246 jobs found

A cybersecurity firm in Basingstoke is looking for a SOC Analyst to monitor and investigate security events in a dynamic environment. This role offers career development pathways into various security functions. Ideal candidates will have SOC experience or a background in networking with a focus on security. The position is home-based with occasional office visits, requiring flexibility in hours for major incidents.

T2 Cyber Security Analyst - Enterprise Markets Bradford, UK Job Description Posted Thursday 5 February 2026 at 01:00 Cyber Security Analyst (Tier 2) Hybrid working from Bradford A bit about us At Gamma, we're more than just a leader in Unified Communications as a Service (UCaaS) - we're a dynamic, forward-thinking team revolutionizing the way businesses connect and communicate. We provide voice, data, and mobile solutions to businesses across the UK, Germany, Spain, and the Benelux region, and we're expanding rapidly to bring digital automation and Gamma-powered services to SMEs through a growing network of channel partners. We move fast with a start-up mindset, but we have the stability of a leading European business. Our team thrives on collaboration, innovation, and the belief that diverse perspectives make us stronger. Join us, and you'll have the opportunity to make an impact, grow your career, and be part of a company that celebrates inclusivity and fresh ideas. Who are we looking for? Join our dedicated customer on-prem service desk team to monitor and respond to cybersecurity incidents for our strategic customer. Your focus will be on detecting, investigating, and resolving security incidents, utilizing your technical skills and security knowledge. As a Cyber Security Analyst - Tier 2 you will report to the Service Desk Manager and support our Managed Detection and Response (MDR) technologies and security incident handling. The ideal candidate will have a good understanding of security principles, networking, threat actors, and threat vectors. Finally, you will possess good problem-solving and communication skills to take a proactive approach to identifying areas of customer security improvements. In this fast-paced environment, you will regularly collaborate with experienced security professionals to enhance our customers' security posture from emerging cyber threats 24/7/365. What will you be doing day-to-day? Analysis: Monitor and analyse security alerts using SIEM tools, conduct initial triage of incidents, and assist in investigating breaches and vulnerabilities through a ticketing system. Documentation: Record incidents, actions taken, and provide resolutions per company SOPs. Customer Support: Address security and technical queries, escalate issues as needed, often reporting in to customer senior management. Collaboration: Work with team members to enhance security protocols and improve incident response. Working closely with internal network support teams and 24/7 SOC. Incident Handling: Provide initial triage of alerts, escalate incidents to customers and where applicable senior analysts. Security Measures: Assist in implementing security measures like tuning and use case development. Communication: Collaborate with cross-functional teams, communicate security requirements to stakeholders, and ensure successful handovers to support teams. Research: Proactively stay informed about emerging threats, technologies, and regulatory changes. What you'll need: Experience dealing with attack types, threat detection, incident response, risk management, and familiarity with security tools (e.g., SIEM, Firewalls, IDS/IPS, Antivirus). Understanding of TCP/IP, VPNs, Firewalls, Common Ports, OSI Model. Understanding of Best Practices, Security Standards, Policies, and Governance frameworks . Basic knowledge of hybrid cloud architectures and their complexities. Understanding of corporate networks, attack vectors, threat actor TTPs, and various threat intelligence models. Ability to make decisions under pressure. Strong Problem-Solving skills. Strong communication and interpersonal skills. What do we offer you? At Gamma, we believe in work-life balance, which is why we offer 25 days of annual leave, plus an extra day off for your birthday. Giving back is important to us, so we also provide a volunteer day to support a charity that matters to you. Family matters, too. With enhanced maternity and paternity pay, we're here to support you as a parent and help you thrive in your career. We offer a contributory pension plan to help you save for the years ahead, with Gamma's contribution varying dependant on yours. Your well-being is our priority. We offer group income protection and life assurance (four times your salary) to ensure peace of mind for you and your loved ones. We want you to share in our success. That's why we offer tax-efficient share save and share incentive plans, giving you the opportunity to benefit from Gamma's growth. We're committed to health, both physical and mental, and provide private medical insurance through Vitality, which extends to your immediate family And, because we care about the environment, we offer an Electric Vehicle scheme through Octopus and a Cycle to Work scheme, making it easier to get around sustainably. A few things to note Unfortunately, we can't offer visa sponsorship or relocation support for this role. This role requires hybrid working from our client site in their Bradford office. If you feel you could be a good fit for Gamma but do not think that you meet all the requirements, we still encourage you to apply as you could be the person that we are looking for! Gamma is an equal-opportunity employer. We care about inclusion and believe in having diverse teams where everyone can be their true authentic selves. We value each person and their range of backgrounds and actively encourage people from underrepresented backgrounds to apply. We don't discriminate based on any protected characteristics e.g., race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, marital status, disability, or age. We are a family-friendly employer with a culture based on trust, autonomy, and flexibility to help you create a work-life balance and enjoy working here at Gamma. For recruitment agencies - we have a network of fantastic partners that support us in our hiring from time to time. We're not looking to increase that network currently, so please don't send speculative CVs.

Overview Business Unit: Chief Operating Office Salary Range: £28,800 - £36,000 per annum DOE+ shift allowance + benefits Location: UK Hybrid with occasional travel to key hubs when required. Contract Type: Permanent Working Pattern: This role operates on a shift pattern of 3 days, 3 off, 3 nights, 3 off Our Team This role sits within the Detect & Respond sub-team of the Group Security Operations Centre, under the Cyber Security tower in Security & Resilience. Working with the team you will be analysing and responding to security events as they surface, making initial judgements as to possible severity, seeking support and guidance where needed, and escalating or developing mitigation recommendations to help defend our systems and data. Your role will often require close collaboration with other parts of the business to help identify, enable, and drive the right investigation steps and response actions. The GSOC defends the whole of Nationwide and Virgin Money's estate, both Member-facing and support capabilities, requiring engagement and communication with both technical and non-technical teams across the business. You'll help mature our internal processes, developing or defining appropriate detection, response and containment capabilities as well as contributing to the GSOC Strategy. You will help shape our future technology direction, suggesting and assisting with innovative ways to combat contemporary cyber threats so we remain fit to find and confront malicious activity. What you'll be doing You'll be handling cyber security alerts from triage through to closure, making and evidencing high quality decisions and escalating where appropriate There will be opportunities to play a supporting role in Incident Response activities to enable the prompt identification, investigation and mitigation of threats, acting across various roles and responsibilities to achieve cyber risk reduction in cloud, hybrid and on-premises environments You'll be expected to identify potential service improvements to enable GSOC Detect & Respond to operate more effectively and efficiently, providing feedback and taking ownership to deliver improvement activities where appropriate Supporting BAU operational demands, including process/playbook development, use case review, and the collection and production of Management Information This role will require you to work closely with other teams across S&R, TOCs and COO to drive positive security outcomes We need you to have Experience of working within a Cyber Security (e.g., SOC, Cyber Incident Response, Penetration Testing) or IT (e.g. Service Desk, Sysadmin) role A problem-solving mindset, with the ability to use structured and analytical approaches Demonstrable knowledge of basic IT concepts, including but not limited to Networking, Hardware, Operating Systems & Cloud Computing Working knowledge of core Cyber Security concepts and tooling, and the ability to apply this understanding to investigations The ability to build good working relationships with both technical and business stakeholders, gaining their respect and trust based on your knowledge and professionalism The ability and desire to quickly learn new technologies It's a bonus if you have but not essential CompTIA Security+ (or equivalent Defensive Security certification) CompTIA Network+ (or equivalent Networking certification) Certified Ethical Hacker (or equivalent Offensive Security certification) MS SC-200 (or equivalent Security Tooling certification) Red Hot Rewards 25 days holiday per year, increasing over time to 30. Plus, an option to buy more, giving you even more choice. Private medical insurance A highly competitive pension to help you build a strong foundation for retirement Access to an annual performance-related bonus Training and development to help you progress your career A great selection of additional benefits through our flexible benefits scheme Life assurance to provide peace of mind for you and your loved ones Up to 2 days of paid volunteering a year If we're lucky to receive a lot of interest, we may close the advert early. Please ensure to submit your applications as soon as possible. Say hello to Virgin Money Virgin Money is so much more than just a bank. As part of theNationwide group,together we're the UK's first full-service mutual bank serving millions of retail and business customers and all driven by our purpose. Banking but fairer, more rewarding and for the good of society. With us, you'll be part of an organisation uniquely positioned to make a difference to the lives of customers, communities and broader society and embark on a collaborative, customer obsessed, and fun-filled career journey. Embrace the weekdays, enjoy fantastic perks, and make a meaningful positive difference. Time to discover what it means to be part of the first mutual full-service banking provider. Be yourself at Virgin Money At Virgin Money, we celebrate everyone. We have fun, think big, and relentlessly include each other, all in pursuit of our purpose: Banking - but fairer, more rewarding, and for the good of society. We're committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team. Please note: If we receive a high volume of eligible applications, we may need to prioritise candidates whose skills and experience most closely align with the role, while still ensuring fair and equitable consideration for all applicants. Now the legal bit We're in the process of bringing Virgin Money and Nationwide together which, subject to Court approval, will happen on 2 April 2026. You can find out more about what this means at the Nationwide transfer page. If you're successful in securing a role with us, your employment will move automatically to Nationwide when this transfer goes ahead. Although some of our roles allow you to be based anywhere in the UK, we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks - we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks.

Overview Nomios' mission is to build a secure and connected future. Organisations across the globe depend on us to help secure and connect their digital infrastructures. As part of our continued UK growth, we are expanding our Professional Services capability and seeking a Senior Security Engineer to deliver specialist security engineering and operations consultancy across our customer base. This is a hands-on technical role within the Security Operations domain, focused on helping customers improve and automate their SOC functions, tooling, and detection capabilities. You will work across a range of technologies and engagements, from SOAR and SIEM implementation through to vulnerability management, exposure management, and process automation. Responsibilities Key responsibilities of the role include: Deliver Deliver Professional Services engagements across SOAR, SIEM, XDR, vulnerability and exposure management platforms Conduct Azure and cloud environment security health checks and configuration reviews Design and build SOAR playbooks, integrations, and automation frameworks Develop and maintain custom log source parsers, normalisation, and correlation logic Deploy, configure, and optimise SIEM and XDR solutions for customer environments Build and tune vulnerability management workflows and dashboards using common tools such as Rapid7, Tenable, and Qualys Perform CTEM-related assessments using tools such as Cymulate or XM Cyber Produce clear technical documentation and customer deliverables following each engagement Collaborate Work closely with the internal SOC Engineering team to align practices and share technical improvements Support engineering escalations and onboarding for customer environments Contribute to engineering design sessions, roadmap planning, and internal innovation projects Mentor and share knowledge with internal engineers and analysts Improve Identify and implement automation and efficiency improvements across customer and internal toolsets Contribute to the development of reusable playbooks, connectors, and integration frameworks Support the continual enhancement of Nomios' Professional Services delivery templates, labs, and testing environments We hire result-orientated, smart, and high-energy individuals who bring a can-do attitude and a willingness to go the extra mile and deliver exceptional outcomes. You should be organised and rigorous, with excellent analytical skills. Good communication with internal stakeholders is vital, as is the ability to work as part of a dynamic team. Required skills Minimum 1 year in a Security Operations Centre (SOC), or Minimum 3 years in infrastructure or networking roles with demonstrable security exposure Experience triaging and investigating security alerts Understanding of attacker behaviours, TTPs, and common malware execution chains (e.g., phishing leading to script or binary execution) Ability to recognise indicators of compromise such as unusual processes, network connections, irregular logon activity or file changes Hands-on experience with at least one major security platform (SIEM, EDR or XDR) Familiarity with ticketing tools such as ServiceNow, Salesforce, or JIRA Familiarity with Windows event logs, authentication logs, basic process trees, and command-line tools (Windows & Unix-like systems) Understanding of core network protocols: DNS, HTTP, SMB, LDAP Operational knowledge of Windows, macOS and Linux Ability to read and interpret logs from multiple sources Awareness of MITRE ATT&CK and differentiating legitimate admin activity vs suspicious behaviour Desirable skills Experience with Microsoft Sentinel, Google SecOps or other SIEM platforms Experience with Defender, CrowdStrike, SentinelOne or other XDR solutions Ability to query in KQL, CQL, S1QL, XQL or similar languages Awareness of threat intelligence concepts and application to investigations Awareness of coding or scripting, with proficiency in at least one language preferred (but not required) Job specifics Location: This role is home-based with occasional visits to the office in Basingstoke Security clearance: Eligibility for SC clearance (lived in the UK for five years consecutively) required. DV clearance eligibility is advantageous. Why join Nomios? We invest in our people. You will get to work in a dynamic, fast-paced environment where you are free to use your initiative in support of our strategic objectives. You will work alongside high calibre sales, technical, and operational experts as part of a supportive, tight-knit team, within which every individual has an important part to play and makes a real difference. Nomios offers a highly competitive salary and commission scheme along with industry-leading benefits. Ready to make an impact? Apply now! Nomios is an equal opportunity employer and is committed to creating and sustaining an environment in which everyone is provided with an equal opportunity to grow and develop, and no individual will be unjustly discriminated against. This includes, but is not limited to, discrimination because of age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion and belief, sex and sexual orientation.

Overview What we're all about. Do you ever have the urge to do things better than the last time? We do. And it's this urge that drives us every day. Our environment of discovery and innovation means we're able to create deep and valuable relationships with our clients to create real change for them and their industries. It's what got us here - and it's what will make our future. At Quantexa, you'll experience autonomy and support in equal measures allowing you to form a career that matches your ambitions. 41% of our colleagues come from an ethnic or religious minority background. We speak over 20 languages across our 50+ nationalities, creating a sense of belonging for all. We're heading in one direction, the future. We'd love you to join us. The opportunity The Cyber Security Engineer is a hands-on operational role within the Security Operations team, protecting Quantexa. The role is responsible for the day-to-day operation, optimisation, and monitoring of core security platforms, with a focus on Wiz (Cloud monitoring), Zscaler (Web Security/Tunnel 2.0) and CrowdStrike (Endpoint Detection and Response). Working closely with the wider Security Operations team, you will ensure that security alerts, findings, and detections are promptly triaged, validated, logged and effectively remediated. The role contributes directly to improving Quantexa's security posture by reducing risk, strengthening detection capability, and supporting timely response to security events. This position is well suited to a highly technical, curious and observant practitioner who enjoys working with key security tooling, values disciplined execution and can operate confidently within established processes while identifying opportunities for continuous improvement. What you'll be doing Wiz (Cloud Security Posture Management) Monitor and triage Wiz findings daily, validating alerts and determining operational impact. Perform tuning and threat hunting within Wiz and other tooling. Identify misconfigurations, excessive permissions, and exposed assets, escalating where required. Track remediation progress with engineering owners and ensure closure of high-priority issues. Zscaler (Web Security / Tunnel 2.0) Review and triage Zscaler alerts and policy violations, following documented response procedures. Investigate suspicious traffic, access attempts, and user activity to determine legitimacy and risk. Support enforcement actions by validating policy alignment and working with IT and Cloud teams to remediate issues. Monitor coverage and configuration across users and locations, identifying gaps or misconfigurations. Support policy tuning by analysing false positives and recommending rule or policy adjustments. Contribute to playbook development, operational maturity, and ongoing service readiness. CrowdStrike (Endpoint Detection and Response) Review and triage endpoint detections, applying documented response steps. Execute containment actions, including network isolation and sensor troubleshooting. Validate full sensor coverage across the estate and address gaps in coordination with IT. Support tuning activities by analysing false positives and proposing rule refinements. Contribute to playbook improvements and operational readiness tasks. Security Operations Conduct initial investigation of security incidents, collect evidence, and escalate based on severity with a keen eye on the quality of the output. Perform daily review of alerts across SIEM, Wiz, CrowdStrike, and other platforms. Validate vulnerabilities and configuration weaknesses raised by scanning tools. Interpret and operationalise threat intelligence, understand how it informs detection, prioritisation, and response activities, and clearly communicate technical threat intelligence to non-technical stakeholders. Support cloud security controls, identity hygiene checks, and network policy reviews. Contribute to the ongoing maturity and documentation of operational processes. Collaboration and Ways of Working Act as a trusted operational partner to the Cyber Security Manager and the wider Information Security team, providing proactive support and consistent engagement. Partner closely with DevOps, IT, and Engineering teams to drive timely and effective remediation actions. Deliver clear and concise updates on incidents and operational activities proactively, without the need for prompting. Actively participate in team stand ups, contributing constructively to continuous improvement and operational maturity. Support senior engineers with platform enhancements, integrations, and controlled change activities. What you'll bring Required Demonstrated hands-on experience with security operations, incident triage, or vulnerability management. Familiarity with EDR platforms (ideally CrowdStrike) and security telemetry analysis. Knowledge of cloud environments, particularly Azure including Entra and Conditional Access, and a good understanding of cloud security concepts. Ability to understand alert context, assess impact, and follow structured response processes. Strong attention to detail, disciplined documentation, and good communication skills. Mandatory Proficiency in the Following Platforms Practical experience with core security platforms, including Wiz for cloud posture and workload visibility, CrowdStrike for endpoint detection and response, and Zscaler for secure access and traffic inspection. Familiarity with insider risk and secret detection tooling, such as CyberHaven and GitGuardian, with the ability to support basic investigations and configuration checks. Working knowledge of CI/CD pipelines and DevOps tooling, including the ability to follow established security checks within delivery workflows. Exposure to native cloud security services (e.g. Azure Security Center, Google Cloud Command Center) for posture review, alert triage, and configuration validation. Education & Certifications Minimum of 8 years of professional experience in cybersecurity Master's degree in information security, Computer Science, or related discipline. Preferred Industry Certifications (Evidence required): GIAC certifications such as GCIA, GCED, GCIH, GDAT, GDSA or GMON, Microsoft Certified Identity and Access Administrator Associate (SC-300), Microsoft Certified Security Operations Analyst Associate (SC-200) Expectations and Mindset Proactiveness: Take initiative, seek out information, do not sit back and wait, drive your own knowledge alongside that of other guidance provided by the team, and always ask questions. Communication: Keep stakeholders informed, ask questions, and ensure clarity in all interactions. Forward thinking: Anticipate challenges and issues, think strategically, and look for opportunities for improvement. Team Communication: Follow up with the team and make sure you are seen and known, be heard and build strong relationships and establish your presence. Perks and our culture Our mission, perks, and quirks. We offer a range of benefits to support your work and well-being, including competitive salary, bonus, hybrid work options, private healthcare, generous leave, and more. Our mission We have one mission: to help businesses grow, to make data easier, and to make the world a better place. We're not a start-up, but we are a collection of bright, passionate minds harnessing complexities and helping our clients and their communities. One culture, made of many. Heading in one direction - the future. It's all about you We are an Equal Opportunity Employer. We value inclusion and diversity in our work environment. Regardless of race, beliefs, color, national origin, gender, sexual orientation, age, marital status, neurodiversity or ableness - if you are passionate, curious and caring, we want to hear from you. Start. Don't stop - Apply

The Role We're looking for a Senior Content Engineer to help us research, plan, and create advanced content and virtual labs for our online courses. The ideal candidate has extensive experience in blue team cyber security roles and a strong background in training content development. Technical Skills & Experience To be considered for this opportunity, you must have at least 5 years of relevant cyber security industry experience in roles such as L3/L4 SOC Analyst, Security Engineer, Incident Responder, Threat Hunter or Digital Forensics Investigator. You should also demonstrate: Strong expertise in core blue team areas: incident detection and response, threat intelligence, log analysis, security monitoring, and digital forensics. A deep understanding of networking, computing, and operating systems as they relate to security practices. Familiarity with blue team tooling (e.g., SIEM, EDR, IDS/IPS, forensic tools) and methodologies (e.g., MITRE ATT&CK framework, log analysis, malware analysis). Proven ability to research and adapt to emerging threats and technologies and translate that knowledge into engaging training content. Strong verbal and written English communication skills, essential for conveying complex technical concepts. Job Responsibilities Research, design, and develop defensive cyber security training material with supporting hands-on lab exercises (such as virtual machines and datasets for analysis). Collaborate with the Content Engineering Team to support security training coverage and identify content development opportunities. Experience developing and configuring virtual machines and sample datasets for realistic cybersecurity labs. Provide guidance and support to other Content Engineering Team members in areas of expertise. Take charge of planning and designing portions of the content development roadmap. Collaborate with the Head of Content Engineering to continuously improve the content development process. Analyze industry trends in tooling and techniques and recreate them as teachable content. Strategically plan, review, and schedule content with our blue team content engineering team. Preferred Skills (nice-to-have): Creating challenges for capture the flags (CTFs) Programming experience in any of the following: Python, PHP, Bash, Powershell Experience leading/ coaching/ mentoring others Certifications such as GIAC Certified Incident Handler (GCIH), GIAC Certified Enterprise Defender (GCED), Certified SOC Analyst (CSA), Certified Forensic Analyst (GCFA), CompTIA CySA+, BTL2 Benefits & Perks 100% Remote - In a fully digital world, work from anywhere you want! Flexi Time - Choose your own hours as long as you have at least 4 hours of overlap with the UK timezone (from 8am - 6pm) Tools - a dedicated work laptop + any accessories you need to do your best work. Swag Pack - start your TryHackMe journey with a branded swag bundle! Personal Development - £2,500 training budget to acquire certifications, and more. Company Retreat - an annual company retreat, fully paid for by us! Lunch on us - whether you're a pizza-lover, salad obsessed or a big sushi fan, TryHackMe will cover the cost of your lunch order during our recurring company virtual lunches. Health Insurance - if you're in a country that doesn't have public health care. Enhanced Maternity & Paternity - an enhanced package on top of statutory requirements. 401k / Pension - TryHackMe makes it easy to save money for your retirement. Our Hiring Process Stage 1: Short introduction call (30 mins) Stage 2: Technical Take Home Exercise (part 1 & 2) Stage 3: Interview with our Head of Content Engineering (one hour) Stage 4: Final call with a Co-Founder (30 mins) At this time, we are unable to provide sponsorship.

Come and join the Littlefish team! Work location: Nottingham or Sheffield Hybrid 4 days on, 4 days off 12-hour shift rotations Salary: Up to: £35,000 with a 20% shift allowance Must be eligible for SC Clearance (UK resident for the last 5 years) and NPPV2 clearance Here at Littlefish, we look for people who can make a real difference and become a giant slayer. As the world around us continues to change, we look for people who grab that change with optimism and excitement. These are the passionate and high performing people who enjoy and thrive on thinking outside the box. Our current employees are the giant slayers who have made Littlefish what we are today, and you will be the future employees who continue to add the drive, passion, and add to our skills and experience as we see Littlefish grow. So, if this is tickling your boxes and you are excited at the thought of working with creative, passionate, energetic, friendly people- we would love to hear from you. The role and what you'll be getting up to on a day to day basis: Are you a passionate cyber security professional ready to take the next step in your SOC career? Littlefish is looking for an experienced Tier 2 Cyber Security Analyst to help protect our customers from emerging threats and play a critical role in our Cyber Security Operations Centre (CSOC). This is an exciting opportunity for someone who thrives in a fast paced environment, enjoys deep dive investigation work, and is motivated by defending organisations from real world cyber attacks. You will: As a Tier 2 Analyst, you'll be at the heart of our SOC operations, responsible for investigating complex security alerts, responding to incidents, and mentoring Tier 1 analysts. Your day to day will include: Monitoring and triaging security events via our ITSM platform Analysing alerts using a range of security tools including SIEM, EDR, and email security platforms Leading deep dive investigations and working with incident responders to contain and eradicate threats Acting as the escalation point for Tier 1 analysts, offering guidance and technical support Conducting security assessments across privilege access, endpoints, email, and cloud environments Translating complex security findings into clear, actionable communication for customers Enhancing alert playbooks and helping evolve our SIEM use cases Staying ahead of the threat landscape with CTI informed analysis and mitigation advice Who you are: Proven experience in a SOC or similar security role Strong background in incident investigation, threat identification, and response within SLAs Hands on experience with SIEM, EDR, and email security tooling Ability to mentor and support junior analysts Solid understanding of attack vectors, malware behaviour, and threat actor techniques Microsoft SC 200 and/or CompTIA Security+ (or equivalent) SC 300, AZ 500 or SANS certifications Experience with vulnerability assessment and incident response Broader exposure to antivirus tooling, cloud security, or threat hunting What can we offer you? Through our one of a kind training programme, the Littlefish Academy, you can increase your earnings by £4,500 Referral bonus scheme of £1000 when you successfully refer a friend. Access to our LinkedIn Learning platform, with over 16,000 expert led online tutorials to enhance and achieve your personal and professional goals. Healthcare cash plan. This will give you access to online GP appointments, 24/7 access to qualified counsellors and cash back against a range of general healthcare Casual dress policy Company Pension Scheme Company social events 25 days annual leave plus public / bank holidays Purchase of annual leave scheme Life at Littlefish: Our company values shape who we are as a business, what we stand for and how we work. Hiring people with our values at heart, is very important as we see Littlefish grow. I am High Performing- I like to raise the bar, we look at creating opportunities to increase quality and improve efficiency, we strive for service excellence. I am Passionate- We build team success and celebrate them together, I am enthusiastic and energetic, I care about the people I work with and we support one another. I Have a Can Do Attitude I am not afraid to step outside my comfort zone, we are not afraid to challenge status quo, we get stuff done! So, if you feel like you can make a tangible difference, apply today, and join us on this journey. Here at Littlefish we aim to be somewhere everyone can be themselves. We are committed to encouraging a diverse and inclusive community where everyone irrespective of who they are, or their background, can feel equal and supported. We encourage applications from people of all backgrounds. Please get in touch if you are concerned about any difficulties you may face during your recruitment process, so we adjust accordingly. Part of our application process includes a set of ED&I (Equality, diversity and inclusion) questions. Please note, each question has a 'prefer not to say' option.

A leading cybersecurity company based in the UK is seeking a passionate Tier 2 Cyber Security Analyst to join its team. The successful candidate will be responsible for investigating security alerts, responding to incidents, and mentoring junior analysts. This role requires hands-on experience with SIEM and EDR platforms, as well as a strong understanding of threat landscapes. Competitive salary offering up to £35,000 plus benefits including healthcare, training programs, and referral bonuses. Hybrid work model with a commitment to diversity and inclusion.

Data Architect - Harrogate, Hybrid working. Up to £80,000 (DOE) + Benefits. Are you an experienced Data Architect looking to shape the data foundations of a modern, forward thinking organisation? This is a rare opportunity to take ownership of enterprise wide data architecture and play a central role in how data is structured, governed, protected, and leveraged across the business. In this role, you'll define the organisation's data vision and turn strategic goals into real, scalable data capabilities - ensuring data is trusted, secure, and treated as a strategic asset. You'll work closely with senior leaders, architects, engineers, analysts, and cybersecurity specialists to design robust data environments that support operational excellence and innovation in areas such as AI, analytics and cloud based delivery. Key Responsibilities Define the organisation's data architecture strategy, aligning it to business goals and regulatory standards. Apply best practices from DMBOK and other recognised frameworks to build a modern, scalable data ecosystem. Implement and maintain strong governance frameworks, including data quality, stewardship, ownership, and consistency processes. Embed security and risk management into all architectural design. Oversee data across its full lifecycle - from acquisition and modelling through to storage, usage, archiving and disposal. Ensure data lineage, retention policies, and governance controls are fully embedded. Design scalable architecture components including data lakes, warehouses, metadata repositories, and modern data mesh/fabric approaches. Support integration across multiple platforms and enterprise systems. Produce conceptual, logical, and physical data models that support business needs and integrate effectively with the wider enterprise architecture. Partner with solution architects, engineers, and cybersecurity teams to embed strong data architecture principles throughout delivery. Stay ahead of emerging trends in AI/ML, cloud data platforms, real time analytics, and modern architecture patterns. Propose improvements that enhance the organisation's data capability and maturity. As Data Architect you will have: Proven experience designing and evolving enterprise level data architecture. Strong understanding of data governance, data quality, and master data management. Experience designing secure, compliant environments aligned to CAF or similar frameworks. Expertise in metadata management, data cataloguing and integration platforms (e.g. MuleSoft, Boomi, ADF, AWS Glue). Knowledge of cloud platforms - AWS is particularly desirable. Understanding of BI and visualisation tools (e.g. Tableau, Power BI). Experience building solutions with AWS and Snowflake, including secure data sharing and performance optimisation. Proficiency in data modelling tools and modelling languages (UML/ERD). Familiarity with data mesh, event driven design, and cloud native services. Strong communication skills and the ability to influence senior stakeholders. Experience in agile and DevOps environments (desirable). Understanding of AI/ML lifecycle impacts on data architecture (desirable). Awareness of ESG data, data ethics, and responsible AI (desirable). Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates. About the job Contract Type: Permanent Industry: Trade and Services Workplace Type: Hybrid Experience Level: Associate Location: Harrogate Specialism: Technology & Digital Focus: Architecture Salary: £75,000 - £80,000 per annum Source: Job posting dated 2 February 2026.