3,376 Security Engineer jobs in the United Kingdom

Get AI-powered advice on this job and more exclusive features.nBlockchain.com is the world's leading software platform for digital assets, powering the largest production blockchain platform globally. We are driven by a passion to code, create, and ultimately build an open, accessible, and fair financial future—one line of code at a time.

As we scale our platform to serve millions of people each day, we seek a

Security Operations Engineer

to join our dedicated security team.

At Blockchain.com, security is more than a set of policies—it's a core mindset. As we continue to innovate in the crypto space, you will tackle some of the most complex problems around securing a distributed financial platform. The Security team is responsible for guiding the design and implementation of secure systems across the company. Using a comprehensive range of tools and methodologies, we identify and mitigate security risks proactively, ensuring the protection of our users, stakeholders, and systems.

WHAT YOU WILL DO

Develop tooling to aggregate and analyze various security feeds and logsnBuild systems to automate responses to security events and alerts.nManage endpoint protection software, including reviewing, testing, and deploying updates to employee laptops.nReview and manage access permissions for third-party vendors.nDevelop tooling to streamline and automate the management of third-party vendor access.nContribute to the development of incident response tools and processes, ensuring compliance with DORA and other regulatory frameworks.nIdentify opportunities to restrict data access while optimizing customer success operations.nPromote and enforce safe practices regarding the use of logging services among engineering teams.nConduct threat intelligence and analysis of attacks targeting employees.nIssue takedown requests for domains and individuals impersonating the company.nParticipate in red team assessments targeting employees and security operations functions.nMonitor and respond to security incidents, escalating as needed.nMaintain and update security documentation and procedures.nParticipate in security training and awareness programs for employees.nAssist in the evaluation and implementation of new security technologies.

WHAT YOU WILL NEED

Experience with scripting and programming languages (e.g., Python, Bash).nFamiliarity with security monitoring and analysis tools.nUnderstanding of endpoint protection concepts and tools.nKnowledge of network security principles.nExperience with incident response processes.nStrong analytical and problem-solving skills.nGood communication and collaboration skills.nA passion for learning and staying up-to-date with the latest security trends.nA commitment to integrity, transparency, and excellence in all aspects of work.

INDICATIVE CERTIFICATIONS

CompTIA Security+nCertified Ethical Hacker (CEH)nOther relevant security certification

COMPENSATION & PERKS

Competitive salary based on experience with meaningful equity in a leading industry company.nApple equipment for your work setup.nComprehensive benefits package, including private medical insurance (BUPA), dental, pension, life insurance, short- and long-term disability coverage.nWork from a modern, accessible office in the heart of London 4 days a week + 1 day from homenThe opportunity to contribute to a fast-growing, global technology company at the forefront of the industrynWork from Anywhere Policy

How To Apply

Submit your LinkedIn profile.nProvide links to your GitHub, Stack Overflow, personal website, or blog (if applicable).

Blockchain is committed to diversity and inclusion in the workplace and is proud to be an equal opportunity employer. We prohibit discrimination and harassment of any kind based on race, religion, color, national origin, gender, gender expression, sex, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law. This policy applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, and apprenticeship. Blockchain makes hiring decisions based solely on qualifications, merit, and business needs at the time.

You may contact our Data Protection Officer by email at Your personal data will be processed for the purposes of managing Controller’s recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of Regulation (EU) 2016/679 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment.

Your personal data will be shared with Greenhouse Software, Inc., a cloud services provider located in the United States of America and engaged by Controller to help manage its recruitment and hiring process on Controller’s behalf. Accordingly, if you are located outside of the United States, your personal data will be transferred to the United States once you submit it through this site. Because the European Union Commission has determined that United States data privacy laws do not ensure an adequate level of protection for personal data collected from EU data subjects, the transfer will be subject to appropriate additional safeguards under the standard contractual clauses.

Your personal data will be retained by Controller as long as Controller determines it is necessary to evaluate your application for employment. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. You also have the right to data portability. In addition, you may lodge a complaint with an EU supervisory authority.

Seniority level

Seniority level Entry levelnEmployment type

Employment type Full-timenJob function

Job function Information Technology and EngineeringnIndustries IT Services and IT Consulting, Technology, Information and Internet, and Financial ServicesnReferrals increase your chances of interviewing at Blockchain.com by 2xnGet notified about new Security Engineer jobs in

London, England, United Kingdom .nSlough, England, United Kingdom 3 weeks agonIsleworth, England, United Kingdom 3 weeks agonLondon, England, United Kingdom 3 months agonLondon, England, United Kingdom 1 month agonTwickenham, England, United Kingdom 4 weeks agonLondon, England, United Kingdom 1 month agonLondon, England, United Kingdom £41,000.00-£45,000.00 1 month agonLondon, England, United Kingdom 1 month agonLondon, England, United Kingdom 3 days agonService Delivery Engineer CyberSecurity - Graduate

London, England, United Kingdom 1 month agonLondon, England, United Kingdom 22 hours agonLondon, England, United Kingdom 2 weeks agonLondon, England, United Kingdom 6 days agonKingston Upon Thames, England, United Kingdom 3 weeks agonLondon, England, United Kingdom 5 days agonLondon, England, United Kingdom 5 months agonHemel Hempstead, England, United Kingdom 2 weeks agonLondon, England, United Kingdom 2 weeks agonOffensive Security Engineer, Workvivo - UK

London, England, United Kingdom 2 days agonLondon, England, United Kingdom 1 month agonLondon, England, United Kingdom 2 weeks agonLondon, England, United Kingdom 2 weeks agonLondon, England, United Kingdom 2 weeks agonCyber Security Data Engineer, Contract Capabilities

London, England, United Kingdom 2 weeks agonTottenham, England, United Kingdom 1 month agonLondon, England, United Kingdom 1 week agonLinux Cryptography and Security Engineer

London, England, United Kingdom 3 days agonLondon, England, United Kingdom 1 week agonWe’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffrn

Blockchain.com is the world's leading software platform for digital assets, powering the largest production blockchain platform globally. We are driven by a passion to code, create, and ultimately build an open, accessible, and fair financial future—one line of code at a time.nAs we scale our platform to serve millions of people each day, we seek a

Security Operations Engineer

to join our dedicated security team.nAt Blockchain.com, security is more than a set of policies—it's a core mindset. As we continue to innovate in the crypto space, you will tackle some of the most complex problems around securing a distributed financial platform. The Security team is responsible for guiding the design and implementation of secure systems across the company. Using a comprehensive range of tools and methodologies, we identify and mitigate security risks proactively, ensuring the protection of our users, stakeholders, and systems.nWHAT YOU WILL DOnDevelop tooling to aggregate and analyze various security feeds and logsnBuild systems to automate responses to security events and alerts.nManage endpoint protection software, including reviewing, testing, and deploying updates to employee laptops.nReview and manage access permissions for third-party vendors.nDevelop tooling to streamline and automate the management of third-party vendor access.nContribute to the development of incident response tools and processes, ensuring compliance with DORA and other regulatory frameworks.nIdentify opportunities to restrict data access while optimizing customer success operations.nPromote and enforce safe practices regarding the use of logging services among engineering teams.nConduct threat intelligence and analysis of attacks targeting employees.nIssue takedown requests for domains and individuals impersonating the company.nParticipate in red team assessments targeting employees and security operations functions.nMonitor and respond to security incidents, escalating as needed.nMaintain and update security documentation and procedures.nParticipate in security training and awareness programs for employees.nAssist in the evaluation and implementation of new security technologies.nWHAT YOU WILL NEEDnExperience with scripting and programming languages (e.g., Python, Bash).nFamiliarity with security monitoring and analysis tools.nUnderstanding of endpoint protection concepts and tools.nKnowledge of network security principles.nExperience with incident response processes.nStrong analytical and problem-solving skills.nGood communication and collaboration skills.nA passion for learning and staying up-to-date with the latest security trends.nA commitment to integrity, transparency, and excellence in all aspects of work.nINDICATIVE CERTIFICATIONSnCompTIA Security+nCertified Ethical Hacker (CEH)nOther relevant security certificationnCOMPENSATION & PERKSnCompetitive salary based on experience with meaningful equity in a leading industry company.nApple equipment for your work setup.nComprehensive benefits package, including private medical insurance (BUPA), dental, pension, life insurance, short- and long-term disability coverage.nWork from a modern, accessible office in the heart of London 4 days a week + 1 day from homenThe opportunity to contribute to a fast-growing, global technology company at the forefront of the industrynWork from Anywhere PolicynHOW TO APPLYnProvide links to your GitHub, Stack Overflow, personal website, or blog (if applicable).n#LI-Hybrid

Blockchain is committed to diversity and inclusion in the workplace and is proud to be an equal opportunity employer. We prohibit discrimination and harassment of any kind based on race, religion, color, national origin, gender, gender expression, sex, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law. This policy applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, and apprenticeship. Blockchain makes hiring decisions based solely on qualifications, merit, and business needs at the time.nYou may contact our Data Protection Officer by email at Your personal data will be processed for the purposes of managing Controller’s recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of Regulation (EU) 2016/679 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment.nYour personal data will be shared with Greenhouse Software, Inc., a cloud services provider located in the United States of America and engaged by Controller to help manage its recruitment and hiring process on Controller’s behalf. Accordingly, if you are located outside of the United States, your personal data will be transferred to the United States once you submit it through this site. Because the European Union Commission has determined that United States data privacy laws do not ensure an adequate level of protection for personal data collected from EU data subjects, the transfer will be subject to appropriate additional safeguards under the standard contractual clauses.nYour personal data will be retained by Controller as long as Controller determines it is necessary to evaluate your application for employment. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. You also have the right to data portability. In addition, you may lodge a complaint with an EU supervisory authority.nCreate a Job AlertnInterested in building your career at Blockchain.com? Get future opportunities sent straight to your email.nApply for this job

*nindicates a required fieldnFirst Name *nLast Name *nEmail *nPhonenResume/CVnEnter manuallynAccepted file types: pdf, doc, docx, txt, rtfnEnter manuallynAccepted file types: pdf, doc, docx, txt, rtfnLinkedIn ProfilenWebsitenDo you have the legal right to work in the UK? * Select.nThis role requires working from our London office four days a week. Can you accommodate this hybrid schedule? * Select.

#J-18808-Ljbffrn

Overview

Join to apply for the

Threat Operations Security Engineer

role at

Thought Machine .nThought Machine’s mission is bold – to properly and permanently rid the world’s banks of legacy technology. To achieve this, we have developed the foundations of modern banking and built core and payments technology which runs natively in the cloud. We have grown rapidly in the past few years, with offices in London, New York, Singapore and Sydney, more than 500 team members, and strong funding and growth recognition.nA Threat Operations Security Engineer is an individual contributor within the Threat Operations team. We seek engineers who can think creatively about security threats, how to detect them, and how to respond. We encourage exploration and the sharing of unique ideas or perspectives.nThe Threat Operations security team focuses on identifying threats, security events, event analysis, incident response, and monitoring the security state of Thought Machine environments.

Duties

Contribute to a programme of continuous threat assessment, intrusion detection and vulnerability review

Develop, integrate, and operate security event detection and incident management services using Elasticsearch

Automate repeatable incident response workflows to minimise manual work during incidents

Maintain documentation to ensure repeatability and standardisation of incident response procedures

Respond to security incidents as they occur as part of an incident response rotation, managing incident response throughout the lifecycle

Perform investigation and analysis of security incidents in collaboration with engineers across the company

Perform threat intelligence research to provide proactive insight into new threat vectors

Develop, integrate, and operate data and metric reporting on relevant security measures

Participate in the team on-call rotation (compensated)

Requirements

Experience with logging and incident detection platforms, creating detections, triaging alerts and conducting security investigations

Understanding of security incident management and vulnerability management processes

Coding experience in Python or Go

Comfortable using the command line in Linux and macOS environments

Familiar with investigation and evidence handling techniques

Creative thinking and analytical skills focused on incident and threat investigations, with ability to communicate data and findings to stakeholders

Strong interpersonal and communication skills to support collaboration during investigations

Familiarity with Cloud and container technologies (AWS, GCP, Kubernetes, Docker)

Contributions to the security community (open source tools, public research, blogging, presentations, etc.)

Benefits

Competitive salary

Pension plan (match up to 7%)

Life insurance - three times annual salary

Parental leave policies (maternity, paternity, and shared parental leave)

25 days holiday and bank holidays

Private health insurance with Bupa for you and your family

Health cash plan (including dental and optical)

Electric car scheme

Season ticket loan

Learning resources and courses

Wellbeing and team activities, snacks and refreshments

Learning-focused environment and opportunities for progression

Two charity days per year

#J-18808-Ljbffrn

Our client, a leading financial services firm committed to robust cybersecurity, is seeking an experienced and visionary Lead Security Operations Engineer to spearhead their Security Operations Center (SOC) team. This is a fully remote position, offering the opportunity to shape and direct cutting-edge security operations from anywhere. You will be responsible for the strategic direction, implementation, and continuous improvement of the organization's security monitoring, detection, and incident response capabilities. This includes managing and mentoring a team of security analysts and engineers, overseeing the deployment and optimization of SIEM, SOAR, EDR, and other security technologies. Your role will involve developing and refining incident response playbooks, conducting threat hunting exercises, and leading the charge during critical security incidents. A deep understanding of threat landscapes, attack vectors, and defensive strategies is essential. You will work closely with other IT and security leadership to ensure that security operations align with business objectives and regulatory requirements. The ideal candidate will possess exceptional leadership qualities, strong technical expertise in security operations, and a proactive approach to cybersecurity. This is a pivotal role for an individual passionate about building and leading high-performing security teams to protect an organization against sophisticated cyber threats in a dynamic environment.
Key Responsibilities:

• Leading and mentoring the Security Operations Center (SOC) team.
• Developing and implementing strategic security operations initiatives.
• Overseeing the management and tuning of SIEM, SOAR, and EDR platforms.
• Establishing and refining incident response procedures and playbooks.
• Conducting proactive threat hunting and vulnerability assessments.
• Managing and coordinating responses to security incidents.
• Analyzing security alerts and investigating potential threats.
• Collaborating with IT and engineering teams on security architecture and solutions.
• Staying current with emerging threats, vulnerabilities, and security technologies.
• Reporting on security operations performance and key metrics to senior management.

Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, or a related field.
• Minimum of 7 years of experience in security operations, with at least 2 years in a leadership role.
• Expertise in SIEM, SOAR, EDR, and other security monitoring tools.
• Proven experience in incident response and digital forensics.
• Strong understanding of network security, cloud security, and threat intelligence.
• Excellent leadership, communication, and analytical skills.
• Relevant security certifications such as CISSP, GIAC, or CISM are highly desirable.
• Ability to work effectively in a fully remote team environment.

This fully remote role requires a self-starter with excellent organizational and communication skills.

Our client is a rapidly growing cybersecurity firm dedicated to protecting businesses from evolving digital threats. They are looking for a highly skilled Senior Security Operations Engineer to join their fully remote, elite team. This pivotal role will be instrumental in designing, implementing, and managing robust security operations infrastructure and processes. You will be responsible for the continuous monitoring, detection, and response to security incidents across a wide range of environments. The ideal candidate will possess deep expertise in SIEM platforms, intrusion detection/prevention systems (IDS/IPS), endpoint detection and response (EDR), and security automation. Key responsibilities include developing and fine-tuning detection rules, conducting threat hunting activities, leading incident response efforts, and architecting security solutions for cloud and on-premise environments. You will collaborate closely with other security teams, IT operations, and engineering to ensure a proactive and comprehensive security posture. This fully remote position requires exceptional analytical skills, a strong understanding of attack vectors and threat intelligence, and the ability to communicate complex technical information clearly and concisely to both technical and non-technical audiences. You must be self-motivated, possess excellent problem-solving abilities, and be adept at working independently in a distributed team environment. This is an outstanding opportunity to make a significant impact on our clients' security by building and maintaining state-of-the-art security operations capabilities. Join us and be at the forefront of cyber defense.

Key Responsibilities:

• Design, deploy, and manage Security Information and Event Management (SIEM) systems.
• Develop and implement threat detection rules and correlation logic.
• Conduct proactive threat hunting to identify emerging and advanced threats.
• Lead and coordinate incident response activities, including containment, eradication, and recovery.
• Manage and optimize Intrusion Detection/Prevention Systems (IDS/IPS) and Endpoint Detection and Response (EDR) solutions.
• Automate security operations tasks using scripting and orchestration tools.
• Architect and implement security solutions for cloud environments (AWS, Azure, GCP).
• Perform vulnerability assessments and penetration testing support.
• Stay current with the latest cybersecurity threats, trends, and technologies.
• Collaborate with cross-functional teams to improve overall security posture.

Required Qualifications:

• Bachelor's or Master's degree in Cybersecurity, Computer Science, or a related field.
• Minimum of 7 years of experience in security operations, incident response, or a related cybersecurity role.
• In-depth knowledge of SIEM platforms (e.g., Splunk, QRadar, ArcSight).
• Hands-on experience with IDS/IPS, EDR, and firewall technologies.
• Proficiency in scripting languages such as Python, Bash, or PowerShell.
• Strong understanding of networking protocols, operating systems, and cloud security principles.
• Experience with incident response frameworks and methodologies.
• Excellent analytical, problem-solving, and communication skills.
• Relevant certifications such as CISSP, GCIH, GCFA, or OSCP are highly desirable.

Our client is seeking a highly skilled and experienced Senior Security Operations Engineer to join their expanding cybersecurity team. This is a fully remote position, offering the flexibility to work from anywhere in the UK, contributing to the protection of critical digital assets. In this crucial role, you will be responsible for the continuous monitoring, detection, and response to security threats across the organization's infrastructure. You will design, implement, and maintain security tools and technologies, including SIEM, IDS/IPS, endpoint detection and response (EDR), and threat intelligence platforms. Your expertise will be vital in developing and refining security playbooks, automating incident response processes, and conducting in-depth forensic analysis of security incidents. You will also play a key role in threat hunting, proactively searching for indicators of compromise and emerging threats. The ideal candidate will possess extensive experience in Security Operations Center (SOC) environments, a deep understanding of network security principles, and proficiency with a wide range of security technologies. Strong scripting and automation skills (e.g., Python, PowerShell) are essential for streamlining operations. Excellent analytical, problem-solving, and communication skills are required to effectively investigate incidents, collaborate with incident response teams, and communicate findings to stakeholders. You will be expected to stay current with the latest cybersecurity threats, vulnerabilities, and mitigation techniques. This role requires a proactive mindset, a commitment to continuous learning, and the ability to work effectively independently in a remote setting. If you are passionate about cybersecurity, possess a strong technical acumen, and are eager to contribute to a high-impact security function, we encourage you to apply. This is a fantastic opportunity to advance your career and make a significant difference in safeguarding our digital landscape from **Cardiff, Wales, UK** or your chosen remote location.

Our client is seeking an experienced Lead Security Operations Engineer to join their dynamic team in **Sunderland, Tyne and Wear, UK**. This role is crucial for maintaining and enhancing the organization's security posture. You will lead the Security Operations Center (SOC) functions, including threat detection, incident response, and security monitoring. The ideal candidate will possess deep technical expertise in cybersecurity, network security, and cloud security. Responsibilities include managing and optimizing security tools and technologies, such as SIEM, IDS/IPS, firewalls, and endpoint detection and response (EDR) systems. You will develop and refine incident response playbooks, conduct forensic analysis, and lead investigations into security breaches. The successful applicant will also contribute to vulnerability management programs, security architecture reviews, and the development of security policies and procedures. Mentoring junior security analysts and engineers, and fostering a culture of continuous learning and improvement within the SOC team are key aspects of this leadership role. This is a hybrid position, requiring a balance of in-office collaboration and remote flexibility. Experience with scripting languages (e.g., Python, Bash) for automation and threat hunting is highly desirable. A strong understanding of threat intelligence, attack vectors, and mitigation strategies is essential. Relevant certifications such as CISSP, GIAC, or CEH are advantageous. Join our client and play a vital role in protecting their critical infrastructure and sensitive data from evolving cyber threats. This is an excellent opportunity for a seasoned security professional to lead a team and make a significant impact.

Our client requires a highly experienced Senior Security Operations Engineer to join their fully remote security team. This role is critical in defending against cyber threats and ensuring the integrity and availability of our client's systems and data. You will be instrumental in managing, monitoring, and enhancing security infrastructure, including SIEM, IDS/IPS, firewalls, and endpoint detection and response (EDR) solutions. Your responsibilities will include threat hunting, incident response, forensic analysis, and vulnerability management. The successful candidate will play a key role in developing and refining security playbooks, automation scripts, and operational procedures to improve response times and effectiveness. You will also be involved in security awareness training and contributing to the overall security strategy. Proactive threat intelligence analysis and staying ahead of emerging attack vectors are paramount. Experience with cloud security (AWS, Azure, GCP) and container security is highly desirable. You must possess strong technical expertise, excellent analytical and problem-solving skills, and the ability to work autonomously in a fast-paced, remote environment. A proven ability to communicate complex security issues clearly to both technical and non-technical audiences is essential. Relevant certifications such as CISSP, GIAC certifications (e.g., GCIH, GCFA), or CCSP are strongly encouraged. This is a fantastic opportunity to contribute to a leading organization's security posture from a remote location.

Get AI-powered advice on this job and more exclusive features.nThis range is provided by La Fosse. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.nBase pay range

Direct message the job poster from La FossenPrincipal Consultant (Cyber) at La Fosse

We're looking for a Cyber Security Engineer to help to build our SecOps function. You'll serve as the technical lead, drive key security initiatives, play a pivotal role in mentoring junior team members and increasing our overall security posture.nKey Responsibilities include managing CrowdStrike SIEM/SOAR/EDR (alert response), vulnerability scans/remediation, security certificates, IDS/IPS, PAM. Remediate penetration test findings and contribute to ad-hoc projects. Work with the network engineers to implement posture management i.e. ICE/NAC segmentation/ lateral movement control and firewalls.nMonitor, manage, and respond to threats via CrowdStrikenConduct vulnerability scans and support remediation and risk mitigation effortsnOversee WAF, DDoS, VPN, and perimeter firewallsnManage Email and Web Security GatewaysnWork with Endpoints team to administer MFA, SSO, PAM, MDM/MAM, and Conditional Access systemsnMaintain security certificates, encryption keys, and IDS/IPS systemsnLead ad-hoc security projectsnSupport and resolve issues identified during penetration testingnThe role requires 2 or 3 days per week in the London office and the rest from home.nSeniority level

Mid-Senior levelnEmployment type

Full-timenJob function

Information TechnologynIndustries

Law Practice

#J-18808-Ljbffrn