts.
• Analyze threat intelligence to understand potential risks and vulnerabilities.
• Perform vulnerability assessments and penetration testing support.
• Develop and maintain security operational dashboards and reports.
• Provide expert guidance and mentorship to junior security analysts.
• Contribute to the continuous improvement of security monitoring tools and processes.
• Stay current with the latest cybersecurity threats, trends, and technologies.

Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• Minimum of 5 years of experience in a Security Operations Center (SOC) or similar cybersecurity role.
• Proven experience in incident detection, analysis, and response.
• In-depth knowledge of SIEM tools (e.g., Splunk, QRadar, Sentinel).
• Strong understanding of network protocols, operating systems, and common attack vectors.
• Experience with EDR, IDS/IPS, and other security technologies.
• Proficiency in scripting languages such as Python or PowerShell for automation.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong communication and interpersonal skills.
• Relevant certifications such as CISSP, GCIH, GCFA, or CompTIA Security+ are highly desirable.

Our client is a rapidly growing cybersecurity firm dedicated to protecting businesses from evolving digital threats. They are looking for a highly skilled Senior Security Operations Engineer to join their fully remote, elite team. This pivotal role will be instrumental in designing, implementing, and managing robust security operations infrastructure and processes. You will be responsible for the continuous monitoring, detection, and response to security incidents across a wide range of environments. The ideal candidate will possess deep expertise in SIEM platforms, intrusion detection/prevention systems (IDS/IPS), endpoint detection and response (EDR), and security automation. Key responsibilities include developing and fine-tuning detection rules, conducting threat hunting activities, leading incident response efforts, and architecting security solutions for cloud and on-premise environments. You will collaborate closely with other security teams, IT operations, and engineering to ensure a proactive and comprehensive security posture. This fully remote position requires exceptional analytical skills, a strong understanding of attack vectors and threat intelligence, and the ability to communicate complex technical information clearly and concisely to both technical and non-technical audiences. You must be self-motivated, possess excellent problem-solving abilities, and be adept at working independently in a distributed team environment. This is an outstanding opportunity to make a significant impact on our clients' security by building and maintaining state-of-the-art security operations capabilities. Join us and be at the forefront of cyber defense.

Key Responsibilities:

• Design, deploy, and manage Security Information and Event Management (SIEM) systems.
• Develop and implement threat detection rules and correlation logic.
• Conduct proactive threat hunting to identify emerging and advanced threats.
• Lead and coordinate incident response activities, including containment, eradication, and recovery.
• Manage and optimize Intrusion Detection/Prevention Systems (IDS/IPS) and Endpoint Detection and Response (EDR) solutions.
• Automate security operations tasks using scripting and orchestration tools.
• Architect and implement security solutions for cloud environments (AWS, Azure, GCP).
• Perform vulnerability assessments and penetration testing support.
• Stay current with the latest cybersecurity threats, trends, and technologies.
• Collaborate with cross-functional teams to improve overall security posture.

Required Qualifications:

• Bachelor's or Master's degree in Cybersecurity, Computer Science, or a related field.
• Minimum of 7 years of experience in security operations, incident response, or a related cybersecurity role.
• In-depth knowledge of SIEM platforms (e.g., Splunk, QRadar, ArcSight).
• Hands-on experience with IDS/IPS, EDR, and firewall technologies.
• Proficiency in scripting languages such as Python, Bash, or PowerShell.
• Strong understanding of networking protocols, operating systems, and cloud security principles.
• Experience with incident response frameworks and methodologies.
• Excellent analytical, problem-solving, and communication skills.
• Relevant certifications such as CISSP, GCIH, GCFA, or OSCP are highly desirable.