3 jobs found

Senior / Lead SOC Consultant Rate - £550 - £650 Inside IR35 Location - London - Three times a week on site Duration - 6 months initial We're looking for an experienced Contract Senior / Lead SOC Analyst to support, uplift and mature / drive an existing SOC function made up of four analysts. This role is ideal for someone who enjoys being hands-on while also leading by example, improving quality, driving improvements and taking pressure off the wider team. You will validate investigations, sense-checking responses and ensure recommendations made to the business are accurate, risk-based and actionable. What you'll be doing Reviewing, validating and supplementing analyst investigations and responses Ensuring alerts, incidents and recommendations are technically sound and business-appropriate Taking ownership of more complex or ambiguous security events Reducing operational load on the team by improving processes and decision-making Identifying opportunities for SOC automation and efficiency improvements Help develop analysts through knowledge-sharing, mentoring and guidance Acting as a trusted escalation point for SOC related security issues What we're looking for Strong experience working in a Security Operations Centre (SOC) environment Comfortable leading and uplifting a team, without being a formal people manager Proven ability to validate findings, challenge assumptions and improve investigation quality Experience improving or influencing SOC processes and automation Confident communicating risk and recommendations clearly to stakeholders Tech stack experience CrowdStrike (EDR) Microsoft Defender Splunk or similar SIEM tools Qualys (vulnerability management) Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.

Role: MS Defender Security Consultant Our client, a leading MSSP, is seeking an experienced MS Defender Security Consultant to play a key role in reducing alert backlogs and enhancing overall detection capability across their security operations. Role Details: Rate: Up to £500/day (Outside IR35) Location: Occasional travel to East Midlands Key Responsibilities: Design and develop high-fidelity threat detection use cases Review and refine existing incidents, including effective whitelisting to reduce false positives Tune and optimise detection rules across Defender and Sentinel Provide advanced analytical support within SOC environments Required Expertise: Strong, hands-on experience with Microsoft Defender Advanced Microsoft Sentinel skills, including KQL (SOC Level 3 capability) Demonstrated experience in threat detection engineering Solid understanding of modern attack techniques and methodologies Ability to adapt and optimise rules between Sentinel and Defender

Outside IR35, Dev/Sec Ops Engineer, Azure, AWS, Technical Blueprint, Best practice, Regulatory Environment background, London + West Midlands. We are seeking a Senior Dev Sec Ops Consultant to lead governance, architecture guidance, and assurance for cloud and infrastructure security across Microsoft Azure, AWS, and key SaaS platforms. This role is pivotal in defining technical blueprints, setting security standards, and ensuring regulatory compliance with Cyber Essentials Plus, ISO 27001, and Zero Trust principles. You will work closely with IT and platform teams to embed best practices, validate implementations, and support audit readiness across IaaS, PaaS, and SaaS environments. Key Responsibilities Define and maintain multi-cloud security standards and reference blueprints (eg Azure Policy/Initiatives, AWS Control Tower/SCPs) Own security architecture patterns and contribute to HLD/LLD, threat models, and risk assessments Set assurance criteria and control evidence requirements for internal teams and third-party vendors Establish policy-as-code requirements and maintain an exceptions register with expiry and risk ownership Define identity and access control standards (Entra ID Conditional Access, MFA, PIM; AWS IAM federation) Govern SaaS security onboarding (SSO, OAuth governance, DLP controls, vendor assessments) Specify telemetry and logging requirements for Microsoft Sentinel/SOC and review analytics/reporting Lead compliance mapping for ISO 27001 and curate audit-ready evidence packs Chair Cloud & Platform Security design reviews and participate in CAB for risk appraisal Strong regulatory sector experience Educate and influence teams through guidance, clinics, and coaching sessions Familiarity with IaaS, PaaS, SaaS risk models and audit frameworks Excellent written communication and facilitation skills to drive adoption and influence stakeholders Additional Skills Certifications: AZ-500, SC-100, SC-200, AZ-700, AWS Security Specialty, CISSP (or equivalents) Experience with blueprint catalogues and architecture governance processes Working knowledge of containers/Kubernetes (AKS/EKS) policy models While this role focuses on governance and assurance, hands-on use may be required for validation: Azure : Policy/Initiatives, Defender for Cloud, Entra ID, PIM AWS : Control Tower, SCPs, Security Hub, GuardDuty, IAM Security & Monitoring : Microsoft Sentinel (KQL), Defender XDR, audit dashboards Documentation & Governance : Blueprint repositories, risk registers, ITSM/CAB records If this role is of interest please send your CV to review ASAP