132 Security Operations jobs in the United Kingdom
Security Operations Manager
Posted today
Job Viewed
Job Description
About the Role
We are seeking an experienced Operations Manager to join our security team. The successful candidate will be responsible for managing day-to-day operations across multiple security contracts, ensuring high standards of service delivery, compliance, and client satisfaction.
Key Responsibilities
- Oversee security operations across assigned sites.
- Manage and support security officers, supervisors, and site managers.
- Ensure compliance with company policies, SIA regulations, and contractual requirements.
- Conduct site visits, audits, and inspections to maintain service standards.
- Liaise with clients regularly, resolving any issues and ensuring strong working relationships.
- Produce reports on performance, incidents, and staffing.
- Support recruitment, training, and performance management of staff.
- Participate in rota planning and ensure sufficient cover for all sites.
Requirements
- Previous experience as an Operations Manager in the security industry is essential.
- Strong knowledge of SIA standards and security operations.
- Excellent communication and client relationship management skills.
- Ability to lead, motivate, and manage teams.
- Strong organisational and problem-solving abilities.
- Full UK driving licence and flexibility to travel to sites as required.
Job Type: Full-time
Pay: £33,000.00 per year
Language:
- English (preferred)
Work Location: In person
Security Operations Engineer
Posted today
Job Viewed
Job Description
Company Description
Come join us and make a difference in the world
Discover more at
Job Description
We're on the lookout for someone with expertise in VMware Infrastructure based on Dell/HP server hardware with an emphasis on maintaining the environment to the latest security releases. The individual will be involved in providing high quality Infrastructure management to a large multi-client community as part of a focused security team. This individual will play a pivotal role, alongside the rest of the security team, to ensure environments are protected from known vulnerabilities, hardware is kept up to recommended BIOS/Firmware, ensuring contractual accreditation obligations are met. The individual will also require a strong background in the Windows server environment, and a working knowledge of Linux operation systems and NetApp SAN environments.
Essentially, We're Looking For An Individual Who Can Technically Manage The Security Of The VMware Infrastructure, Organise The Application Of Any Security Fixes And Schedule Routine Patching. This Will Involve Communication With Other Parts Of The NEC Business Units To Coordinate Implementations As Often This Is Performed In Parallel With Other Works. We Are Looking For Someone Who Could Work 2-3 Days Per Week From One Of Our Main Offices – And The Rest From Home. Our Offices Include
- Bracknell
- Hemel Hempstead
- Nottingham
- Hartlepool
- Alderley Edge
- Worcester
Roles & Responsibilities
VMWARE
- Implement scheduled updates to the multiple VMware vSphere Infrastructure environments across our datacentres.
- Ensure that the Dell/HP server hardware BIOS/Firmware is maintained to vendor recommended versions and in alignment with the VMware interoperability matrix.
- Implement updates to various VMware Aria Suite appliances (Automation, Operations, etc).
- Assist the wider security team to assess and resolve any known CVE's (Common Vulnerabilities and Exposures).
Qualifications
Qualifications
Essential
- Recent experience in a role focused on VMware vSphere Infrastructure environments.
- Extensive hands-on expertise with VMware platforms (GUI and CLI).
- Experience working with NetApp storage systems, alongside strong proficiency in Windows environments and exposure to Linux operating systems.
- A strong background working with Dell & HP server hardware.
- Eligible for Security Clearance
Desirable
- Experience working within an ITIL Environment
- Experience working within a large-scale Data Centre Environment
- Basic Understanding of Network Infrastructure – i.e. Routing, DNS.
Additional Information
Benefits
We pride ourselves in offering an excellent benefits package, including an above average pension scheme. When you join the team at NEC Software Solutions, you are provided with the following:
- Private Medical Cover funded by NEC for Employees (with the option to add family members at an additional cost)
- 25 days paid holiday with the option to buy/sell (FTE)
- 4 x basic salary life assurance cover funded by NEC (with the option to increase cover at an additional cost)
- A Group Pension Plan with fantastic employer contributions up to a maximum of 8.5%
- A selection of flexible benefits to suit your individual needs
- All colleagues get free access to LinkedIn Learning. Over 15000 courses covering a huge breadth of subjects. Learn about what you like, when you like, how you like.
Other Information
- Candidates must be able to demonstrate a pre-existing right to work and travel within the UK. Documentary evidence will be required.
- All offers are subject to satisfactory vetting, references and occupational health checks.
- Depending on the nature of the role a Disclosure Barring Service (DBS) check may also be required along with further vetting checks like SC and NPPV3
NEC Software Solutions is an equal opportunities employer, welcoming applications from all communities. If you require any reasonable adjustments or have specific accessibility needs during the recruitment or interview process, please feel free to share these with us. We are committed to ensuring an inclusive and accommodating experience for all candidates.
Who We Are
We're NEC Software Solutions (part of global tech giant NEC Corporation). While you read this ad, our software is helping to dispatch ambulances, support families, keep trains on the move, locate missing people and even test the hearing of newborn babies.
Working with us, you'll be helping our 3,000+ employees push the boundaries of what's possible and support amazing public services.
We work with governments, hospitals, police forces, housing providers, local authorities and more. We help them pay financial support faster, speed up treatments for patients and respond to emergencies in the right way. The more we do, the more our customers can do for others. And together, we make a world of difference.
We'd love your help. And we'll support you all the way.
Security Operations Administrators
Posted today
Job Viewed
Job Description
MAN Commercial Protection are looking for full time Security Operations Administrators to join our Head Office Team in Solihull.
Shift pattern: 4 on 4 off 12 hour day shift.
Shift timings will be: 06:30-18:30.
Payrate: £13.50ph
Main Responsibilities:
- Manage a high volume of calls from colleagues and customers, ensuring issues are resolved in a prompt/efficient manner
- Assisting colleagues across the UK with booking on/off processes
- Report writing/completing incident forms
- Rostering/ scheduling, regularly communicating with site leaders and making required changes and updates
- Ensure any health & safety or HR issues are escalated accordingly
- Problem solving by liaising with contract managers regarding workplace issues, activity reports, complaints, and queries.
- Handling a high volume of both inbound and outbound calls from all levels throughout the organisation.
- Proactively keep up to date on new procedures, systems and information regarding the standard operation protocols of the company.
- Maintaining and sustaining an updated knowledge of all aspects of the company.
The ideal candidate will:
- Be passionate about delivering excellent customer service
- Have experience of a workforce management system
- Have a genuine desire to help push the business forward, looking at ways to continuously improve processes
- Have excellent communication skills
- Be able to work within a team as well as on their own and unsupervised
- Possess excellent communication and IT systems skills
- Can work under pressure whilst maintaining a positive attitude
- Have good time management skills
- Be able to work shift patterns and provide flexibility, where required
Qualifications and experience:
- Experience in the security industry would be advantageous but not essential
- Call centre / Helpdesk experience advantageous
- Experience using a time and attendance or workforce management system
- Knowledge of MS Office, Excel and Outlook advantage but not essential
- Experience of working on the telephones essential
- Experience of working with Timegate or similar roster management/time management software is preferred however not essential.
- SIA DS and CCTV are advantageous but not essential as training can be provided
Skills Required.
- A valid SIA SG or DS Licence - (CCTV Licence is advantageous but not essential as training will be provided)
- Competent computer skills with a good knowledge of computer systems.
- Excellent communication skills
- Ability to create comprehensive incident reports
- Ability to work independently and as part of a team
- A 5-year checkable work/education history is required
- Happy to help others attitude
Benefits:
- Full uniform supplied.
- Access to in-house training CCTV and First Aid
- Free International Professional Security Association (IPSA) membership
- Perks at Work High Street Discount Scheme
- Access to 24-hour counselling helpline through IPSA
- Access to 24-hour legal helpline through IPSA
- Double pay on Bank Holidays
- Full training provided
- Free parking
- Overtime available on request
If this sounds like the ideal role for you, please apply with your CV. We look forward to hearing from you
IND10
Security Operations Specialist
Posted 2 days ago
Job Viewed
Job Description
Senior SecOps Specialist
Location – Fully Remote
Salary - £80-90k + Bonus + Benefits
Currently working with a UK HealthTech firm who are in the process of building out their Cyber Defence capability and looking to bring in a cloud-based Security Operations Specialist.
This is a wide ranging role where you’ll be responsible for both Engineering and Analysis; monitoring and responding to incidents whilst also developing new detection rules and enhancing their monitoring infrastructure and tooling.
This is an incredible opportunity for an experienced SecOps specialist with experience of both SecOps Analysis and Engineering to join a growing yet established firm at a crucial point as they completely build out their Information and Cyber Security capability. Whilst they have the fundamentals in place, this is a relatively greenfield SOC buildout, where you will work alongside the SOC Manager to shape their SOC monitoring, detection and response function.
Key Responsibilities:
- Act as a lead and technical escalation point on the most complex incidents and investigations.
- Develop and engineer new detection rules, automating monotonous tasks where possible.
- Proactively research emerging and potential threat actors as a way of developing rules to safeguard against potential future threats.
- Mentor and train junior team members through complex incident response investigations.
Key Requirements:
- Significant experience working in a SOC environment (5 years minimum) , dealing with and responding to escalated and most high profile incidents.
- Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc.
- Experience working in hybrid-cloud SOC environments – Azure/AWS preferably.
- Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering and Automation.
If you’re an experienced SecOps Specialist, looking to shape how one of the most innovative HealthTech firms build out their cyber defence capability and leave a lasting impact on one of the most reputable organisations whilst working alongside a team of genuine Cyber Security SMEs, click the to apply or get in touch directly –
Security Operations Specialist
Posted 2 days ago
Job Viewed
Job Description
Senior SecOps Specialist
Location – Fully Remote
Salary - £80-90k + Bonus + Benefits
Currently working with a UK HealthTech firm who are in the process of building out their Cyber Defence capability and looking to bring in a cloud-based Security Operations Specialist.
This is a wide ranging role where you’ll be responsible for both Engineering and Analysis; monitoring and responding to incidents whilst also developing new detection rules and enhancing their monitoring infrastructure and tooling.
This is an incredible opportunity for an experienced SecOps specialist with experience of both SecOps Analysis and Engineering to join a growing yet established firm at a crucial point as they completely build out their Information and Cyber Security capability. Whilst they have the fundamentals in place, this is a relatively greenfield SOC buildout, where you will work alongside the SOC Manager to shape their SOC monitoring, detection and response function.
Key Responsibilities:
- Act as a lead and technical escalation point on the most complex incidents and investigations.
- Develop and engineer new detection rules, automating monotonous tasks where possible.
- Proactively research emerging and potential threat actors as a way of developing rules to safeguard against potential future threats.
- Mentor and train junior team members through complex incident response investigations.
Key Requirements:
- Significant experience working in a SOC environment (5 years minimum) , dealing with and responding to escalated and most high profile incidents.
- Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc.
- Experience working in hybrid-cloud SOC environments – Azure/AWS preferably.
- Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering and Automation.
If you’re an experienced SecOps Specialist, looking to shape how one of the most innovative HealthTech firms build out their cyber defence capability and leave a lasting impact on one of the most reputable organisations whilst working alongside a team of genuine Cyber Security SMEs, click the to apply or get in touch directly –
Security Operations Analyst
Posted 8 days ago
Job Viewed
Job Description
We are seeking for a passionate cybersecurity professionals to join our growing team of Defenders. In this role, you will proactively detect, investigate, and respond to advanced threats across enterprise environments using cutting-edge and AI enabled security tools and threat intelligence. The ideal candidate combines strong security expertise with a curious mindset and skills to conduct deep threat analysis.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.
**Responsibilities**
**Responsibilities**
+ Monitor, triage, and respond to security incidents using alerts and incidents from Microsoft Defender products (MDE, MDI, MDO, MDA, MDC etc.)
+ Perform proactive threat hunting using hypothesis, and telemetry from endpoints, identities, cloud and network.
+ Develop hunting queries using Kusto Query Language (KQL) or similar to uncover suspicious patterns and behaviors.
+ Investigate security incidents across hybrid environments and contribute to root cause analysis and containment strategies.
+ Collaborate with internal teams (defender, threat intelligence, engineering) to enhance detection logic, develop automations, and improve incident response workflows.
+ Contribute to incident documentation, detection playbooks, and operational runbooks.
+ Stay current with evolving threat landscapes, cloud attack vectors, and advanced persistent threats (APT).
**Qualifications**
**Required Qualifications:**
+ Graduate degree in engineering or equivalent discipline.
+ Experience in cybersecurity (SOC, IR, Threat Hunting, Red Team).
+ Hands-on experience with SIEM, EDR, and cloud-native security tools (Microsoft XDR, Sentinel, CrowdStrike, etc.).
+ Experience with at least one cloud platform (Azure, AWS, GCP) and its associated security services and configurations.
+ Proficiency in KQL, Python, or similar scripting languages for data analysis and automation.
+ Strong knowledge of MITRE ATT&CK, Cyber Kill Chain, and adversary TTPs.
+ Familiarity with operating system internals (Windows, Linux) and endpoint/network forensics.
+ Certifications like CISSP, OSCP, CEH, GCIH, AZ-500, SC-200 or similar/equivalent are a plus.
**Preferred Qualifications:**
+ Strong problem-solving and analytical mindset.
+ Excellent communication skills, able to explain technical risks to non-technical stakeholders.
+ Collaborative, team-first approach with ability to influence without direct authority.
+ Continuous learner with a passion for security.
#CISOOrg #RegulatedIndustries
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .
Security Operations Manager

Posted 6 days ago
Job Viewed
Job Description
**Security Operations Manager**
**About Us**
NTT DATA is one of the world's largest global security services providers, with over 7,500 security SMEs. We work with leading security technology vendors and pride ourselves on delivering innovative and effective solutions. Our people, clients, and communities are at the core of what we do. We're seeking individuals passionate about building a more secure and sustainable world.
**Role Purpose**
As a Security Operations Manager, you will oversee the day-to-day operations of the Security Operations Centre (SOC). You will lead a team of security analysts and engineers to deliver high-quality services, respond to incidents, and improve operational performance. This role focuses on managing service delivery, supporting incident response, and ensuring operational efficiency within established frameworks and guidelines.
**What you'll be doing:**
**What you'll be doing;**
**Service Delivery**
+ Manage and oversee SOC operations and delivery of managed security services to clients.
+ Monitor service performance against SLAs and KPIs, ensuring consistent and high-quality execution.
+ Implement standard procedures and best practices for incident management, threat monitoring, and vulnerability assessments.
+ Serve as the escalation point for client concerns and day-to-day operational issues.
+ Conduct regular reviews and contribute to client reports and communications.
**Incident Response Support**
+ Coordinate and manage incident response efforts in collaboration with senior SOC staff and technical teams.
+ Ensure timely detection, escalation, containment, and resolution of security incidents.
+ Support post-incident reviews and help implement recommendations for continuous improvement.
**Team Leadership & Development**
+ Lead and mentor a team of SOC analysts, providing regular feedback and training.
+ Organise team schedules to maintain 24/7 SOC coverage (if applicable).
+ Promote knowledge sharing and adherence to operational playbooks and standards.
**Operational Improvements**
+ Identify opportunities to streamline processes and improve SOC effectiveness.
+ Support implementation of tools and automation to enhance detection and response.
+ Assist with operational maturity assessments and track metrics like MTTD and MTTR.
**Collaboration and Reporting**
+ Work with internal stakeholders and technical teams to ensure smooth service delivery.
+ Provide input into customer-facing documentation, such as incident summaries and operational dashboards.
+ Maintain awareness of emerging threats and ensure appropriate measures are taken.
**Key Performance Indicators (KPIs)**
+ Reduction in MTTD and MTTR.
+ Adherence to SLA and KPI targets.
+ Client satisfaction and feedback scores.
+ Team performance and skills development.
+ Operational compliance and audit readiness.
**What experience you'll bring:**
**What you'll bring;**
We're looking for a hands-on, proactive professional with the following:
+ 5+ years in a Security Operations Centre or related security environment.
+ At least 2 years of experience in a team lead or supervisory role.
+ Strong understanding of incident detection, escalation, and resolution processes.
+ Experience with tools like SIEM, IDS/IPS, endpoint protection, and threat intelligence platforms.
+ Ability to manage team performance and guide junior staff in their development.
+ Excellent verbal and written communication skills.
+ Strong attention to detail and commitment to quality.
+ Relevant certifications (e.g., CompTIA Security+, GCIH, SSCP, CEH); CISSP or CISM is a plus but not mandatory.
+ Eligible for UK SC clearance.
**Who we are:**
We're a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects.
Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women's Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network.
For more information on Diversity, Equity and Inclusion please click here: Creating Inclusion Together at NTT DATA UK | NTT DATA ( we'll offer you:**
We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.
You can find more information about NTT DATA UK & Ireland here: are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team.
Back to search Email to a friend Apply now
Be The First To Know
About the latest Security operations Jobs in United Kingdom !
Security Operations Director

Posted 6 days ago
Job Viewed
Job Description
**Security Operations Director JD**
We are currently recruiting for a dynamic Security Operations Director to join our growing Security Operations Centre business.
This vacancy is hybrid variable Birmingham or London
**About Us**
NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to do great things. We believe that by bringing everyone together, we can solve problems using innovative technology that can create a world that is sustainable and secure.
This is a great opportunity for you to play a pivotal role in helping to shape our client's transformation journeys.
**What you'll be doing:**
**What you'll be doing;**
The Security Operations Director is responsible for overseeing security operations at both strategic and operational levels. The role ensures the effectiveness of security practices, manages incidents, drives operational maturity improvements, and oversees containment and recovery activities. Operating at SFIA Level 6, the role requires the initiation, definition, and oversight of high-impact security operations activities, including incident response, operational maturity improvement, containment, and recovery efforts. The Director is responsible for aligning security initiatives with business objectives and ensuring the organisation's resilience against evolving threats.
**What to expect:**
Using your background in SOC Service Delivery background and experience, you will:
+ **Pre-Sales Support and Business Development**
+ Partner with sales and business development teams to define and articulate the value proposition of the security offerings, including SOC services, incident response, threat intelligence, vulnerability management, and compliance.
+ Represent the security operations function in client engagements, pre-sales discussions, and technical assessments, positioning the organisation's capabilities to meet client needs.
+ Design and present tailored solutions and service models based on customer-specific challenges, industry regulations, and threat landscapes.
+ Collaborate with delivery teams to create accurate statements of work (SOWs) and ensure alignment between client requirements and achievable security operations deliverables.
+ Influence product roadmaps by providing feedback from client conversations, ensuring services meet market demands and technological advancements.
+ **Service Delivery Assurance**
+ Oversee the performance and quality of security services delivered to customers, ensuring compliance with agreed service-level agreements (SLAs) and adherence to key performance indicators (KPIs).
+ Implement governance mechanisms to standardise service delivery processes, ensuring scalability and operational consistency.
+ Drive the adoption of best practices, playbooks, and standardised methodologies to optimise efficiency and ensure repeatable, high-quality engagements across the MSSP space.
+ Act as the primary escalation point for high-profile or complex client engagements, resolving concerns effectively to maintain satisfaction and long-term partnerships.
+ Conduct regular client reviews to assess alignment with evolving business needs, strengthen relationships, and identify opportunities for service enhancements or upselling.
+ **Budget and Financial Management**
+ Develop and manage the overall financial plan for the security operations function, including budgeting, cost control, and profitability analysis.
+ Monitor operational expenses and identify opportunities for cost reduction through improved processes, technology adoption, and automation.
+ Ensure the profitability of MSSP services through meticulous financial forecasting, revenue tracking, and margin analysis.
+ Track the return on investment (ROI) of SOC tools, technologies, and team members, ensuring financial decisions support the organisation's strategic goals.
+ Collaborate with finance teams to refine MSSP pricing models, maintaining market competitiveness while ensuring profit margins meet or exceed targets.
+ Lead efforts to reduce non-billable activities and maximise the utilisation of SOC personnel for billable client engagements.
+ **Incident Response and Management**
+ Develop and implement incident response frameworks and playbooks in alignment with industry best practices (e.g., NIST CSF, MITRE ATT&CK, ISO 27035) to standardise and optimise response efforts.
+ Oversee the deployment, configuration, and utilisation of security tools such as SIEMs, IDS/IPS, endpoint protection systems, forensics tools, and threat intelligence feeds to enhance detection and response capabilities.
+ Direct teams during high-severity incidents, ensuring coordination between SOC teams, internal business units, and external stakeholders to minimise business disruption.
+ Act as the primary escalation point for operational challenges during incident response processes and ensure timely resolution of complex technical security incidents.
+ Supervise the execution of routine security operations, including monitoring, vulnerability assessments, penetration testing, and remediation, ensuring compliance with organisational and regulatory security policies.
+ Drive post-incident reviews to evaluate response effectiveness, extract insights, and implement lessons learned to improve future incident handling.
+ Leverage insights from incidents and operational metrics to identify weaknesses in existing systems or processes and recommend long-term improvements.
+ **Security Operations Maturity Improvement**
+ Assess the overall maturity of the Security Operations Center (SOC) against industry-accepted models (e.g., SOC-CMM) and implement improvements.
+ Drive automation and modernisation initiatives, such as deploying SOAR tools to improve response times and process efficiency.
+ Define and monitor metrics such as Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR), ensuring continuous operational improvement.
+ Strengthen SOC team capabilities through tailored training programs and coaching, promoting professional development.
**Key Performance Indicators (KPIs)**
+ Reduction in Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR).
+ Success rate of incident containment efforts within predefined response windows.
+ Time to full system recovery after incidents, aligned with BC/DR objectives.
+ SOC maturity improvements against established benchmarks (e.g., SOC-CMM).
+ Satisfaction levels of stakeholders during significant incidents and operational reviews.
+ Operation of the Security Operations in line with financial revenue, growth and profitability targets
**What experience you'll bring:**
**What you'll be doing;**
It starts with amazing people, challenging projects and a work environment that supports the creation of tangible solutions that make an impact. You will need to have a broad experience of security service delivery management and have evidence of experience in a number of the following fields of expertise:
+ At least 10 years of experience in providing technical support and advice for a Security Operations Centre and 5 years in leadership role managing SOC's and Security Operations.
+ Proven success in managing large-scale incident response, enhancing operational maturity, and aligning security strategies with organisational goals.
+ Excellent communication and client relationship skills to interface with clients, stakeholders, and senior leadership.
+ Significant experience and ability to manage and lead in crisis situations, ensuring a swift and effective response.
+ Demonstrable experience in leading and coordinating diverse teams effectively.
+ Excellent English writing skills for technical documents and improving processes (such as policies and reports).
+ Outstanding English verbal communication skills with the ability to explain things in a clear and non-technical way.
+ Strong attention to detail and the ability to deliver high quality work and build high performing teams.
+ A relevant and recognised professional Security / Risk / Compliance certification supporting the role, such as CISSP, CISM, CCISO, GCIH, CRISC, etc.
+ A valid right to work in the UK.
+ Have held UK SC clearance or be eligible for obtaining UK SC clearance.
**Who we are:**
We're a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects.
Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women's Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network.
For more information on Diversity, Equity and Inclusion please click here: Creating Inclusion Together at NTT DATA UK | NTT DATA ( we'll offer you:**
We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.
You can find more information about NTT DATA UK & Ireland here: are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team.
Back to search Email to a friend Apply now
Security Operations Center Architect
Posted today
Job Viewed
Job Description
- Role: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence.
- Key Responsibilities:
- Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring and incident response.
- Log Source Integration Configure and onboard diverse log sources including Nozomi Networks, firewalls, EDR (e.g., Defender for Endpoint), VMDR (e.g., Qualys), and other OT/IT systems into Sentinel.
- Custom Analytics & Detection Rules Develop, and fine-tune KQL-based analytics rules tailored to OT threat scenarios, ensuring high-fidelity alerts and minimal false positives.
- Threat Intelligence Integration Integrate threat intelligence feeds into Sentinel to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security events.
- Execution of the use cases on SIEM, SOAR & Threat Intelligence
Build custom workbooks and dashboards to visualize OT security posture, threat trends, and SOC performance metrics
Security Operations Center Analyst
Posted today
Job Viewed
Job Description
ROLE TITLE: SOC Analyst
LOCATION: flexible (can be mostly remote, must be based in UK)
CLEARANCE: SC cleared, or eligible for SC clearance
Salary: £35k - £41k
The ideal candidate will have active SC Clearance or be eligible to undergo SC Clearance.
We are actively looking to secure an SOC Analyst to join Experis.
Experis Consultancy is a Global entity with a well-established team with over 1000 consultants on assignment across 20 clients globally. Our UK operation is growing and has very aggressive plans for expansion over the coming years. We form part of the Manpower group of companies that turn over $20 billion a year collectively.
Experis UK have partnerships with major clients across the UK spanning multiple industries; our approach is a very personal one, with both our clients and our own employees. We are passionate about training, technology and career development.
Key accountabilities of the role
- A SOC Analyst will be responsible for providing Protective Monitoring Services across a range of Secure Customers.
- They will be responsible for the day to day monitoring using various SIEM Tools (Qradar, Sentinel & LogRhythm). Some of the responsibilities that come along with this role include the following: Security Analytics Incident investigation, triage and escalation Threat monitoring and response Trend reporting Rule tuning and continual service improvement
- The role involves working alongside other team members including SOC engineers and Service Managers.
Skills required:
- Microsoft Certified: Security Operations Analyst Associate Certification (SC200) is a mandatory requirement for role fulfilment
- Experience working with SIEM technologies and security tooling
- An understanding of IT Infrastructure and Networking An understanding of vulnerability and threat management
- An understanding of the incident response lifecycle T
- he ability to work in a close team and independently
- The ability to be adaptable to a high pace changeable workload
- An interest in security and threat management
Benefits Include:
- Contributory pension scheme
- Employee Assistance Program
- Medical and Dental cover
- 22 days holiday + bank holidays
- Maternity Pay/Shared Parental leave and paternity leave
- Sick pay
Suitable Candidates should submit CVs in the first instance.