803 Security Monitoring jobs in the United Kingdom

About the Role:

We are seeking an experienced Incident Response Analyst for an established utilities business in Newport. This position plays a crucial part in enhancing the cyber resilience of the business by providing actionable insights, informing decision-making, and proactively contributing to mitigating potential threats.

The success candidate will collaborate with various teams, both internal and external, to ensure a comprehensive understanding of the threat landscape and response to any incidents. Working within the security operations centre (SOC), the primary responsibility is to rapidly investigate and document cybersecurity incidents within the organisation.

Key Responsibilities: (not limited to)

• Monitor and analyse network traffic, system logs, and other data sources to identify potential security incidents.
• Investigate alerts and suspicious activity to determine if an incident has occurred.
• Contain affected systems and networks to prevent the incident from spreading.
• Implement temporary measures to mitigate the impact of the incident.
• Work with other teams, such as IT and security operations, to develop and implement a containment strategy.
• Analyse incident data to determine the root cause of the incident and identify recommendations for improvement.
• Document and report incidents to the incident response team and other relevant stakeholders.
• Develop and implement security plans, policies, and training to prepare the organization to respond efficiently and effectively to cyber threats.

Qualifications:

• Proven experience operating in a SOC or a related cyber security role.
• In-depth knowledge of cyber threats, threat intelligence frameworks and cyber security best practice.
• Strong analytical and problem-solving skills.
• GIAC Certified Incident Handler
• Bachelor's or Master's degree in Cyber Security or related field. (desired)

Benefits:

• 25 days annual leave plus bank holidays which can be tailored to celebrations that reflect your beliefs
• Pension - 5% employee contribution, doubling your contribution at 10% - totalling 15%
• 14 x salary Life Insurance linked to membership of the Retirement Savings Plan

• "Choices" flexible benefit scheme options including corporate gym memberships, dental insurance, and health cash-plans
• Access to our Financial Wellbeing Programme
• Enhanced pay for parental leave
• Retail discounts and cashback scheme
• Annual salary review
• Discretionary annual bonus
• Company Sick Pay
• In-house Occupational Health Team
• Employee Assistance Programme
• Comprehensive training

Please get in touch for further details!

*Please note, whilst we do our best to contact all candidates, due to the high number of applications we receive we cannot guarantee this for every role. If you have not heard anything from us within 7 days of applying - then unfortunately you have been unsuccessful. Please keep an eye on our website for more opportunities.*

'Yolk Recruitment Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Yolk Recruitment Limited is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and experience can apply

Incident Response Analyst

Permanent - 52k - 57k + strong benefits

Location: Hybrid - South Wales

Your new company

I am looking to recruit an Incident Response Analyst to join a leader in the utilities space. The business have been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The company has a strong reputation, and we have placed numerous people into careers there, with strong feedback.

Your new role

This is an interesting opportunity to help deliver strategy which will enhance the organisation's security resilience, proactively contributing to mitigating threats, at a good time when the company is expanding and investing in its IT and cyber security estate. Working alongside the SOC, the primary responsibility of an incident responder is to rapidly investigate and document cybersecurity incidents within the organisation. Key parts of the role:

• Monitor and analyse network traffic, system logs, and other data sources to identify potential security incidents.
• Investigate alerts and suspicious activity to determine if an incident has occurred.
• Contain affected systems and networks to prevent the incident from spreading.
• Implement temporary measures to mitigate the impact of the incident.
• Work with other teams, such as IT and security operations, to develop and implement a containment strategy.
• Analyse incident data to determine the root cause of the incident and identify recommendations for improvement.
• Document and report incidents to the incident response team and other relevant stakeholders.
• Stay informed about emerging cyber threats and vulnerabilities.

What you'll need to succeed

• Experience in a similar role, ideally around CNI and OT, with exposure to cyber plans.
• Proven experience operating in a SOC or a related cyber security role.
• In-depth knowledge of cyber threats, threat intelligence frameworks and cyber security best practice.
• Strong analytical and problem-solving skills.
• Ability to work independently and as part of a team.
• Excellent communication and interpersonal skills.
• Ability to obtain UK Security Clearance

What you'll get in return

• Salary of between 52k-57k
• Hybrid working 2/3 days in South Wales per week
• Possible bonus
• 5% pension contribution from you, the company pays 10%
• Enhanced pay for parental leave
• And more!

What you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV.
If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.

Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)

About the Role:

We are seeking an experienced Incident Response Analyst for an established utilities business in Newport. This position plays a crucial part in enhancing the cyber resilience of the business by providing actionable insights, informing decision-making, and proactively contributing to mitigating potential threats.

The success candidate will collaborate with various teams, both internal and external, to ensure a comprehensive understanding of the threat landscape and response to any incidents. Working within the security operations centre (SOC), the primary responsibility is to rapidly investigate and document cybersecurity incidents within the organisation.

Key Responsibilities: (not limited to)

• Monitor and analyse network traffic, system logs, and other data sources to identify potential security incidents.
• Investigate alerts and suspicious activity to determine if an incident has occurred.
• Contain affected systems and networks to prevent the incident from spreading.
• Implement temporary measures to mitigate the impact of the incident.
• Work with other teams, such as IT and security operations, to develop and implement a containment strategy.
• Analyse incident data to determine the root cause of the incident and identify recommendations for improvement.
• Document and report incidents to the incident response team and other relevant stakeholders.
• Develop and implement security plans, policies, and training to prepare the organization to respond efficiently and effectively to cyber threats.

Qualifications:

• Proven experience operating in a SOC or a related cyber security role.
• In-depth knowledge of cyber threats, threat intelligence frameworks and cyber security best practice.
• Strong analytical and problem-solving skills.
• GIAC Certified Incident Handler
• Bachelor's or Master's degree in Cyber Security or related field. (desired)

Benefits:

• 25 days annual leave plus bank holidays which can be tailored to celebrations that reflect your beliefs
• Pension - 5% employee contribution, doubling your contribution at 10% - totalling 15%
• 14 x salary Life Insurance linked to membership of the Retirement Savings Plan

• "Choices" flexible benefit scheme options including corporate gym memberships, dental insurance, and health cash-plans
• Access to our Financial Wellbeing Programme
• Enhanced pay for parental leave
• Retail discounts and cashback scheme
• Annual salary review
• Discretionary annual bonus
• Company Sick Pay
• In-house Occupational Health Team
• Employee Assistance Programme
• Comprehensive training

Please get in touch for further details!

*Please note, whilst we do our best to contact all candidates, due to the high number of applications we receive we cannot guarantee this for every role. If you have not heard anything from us within 7 days of applying - then unfortunately you have been unsuccessful. Please keep an eye on our website for more opportunities.*

'Yolk Recruitment Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Yolk Recruitment Limited is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and experience can apply

We are representing a consultancy that are a leader in the Cyber Security and Incident response space. If you have experience leading the legal aspects of Data Breach case this could be the role for you. This role is open to any of the multiple offices my client has across the UK.

The client is looking for a Principal Associate to support and shape the delivery of expert incident response, digital risk, and cyber advisory services for a broad portfolio of global clients, from tech innovators and major insurers to public sector bodies and emergency services.

This award-winning cyber group is uniquely positioned at the intersection of law, digital forensics, and strategic response. With capabilities that span incident response, regulatory strategy, privacy law, threat intelligence, security controls, and tech litigation, they’re rewriting how legal support is delivered in high-pressure digital environments.

What You’ll Be Doing

You’ll play a critical role across matters ranging from real-time cyber incidents to regulatory investigations, and ongoing advisory support. Key responsibilities include:

• Leading and managing a caseload of cyber security incidents and data breaches
• Supporting strategic response plans for clients and helping them build resilience
• Providing coverage advice and monitoring counsel support for insurer clients
• Developing junior team members and helping grow our cyber legal offering
• Engaging directly with regulators, forensic experts, insurers, and corporate stakeholders
• Driving client solutions across legal, technical, and commercial dimensions

Ideal Candidate

• UK-qualified solicitor with 4+ years’ PQE
• Demonstrable experience in cyber and data protection law and experience working on Live Incidents
• Calm under pressure, especially in crisis situations and time-sensitive incident response
• Ideally experienced within the UK cyber insurance market (policy and claims exposure a bonus)
• Outstanding communicator, credible with clients, colleagues, and counterparties
• Familiar with SLA-driven work and high standards of compliance and reporting

Apply to start the conversation today.

We are representing a consultancy that are a leader in the Cyber Security and Incident response space. If you have experience leading the legal aspects of Data Breach case this could be the role for you. This role is open to any of the multiple offices my client has across the UK.

The client is looking for a Principal Associate to support and shape the delivery of expert incident response, digital risk, and cyber advisory services for a broad portfolio of global clients, from tech innovators and major insurers to public sector bodies and emergency services.

This award-winning cyber group is uniquely positioned at the intersection of law, digital forensics, and strategic response. With capabilities that span incident response, regulatory strategy, privacy law, threat intelligence, security controls, and tech litigation, they’re rewriting how legal support is delivered in high-pressure digital environments.

What You’ll Be Doing

You’ll play a critical role across matters ranging from real-time cyber incidents to regulatory investigations, and ongoing advisory support. Key responsibilities include:

• Leading and managing a caseload of cyber security incidents and data breaches
• Supporting strategic response plans for clients and helping them build resilience
• Providing coverage advice and monitoring counsel support for insurer clients
• Developing junior team members and helping grow our cyber legal offering
• Engaging directly with regulators, forensic experts, insurers, and corporate stakeholders
• Driving client solutions across legal, technical, and commercial dimensions

Ideal Candidate

• UK-qualified solicitor with 4+ years’ PQE
• Demonstrable experience in cyber and data protection law and experience working on Live Incidents
• Calm under pressure, especially in crisis situations and time-sensitive incident response
• Ideally experienced within the UK cyber insurance market (policy and claims exposure a bonus)
• Outstanding communicator, credible with clients, colleagues, and counterparties
• Familiar with SLA-driven work and high standards of compliance and reporting

Apply to start the conversation today.

• Monitor security alerts and events generated by the SIEM system in real-time.
• Analyze security incidents, identify root causes, and perform detailed investigations.
• Develop and implement effective incident response procedures and playbooks.
• Conduct forensic analysis of security breaches and compromised systems.
• Configure and tune SIEM rules, correlation logic, and dashboards to enhance threat detection capabilities.
• Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and attack vectors.
• Collaborate with IT teams to implement security controls and remediate vulnerabilities.
• Participate in security awareness training initiatives.
• Maintain accurate documentation of security incidents, investigations, and resolutions.
• Contribute to the continuous improvement of the SOC's operational processes and tools.
• Assist in vulnerability assessments and management activities.
• Provide support for security audits and compliance activities.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3-5 years of experience in information security, with a focus on SIEM operations and incident response.
• Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, ArcSight).
• Strong understanding of common cyber threats, attack techniques, and mitigation strategies.
• Familiarity with network protocols, operating systems (Windows, Linux), and security technologies (firewalls, IDS/IPS, endpoint protection).
• Experience with forensic tools and techniques is a plus.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Effective communication and interpersonal skills, with the ability to work collaboratively within a team.
• Relevant security certifications such as CompTIA Security+, CEH, GCIH are advantageous.
• Ability to work under pressure and respond effectively to security incidents.
• Must be eligible to work in the UK.