Vulnerability Management LeadApplylocations: London - Exchange Towerposted on: Posted 4 Days Agotime left to apply: End Date: June 16, 2026 (10 days left to apply)job requisition id: JR-02905Looking for a new challenge? Take a look at our current vacancies. If you see a vacancy that is right for you, we encourage you to apply! Vulnerability Senior Analyst Join a team where Purpose drives everything we do, Ambition fuels our growth, Respect shapes our culture and Trust builds our foundation. We're not just hiring we're building a team that thrives in a fast-paced, ever-changing environment. If you're at your best when juggling priorities, thinking on your feet, and delivering under pressure, this is your opportunity to make a real impact. Contract : Permanent Working hours: 35 hours per week is full time. Where possible, we are open to considering part time/flexible working patterns. Please let us know in your application your desired working pattern. Reporting to: Information and Cyber Security lead Salary: Range is between £53,833 - £65,000 for London location Salary: Range is between £47,470 - £57,701 for other locations Location: We can consider candidates who wish to work in London, Cardiff, Manchester, Coventry or Edinburgh. By joining our team, you'll enjoy the best of both worlds hybrid working and the collaboration of a great office environment. Our permanent hybrid policy sees us all working at least four days across a fortnight in the office. As well as extensive opportunities for personal and career development. About Us: The Financial Ombudsman Service is an independent, not-for-profit organisation that plays a vital role in UK financial services. Every day we help resolve disputes between consumers, or small businesses, and their financial service providers.Join us at the Financial Ombudsman Service and play a pivotal role in strengthening our cyber resilience. As our Senior Vulnerability Management Analyst, you'll lead and shape our end-to-end Vulnerability Management Programme driving how we identify, prioritise and remediate risks to protect our organisation. Working with stakeholders across the business, you'll bring both technical expertise and strategic insight, helping us stay one step ahead of emerging threats. What You'll Do: You'll lead and shape the Financial Ombudsman Service's end-to-end Vulnerability Management Programme, owning how we identify, assess and reduce cyber risk across the organisation. Sitting within the Information and Cyber Security function, you'll work closely with technical teams and business stakeholders to embed strong governance, drive accountability and ensure vulnerabilities are effectively prioritised and remediated. You'll bring structure, insight and clear reporting to the programme translating complex risk into meaningful action for both technical teams and senior leadership.This is a role for someone who thrives on challenge and wants to make a visible impact. You'll be at the centre of strengthening our cyber resilience driving improvements in how we manage risk, influence decision-making and respond to an evolving threat landscape. With ownership of key vulnerability tools like Qualys and the opportunity to shape processes, automation and maturity, you'll have the platform to lead meaningful change while working across a complex organisation. If you're motivated by responsibility, influence and the chance to elevate a critical cyber function, this is a role where you can truly make your mark. To be considered for this role, you'll need to show us that you've got the skills and capabilities. You'll have to meet the following minimum criteria: Minimum Criteria Strong knowledge of vulnerability management frameworks, Vulnerability lifecycle processes and risk-based prioritisation models Strong demonstrable hands-on experience with leading VM platforms e.g. Qualys, Tenable, Rapid 7, Microsoft Defender for Cloud . You will have Knowledge of exploitability analysis, CVSS scoring and integration of threat intelligence feeds. Proven experience engaging technical, business and governance teams to drive remediation accountability Knowledge of relevant cybersecurity standards, regulations, and frameworks (e.g., NIST, SOC 2, ISO 27001, Cyber Essentials etc.) It would also be nice for you to have Ability to communicate technical concepts to non-technical stakeholders, including executives and procurement colleagues Strong analytical and problem-solving skills, with a keen eye for detail Ability to manage multiple projects and prioritise tasks effectively Excellent written and verbal communication skills, with the ability to write clear, concise reports Why You'll Love Working With Us: We are a values led organisation. Our values define our culture, influence our decisions, and underpin our vision and strategy. They set out how we play our PART through Purpose, Ambition, Respect and Trust. You can learn more about our values here: Flexibility : remote, hybrid, or in-office Wellbeing : Health plan, gym memberships, mental health support Growth : We invest in your future with courses, mentorship, promotions Culture : Diverse. Inclusive. Collaborative. Fun.We also offer an attractive, competitive salary and flexible benefits to suit our people. Here's a list of some of the many benefits and perks you can get for working with us: 25 days holiday entitlement, with the option to buy extra or sell days Generous pension Various Family Friendly Policies, including enhanced maternity pay, carers and dependants leave Employer provided benefits such as Private medical insurance, virtual GP, Critical illness cover, Life assurance cover, to name a few Choice of voluntary benefits including Technology scheme, Cycle to work scheme, Will-writing service amongst others Gym membership discounts, and a fully equipped on-site gym open 24/7 in London only Let's Make This Easy. Apply in a few minutes:To be considered for this opportunity, please complete the questionnaire and upload a copy of your CV by Midnight on Monday 15th June 2026. Due to high application numbers this advert may end earlier than the date specified, so please don't delay and apply now! A full job profile is available on request and will be provided to candidates shortlisted to the first stage of the assessment process. The Financial Ombudsman is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all team We view diversity as fundamental to our success and welcome applications from underrepresented groups across all communities. Please click on the link below to find out more't miss out be part of the journey and take advantage of this opportunity.
07/06/2026
Full time
Vulnerability Management LeadApplylocations: London - Exchange Towerposted on: Posted 4 Days Agotime left to apply: End Date: June 16, 2026 (10 days left to apply)job requisition id: JR-02905Looking for a new challenge? Take a look at our current vacancies. If you see a vacancy that is right for you, we encourage you to apply! Vulnerability Senior Analyst Join a team where Purpose drives everything we do, Ambition fuels our growth, Respect shapes our culture and Trust builds our foundation. We're not just hiring we're building a team that thrives in a fast-paced, ever-changing environment. If you're at your best when juggling priorities, thinking on your feet, and delivering under pressure, this is your opportunity to make a real impact. Contract : Permanent Working hours: 35 hours per week is full time. Where possible, we are open to considering part time/flexible working patterns. Please let us know in your application your desired working pattern. Reporting to: Information and Cyber Security lead Salary: Range is between £53,833 - £65,000 for London location Salary: Range is between £47,470 - £57,701 for other locations Location: We can consider candidates who wish to work in London, Cardiff, Manchester, Coventry or Edinburgh. By joining our team, you'll enjoy the best of both worlds hybrid working and the collaboration of a great office environment. Our permanent hybrid policy sees us all working at least four days across a fortnight in the office. As well as extensive opportunities for personal and career development. About Us: The Financial Ombudsman Service is an independent, not-for-profit organisation that plays a vital role in UK financial services. Every day we help resolve disputes between consumers, or small businesses, and their financial service providers.Join us at the Financial Ombudsman Service and play a pivotal role in strengthening our cyber resilience. As our Senior Vulnerability Management Analyst, you'll lead and shape our end-to-end Vulnerability Management Programme driving how we identify, prioritise and remediate risks to protect our organisation. Working with stakeholders across the business, you'll bring both technical expertise and strategic insight, helping us stay one step ahead of emerging threats. What You'll Do: You'll lead and shape the Financial Ombudsman Service's end-to-end Vulnerability Management Programme, owning how we identify, assess and reduce cyber risk across the organisation. Sitting within the Information and Cyber Security function, you'll work closely with technical teams and business stakeholders to embed strong governance, drive accountability and ensure vulnerabilities are effectively prioritised and remediated. You'll bring structure, insight and clear reporting to the programme translating complex risk into meaningful action for both technical teams and senior leadership.This is a role for someone who thrives on challenge and wants to make a visible impact. You'll be at the centre of strengthening our cyber resilience driving improvements in how we manage risk, influence decision-making and respond to an evolving threat landscape. With ownership of key vulnerability tools like Qualys and the opportunity to shape processes, automation and maturity, you'll have the platform to lead meaningful change while working across a complex organisation. If you're motivated by responsibility, influence and the chance to elevate a critical cyber function, this is a role where you can truly make your mark. To be considered for this role, you'll need to show us that you've got the skills and capabilities. You'll have to meet the following minimum criteria: Minimum Criteria Strong knowledge of vulnerability management frameworks, Vulnerability lifecycle processes and risk-based prioritisation models Strong demonstrable hands-on experience with leading VM platforms e.g. Qualys, Tenable, Rapid 7, Microsoft Defender for Cloud . You will have Knowledge of exploitability analysis, CVSS scoring and integration of threat intelligence feeds. Proven experience engaging technical, business and governance teams to drive remediation accountability Knowledge of relevant cybersecurity standards, regulations, and frameworks (e.g., NIST, SOC 2, ISO 27001, Cyber Essentials etc.) It would also be nice for you to have Ability to communicate technical concepts to non-technical stakeholders, including executives and procurement colleagues Strong analytical and problem-solving skills, with a keen eye for detail Ability to manage multiple projects and prioritise tasks effectively Excellent written and verbal communication skills, with the ability to write clear, concise reports Why You'll Love Working With Us: We are a values led organisation. Our values define our culture, influence our decisions, and underpin our vision and strategy. They set out how we play our PART through Purpose, Ambition, Respect and Trust. You can learn more about our values here: Flexibility : remote, hybrid, or in-office Wellbeing : Health plan, gym memberships, mental health support Growth : We invest in your future with courses, mentorship, promotions Culture : Diverse. Inclusive. Collaborative. Fun.We also offer an attractive, competitive salary and flexible benefits to suit our people. Here's a list of some of the many benefits and perks you can get for working with us: 25 days holiday entitlement, with the option to buy extra or sell days Generous pension Various Family Friendly Policies, including enhanced maternity pay, carers and dependants leave Employer provided benefits such as Private medical insurance, virtual GP, Critical illness cover, Life assurance cover, to name a few Choice of voluntary benefits including Technology scheme, Cycle to work scheme, Will-writing service amongst others Gym membership discounts, and a fully equipped on-site gym open 24/7 in London only Let's Make This Easy. Apply in a few minutes:To be considered for this opportunity, please complete the questionnaire and upload a copy of your CV by Midnight on Monday 15th June 2026. Due to high application numbers this advert may end earlier than the date specified, so please don't delay and apply now! A full job profile is available on request and will be provided to candidates shortlisted to the first stage of the assessment process. The Financial Ombudsman is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all team We view diversity as fundamental to our success and welcome applications from underrepresented groups across all communities. Please click on the link below to find out more't miss out be part of the journey and take advantage of this opportunity.
Our Culture CoinShares is an innovative, agile and ambitious organisation. We strive for excellence in everything we do. We are a high performance culture with a focus on: Professional and personal integrity Curiosity and a deep learning mindset Transparency Teamwork and collaboration CoinShares is strongly committed to diversity and inclusion and warmly welcomes candidates from all backgrounds. The Team The Cyber Security team exists to protect CoinShares' digital assets, systems, people and data while enabling the business to operate securely at speed. The team safeguards the firm against cyber threats in a highly regulated, cloud-first environment, ensuring that security is embedded into day-to-day operations and technology decisions rather than treated as a standalone control function. Working closely with all teams, the Cyber Security team designs and maintains a robust security framework that evolves alongside the business. Their work is central to maintaining operational resilience, regulatory confidence and trust in CoinShares as a leading digital asset manager. Role Profile We are seeking an experienced and hands on Cyber Security Engineer with a strong focus on cloud security, particularly AWS, to join our growing security function. Working closely with the Cyber Security Analyst, IT, and DevOps teams, you will be responsible for designing, implementing, and maintaining security controls across CoinShares' cloud-first environment. This role is responsible for engineering and architectural oversight, working in partnership with the Analyst's monitoring and response activities. You will play a key role in strengthening CoinShares' security posture in a highly regulated financial environment, ensuring scalable, resilient, and secure cloud infrastructure. The role is based in the City of London 4 days a week and 1 day from home. Responsibilities Design, implement, and maintain security controls across AWS environments. Configure, manage, and optimise AWS GuardDuty, including alert tuning, findings triage workflows, and integrations with SIEM and incident response processes. Lead cloud security monitoring, detection engineering, and preventative control design. Work closely with the Cyber Security Analyst on incident response, providing technical expertise during investigations. Implement and manage cloud-native security services (e.g. AWS Security Hub, IAM, CloudTrail, VPC security controls). Partner with DevOps and engineering teams to embed security into CI/CD pipelines and infrastructure-as-code. Conduct cloud security architecture reviews and threat modelling for new systems and services. Support vulnerability management and remediation efforts across cloud and hybrid environments. Contribute to compliance initiatives (e.g. ISO 27001, SOC 2) through control design, evidence generation, and audit support. Develop and maintain security standards, patterns, and technical documentation. Continuously evaluate emerging cloud security threats and recommend improvements. Experience & Qualifications 5+ years' experience in a cyber security engineering, cloud security, or infrastructure security role. Strong hands on experience securing AWS environments in production. Bachelor's degree in Cyber Security, Computer Science, Information Technology, or equivalent practical experience. Relevant certifications are desirable (e.g. AWS Security Specialty, CISSP, CCSP, GSEC). Experience in the financial services sector or other regulated environments would be advantageous. Core Skills Demonstrated understanding of cloud security concepts, particularly within AWS. Hands on experience configuring and operating AWS GuardDuty. Strong knowledge of AWS IAM, networking (VPCs, security groups, NACLs), logging, and monitoring. Experience with cloud security posture management and vulnerability management tools (e.g. Wiz, Qualys, Rapid7). Familiarity with infrastructure-as-code and automation (e.g. Terraform, CloudFormation). Solid understanding of security frameworks and regulatory requirements (NIST, CIS, ISO 27001, GDPR). Ability to design security controls that scale in fast moving, cloud native environments. Strong problem solving skills with a pragmatic, risk based mindset. Excellent written and verbal communication skills, with the ability to explain complex technical issues to non security stakeholders.
07/06/2026
Full time
Our Culture CoinShares is an innovative, agile and ambitious organisation. We strive for excellence in everything we do. We are a high performance culture with a focus on: Professional and personal integrity Curiosity and a deep learning mindset Transparency Teamwork and collaboration CoinShares is strongly committed to diversity and inclusion and warmly welcomes candidates from all backgrounds. The Team The Cyber Security team exists to protect CoinShares' digital assets, systems, people and data while enabling the business to operate securely at speed. The team safeguards the firm against cyber threats in a highly regulated, cloud-first environment, ensuring that security is embedded into day-to-day operations and technology decisions rather than treated as a standalone control function. Working closely with all teams, the Cyber Security team designs and maintains a robust security framework that evolves alongside the business. Their work is central to maintaining operational resilience, regulatory confidence and trust in CoinShares as a leading digital asset manager. Role Profile We are seeking an experienced and hands on Cyber Security Engineer with a strong focus on cloud security, particularly AWS, to join our growing security function. Working closely with the Cyber Security Analyst, IT, and DevOps teams, you will be responsible for designing, implementing, and maintaining security controls across CoinShares' cloud-first environment. This role is responsible for engineering and architectural oversight, working in partnership with the Analyst's monitoring and response activities. You will play a key role in strengthening CoinShares' security posture in a highly regulated financial environment, ensuring scalable, resilient, and secure cloud infrastructure. The role is based in the City of London 4 days a week and 1 day from home. Responsibilities Design, implement, and maintain security controls across AWS environments. Configure, manage, and optimise AWS GuardDuty, including alert tuning, findings triage workflows, and integrations with SIEM and incident response processes. Lead cloud security monitoring, detection engineering, and preventative control design. Work closely with the Cyber Security Analyst on incident response, providing technical expertise during investigations. Implement and manage cloud-native security services (e.g. AWS Security Hub, IAM, CloudTrail, VPC security controls). Partner with DevOps and engineering teams to embed security into CI/CD pipelines and infrastructure-as-code. Conduct cloud security architecture reviews and threat modelling for new systems and services. Support vulnerability management and remediation efforts across cloud and hybrid environments. Contribute to compliance initiatives (e.g. ISO 27001, SOC 2) through control design, evidence generation, and audit support. Develop and maintain security standards, patterns, and technical documentation. Continuously evaluate emerging cloud security threats and recommend improvements. Experience & Qualifications 5+ years' experience in a cyber security engineering, cloud security, or infrastructure security role. Strong hands on experience securing AWS environments in production. Bachelor's degree in Cyber Security, Computer Science, Information Technology, or equivalent practical experience. Relevant certifications are desirable (e.g. AWS Security Specialty, CISSP, CCSP, GSEC). Experience in the financial services sector or other regulated environments would be advantageous. Core Skills Demonstrated understanding of cloud security concepts, particularly within AWS. Hands on experience configuring and operating AWS GuardDuty. Strong knowledge of AWS IAM, networking (VPCs, security groups, NACLs), logging, and monitoring. Experience with cloud security posture management and vulnerability management tools (e.g. Wiz, Qualys, Rapid7). Familiarity with infrastructure-as-code and automation (e.g. Terraform, CloudFormation). Solid understanding of security frameworks and regulatory requirements (NIST, CIS, ISO 27001, GDPR). Ability to design security controls that scale in fast moving, cloud native environments. Strong problem solving skills with a pragmatic, risk based mindset. Excellent written and verbal communication skills, with the ability to explain complex technical issues to non security stakeholders.
Location: Birmingham (Hybrid - 3 days onsite) Salary: £45,000 - £50,000 + Excellent Benefits Contract Type: Permanent The Role - SOC Engineer - Cyber We're looking for a hands-on SOC Engineer to join a rapidly growing Cyber Security function within a large enterprise technology environment. This is an opportunity to work in one of the most modern and well-equipped SOC environments in the market, supporting enterprise customers across a broad range of managed security services and cloud technologies. This is a genuinely engineering-led role rather than a traditional SOC analyst position. You'll be heavily involved in infrastructure, cloud security, security tooling, automation, and operational cyber engineering across enterprise-scale environments. Working from a Birmingham-based SOC three days a week, you'll play a key role in supporting customer environments, improving cyber capabilities, and helping showcase a cutting-edge SOC environment to visiting customers and stakeholders. What's in it for you as our Cyber SOC Engineer? Salary of £45,000 - £50,000 Hybrid working environment Excellent company benefits package Flexible benefits scheme Access to industry-leading SOC technology and tooling Dedicated training and development time each week Fully funded learning opportunities and partner-led certifications Opportunities to attend conferences and industry events Career progression within a large enterprise technology organisation Exposure to enterprise-scale cloud and cyber environments Supportive, collaborative, and highly technical team environment Duties as SOC Engineer - Cyber As a Cyber SOC Engineer, you will: Act as a technical escalation point and engineering SME across SOC technologies including SIEM, MDR/XDR, EDR, vulnerability management, and cloud security tooling Support, maintain, and improve cyber security infrastructure across enterprise customer environments Work closely with internal teams and customers to onboard, configure, and optimise security technologies and services Investigate and resolve platform issues, security alerts, log source health problems, and tooling-related incidents Configure and support technologies such as Microsoft Defender, Sentinel, CrowdStrike, Tenable, and related security platforms Assist with vulnerability scanning, remediation support, and operational security improvements Contribute to automation and scripting initiatives using tools such as KQL, PowerShell, Python, or Bash Produce and maintain technical documentation, operational runbooks, and security playbooks Support governance and compliance activities aligned to standards such as ISO27001, GDPR, and NCSC guidance Work collaboratively across infrastructure, cloud, networking, and cyber teams to improve service delivery and operational resilience Stay up to date with emerging cyber threats, technologies, and security best practice Contribute to continual improvement initiatives across the SOC function Who are we looking for as our Cyber SOC Engineer? We're looking for a technically capable and proactive engineer who enjoys solving problems, learning new technologies, and working collaboratively in a fast-paced environment. This role would suit someone from a SOC Engineering, Cloud Security, Infrastructure Security, or Cyber Engineering background who enjoys hands-on technical work rather than purely monitoring or analyst-based responsibilities. You'll ideally have experience with: Microsoft Sentinel and Microsoft Defender EDR/XDR/MDR technologies Vulnerability management tools such as Tenable or Qualys Azure, Microsoft 365, Intune, or AWS environments Security tooling, infrastructure, and cloud platforms Linux and Windows operating systems SIEM technologies and security monitoring Basic scripting or automation using KQL, PowerShell, Python, or Bash ITIL environments and structured change control processes Firewall, endpoint, or cloud security technologies We'd especially like to hear from candidates who are: Strong communicators who can work confidently with both technical and non-technical stakeholders Organised, collaborative, and eager to learn Comfortable working in a customer-facing environment Self-driven and proactive in solving problems Able to take ownership while also working well within a team Interested in developing their cyber engineering and cloud security expertise further Relevant certifications such as SC-200, SC-900, AZ-500, CISSP, or similar would be advantageous, but practical engineering experience is equally important. Please note: Candidates must be eligible for UK Security Clearance (SC/BPSS), including having the right to work in the UK and meeting residency requirements. INDHS
07/06/2026
Full time
Location: Birmingham (Hybrid - 3 days onsite) Salary: £45,000 - £50,000 + Excellent Benefits Contract Type: Permanent The Role - SOC Engineer - Cyber We're looking for a hands-on SOC Engineer to join a rapidly growing Cyber Security function within a large enterprise technology environment. This is an opportunity to work in one of the most modern and well-equipped SOC environments in the market, supporting enterprise customers across a broad range of managed security services and cloud technologies. This is a genuinely engineering-led role rather than a traditional SOC analyst position. You'll be heavily involved in infrastructure, cloud security, security tooling, automation, and operational cyber engineering across enterprise-scale environments. Working from a Birmingham-based SOC three days a week, you'll play a key role in supporting customer environments, improving cyber capabilities, and helping showcase a cutting-edge SOC environment to visiting customers and stakeholders. What's in it for you as our Cyber SOC Engineer? Salary of £45,000 - £50,000 Hybrid working environment Excellent company benefits package Flexible benefits scheme Access to industry-leading SOC technology and tooling Dedicated training and development time each week Fully funded learning opportunities and partner-led certifications Opportunities to attend conferences and industry events Career progression within a large enterprise technology organisation Exposure to enterprise-scale cloud and cyber environments Supportive, collaborative, and highly technical team environment Duties as SOC Engineer - Cyber As a Cyber SOC Engineer, you will: Act as a technical escalation point and engineering SME across SOC technologies including SIEM, MDR/XDR, EDR, vulnerability management, and cloud security tooling Support, maintain, and improve cyber security infrastructure across enterprise customer environments Work closely with internal teams and customers to onboard, configure, and optimise security technologies and services Investigate and resolve platform issues, security alerts, log source health problems, and tooling-related incidents Configure and support technologies such as Microsoft Defender, Sentinel, CrowdStrike, Tenable, and related security platforms Assist with vulnerability scanning, remediation support, and operational security improvements Contribute to automation and scripting initiatives using tools such as KQL, PowerShell, Python, or Bash Produce and maintain technical documentation, operational runbooks, and security playbooks Support governance and compliance activities aligned to standards such as ISO27001, GDPR, and NCSC guidance Work collaboratively across infrastructure, cloud, networking, and cyber teams to improve service delivery and operational resilience Stay up to date with emerging cyber threats, technologies, and security best practice Contribute to continual improvement initiatives across the SOC function Who are we looking for as our Cyber SOC Engineer? We're looking for a technically capable and proactive engineer who enjoys solving problems, learning new technologies, and working collaboratively in a fast-paced environment. This role would suit someone from a SOC Engineering, Cloud Security, Infrastructure Security, or Cyber Engineering background who enjoys hands-on technical work rather than purely monitoring or analyst-based responsibilities. You'll ideally have experience with: Microsoft Sentinel and Microsoft Defender EDR/XDR/MDR technologies Vulnerability management tools such as Tenable or Qualys Azure, Microsoft 365, Intune, or AWS environments Security tooling, infrastructure, and cloud platforms Linux and Windows operating systems SIEM technologies and security monitoring Basic scripting or automation using KQL, PowerShell, Python, or Bash ITIL environments and structured change control processes Firewall, endpoint, or cloud security technologies We'd especially like to hear from candidates who are: Strong communicators who can work confidently with both technical and non-technical stakeholders Organised, collaborative, and eager to learn Comfortable working in a customer-facing environment Self-driven and proactive in solving problems Able to take ownership while also working well within a team Interested in developing their cyber engineering and cloud security expertise further Relevant certifications such as SC-200, SC-900, AZ-500, CISSP, or similar would be advantageous, but practical engineering experience is equally important. Please note: Candidates must be eligible for UK Security Clearance (SC/BPSS), including having the right to work in the UK and meeting residency requirements. INDHS
Senior Cyber Security & Network Analyst Tadworth - Advisable to be a car driver due to the location of the business Hybrid - 2 days in the office - 3 WFH - ( fully office based for the first 4 weeks) flexible to adhoc weekend work as and when required We're seeking a Senior Cyber Security & Network Analyst to support and manage our IT network and security infrastructure, ensuring robust protection of business systems and data. Key Responsibilities Manage day-to-day cyber security operations and incident response Monitor and optimise security tools (SIEM, firewalls, endpoint security) Maintain and support network infrastructure (LAN/WAN, Wi-Fi, L2/L3) Identify threats, conduct investigations, and implement security fixes Support delivery of cyber security projects and ongoing improvements Key Skills & Experience Proven experience in cyber security operations and network infrastructure Strong knowledge of Palo Alto firewalls, SIEM tools, and endpoint security Experience with L2/L3 networking (Nexus, LAN/WAN, Wi-Fi) Vulnerability management (e.g. Qualys) and incident response expertise Understanding of data security, threat analysis, and security best practice Essential Requirements Strong problem-solving and analytical skills Excellent communication and stakeholder management Ability to work independently in a fast-paced environment Methodical, organised, and detail-oriented approach Office Angels is an employment agency and business. We are an equal-opportunities employer who puts expertise, energy and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, abilities and more. By showcasing talents, skills and unique experiences in an inclusive environment, we help individuals thrive. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you. Office Angels acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Office Angels UK is an Equal Opportunities Employer. By applying for this role your details will be submitted to Office Angels. Our Candidate Privacy Information Statement explaining how we will use your information is available on our website.
07/06/2026
Full time
Senior Cyber Security & Network Analyst Tadworth - Advisable to be a car driver due to the location of the business Hybrid - 2 days in the office - 3 WFH - ( fully office based for the first 4 weeks) flexible to adhoc weekend work as and when required We're seeking a Senior Cyber Security & Network Analyst to support and manage our IT network and security infrastructure, ensuring robust protection of business systems and data. Key Responsibilities Manage day-to-day cyber security operations and incident response Monitor and optimise security tools (SIEM, firewalls, endpoint security) Maintain and support network infrastructure (LAN/WAN, Wi-Fi, L2/L3) Identify threats, conduct investigations, and implement security fixes Support delivery of cyber security projects and ongoing improvements Key Skills & Experience Proven experience in cyber security operations and network infrastructure Strong knowledge of Palo Alto firewalls, SIEM tools, and endpoint security Experience with L2/L3 networking (Nexus, LAN/WAN, Wi-Fi) Vulnerability management (e.g. Qualys) and incident response expertise Understanding of data security, threat analysis, and security best practice Essential Requirements Strong problem-solving and analytical skills Excellent communication and stakeholder management Ability to work independently in a fast-paced environment Methodical, organised, and detail-oriented approach Office Angels is an employment agency and business. We are an equal-opportunities employer who puts expertise, energy and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, abilities and more. By showcasing talents, skills and unique experiences in an inclusive environment, we help individuals thrive. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you. Office Angels acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Office Angels UK is an Equal Opportunities Employer. By applying for this role your details will be submitted to Office Angels. Our Candidate Privacy Information Statement explaining how we will use your information is available on our website.
Any of Sheffield, Chorley, Brighton or Camberley with Travel required to all Report to: IT Operations Director Competitive Hours: 37 hours per week Company Overview: Established in 2006, FluidOne is an award-winning provider of Connected Cloud Solutions with a £110mturnover and focus on customer service, consistently achieving one of the highest Net Promoter Scores (NPS) in the industry, securing 84 for November 2025. Underlying its services is FluidOne's national fibre network, Platform One, which is the most connected network in the UK. FluidOne has a strong company culture enjoyed by 460 staff and was ranked in the top 50 Best Companies to work for in the UK awards 2023 and in the top 25 Technology companies to work for in the UK. FluidOne supports the needs of 2,000+ customers, including 200 channel resellers, with services covering connectivity, SD-WAN, cyber security, IT managed services, mobile, IoT, UCaaS and CCaaS. Addressing the needs of SME, mid-market and Enterprise, FluidOne consults with its customers to design solutions that complement their in-house IT structures. FluidOne takes complex hybrid multi-site environments and makes them simple and secure, so end-users can access their business applications wherever they are. Full Job Specification: Role Overview We are seeking an experienced Business Analyst to play a pivotal role in mapping, analysing, and redesigning our core business processes. This role will be key to bridging our current operations with The Halo PSA best-practice framework, supporting a smooth and efficient system implementation. Following the Halo PSA project, the successful candidate will continue to support and lead other internal business improvement and transformation initiatives. Main responsibilities: Map and document current business processes across service delivery, operations, sales, and finance. Perform a detailed gap analysis between existing processes and Halo PSA best-practice workflows. Work closely with department heads, process owners, and project managers to align business requirements with the implementation roadmap. Define and document agreed "to-be" processes and workflows in line with business goals and Halo PSA capabilities. Support data migration planning and execution, ensuring data integrity and readiness for go-live. Assist in developing and validating user requirements and acceptance criteria. Collaborate with the technology team and vendor partners during configuration, testing, and training phases. Support change management and user adoption activities post-implementation. After system implementation, contribute to ongoing process improvement and other internal project initiatives. Experience / Qualifications: Proven experience as a Business Analyst within an IT Managed Service Provider or a similar technology-driven organisation. Strong understanding of ITSM and PSA processes (e.g. Service Desk, Projects, Finance, CRM, Asset Management). Hands-on experience with Halo PSA or comparable tools such as ConnectWise, Autotask, or ServiceNow is highly desirable. Excellent documentation, analytical, and communication skills. Demonstrated ability to facilitate workshops, capture requirements, and translate them into actionable outputs. Strong stakeholder management and cross-functional collaboration skills. Experience supporting system implementation or digital transformation projects. Highly organised, proactive, and detail-oriented. Benefits after probationary period: Subsidisedhealth and dental care Employee AssistanceProgramme(EAP) Life assurance (3x salary) Discountplatform Pension contribution-5% company contribution One day off forbirthday Half price internet connectivity Department incentives How To Apply: Send CV with covering letter to with the job title as the subject field. FluidOne is an equal opportunities provider and welcomes applications regardless of sex, marital status, ethnic origin, disability, religion, sexual orientation, or age.
06/06/2026
Full time
Any of Sheffield, Chorley, Brighton or Camberley with Travel required to all Report to: IT Operations Director Competitive Hours: 37 hours per week Company Overview: Established in 2006, FluidOne is an award-winning provider of Connected Cloud Solutions with a £110mturnover and focus on customer service, consistently achieving one of the highest Net Promoter Scores (NPS) in the industry, securing 84 for November 2025. Underlying its services is FluidOne's national fibre network, Platform One, which is the most connected network in the UK. FluidOne has a strong company culture enjoyed by 460 staff and was ranked in the top 50 Best Companies to work for in the UK awards 2023 and in the top 25 Technology companies to work for in the UK. FluidOne supports the needs of 2,000+ customers, including 200 channel resellers, with services covering connectivity, SD-WAN, cyber security, IT managed services, mobile, IoT, UCaaS and CCaaS. Addressing the needs of SME, mid-market and Enterprise, FluidOne consults with its customers to design solutions that complement their in-house IT structures. FluidOne takes complex hybrid multi-site environments and makes them simple and secure, so end-users can access their business applications wherever they are. Full Job Specification: Role Overview We are seeking an experienced Business Analyst to play a pivotal role in mapping, analysing, and redesigning our core business processes. This role will be key to bridging our current operations with The Halo PSA best-practice framework, supporting a smooth and efficient system implementation. Following the Halo PSA project, the successful candidate will continue to support and lead other internal business improvement and transformation initiatives. Main responsibilities: Map and document current business processes across service delivery, operations, sales, and finance. Perform a detailed gap analysis between existing processes and Halo PSA best-practice workflows. Work closely with department heads, process owners, and project managers to align business requirements with the implementation roadmap. Define and document agreed "to-be" processes and workflows in line with business goals and Halo PSA capabilities. Support data migration planning and execution, ensuring data integrity and readiness for go-live. Assist in developing and validating user requirements and acceptance criteria. Collaborate with the technology team and vendor partners during configuration, testing, and training phases. Support change management and user adoption activities post-implementation. After system implementation, contribute to ongoing process improvement and other internal project initiatives. Experience / Qualifications: Proven experience as a Business Analyst within an IT Managed Service Provider or a similar technology-driven organisation. Strong understanding of ITSM and PSA processes (e.g. Service Desk, Projects, Finance, CRM, Asset Management). Hands-on experience with Halo PSA or comparable tools such as ConnectWise, Autotask, or ServiceNow is highly desirable. Excellent documentation, analytical, and communication skills. Demonstrated ability to facilitate workshops, capture requirements, and translate them into actionable outputs. Strong stakeholder management and cross-functional collaboration skills. Experience supporting system implementation or digital transformation projects. Highly organised, proactive, and detail-oriented. Benefits after probationary period: Subsidisedhealth and dental care Employee AssistanceProgramme(EAP) Life assurance (3x salary) Discountplatform Pension contribution-5% company contribution One day off forbirthday Half price internet connectivity Department incentives How To Apply: Send CV with covering letter to with the job title as the subject field. FluidOne is an equal opportunities provider and welcomes applications regardless of sex, marital status, ethnic origin, disability, religion, sexual orientation, or age.
Any of Sheffield, Chorley, Brighton or Camberley with Travel required to all Report to: IT Operations Director Competitive Hours: 37 hours per week Company Overview: Established in 2006, FluidOne is an award-winning provider of Connected Cloud Solutions with a £110mturnover and focus on customer service, consistently achieving one of the highest Net Promoter Scores (NPS) in the industry, securing 84 for November 2025. Underlying its services is FluidOne's national fibre network, Platform One, which is the most connected network in the UK. FluidOne has a strong company culture enjoyed by 460 staff and was ranked in the top 50 Best Companies to work for in the UK awards 2023 and in the top 25 Technology companies to work for in the UK. FluidOne supports the needs of 2,000+ customers, including 200 channel resellers, with services covering connectivity, SD-WAN, cyber security, IT managed services, mobile, IoT, UCaaS and CCaaS. Addressing the needs of SME, mid-market and Enterprise, FluidOne consults with its customers to design solutions that complement their in-house IT structures. FluidOne takes complex hybrid multi-site environments and makes them simple and secure, so end-users can access their business applications wherever they are. Full Job Specification: Role Overview We are seeking an experienced Business Analyst to play a pivotal role in mapping, analysing, and redesigning our core business processes. This role will be key to bridging our current operations with The Halo PSA best-practice framework, supporting a smooth and efficient system implementation. Following the Halo PSA project, the successful candidate will continue to support and lead other internal business improvement and transformation initiatives. Main responsibilities: Map and document current business processes across service delivery, operations, sales, and finance. Perform a detailed gap analysis between existing processes and Halo PSA best-practice workflows. Work closely with department heads, process owners, and project managers to align business requirements with the implementation roadmap. Define and document agreed "to-be" processes and workflows in line with business goals and Halo PSA capabilities. Support data migration planning and execution, ensuring data integrity and readiness for go-live. Assist in developing and validating user requirements and acceptance criteria. Collaborate with the technology team and vendor partners during configuration, testing, and training phases. Support change management and user adoption activities post-implementation. After system implementation, contribute to ongoing process improvement and other internal project initiatives. Experience / Qualifications: Proven experience as a Business Analyst within an IT Managed Service Provider or a similar technology-driven organisation. Strong understanding of ITSM and PSA processes (e.g. Service Desk, Projects, Finance, CRM, Asset Management). Hands-on experience with Halo PSA or comparable tools such as ConnectWise, Autotask, or ServiceNow is highly desirable. Excellent documentation, analytical, and communication skills. Demonstrated ability to facilitate workshops, capture requirements, and translate them into actionable outputs. Strong stakeholder management and cross-functional collaboration skills. Experience supporting system implementation or digital transformation projects. Highly organised, proactive, and detail-oriented. Benefits after probationary period: Subsidisedhealth and dental care Employee AssistanceProgramme(EAP) Life assurance (3x salary) Discountplatform Pension contribution-5% company contribution One day off forbirthday Half price internet connectivity Department incentives How To Apply: Send CV with covering letter to with the job title as the subject field. FluidOne is an equal opportunities provider and welcomes applications regardless of sex, marital status, ethnic origin, disability, religion, sexual orientation, or age.
06/06/2026
Full time
Any of Sheffield, Chorley, Brighton or Camberley with Travel required to all Report to: IT Operations Director Competitive Hours: 37 hours per week Company Overview: Established in 2006, FluidOne is an award-winning provider of Connected Cloud Solutions with a £110mturnover and focus on customer service, consistently achieving one of the highest Net Promoter Scores (NPS) in the industry, securing 84 for November 2025. Underlying its services is FluidOne's national fibre network, Platform One, which is the most connected network in the UK. FluidOne has a strong company culture enjoyed by 460 staff and was ranked in the top 50 Best Companies to work for in the UK awards 2023 and in the top 25 Technology companies to work for in the UK. FluidOne supports the needs of 2,000+ customers, including 200 channel resellers, with services covering connectivity, SD-WAN, cyber security, IT managed services, mobile, IoT, UCaaS and CCaaS. Addressing the needs of SME, mid-market and Enterprise, FluidOne consults with its customers to design solutions that complement their in-house IT structures. FluidOne takes complex hybrid multi-site environments and makes them simple and secure, so end-users can access their business applications wherever they are. Full Job Specification: Role Overview We are seeking an experienced Business Analyst to play a pivotal role in mapping, analysing, and redesigning our core business processes. This role will be key to bridging our current operations with The Halo PSA best-practice framework, supporting a smooth and efficient system implementation. Following the Halo PSA project, the successful candidate will continue to support and lead other internal business improvement and transformation initiatives. Main responsibilities: Map and document current business processes across service delivery, operations, sales, and finance. Perform a detailed gap analysis between existing processes and Halo PSA best-practice workflows. Work closely with department heads, process owners, and project managers to align business requirements with the implementation roadmap. Define and document agreed "to-be" processes and workflows in line with business goals and Halo PSA capabilities. Support data migration planning and execution, ensuring data integrity and readiness for go-live. Assist in developing and validating user requirements and acceptance criteria. Collaborate with the technology team and vendor partners during configuration, testing, and training phases. Support change management and user adoption activities post-implementation. After system implementation, contribute to ongoing process improvement and other internal project initiatives. Experience / Qualifications: Proven experience as a Business Analyst within an IT Managed Service Provider or a similar technology-driven organisation. Strong understanding of ITSM and PSA processes (e.g. Service Desk, Projects, Finance, CRM, Asset Management). Hands-on experience with Halo PSA or comparable tools such as ConnectWise, Autotask, or ServiceNow is highly desirable. Excellent documentation, analytical, and communication skills. Demonstrated ability to facilitate workshops, capture requirements, and translate them into actionable outputs. Strong stakeholder management and cross-functional collaboration skills. Experience supporting system implementation or digital transformation projects. Highly organised, proactive, and detail-oriented. Benefits after probationary period: Subsidisedhealth and dental care Employee AssistanceProgramme(EAP) Life assurance (3x salary) Discountplatform Pension contribution-5% company contribution One day off forbirthday Half price internet connectivity Department incentives How To Apply: Send CV with covering letter to with the job title as the subject field. FluidOne is an equal opportunities provider and welcomes applications regardless of sex, marital status, ethnic origin, disability, religion, sexual orientation, or age.
Any of Sheffield, Chorley, Brighton or Camberley with Travel required to all Report to: IT Operations Director Competitive Hours: 37 hours per week Company Overview: Established in 2006, FluidOne is an award-winning provider of Connected Cloud Solutions with a £110mturnover and focus on customer service, consistently achieving one of the highest Net Promoter Scores (NPS) in the industry, securing 84 for November 2025. Underlying its services is FluidOne's national fibre network, Platform One, which is the most connected network in the UK. FluidOne has a strong company culture enjoyed by 460 staff and was ranked in the top 50 Best Companies to work for in the UK awards 2023 and in the top 25 Technology companies to work for in the UK. FluidOne supports the needs of 2,000+ customers, including 200 channel resellers, with services covering connectivity, SD-WAN, cyber security, IT managed services, mobile, IoT, UCaaS and CCaaS. Addressing the needs of SME, mid-market and Enterprise, FluidOne consults with its customers to design solutions that complement their in-house IT structures. FluidOne takes complex hybrid multi-site environments and makes them simple and secure, so end-users can access their business applications wherever they are. Full Job Specification: Role Overview We are seeking an experienced Business Analyst to play a pivotal role in mapping, analysing, and redesigning our core business processes. This role will be key to bridging our current operations with The Halo PSA best-practice framework, supporting a smooth and efficient system implementation. Following the Halo PSA project, the successful candidate will continue to support and lead other internal business improvement and transformation initiatives. Main responsibilities: Map and document current business processes across service delivery, operations, sales, and finance. Perform a detailed gap analysis between existing processes and Halo PSA best-practice workflows. Work closely with department heads, process owners, and project managers to align business requirements with the implementation roadmap. Define and document agreed "to-be" processes and workflows in line with business goals and Halo PSA capabilities. Support data migration planning and execution, ensuring data integrity and readiness for go-live. Assist in developing and validating user requirements and acceptance criteria. Collaborate with the technology team and vendor partners during configuration, testing, and training phases. Support change management and user adoption activities post-implementation. After system implementation, contribute to ongoing process improvement and other internal project initiatives. Experience / Qualifications: Proven experience as a Business Analyst within an IT Managed Service Provider or a similar technology-driven organisation. Strong understanding of ITSM and PSA processes (e.g. Service Desk, Projects, Finance, CRM, Asset Management). Hands-on experience with Halo PSA or comparable tools such as ConnectWise, Autotask, or ServiceNow is highly desirable. Excellent documentation, analytical, and communication skills. Demonstrated ability to facilitate workshops, capture requirements, and translate them into actionable outputs. Strong stakeholder management and cross-functional collaboration skills. Experience supporting system implementation or digital transformation projects. Highly organised, proactive, and detail-oriented. Benefits after probationary period: Subsidisedhealth and dental care Employee AssistanceProgramme(EAP) Life assurance (3x salary) Discountplatform Pension contribution-5% company contribution One day off forbirthday Half price internet connectivity Department incentives How To Apply: Send CV with covering letter to with the job title as the subject field. FluidOne is an equal opportunities provider and welcomes applications regardless of sex, marital status, ethnic origin, disability, religion, sexual orientation, or age.
06/06/2026
Full time
Any of Sheffield, Chorley, Brighton or Camberley with Travel required to all Report to: IT Operations Director Competitive Hours: 37 hours per week Company Overview: Established in 2006, FluidOne is an award-winning provider of Connected Cloud Solutions with a £110mturnover and focus on customer service, consistently achieving one of the highest Net Promoter Scores (NPS) in the industry, securing 84 for November 2025. Underlying its services is FluidOne's national fibre network, Platform One, which is the most connected network in the UK. FluidOne has a strong company culture enjoyed by 460 staff and was ranked in the top 50 Best Companies to work for in the UK awards 2023 and in the top 25 Technology companies to work for in the UK. FluidOne supports the needs of 2,000+ customers, including 200 channel resellers, with services covering connectivity, SD-WAN, cyber security, IT managed services, mobile, IoT, UCaaS and CCaaS. Addressing the needs of SME, mid-market and Enterprise, FluidOne consults with its customers to design solutions that complement their in-house IT structures. FluidOne takes complex hybrid multi-site environments and makes them simple and secure, so end-users can access their business applications wherever they are. Full Job Specification: Role Overview We are seeking an experienced Business Analyst to play a pivotal role in mapping, analysing, and redesigning our core business processes. This role will be key to bridging our current operations with The Halo PSA best-practice framework, supporting a smooth and efficient system implementation. Following the Halo PSA project, the successful candidate will continue to support and lead other internal business improvement and transformation initiatives. Main responsibilities: Map and document current business processes across service delivery, operations, sales, and finance. Perform a detailed gap analysis between existing processes and Halo PSA best-practice workflows. Work closely with department heads, process owners, and project managers to align business requirements with the implementation roadmap. Define and document agreed "to-be" processes and workflows in line with business goals and Halo PSA capabilities. Support data migration planning and execution, ensuring data integrity and readiness for go-live. Assist in developing and validating user requirements and acceptance criteria. Collaborate with the technology team and vendor partners during configuration, testing, and training phases. Support change management and user adoption activities post-implementation. After system implementation, contribute to ongoing process improvement and other internal project initiatives. Experience / Qualifications: Proven experience as a Business Analyst within an IT Managed Service Provider or a similar technology-driven organisation. Strong understanding of ITSM and PSA processes (e.g. Service Desk, Projects, Finance, CRM, Asset Management). Hands-on experience with Halo PSA or comparable tools such as ConnectWise, Autotask, or ServiceNow is highly desirable. Excellent documentation, analytical, and communication skills. Demonstrated ability to facilitate workshops, capture requirements, and translate them into actionable outputs. Strong stakeholder management and cross-functional collaboration skills. Experience supporting system implementation or digital transformation projects. Highly organised, proactive, and detail-oriented. Benefits after probationary period: Subsidisedhealth and dental care Employee AssistanceProgramme(EAP) Life assurance (3x salary) Discountplatform Pension contribution-5% company contribution One day off forbirthday Half price internet connectivity Department incentives How To Apply: Send CV with covering letter to with the job title as the subject field. FluidOne is an equal opportunities provider and welcomes applications regardless of sex, marital status, ethnic origin, disability, religion, sexual orientation, or age.
Any of Sheffield, Chorley, Brighton or Camberley with Travel required to all Report to: IT Operations Director Competitive Hours: 37 hours per week Company Overview: Established in 2006, FluidOne is an award-winning provider of Connected Cloud Solutions with a £110mturnover and focus on customer service, consistently achieving one of the highest Net Promoter Scores (NPS) in the industry, securing 84 for November 2025. Underlying its services is FluidOne's national fibre network, Platform One, which is the most connected network in the UK. FluidOne has a strong company culture enjoyed by 460 staff and was ranked in the top 50 Best Companies to work for in the UK awards 2023 and in the top 25 Technology companies to work for in the UK. FluidOne supports the needs of 2,000+ customers, including 200 channel resellers, with services covering connectivity, SD-WAN, cyber security, IT managed services, mobile, IoT, UCaaS and CCaaS. Addressing the needs of SME, mid-market and Enterprise, FluidOne consults with its customers to design solutions that complement their in-house IT structures. FluidOne takes complex hybrid multi-site environments and makes them simple and secure, so end-users can access their business applications wherever they are. Full Job Specification: Role Overview We are seeking an experienced Business Analyst to play a pivotal role in mapping, analysing, and redesigning our core business processes. This role will be key to bridging our current operations with The Halo PSA best-practice framework, supporting a smooth and efficient system implementation. Following the Halo PSA project, the successful candidate will continue to support and lead other internal business improvement and transformation initiatives. Main responsibilities: Map and document current business processes across service delivery, operations, sales, and finance. Perform a detailed gap analysis between existing processes and Halo PSA best-practice workflows. Work closely with department heads, process owners, and project managers to align business requirements with the implementation roadmap. Define and document agreed "to-be" processes and workflows in line with business goals and Halo PSA capabilities. Support data migration planning and execution, ensuring data integrity and readiness for go-live. Assist in developing and validating user requirements and acceptance criteria. Collaborate with the technology team and vendor partners during configuration, testing, and training phases. Support change management and user adoption activities post-implementation. After system implementation, contribute to ongoing process improvement and other internal project initiatives. Experience / Qualifications: Proven experience as a Business Analyst within an IT Managed Service Provider or a similar technology-driven organisation. Strong understanding of ITSM and PSA processes (e.g. Service Desk, Projects, Finance, CRM, Asset Management). Hands-on experience with Halo PSA or comparable tools such as ConnectWise, Autotask, or ServiceNow is highly desirable. Excellent documentation, analytical, and communication skills. Demonstrated ability to facilitate workshops, capture requirements, and translate them into actionable outputs. Strong stakeholder management and cross-functional collaboration skills. Experience supporting system implementation or digital transformation projects. Highly organised, proactive, and detail-oriented. Benefits after probationary period: Subsidisedhealth and dental care Employee AssistanceProgramme(EAP) Life assurance (3x salary) Discountplatform Pension contribution-5% company contribution One day off forbirthday Half price internet connectivity Department incentives How To Apply: Send CV with covering letter to with the job title as the subject field. FluidOne is an equal opportunities provider and welcomes applications regardless of sex, marital status, ethnic origin, disability, religion, sexual orientation, or age.
06/06/2026
Full time
Any of Sheffield, Chorley, Brighton or Camberley with Travel required to all Report to: IT Operations Director Competitive Hours: 37 hours per week Company Overview: Established in 2006, FluidOne is an award-winning provider of Connected Cloud Solutions with a £110mturnover and focus on customer service, consistently achieving one of the highest Net Promoter Scores (NPS) in the industry, securing 84 for November 2025. Underlying its services is FluidOne's national fibre network, Platform One, which is the most connected network in the UK. FluidOne has a strong company culture enjoyed by 460 staff and was ranked in the top 50 Best Companies to work for in the UK awards 2023 and in the top 25 Technology companies to work for in the UK. FluidOne supports the needs of 2,000+ customers, including 200 channel resellers, with services covering connectivity, SD-WAN, cyber security, IT managed services, mobile, IoT, UCaaS and CCaaS. Addressing the needs of SME, mid-market and Enterprise, FluidOne consults with its customers to design solutions that complement their in-house IT structures. FluidOne takes complex hybrid multi-site environments and makes them simple and secure, so end-users can access their business applications wherever they are. Full Job Specification: Role Overview We are seeking an experienced Business Analyst to play a pivotal role in mapping, analysing, and redesigning our core business processes. This role will be key to bridging our current operations with The Halo PSA best-practice framework, supporting a smooth and efficient system implementation. Following the Halo PSA project, the successful candidate will continue to support and lead other internal business improvement and transformation initiatives. Main responsibilities: Map and document current business processes across service delivery, operations, sales, and finance. Perform a detailed gap analysis between existing processes and Halo PSA best-practice workflows. Work closely with department heads, process owners, and project managers to align business requirements with the implementation roadmap. Define and document agreed "to-be" processes and workflows in line with business goals and Halo PSA capabilities. Support data migration planning and execution, ensuring data integrity and readiness for go-live. Assist in developing and validating user requirements and acceptance criteria. Collaborate with the technology team and vendor partners during configuration, testing, and training phases. Support change management and user adoption activities post-implementation. After system implementation, contribute to ongoing process improvement and other internal project initiatives. Experience / Qualifications: Proven experience as a Business Analyst within an IT Managed Service Provider or a similar technology-driven organisation. Strong understanding of ITSM and PSA processes (e.g. Service Desk, Projects, Finance, CRM, Asset Management). Hands-on experience with Halo PSA or comparable tools such as ConnectWise, Autotask, or ServiceNow is highly desirable. Excellent documentation, analytical, and communication skills. Demonstrated ability to facilitate workshops, capture requirements, and translate them into actionable outputs. Strong stakeholder management and cross-functional collaboration skills. Experience supporting system implementation or digital transformation projects. Highly organised, proactive, and detail-oriented. Benefits after probationary period: Subsidisedhealth and dental care Employee AssistanceProgramme(EAP) Life assurance (3x salary) Discountplatform Pension contribution-5% company contribution One day off forbirthday Half price internet connectivity Department incentives How To Apply: Send CV with covering letter to with the job title as the subject field. FluidOne is an equal opportunities provider and welcomes applications regardless of sex, marital status, ethnic origin, disability, religion, sexual orientation, or age.
At Engine by Starling, we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software as a service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back office processes that have helped achieve Starling's success. We draw upon our experience as knowledgeable bankers, and best in class technologists to become the chosen option for these banks, and preferred partners for leading consultancies. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for someone who will be excited by the potential for Engine's technology to transform banking in different markets around the world. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. About the Role To support our rapid growth, we are looking for talented engineers to join our foundational in house SecOps team. This is a "Full Stack" security role: you will move beyond traditional monitoring to develop and operate our security capabilities. We are looking for engineers who are masters of automation but remain grounded in analyst fundamentals. You should have a keen interest in leveraging AI and Large Language Models (LLMs) to reduce SOC toil - using AI to summarise complex alerts, auto generate YARA L detections, or build intelligent playbooks to stay ahead of modern threats. Responsibilities Security Monitoring & Alert Triage: Active Monitoring: Monitor security alerts and events generated by the SecOps platform and integrated cloud security tools. Triage & Analysis: Perform deep diving analysis of security incidents and anomalies, accurately distinguishing between true positives and false positives. Prioritisation: Manage the incident queue, prioritising alerts based on severity, potential impact, and business criticality. Detection Engineering & Automation (IaC): Detection as Code: Design and maintain sophisticated detection logic using YARA L. Manage the lifecycle of these rules and configurations using IaC principles for version control. SOAR Extension: Lead the automation of response playbooks. You will write and extend SOAR capabilities using Python, creating custom integrations and "Managers" to connect SecOps with internal APIs. Tool Optimisation: Identify opportunities for automation to streamline operations and contribute to the continuous tuning and maintenance of SOC tools. Incident Response & Investigation: End to End Investigation: Investigate incidents thoroughly, leveraging logs from platforms, endpoints, and applications mapped to the Unified Data Model (UDM). Incident Lifecycle: Lead containment, eradication, and recovery efforts in collaboration with Security and Technology teams. Documentation: Maintain comprehensive records of incident details, findings, and remediation steps to ensure a high standard of auditability. Collaboration & Threat Intelligence: Group Collaboration: Work closely with the Group SOC team to align on global security standards and coordinate response efforts during cross entity incidents. Threat Hunting: Stay informed about the latest cyber threats and cloud specific vulnerabilities, conducting proactive threat hunting activities using available telemetry. Qualifications 3+ years of experience in a SOC or SecOps Engineering role, with a strong background in both alert triage and security engineering. Proficiency in Python: Ability to write clean code to automate workflows or interact with security APIs. Cloud Fluency: Experience with security monitoring and incident response in cloud environments (AWS/GCP/Azure). Infrastructure as Code: Familiarity with managing security configurations through Git based workflows. Framework Knowledge: Strong understanding of attack vectors and the MITRE ATT&CK framework. Education: A degree in a cyber related field or relevant certifications (e.g., CompTIA Security+, CySA+, GCIH) is beneficial. Interview Process Stage 1 - 45 minutes technical interview Stage 2 - Take home task Stage 3 - 60 minutes with Team Members Stage 4 - Final with CTO Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4 your salary & group income protection Private Medical Insurance with VitalityHealth, including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Engine by Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Engine by Starling are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Engine by Starling and Starling will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
06/06/2026
Full time
At Engine by Starling, we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software as a service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back office processes that have helped achieve Starling's success. We draw upon our experience as knowledgeable bankers, and best in class technologists to become the chosen option for these banks, and preferred partners for leading consultancies. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for someone who will be excited by the potential for Engine's technology to transform banking in different markets around the world. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. About the Role To support our rapid growth, we are looking for talented engineers to join our foundational in house SecOps team. This is a "Full Stack" security role: you will move beyond traditional monitoring to develop and operate our security capabilities. We are looking for engineers who are masters of automation but remain grounded in analyst fundamentals. You should have a keen interest in leveraging AI and Large Language Models (LLMs) to reduce SOC toil - using AI to summarise complex alerts, auto generate YARA L detections, or build intelligent playbooks to stay ahead of modern threats. Responsibilities Security Monitoring & Alert Triage: Active Monitoring: Monitor security alerts and events generated by the SecOps platform and integrated cloud security tools. Triage & Analysis: Perform deep diving analysis of security incidents and anomalies, accurately distinguishing between true positives and false positives. Prioritisation: Manage the incident queue, prioritising alerts based on severity, potential impact, and business criticality. Detection Engineering & Automation (IaC): Detection as Code: Design and maintain sophisticated detection logic using YARA L. Manage the lifecycle of these rules and configurations using IaC principles for version control. SOAR Extension: Lead the automation of response playbooks. You will write and extend SOAR capabilities using Python, creating custom integrations and "Managers" to connect SecOps with internal APIs. Tool Optimisation: Identify opportunities for automation to streamline operations and contribute to the continuous tuning and maintenance of SOC tools. Incident Response & Investigation: End to End Investigation: Investigate incidents thoroughly, leveraging logs from platforms, endpoints, and applications mapped to the Unified Data Model (UDM). Incident Lifecycle: Lead containment, eradication, and recovery efforts in collaboration with Security and Technology teams. Documentation: Maintain comprehensive records of incident details, findings, and remediation steps to ensure a high standard of auditability. Collaboration & Threat Intelligence: Group Collaboration: Work closely with the Group SOC team to align on global security standards and coordinate response efforts during cross entity incidents. Threat Hunting: Stay informed about the latest cyber threats and cloud specific vulnerabilities, conducting proactive threat hunting activities using available telemetry. Qualifications 3+ years of experience in a SOC or SecOps Engineering role, with a strong background in both alert triage and security engineering. Proficiency in Python: Ability to write clean code to automate workflows or interact with security APIs. Cloud Fluency: Experience with security monitoring and incident response in cloud environments (AWS/GCP/Azure). Infrastructure as Code: Familiarity with managing security configurations through Git based workflows. Framework Knowledge: Strong understanding of attack vectors and the MITRE ATT&CK framework. Education: A degree in a cyber related field or relevant certifications (e.g., CompTIA Security+, CySA+, GCIH) is beneficial. Interview Process Stage 1 - 45 minutes technical interview Stage 2 - Take home task Stage 3 - 60 minutes with Team Members Stage 4 - Final with CTO Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4 your salary & group income protection Private Medical Insurance with VitalityHealth, including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Engine by Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Engine by Starling are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Engine by Starling and Starling will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
IT Service Desk Administrator (Chewton Mendip - Hybrid) Salary: £28,000 - £32,000 per annum, plus progression, holiday, travel, pension and training. Location: Chewton Mendip - hybrid (remote & office near Bath). Responsibilities: Provide 1st line and some 2nd line support to a variety of businesses. Assist with quoting, invoicing and other administrative tasks. Work with Office 365, Active Directory and Freshworks. Qualifications: Experience in service desk or IT support. Proficient with Windows (desktop and server), Office 365 and Active Directory. We are an equal opportunities company and welcome applications from all suitable candidates. Inside Sales Executive - SaaS (Remote UK) Salary: £35,000 base + OTE (approx £60,000) plus progression, pension. Location: United Kingdom - remote. Key Responsibilities: Proactively prospect and qualify new leads across architecture, engineering and construction. Drive high volume outbound activity to build a strong pipeline. Collaborate with marketing on inbound conversion and with technical teams on solution fit. Required Experience: Proven success in SaaS or IT sales with outbound prospecting and pipeline creation. Commercial understanding of solution led sales cycles, ideally in construction, engineering or manufacturing. Resilience and structure in high activity environments, with focus on targets and revenue. We are an equal opportunities company and welcome applications from all suitable candidates. Level 1 Cyber Security Analyst - LA International Computer Consultants Ltd Salary: Competitively based on experience, with 10 month contract. Location: Bracknell Forest, United Kingdom - permanent. Key Responsibilities: Monitor SIEM tooling to identify potential security threats. Perform initial investigation, triage of alerts and escalation per defined processes. Oversee shift activities, identify and report tool faults, support continuous monitoring. Follow incident management processes for timely response. Skills & Experience: Experience in cyber security or security operations environments. Strong understanding of SIEM tools and alert handling. Technical knowledge of enterprise IT (networks, servers). Ability to lead during shift environment and communicate across technical teams. We welcome applications from all individuals, regardless of background or identity. Hybrid Project Manager / Business Analyst - Client Onboarding (Contract) Location: Real Staffing, London - Permanent (contract duration unspecified). Key Responsibilities: Support, maintain and optimise a large scale enterprise campus network environment. Troubleshoot and resolve network incidents across wired and wireless infrastructure. Collaborate with internal IT and Cyber Security teams for security compliance. Manage core, distribution and access layer networks; assist with upgrades and transformation initiatives. Monitor network performance and ensure high availability. We are an equal opportunities employer and encourage applications from candidates who may not meet every listed requirement. Lead Software Engineer - Winchester (Hybrid) Salary: £75,000 - £85,000 per annum, plus private healthcare, enhanced pension, 4 days per week in office. Location: Winchester - hybrid (onsite and remote). Key Responsibilities: Lead technical direction of a TypeScript based microservices platform on Linux. Develop a large Angular enterprise application for real time dashboards. Design and optimise data models across PostgreSQL, MongoDB, Elasticsearch and Redis. Own CI/CD pipelines and infrastructure across on prem, cloud and hybrid deployments (Kubernetes, Helm, Terraform, Ansible). Mentor onshore and offshore engineers and set technical standards. Required Experience: Strong background in building distributed, microservices based systems. Commercial experience with TypeScript (backend) and Angular (frontend). Experience with multiple databases in performance critical systems. Comfortable operating in Linux heavy, security constrained environments. DevSecOps mindset with CI/CD and IaC exposure. Confidence in influencing technical direction within senior engineering teams. We are an equal opportunities company and welcome applications from all suitable candidates. IT Technician - Hydrachem (Billingshurst, West Sussex) Salary: £27,500 - £32,500 per annum. Location: Billingshurst, West Sussex - full time, permanent. About the Role: Onsite support for hardware, servers, cloud services, firewalls and security, while championing Microsoft 365, SharePoint and Power Apps. Also responsible for building a full onsite IT department. Key Responsibilities: Provide hands on IT support and troubleshooting. Manage servers, network, cloud services and firewalls. Support and train staff on Microsoft 365 and SharePoint. Develop skills in Power Apps and ERP systems. Build and grow the onsite IT team. Required Experience: Experience with Microsoft 365 and SharePoint. Strong IT troubleshooting skills. Knowledge of networks, servers and security. Excellent communication and teamwork skills. Why join us? Key part of a growing, innovative company. Diverse IT responsibilities. Opportunity to shape the onsite IT team. Health and wellbeing programme, free onsite parking. We are an equal opportunities employer. All data will be handled in accordance with GDPR requirements.
05/06/2026
Full time
IT Service Desk Administrator (Chewton Mendip - Hybrid) Salary: £28,000 - £32,000 per annum, plus progression, holiday, travel, pension and training. Location: Chewton Mendip - hybrid (remote & office near Bath). Responsibilities: Provide 1st line and some 2nd line support to a variety of businesses. Assist with quoting, invoicing and other administrative tasks. Work with Office 365, Active Directory and Freshworks. Qualifications: Experience in service desk or IT support. Proficient with Windows (desktop and server), Office 365 and Active Directory. We are an equal opportunities company and welcome applications from all suitable candidates. Inside Sales Executive - SaaS (Remote UK) Salary: £35,000 base + OTE (approx £60,000) plus progression, pension. Location: United Kingdom - remote. Key Responsibilities: Proactively prospect and qualify new leads across architecture, engineering and construction. Drive high volume outbound activity to build a strong pipeline. Collaborate with marketing on inbound conversion and with technical teams on solution fit. Required Experience: Proven success in SaaS or IT sales with outbound prospecting and pipeline creation. Commercial understanding of solution led sales cycles, ideally in construction, engineering or manufacturing. Resilience and structure in high activity environments, with focus on targets and revenue. We are an equal opportunities company and welcome applications from all suitable candidates. Level 1 Cyber Security Analyst - LA International Computer Consultants Ltd Salary: Competitively based on experience, with 10 month contract. Location: Bracknell Forest, United Kingdom - permanent. Key Responsibilities: Monitor SIEM tooling to identify potential security threats. Perform initial investigation, triage of alerts and escalation per defined processes. Oversee shift activities, identify and report tool faults, support continuous monitoring. Follow incident management processes for timely response. Skills & Experience: Experience in cyber security or security operations environments. Strong understanding of SIEM tools and alert handling. Technical knowledge of enterprise IT (networks, servers). Ability to lead during shift environment and communicate across technical teams. We welcome applications from all individuals, regardless of background or identity. Hybrid Project Manager / Business Analyst - Client Onboarding (Contract) Location: Real Staffing, London - Permanent (contract duration unspecified). Key Responsibilities: Support, maintain and optimise a large scale enterprise campus network environment. Troubleshoot and resolve network incidents across wired and wireless infrastructure. Collaborate with internal IT and Cyber Security teams for security compliance. Manage core, distribution and access layer networks; assist with upgrades and transformation initiatives. Monitor network performance and ensure high availability. We are an equal opportunities employer and encourage applications from candidates who may not meet every listed requirement. Lead Software Engineer - Winchester (Hybrid) Salary: £75,000 - £85,000 per annum, plus private healthcare, enhanced pension, 4 days per week in office. Location: Winchester - hybrid (onsite and remote). Key Responsibilities: Lead technical direction of a TypeScript based microservices platform on Linux. Develop a large Angular enterprise application for real time dashboards. Design and optimise data models across PostgreSQL, MongoDB, Elasticsearch and Redis. Own CI/CD pipelines and infrastructure across on prem, cloud and hybrid deployments (Kubernetes, Helm, Terraform, Ansible). Mentor onshore and offshore engineers and set technical standards. Required Experience: Strong background in building distributed, microservices based systems. Commercial experience with TypeScript (backend) and Angular (frontend). Experience with multiple databases in performance critical systems. Comfortable operating in Linux heavy, security constrained environments. DevSecOps mindset with CI/CD and IaC exposure. Confidence in influencing technical direction within senior engineering teams. We are an equal opportunities company and welcome applications from all suitable candidates. IT Technician - Hydrachem (Billingshurst, West Sussex) Salary: £27,500 - £32,500 per annum. Location: Billingshurst, West Sussex - full time, permanent. About the Role: Onsite support for hardware, servers, cloud services, firewalls and security, while championing Microsoft 365, SharePoint and Power Apps. Also responsible for building a full onsite IT department. Key Responsibilities: Provide hands on IT support and troubleshooting. Manage servers, network, cloud services and firewalls. Support and train staff on Microsoft 365 and SharePoint. Develop skills in Power Apps and ERP systems. Build and grow the onsite IT team. Required Experience: Experience with Microsoft 365 and SharePoint. Strong IT troubleshooting skills. Knowledge of networks, servers and security. Excellent communication and teamwork skills. Why join us? Key part of a growing, innovative company. Diverse IT responsibilities. Opportunity to shape the onsite IT team. Health and wellbeing programme, free onsite parking. We are an equal opportunities employer. All data will be handled in accordance with GDPR requirements.
Title Senior Security Operations Analyst Location Hybrid - Manchester or Leeds 3 days per week, 2 days remote Salary From £54,000 Who we are interactive investor is an award-winning investment platform that puts its customers in control of their financial future. We've been helping investors for nearly 30 years. We've seen market highs and lows and been resilient throughout. We're now the UK's number one flat-fee investment platform, with assets under administration approaching £75 billion and over 500,000 customers. For a simple, flat monthly fee we provide a secure home for your pensions, ISAs and investments. We offer a wide choice of over 20,000 UK and international investment options, including shares, funds, trusts and ETFs. We also bring impartial, expert content from our award-winning financial journalists, highly engaged community of investors, and daily newsletters and insights. Purpose of the Role We are recruiting for a Senior Security Operations Analyst to join the Information Security Team to support our continued growth. You will help maintain and protect our key business assets from threats and risks by monitoring, detecting, analysing, and responding to security incidents. Key Responsibilities Oversee the day to day running of our SIEM solution (Chronicle) working closely with Infrastructure, Networks, DevOps and our outsourced Security Operations Centre (SOC) team. Define and facilitate the creation of new rules or fine tuning existing rules within SIEM. Investigate SIEM alerts and other security incidents through to completion. Work within the Information Security Team to provide a dynamic monitoring and incident response capability. Monitor and analyse security events identifying trends, attacks, and potential threats. Identify and raise problems. Communicate & escal Monitoring and gathering Threat intelligence and coordinating subsequent Threat Hunting. Assess security threats from multiple sources and plan mitigation/remediation. Gather relevant data, analyse and respond to cyber security incidents. Research and stay current on the latest trends, best practices, and technology developments for all things cyber. Assist in the design, management, and documentation of security policies, solutions, standards, and processes. Designing effective test methods for logical security controls. Day to day management of Endpoint Detection and Response (EDR). Qualifications A good understanding of technical and network security requirements. Ability to proactively identify control weakness and vulnerabilities. Knowledge and use of SIEM tooling i.e., Splunk, Chronicle, Sentinel etc and event log data. Experience in understanding Firewalls and IDS/IPS and Windows Security Event Logs. Strong verbal and written communication skills with the ability to articulate complex ideas in easy to comprehend business terms. Comfortable taking ownership for own work, identifying the need for action whilst working effectively within a team. Ability to quickly understand existing infrastructure, network security principles, data flow and security architectures. Knowledge of the fundamentals of cloud infrastructure as well as traditional technologies. Degree in IT / Cyber preferred or industry recognised qualification. Benefits Group Personal Pension Plan - 8% employer contribution and 4% employee contribution Life Assurance and Group Income Protection Private Medical Insurance - Provided by Bupa 25 Days Annual Leave, plus bank holidays Staff Discounts on our investment products Personal & Well being Fund - Supporting your physical and mental wellness Retail Discounts - Savings at a wide range of high street and online retailers Voluntary Flexible Benefits - Tailor your benefits to suit your lifestyle Equal Employment Opportunity Statement interactive investor operates in accordance with the UKEqualityAct2010. We welcome applications from individuals of all ages, disabilities, gender identities, marital status, pregnancy/maternity, race, religion or belief, sex, and sexual orientation. We are committed to treating all applicants fairly and making reasonable adjustments where needed to support disabled applicants. We actively prevent all forms of discrimination, harassment, and victimisation-whether direct, indirect, associative, or perceptive.
05/06/2026
Full time
Title Senior Security Operations Analyst Location Hybrid - Manchester or Leeds 3 days per week, 2 days remote Salary From £54,000 Who we are interactive investor is an award-winning investment platform that puts its customers in control of their financial future. We've been helping investors for nearly 30 years. We've seen market highs and lows and been resilient throughout. We're now the UK's number one flat-fee investment platform, with assets under administration approaching £75 billion and over 500,000 customers. For a simple, flat monthly fee we provide a secure home for your pensions, ISAs and investments. We offer a wide choice of over 20,000 UK and international investment options, including shares, funds, trusts and ETFs. We also bring impartial, expert content from our award-winning financial journalists, highly engaged community of investors, and daily newsletters and insights. Purpose of the Role We are recruiting for a Senior Security Operations Analyst to join the Information Security Team to support our continued growth. You will help maintain and protect our key business assets from threats and risks by monitoring, detecting, analysing, and responding to security incidents. Key Responsibilities Oversee the day to day running of our SIEM solution (Chronicle) working closely with Infrastructure, Networks, DevOps and our outsourced Security Operations Centre (SOC) team. Define and facilitate the creation of new rules or fine tuning existing rules within SIEM. Investigate SIEM alerts and other security incidents through to completion. Work within the Information Security Team to provide a dynamic monitoring and incident response capability. Monitor and analyse security events identifying trends, attacks, and potential threats. Identify and raise problems. Communicate & escal Monitoring and gathering Threat intelligence and coordinating subsequent Threat Hunting. Assess security threats from multiple sources and plan mitigation/remediation. Gather relevant data, analyse and respond to cyber security incidents. Research and stay current on the latest trends, best practices, and technology developments for all things cyber. Assist in the design, management, and documentation of security policies, solutions, standards, and processes. Designing effective test methods for logical security controls. Day to day management of Endpoint Detection and Response (EDR). Qualifications A good understanding of technical and network security requirements. Ability to proactively identify control weakness and vulnerabilities. Knowledge and use of SIEM tooling i.e., Splunk, Chronicle, Sentinel etc and event log data. Experience in understanding Firewalls and IDS/IPS and Windows Security Event Logs. Strong verbal and written communication skills with the ability to articulate complex ideas in easy to comprehend business terms. Comfortable taking ownership for own work, identifying the need for action whilst working effectively within a team. Ability to quickly understand existing infrastructure, network security principles, data flow and security architectures. Knowledge of the fundamentals of cloud infrastructure as well as traditional technologies. Degree in IT / Cyber preferred or industry recognised qualification. Benefits Group Personal Pension Plan - 8% employer contribution and 4% employee contribution Life Assurance and Group Income Protection Private Medical Insurance - Provided by Bupa 25 Days Annual Leave, plus bank holidays Staff Discounts on our investment products Personal & Well being Fund - Supporting your physical and mental wellness Retail Discounts - Savings at a wide range of high street and online retailers Voluntary Flexible Benefits - Tailor your benefits to suit your lifestyle Equal Employment Opportunity Statement interactive investor operates in accordance with the UKEqualityAct2010. We welcome applications from individuals of all ages, disabilities, gender identities, marital status, pregnancy/maternity, race, religion or belief, sex, and sexual orientation. We are committed to treating all applicants fairly and making reasonable adjustments where needed to support disabled applicants. We actively prevent all forms of discrimination, harassment, and victimisation-whether direct, indirect, associative, or perceptive.
Cyber Security Analyst Permanent - 42k - 48k + strong benefits Location: Hybrid - South Wales Your new company: I am looking to recruit a Cyber Security Analyst to join a leader in the utilities space. The business has been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The company has a strong reputation, and we have placed numerous people into careers there, with strong feedback. The role responsibilities: This is an interesting opportunity where you will work with the cyber resilience team and assist with the Security Operations function, including EDR, SIEM, gathering security control framework evidence and general day-to-day assistance with security tasks. You will help deliver a strategy which will enhance the organisations security resilience, proactively contributing to mitigating threats, at a good time when the company are expanding and investing in their IT and cyber security estate. Key parts of the role: You will require knowledge and understanding of attack and exploitation techniques and adversarial TTP's. Help to provide resilience to our threat monitoring and response capabilities. Handle security incident response with internal teams and other third parties to ensure that the incident response life cycle is undertaken to a high standard. Monitor and respond to security incidents, alerts and breaches Monitor and track remediation to all identified vulnerabilities Monitor the risks using security tooling to carry out routine checks. Monitor and report on user behavioural analysis such as awareness training and social engineering campaigns. Stay informed about emerging cyber threats and vulnerabilities. You will need: Good knowledge and understanding of SOC processes and procedures. Basic experience using SIEM systems such as MS Sentinel, LogRhythm, AlienVault, Splunk Good understanding of incident response stages and handling. Basic knowledge and experience using leading endpoint detection and threat management products and managing their operation. Good knowledge and awareness of global Information Security Standards, including ISO27k, CIS, CAF, NIST CSF. Ability to work independently and as part of a team. Excellent communication and interpersonal skills. Ability to obtain UK Security Clearance What you'll get in return: Salary of between 42k- 48k Hybrid working 2/3 days in South Wales per week Possible bonus 5% pension contribution from you, the company pays 10% Enhanced pay for parental leave And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
04/06/2026
Full time
Cyber Security Analyst Permanent - 42k - 48k + strong benefits Location: Hybrid - South Wales Your new company: I am looking to recruit a Cyber Security Analyst to join a leader in the utilities space. The business has been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The company has a strong reputation, and we have placed numerous people into careers there, with strong feedback. The role responsibilities: This is an interesting opportunity where you will work with the cyber resilience team and assist with the Security Operations function, including EDR, SIEM, gathering security control framework evidence and general day-to-day assistance with security tasks. You will help deliver a strategy which will enhance the organisations security resilience, proactively contributing to mitigating threats, at a good time when the company are expanding and investing in their IT and cyber security estate. Key parts of the role: You will require knowledge and understanding of attack and exploitation techniques and adversarial TTP's. Help to provide resilience to our threat monitoring and response capabilities. Handle security incident response with internal teams and other third parties to ensure that the incident response life cycle is undertaken to a high standard. Monitor and respond to security incidents, alerts and breaches Monitor and track remediation to all identified vulnerabilities Monitor the risks using security tooling to carry out routine checks. Monitor and report on user behavioural analysis such as awareness training and social engineering campaigns. Stay informed about emerging cyber threats and vulnerabilities. You will need: Good knowledge and understanding of SOC processes and procedures. Basic experience using SIEM systems such as MS Sentinel, LogRhythm, AlienVault, Splunk Good understanding of incident response stages and handling. Basic knowledge and experience using leading endpoint detection and threat management products and managing their operation. Good knowledge and awareness of global Information Security Standards, including ISO27k, CIS, CAF, NIST CSF. Ability to work independently and as part of a team. Excellent communication and interpersonal skills. Ability to obtain UK Security Clearance What you'll get in return: Salary of between 42k- 48k Hybrid working 2/3 days in South Wales per week Possible bonus 5% pension contribution from you, the company pays 10% Enhanced pay for parental leave And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Title Senior Security Operations Analyst Location Hybrid - Manchester or Leeds 3 days per week, 2 days remote Salary From £54,000 Who we are interactive investor is an award-winning investment platform that puts its customers in control of their financial future. We've been helping investors for nearly 30 years. We've seen market highs and lows and been resilient throughout. We're now the UK's number one flat-fee investment platform, with assets under administration approaching £75 billion and over 500,000 customers. For a simple, flat monthly fee we provide a secure home for your pensions, ISAs and investments. We offer a wide choice of over 20,000 UK and international investment options, including shares, funds, trusts and ETFs. We also bring impartial, expert content from our award-winning financial journalists, highly engaged community of investors, and daily newsletters and insights. Purpose of the Role We are recruiting for a Senior Security Operations Analyst to join the Information Security Team to support our continued growth. You will help maintain and protect our key business assets from threats and risks by monitoring, detecting, analysing, and responding to security incidents. Key Responsibilities Oversee the day to day running of our SIEM solution (Chronicle) working closely with Infrastructure, Networks, DevOps and our outsourced Security Operations Centre (SOC) team. Define and facilitate the creation of new rules or fine tuning existing rules within SIEM. Investigate SIEM alerts and other security incidents through to completion. Work within the Information Security Team to provide a dynamic monitoring and incident response capability. Monitor and analyse security events identifying trends, attacks, and potential threats. Identify and raise problems. Communicate & escal Monitoring and gathering Threat intelligence and coordinating subsequent Threat Hunting. Assess security threats from multiple sources and plan mitigation/remediation. Gather relevant data, analyse and respond to cyber security incidents. Research and stay current on the latest trends, best practices, and technology developments for all things cyber. Assist in the design, management, and documentation of security policies, solutions, standards, and processes. Designing effective test methods for logical security controls. Day to day management of Endpoint Detection and Response (EDR). Qualifications A good understanding of technical and network security requirements. Ability to proactively identify control weakness and vulnerabilities. Knowledge and use of SIEM tooling i.e., Splunk, Chronicle, Sentinel etc and event log data. Experience in understanding Firewalls and IDS/IPS and Windows Security Event Logs. Strong verbal and written communication skills with the ability to articulate complex ideas in easy to comprehend business terms. Comfortable taking ownership for own work, identifying the need for action whilst working effectively within a team. Ability to quickly understand existing infrastructure, network security principles, data flow and security architectures. Knowledge of the fundamentals of cloud infrastructure as well as traditional technologies. Degree in IT / Cyber preferred or industry recognised qualification. Benefits Group Personal Pension Plan - 8% employer contribution and 4% employee contribution Life Assurance and Group Income Protection Private Medical Insurance - Provided by Bupa 25 Days Annual Leave, plus bank holidays Staff Discounts on our investment products Personal & Well being Fund - Supporting your physical and mental wellness Retail Discounts - Savings at a wide range of high street and online retailers Voluntary Flexible Benefits - Tailor your benefits to suit your lifestyle Equal Employment Opportunity Statement interactive investor operates in accordance with the UKEqualityAct2010. We welcome applications from individuals of all ages, disabilities, gender identities, marital status, pregnancy/maternity, race, religion or belief, sex, and sexual orientation. We are committed to treating all applicants fairly and making reasonable adjustments where needed to support disabled applicants. We actively prevent all forms of discrimination, harassment, and victimisation-whether direct, indirect, associative, or perceptive.
04/06/2026
Full time
Title Senior Security Operations Analyst Location Hybrid - Manchester or Leeds 3 days per week, 2 days remote Salary From £54,000 Who we are interactive investor is an award-winning investment platform that puts its customers in control of their financial future. We've been helping investors for nearly 30 years. We've seen market highs and lows and been resilient throughout. We're now the UK's number one flat-fee investment platform, with assets under administration approaching £75 billion and over 500,000 customers. For a simple, flat monthly fee we provide a secure home for your pensions, ISAs and investments. We offer a wide choice of over 20,000 UK and international investment options, including shares, funds, trusts and ETFs. We also bring impartial, expert content from our award-winning financial journalists, highly engaged community of investors, and daily newsletters and insights. Purpose of the Role We are recruiting for a Senior Security Operations Analyst to join the Information Security Team to support our continued growth. You will help maintain and protect our key business assets from threats and risks by monitoring, detecting, analysing, and responding to security incidents. Key Responsibilities Oversee the day to day running of our SIEM solution (Chronicle) working closely with Infrastructure, Networks, DevOps and our outsourced Security Operations Centre (SOC) team. Define and facilitate the creation of new rules or fine tuning existing rules within SIEM. Investigate SIEM alerts and other security incidents through to completion. Work within the Information Security Team to provide a dynamic monitoring and incident response capability. Monitor and analyse security events identifying trends, attacks, and potential threats. Identify and raise problems. Communicate & escal Monitoring and gathering Threat intelligence and coordinating subsequent Threat Hunting. Assess security threats from multiple sources and plan mitigation/remediation. Gather relevant data, analyse and respond to cyber security incidents. Research and stay current on the latest trends, best practices, and technology developments for all things cyber. Assist in the design, management, and documentation of security policies, solutions, standards, and processes. Designing effective test methods for logical security controls. Day to day management of Endpoint Detection and Response (EDR). Qualifications A good understanding of technical and network security requirements. Ability to proactively identify control weakness and vulnerabilities. Knowledge and use of SIEM tooling i.e., Splunk, Chronicle, Sentinel etc and event log data. Experience in understanding Firewalls and IDS/IPS and Windows Security Event Logs. Strong verbal and written communication skills with the ability to articulate complex ideas in easy to comprehend business terms. Comfortable taking ownership for own work, identifying the need for action whilst working effectively within a team. Ability to quickly understand existing infrastructure, network security principles, data flow and security architectures. Knowledge of the fundamentals of cloud infrastructure as well as traditional technologies. Degree in IT / Cyber preferred or industry recognised qualification. Benefits Group Personal Pension Plan - 8% employer contribution and 4% employee contribution Life Assurance and Group Income Protection Private Medical Insurance - Provided by Bupa 25 Days Annual Leave, plus bank holidays Staff Discounts on our investment products Personal & Well being Fund - Supporting your physical and mental wellness Retail Discounts - Savings at a wide range of high street and online retailers Voluntary Flexible Benefits - Tailor your benefits to suit your lifestyle Equal Employment Opportunity Statement interactive investor operates in accordance with the UKEqualityAct2010. We welcome applications from individuals of all ages, disabilities, gender identities, marital status, pregnancy/maternity, race, religion or belief, sex, and sexual orientation. We are committed to treating all applicants fairly and making reasonable adjustments where needed to support disabled applicants. We actively prevent all forms of discrimination, harassment, and victimisation-whether direct, indirect, associative, or perceptive.
Join Police Digital Service as a Cyber Detect Analyst. Permanent FT. Salary £45,000 per annum. About Police Digital Service The National Management Centre (NMC) is part of Police Digital Services and provides visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response capability for digital services before, during and after cyber-attacks, enabling stakeholders to understand and proactively manage risk across the technology estate at both the national and force level. Key Responsibilities As a member of the NMC Protective Monitoring Team you will respond to immediate security threats on NMC Monitored networks that may impact our client network. The NMC Protective Monitoring team's goal is to detect, analyse, investigate, and respond to cyber security alerts using a combination of cutting edge technology and a strong set of processes. The NMC Cyber Detect Analysts will work closely with teams across the NMC, typically with the Incident Response Teams to ensure security issues are addressed quickly upon discovery. NMC Cyber Detect Analyst duties involve but are not limited to: Initial Triage of alerts - evaluation & detection Confirmation of false positive Incident data gathering and feedback on any gaps and issues in respect to Platform Content or tuning opportunities Reflection of incident severity based on analysis Escalation of potential incidents to customer or Senior Cyber Detect Analyst/CIMT Team as appropriate Trend Analysis of force-by-force events for presentation into forces at regular intervals Continuous input into the value and optimisation of content Regular Performance conversations with line manager A proactive approach to personal development and coaching conversations to challenge and develop yourself and others. Monitoring and triage of alerts across NMC Technologies. Accountable for the initial assessment of alerts via analysis of all data at your disposal in the alert's context. Following guidance documentation where applicable in a timely manner. Responsible for engaging relevant stakeholders, e.g. The customer, Senior Cyber Detect Analyst or CIMT (Cyber Incident Management Team) following completion of alert assessments. Responsible for ensuring initial engagement direct with national police forces where relevant Must be in tune with situational awareness across national police forces, e.g., Change, Problem, Incident, Network Architecture, Critical Asset lists. Comprehensive understanding of all NMC services and their interoperability What you need to succeed in the role Ability to acquire SC and NPPV3 level clearances Experience working in a fast paced operational environment Experience working within a team Experience working in a customer facing environment Knowledge of various security methodologies and processes Knowledge of commonly deployed Cyber Security tools and products Knowledge of common Internet protocols and applications Knowledge and hands on experience of IP networks and their key components A genuine enthusiasm and drive to work within Cyber Security Motivated and ambitious to work on your own initiative without needing direction Strong attention to detail Ability to multi task, prioritise, and manage time effectively Excellent interpersonal skills and professional demeanour Excellent verbal and written communication skills Proficient in Microsoft Office Applications Proficient in the use of SIEM (Security Incident and Event Management) technology, in terms of handling alerts, analysis of the data within the alert and rationale on whether escalation or closure is required. Ability to convey technical speak into plain English to contextualise the alert with recommendations if applicable Ability to engage with all elements of the NMC proactively and professionally Why Join us? Balance is important and we want you to take time off to recharge - we offer 28 days' annual leave plus bank holidays, rising to 30 days after 5 years of service. Holiday purchase also available. We care about your well being - we have an EAP that offers not just welfare benefits but also retail discounts. Plan for the future - we offer an excellent pension scheme and life assurance cover. Put your mind at rest regarding your health - offering remote GP, mental health and physiotherapy appointments via video consultation. Family - enhanced maternity and paternity pay along with a flexible return to work. Community - one paid day off per year for volunteering. We are committed to equal opportunity for all and will not discriminate on any grounds. We encourage applications from people from the widest possible span of experience. We particularly welcome applications from Black, Asian and Minority Ethnic (BAME) candidates and people with disabilities. Working Arrangements At the NMC, you will benefit from hybrid working, getting the advantages of both face to face team engagement and home working. NMC employees have the opportunity to work in our new modern office environment for in person collaboration, however you will also get the opportunity to work from home 2 days a week. All applicants must be eligible for NPPV3 and SC clearances. Successful applicants will require NPPV3 clearance to have been approved before starting with PDS.
04/06/2026
Full time
Join Police Digital Service as a Cyber Detect Analyst. Permanent FT. Salary £45,000 per annum. About Police Digital Service The National Management Centre (NMC) is part of Police Digital Services and provides visibility and control of information risks for policing. It supports the 24x7x365 nature of police operations, providing a threat detection and response capability for digital services before, during and after cyber-attacks, enabling stakeholders to understand and proactively manage risk across the technology estate at both the national and force level. Key Responsibilities As a member of the NMC Protective Monitoring Team you will respond to immediate security threats on NMC Monitored networks that may impact our client network. The NMC Protective Monitoring team's goal is to detect, analyse, investigate, and respond to cyber security alerts using a combination of cutting edge technology and a strong set of processes. The NMC Cyber Detect Analysts will work closely with teams across the NMC, typically with the Incident Response Teams to ensure security issues are addressed quickly upon discovery. NMC Cyber Detect Analyst duties involve but are not limited to: Initial Triage of alerts - evaluation & detection Confirmation of false positive Incident data gathering and feedback on any gaps and issues in respect to Platform Content or tuning opportunities Reflection of incident severity based on analysis Escalation of potential incidents to customer or Senior Cyber Detect Analyst/CIMT Team as appropriate Trend Analysis of force-by-force events for presentation into forces at regular intervals Continuous input into the value and optimisation of content Regular Performance conversations with line manager A proactive approach to personal development and coaching conversations to challenge and develop yourself and others. Monitoring and triage of alerts across NMC Technologies. Accountable for the initial assessment of alerts via analysis of all data at your disposal in the alert's context. Following guidance documentation where applicable in a timely manner. Responsible for engaging relevant stakeholders, e.g. The customer, Senior Cyber Detect Analyst or CIMT (Cyber Incident Management Team) following completion of alert assessments. Responsible for ensuring initial engagement direct with national police forces where relevant Must be in tune with situational awareness across national police forces, e.g., Change, Problem, Incident, Network Architecture, Critical Asset lists. Comprehensive understanding of all NMC services and their interoperability What you need to succeed in the role Ability to acquire SC and NPPV3 level clearances Experience working in a fast paced operational environment Experience working within a team Experience working in a customer facing environment Knowledge of various security methodologies and processes Knowledge of commonly deployed Cyber Security tools and products Knowledge of common Internet protocols and applications Knowledge and hands on experience of IP networks and their key components A genuine enthusiasm and drive to work within Cyber Security Motivated and ambitious to work on your own initiative without needing direction Strong attention to detail Ability to multi task, prioritise, and manage time effectively Excellent interpersonal skills and professional demeanour Excellent verbal and written communication skills Proficient in Microsoft Office Applications Proficient in the use of SIEM (Security Incident and Event Management) technology, in terms of handling alerts, analysis of the data within the alert and rationale on whether escalation or closure is required. Ability to convey technical speak into plain English to contextualise the alert with recommendations if applicable Ability to engage with all elements of the NMC proactively and professionally Why Join us? Balance is important and we want you to take time off to recharge - we offer 28 days' annual leave plus bank holidays, rising to 30 days after 5 years of service. Holiday purchase also available. We care about your well being - we have an EAP that offers not just welfare benefits but also retail discounts. Plan for the future - we offer an excellent pension scheme and life assurance cover. Put your mind at rest regarding your health - offering remote GP, mental health and physiotherapy appointments via video consultation. Family - enhanced maternity and paternity pay along with a flexible return to work. Community - one paid day off per year for volunteering. We are committed to equal opportunity for all and will not discriminate on any grounds. We encourage applications from people from the widest possible span of experience. We particularly welcome applications from Black, Asian and Minority Ethnic (BAME) candidates and people with disabilities. Working Arrangements At the NMC, you will benefit from hybrid working, getting the advantages of both face to face team engagement and home working. NMC employees have the opportunity to work in our new modern office environment for in person collaboration, however you will also get the opportunity to work from home 2 days a week. All applicants must be eligible for NPPV3 and SC clearances. Successful applicants will require NPPV3 clearance to have been approved before starting with PDS.
6 month FTC Central London - 2 days on-site per week Up to £80,000 (pro rata) This is a fantastic opportunity to play a pivotal role in maturing and strengthening the security operations capability of a globally recognised law firm. you'll be at the forefront of SIEM engineering, detection content development, and security automation helping to protect one of the most complex and internationally active legal organisations in the world. Job Title: Information Security Operations Engineer (SOC) Job Type: Fixed-Term Contract (6 months) Working Arrangement: Hybrid - 2 days in the office per week Office Location: Central London The Role As a SOC Engineer, you will: Enhance and optimise the firms SIEM platform, improving performance, coverage, and detection fidelity. Identify and onboard new log sources across cloud, on-prem, network, endpoint, and identity platforms. Design and implement advanced detection use cases aligned to MITRE ATT&CK and the cyber kill chain. Build and tune correlation rules, anomaly detections, dashboards, and alerting workflows. Implement SOAR automation to streamline incident response activities. Support SOC analysts and provide SME-level expertise during complex security incidents. Maintain high-quality documentation across data models, use cases, and SIEM architecture. What We re Looking For Previous experience working within a law firm Hands-on experience with leading SIEM platforms such as Microsoft Sentinel, Splunk, Exabeam, QRadar, or Elastic. Strong understanding of log formats (JSON, syslog, CEF, XML) and ingestion technologies. Solid knowledge of MITRE ATT&CK, threat hunting, and detection engineering principles. Proficiency in Scripting languages including Python, PowerShell, and PowerApps. Familiarity with SOAR platforms and security automation workflows. Relevant professional certifications such as GIAC (GCIA, GCDA, GMON), Microsoft SC-200/SC-100, CISSP, or SSCP are highly desirable. A Level 4 or higher qualification in a computing subject, or equivalent professional experience. Services offered by Computappoint Limited are those of an Employment Business and/or Employment Agency in relation to this vacancy. Computappoint do not use AI to filter or assess candidates, we use experienced and dedicated recruiters, who want to match the best people to roles.
03/06/2026
6 month FTC Central London - 2 days on-site per week Up to £80,000 (pro rata) This is a fantastic opportunity to play a pivotal role in maturing and strengthening the security operations capability of a globally recognised law firm. you'll be at the forefront of SIEM engineering, detection content development, and security automation helping to protect one of the most complex and internationally active legal organisations in the world. Job Title: Information Security Operations Engineer (SOC) Job Type: Fixed-Term Contract (6 months) Working Arrangement: Hybrid - 2 days in the office per week Office Location: Central London The Role As a SOC Engineer, you will: Enhance and optimise the firms SIEM platform, improving performance, coverage, and detection fidelity. Identify and onboard new log sources across cloud, on-prem, network, endpoint, and identity platforms. Design and implement advanced detection use cases aligned to MITRE ATT&CK and the cyber kill chain. Build and tune correlation rules, anomaly detections, dashboards, and alerting workflows. Implement SOAR automation to streamline incident response activities. Support SOC analysts and provide SME-level expertise during complex security incidents. Maintain high-quality documentation across data models, use cases, and SIEM architecture. What We re Looking For Previous experience working within a law firm Hands-on experience with leading SIEM platforms such as Microsoft Sentinel, Splunk, Exabeam, QRadar, or Elastic. Strong understanding of log formats (JSON, syslog, CEF, XML) and ingestion technologies. Solid knowledge of MITRE ATT&CK, threat hunting, and detection engineering principles. Proficiency in Scripting languages including Python, PowerShell, and PowerApps. Familiarity with SOAR platforms and security automation workflows. Relevant professional certifications such as GIAC (GCIA, GCDA, GMON), Microsoft SC-200/SC-100, CISSP, or SSCP are highly desirable. A Level 4 or higher qualification in a computing subject, or equivalent professional experience. Services offered by Computappoint Limited are those of an Employment Business and/or Employment Agency in relation to this vacancy. Computappoint do not use AI to filter or assess candidates, we use experienced and dedicated recruiters, who want to match the best people to roles.
Overview Title: Cyber Platform Engineer Reference No: 2160 Company: FTSE 100 Reports to: Security Platform Engineering Manager Location: London Working Pattern: 37.5 hours per week, Monday - Friday. Location: London/Peterborough, with potential travel to divisional sites as required by advisory engagements (hybrid working arrangements in place). Salary: £59,000 - £72,000 Benefits: Bupa, Matched pension contributions. The Role Group Cyber Security Overview The Group Cyber Security (GCS) team is responsible for managing cyber risk appropriately across the Group and has recently refreshed its cyber strategy, with a renewed focus on embedding cyber security as part of the culture and DNA. This is a highly federated business model spanning 11 divisions and over 50 countries, and the cyber strategy has been designed to build materially improved security capabilities whilst working with a divisional focus. It is an exciting time to join GCS. We are in a period of significant investment, with a multi-year transformation programme under way to build new security capabilities at pace. GCS is responsible for setting the Group cyber standard, measuring compliance against it across all the businesses, and delivering a portfolio of centrally managed security services that divisions can rely on. The Security Platform Engineering function is central to that portfolio - responsible for ensuring that the security tools the Group invests in are deeply understood, expertly configured, continuously improved, and consistently delivering their intended security and business value. Role Summary Reporting to the Security Platform Engineering Manager, the Cyber Platform Engineer is a hands-on technical specialist responsible for the day-to-day engineering, configuration, and operational health of one or more security platforms within the GCS portfolio. The role sits at the technical heart of the platform engineering function - doing the detailed, expert work that keeps the security tools performing at their best, configured to the right standards, and evolving in line with the Group's needs and the vendor's roadmap. The platforms in scope include Microsoft Defender (across the M365 Defender suite), Zscaler, Qualys, Abnormal Security, and Axonius. The Cyber Platform Engineer will typically own deep expertise in one or two of these platforms and maintain solid working knowledge across the others. The role shares the mindset that defines the whole function: genuine curiosity about the tools under its care, a desire to understand and exploit their full capability, and an instinct to identify where existing platform features can be applied creatively to address new problems rather than defaulting to new tooling. The Cyber Platform Engineer works closely with the SOC and security operations teams to ensure platforms are tuned for effective detection and response, and provides technical support and configuration guidance to divisional IT and security teams who are deploying or operating centrally managed platforms in their environments. Role Responsibilities / Accountabilities Platform Engineering & Technical Configuration Own the technical configuration and day-to-day engineering of assigned platforms within the GCS portfolio; maintain configurations to the approved baseline, apply updates and changes through the change management process, and ensure platform health is actively monitored and maintained. Develop and maintain detailed configuration documentation, runbooks, and change records for assigned platforms; ensure that configuration state is consistently documented, version-controlled, and auditable by the Security Platform Engineering Manager or by assurance functions. Utilising the Run team - Identify and implement improvements to platform configurations that improve security outcomes, reduce operational noise, or unlock additional capability; bring well-evidenced proposals to the Security Platform Engineering Manager for review before implementation. Maintain deep, current technical knowledge of assigned platforms; stay ahead of vendor releases, patch notes, and roadmap updates, and flag relevant developments to the Security Platform Engineering Manager with a view on their implications. Policy Configuration & Standards Alignment Translate Group cyber technical standards into platform-level policy configurations; ensure that policy settings in assigned platforms enforce the correct security controls, are consistently applied across all in-scope environments, and align with the Group cyber enterprise architecture. Identify and report divergence between the approved configuration baseline and the as-built state of assigned platforms; investigate root causes, assess risk, and work with the Security Platform Engineering Manager to agree and implement remediation. Provide technical configuration guidance to divisional IT and security teams deploying or operating centrally managed platforms in their environments; act as the technical point of contact for platform-specific queries, ensuring divisional implementations meet Group standards. SOC Support & Operational Tuning Work closely with the SOC and security operations teams to tune platform configurations for effective detection and response; adjust detection rules, alert thresholds, and data feeds in response to operational feedback, ensuring SOC analysts receive high-fidelity, actionable alerts. Act as the technical escalation point for platform-related operational issues raised by the SOC; diagnose platform problems, engage vendor support where required, and drive issues to resolution with minimal impact on SOC operational effectiveness. Develop and maintain platform integration configurations that connect assigned platforms to the SIEM, SOAR, and other operational tooling; ensure data feeds are reliable, well-formed, and provide the SOC with the visibility needed to detect and respond to threats effectively. Platform Capability Development & Innovation Actively explore the full capability of assigned platforms; identify licensable features, beta capabilities, and underused functionality that could improve the security posture, and bring well-structured proposals to the Security Platform Engineering Manager for consideration. Design and implement automation and integration workflows that improve the efficiency and effectiveness of platform operations; develop scripts, API integrations, and orchestration logic that reduce manual effort and enable platform capabilities to be delivered at scale. Support the delivery of platform deployments, upgrades, and new capability rollouts as part of the GCS transformation programme; plan and execute engineering work with precision, minimising disruption to the business and to SOC operations throughout. Vendor Engagement & Licence Management Maintain productive working relationships with vendor technical teams for assigned platforms; engage effectively with vendor support for issue resolution, participate in technical briefings and product roadmap sessions, and escalate product deficiencies through appropriate channels. Maintain accurate records of licence entitlements, feature adoption, and consumption for assigned platforms; flag any discrepancies, unused entitlements, or upcoming renewal milestones to the Security Platform Engineering Manager in a timely manner. Experience, Knowledge, Skills & Attributes Essential Experience 4+ years in a cyber security engineering or security operations technology role, with hands-on technical experience configuring and managing enterprise security platforms. Demonstrable, deep technical expertise in at least one platform from the portfolio - Microsoft Defender / M365 Defender suite, Zscaler, Qualys, Abnormal Security, or Axonius - including hands-on configuration, policy management, and operational tuning at enterprise scale. Experience working closely with a SOC or security operations team, with an understanding of how platform configuration decisions affect detection quality, alert fidelity, and analyst workflow. Experience maintaining configuration documentation and operating within a structured change management process for security platforms. Experience engaging with vendor technical support teams, logging and escalating issues effectively, and driving platform problems to resolution. Knowledge & Skills Genuine technical curiosity: the instinct to explore platforms beyond surface-level familiarity, understand their full capability depth, and think creatively about how features can be applied to solve real security problems. Strong working knowledge of the Microsoft security stack, including Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Defender for Office 365, and M365 security policy configuration. Understanding of security platform integration patterns, including API connectivity, SIEM/SOAR data feeds, and log forwarding; practical experience implementing or maintaining at least one such integration. Ability to produce clear technical documentation - configuration records, runbooks, change requests - to a consistent and auditable standard. Qualifications Degree-level education in computer science, information security, or a related technical discipline; or equivalent professional experience. Vendor certification in at least one of the platforms in scope (e.g . click apply for full job details
03/06/2026
Full time
Overview Title: Cyber Platform Engineer Reference No: 2160 Company: FTSE 100 Reports to: Security Platform Engineering Manager Location: London Working Pattern: 37.5 hours per week, Monday - Friday. Location: London/Peterborough, with potential travel to divisional sites as required by advisory engagements (hybrid working arrangements in place). Salary: £59,000 - £72,000 Benefits: Bupa, Matched pension contributions. The Role Group Cyber Security Overview The Group Cyber Security (GCS) team is responsible for managing cyber risk appropriately across the Group and has recently refreshed its cyber strategy, with a renewed focus on embedding cyber security as part of the culture and DNA. This is a highly federated business model spanning 11 divisions and over 50 countries, and the cyber strategy has been designed to build materially improved security capabilities whilst working with a divisional focus. It is an exciting time to join GCS. We are in a period of significant investment, with a multi-year transformation programme under way to build new security capabilities at pace. GCS is responsible for setting the Group cyber standard, measuring compliance against it across all the businesses, and delivering a portfolio of centrally managed security services that divisions can rely on. The Security Platform Engineering function is central to that portfolio - responsible for ensuring that the security tools the Group invests in are deeply understood, expertly configured, continuously improved, and consistently delivering their intended security and business value. Role Summary Reporting to the Security Platform Engineering Manager, the Cyber Platform Engineer is a hands-on technical specialist responsible for the day-to-day engineering, configuration, and operational health of one or more security platforms within the GCS portfolio. The role sits at the technical heart of the platform engineering function - doing the detailed, expert work that keeps the security tools performing at their best, configured to the right standards, and evolving in line with the Group's needs and the vendor's roadmap. The platforms in scope include Microsoft Defender (across the M365 Defender suite), Zscaler, Qualys, Abnormal Security, and Axonius. The Cyber Platform Engineer will typically own deep expertise in one or two of these platforms and maintain solid working knowledge across the others. The role shares the mindset that defines the whole function: genuine curiosity about the tools under its care, a desire to understand and exploit their full capability, and an instinct to identify where existing platform features can be applied creatively to address new problems rather than defaulting to new tooling. The Cyber Platform Engineer works closely with the SOC and security operations teams to ensure platforms are tuned for effective detection and response, and provides technical support and configuration guidance to divisional IT and security teams who are deploying or operating centrally managed platforms in their environments. Role Responsibilities / Accountabilities Platform Engineering & Technical Configuration Own the technical configuration and day-to-day engineering of assigned platforms within the GCS portfolio; maintain configurations to the approved baseline, apply updates and changes through the change management process, and ensure platform health is actively monitored and maintained. Develop and maintain detailed configuration documentation, runbooks, and change records for assigned platforms; ensure that configuration state is consistently documented, version-controlled, and auditable by the Security Platform Engineering Manager or by assurance functions. Utilising the Run team - Identify and implement improvements to platform configurations that improve security outcomes, reduce operational noise, or unlock additional capability; bring well-evidenced proposals to the Security Platform Engineering Manager for review before implementation. Maintain deep, current technical knowledge of assigned platforms; stay ahead of vendor releases, patch notes, and roadmap updates, and flag relevant developments to the Security Platform Engineering Manager with a view on their implications. Policy Configuration & Standards Alignment Translate Group cyber technical standards into platform-level policy configurations; ensure that policy settings in assigned platforms enforce the correct security controls, are consistently applied across all in-scope environments, and align with the Group cyber enterprise architecture. Identify and report divergence between the approved configuration baseline and the as-built state of assigned platforms; investigate root causes, assess risk, and work with the Security Platform Engineering Manager to agree and implement remediation. Provide technical configuration guidance to divisional IT and security teams deploying or operating centrally managed platforms in their environments; act as the technical point of contact for platform-specific queries, ensuring divisional implementations meet Group standards. SOC Support & Operational Tuning Work closely with the SOC and security operations teams to tune platform configurations for effective detection and response; adjust detection rules, alert thresholds, and data feeds in response to operational feedback, ensuring SOC analysts receive high-fidelity, actionable alerts. Act as the technical escalation point for platform-related operational issues raised by the SOC; diagnose platform problems, engage vendor support where required, and drive issues to resolution with minimal impact on SOC operational effectiveness. Develop and maintain platform integration configurations that connect assigned platforms to the SIEM, SOAR, and other operational tooling; ensure data feeds are reliable, well-formed, and provide the SOC with the visibility needed to detect and respond to threats effectively. Platform Capability Development & Innovation Actively explore the full capability of assigned platforms; identify licensable features, beta capabilities, and underused functionality that could improve the security posture, and bring well-structured proposals to the Security Platform Engineering Manager for consideration. Design and implement automation and integration workflows that improve the efficiency and effectiveness of platform operations; develop scripts, API integrations, and orchestration logic that reduce manual effort and enable platform capabilities to be delivered at scale. Support the delivery of platform deployments, upgrades, and new capability rollouts as part of the GCS transformation programme; plan and execute engineering work with precision, minimising disruption to the business and to SOC operations throughout. Vendor Engagement & Licence Management Maintain productive working relationships with vendor technical teams for assigned platforms; engage effectively with vendor support for issue resolution, participate in technical briefings and product roadmap sessions, and escalate product deficiencies through appropriate channels. Maintain accurate records of licence entitlements, feature adoption, and consumption for assigned platforms; flag any discrepancies, unused entitlements, or upcoming renewal milestones to the Security Platform Engineering Manager in a timely manner. Experience, Knowledge, Skills & Attributes Essential Experience 4+ years in a cyber security engineering or security operations technology role, with hands-on technical experience configuring and managing enterprise security platforms. Demonstrable, deep technical expertise in at least one platform from the portfolio - Microsoft Defender / M365 Defender suite, Zscaler, Qualys, Abnormal Security, or Axonius - including hands-on configuration, policy management, and operational tuning at enterprise scale. Experience working closely with a SOC or security operations team, with an understanding of how platform configuration decisions affect detection quality, alert fidelity, and analyst workflow. Experience maintaining configuration documentation and operating within a structured change management process for security platforms. Experience engaging with vendor technical support teams, logging and escalating issues effectively, and driving platform problems to resolution. Knowledge & Skills Genuine technical curiosity: the instinct to explore platforms beyond surface-level familiarity, understand their full capability depth, and think creatively about how features can be applied to solve real security problems. Strong working knowledge of the Microsoft security stack, including Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Defender for Office 365, and M365 security policy configuration. Understanding of security platform integration patterns, including API connectivity, SIEM/SOAR data feeds, and log forwarding; practical experience implementing or maintaining at least one such integration. Ability to produce clear technical documentation - configuration records, runbooks, change requests - to a consistent and auditable standard. Qualifications Degree-level education in computer science, information security, or a related technical discipline; or equivalent professional experience. Vendor certification in at least one of the platforms in scope (e.g . click apply for full job details
Title: Senior Security Operations Analyst Location: Hybrid - Manchester or Leeds 3 days per week, 2 days remote Salary: From £54,000 Who we are: interactive investor is an award-winning investment platform that puts its customers in control of their financial future. We've been helping investors for nearly 30 years. We've seen market highs and lows and been resilient throughout. We're now the UK's number one flat-fee investment platform, with assets under administration approaching £75 billion and over 500,000 customers. For a simple, flat monthly fee we provide a secure home for your pensions, ISAs and investments. We offer a wide choice of over 20,000 UK and international investment options, including shares, funds, trusts and ETFs. We also bring impartial, expert content from our award-winning financial journalists, highly engaged community of investors, and daily newsletters and insights. Purpose of the Role We are recruiting for a Senior Security Operations Analyst to join the Information Security Team to support our continued growth. You will help maintain and protect our key business assets from threats and risks by monitoring, detecting, analysing, and responding to security incidents. Key Responsibilities Oversee the day to day running of our SIEM solution (Chronicle) working closely with Infrastructure, Networks, DevOps and our outsourced Security Operations Centre (SOC) team. Define and facilitate the creation of new rules or fine-tuning existing rules within SIEM. Investigate SIEM alerts and other security incidents through to completion. Work within the Information Security Team to provide a dynamic monitoring and incident response capability. Monitor and analyse security events identifying trends, attacks, and potential threats. Identify and raise problems. Communicate & escalate these via the appropriate channels and track through to remediation. Monitoring and gathering Threat intelligence and coordinating subsequent Threat Hunting. Assess security threats from multiple sources and plan mitigation/remediation. Gather relevant data, analyse and respond to cyber security incidents. Research and stay current on the latest trends, best practices, and technology developments for all things cyber. Assist in the design, management, and documentation of security policies, solutions, standards, and processes. Designing effective test methods for logical security controls. Day to day management of Endpoint Detection and Response (EDR). A good understanding of technical and network security requirements. Ability to proactively identify control weakness and vulnerabilities. Knowledge and use of SIEM tooling i.e., Splunk, Chronicle, Sentinel etc and event log data. Experience in understanding Firewalls and IDS/IPS and Windows Security Event Logs. Strong verbal and written communication skills with the ability to articulate complex ideas in easy to comprehend business terms. Comfortable taking ownership for own work, identifying the need for action whilst working effectively within a team. Ability to quickly understand existing infrastructure, network security principles, data flow and security architectures. Knowledge of the fundamentals of cloud infrastructure as well as traditional technologies. Degree in IT / Cyber preferred or industry recognised qualification. Group Personal Pension Plan- 8% employer contribution and 4% employee contribution Life AssuranceandGroup Income Protection Private Medical Insurance- Provided by Bupa 25 Days Annual Leave, plus bank holidays Staff Discountson our investment products Personal & Well-being Fund- Supporting your physical and mental wellness Retail Discounts- Savings at a wide range of high street and online retailers Voluntary Flexible Benefits- Tailor your benefits to suit your lifestyle Please Note: We will do our utmost efforts to respond to all applicants. However, due to the high volume of applications we're currently receiving, if you haven't been contacted within 30 days of application, please consider unsuccessful. interactive investor operates in accordance with the UKEqualityAct2010. We welcome applications from individuals of all ages, disabilities, gender identities, marital status, pregnancy/maternity, race, religion or belief, sex, and sexual orientation. We are committed to treating all applicants fairly and making reasonable adjustments where needed to support disabled applicants. We actively prevent all forms of discrimination, harassment, and victimisation-whether direct, indirect, associative, or perceptive.
02/06/2026
Full time
Title: Senior Security Operations Analyst Location: Hybrid - Manchester or Leeds 3 days per week, 2 days remote Salary: From £54,000 Who we are: interactive investor is an award-winning investment platform that puts its customers in control of their financial future. We've been helping investors for nearly 30 years. We've seen market highs and lows and been resilient throughout. We're now the UK's number one flat-fee investment platform, with assets under administration approaching £75 billion and over 500,000 customers. For a simple, flat monthly fee we provide a secure home for your pensions, ISAs and investments. We offer a wide choice of over 20,000 UK and international investment options, including shares, funds, trusts and ETFs. We also bring impartial, expert content from our award-winning financial journalists, highly engaged community of investors, and daily newsletters and insights. Purpose of the Role We are recruiting for a Senior Security Operations Analyst to join the Information Security Team to support our continued growth. You will help maintain and protect our key business assets from threats and risks by monitoring, detecting, analysing, and responding to security incidents. Key Responsibilities Oversee the day to day running of our SIEM solution (Chronicle) working closely with Infrastructure, Networks, DevOps and our outsourced Security Operations Centre (SOC) team. Define and facilitate the creation of new rules or fine-tuning existing rules within SIEM. Investigate SIEM alerts and other security incidents through to completion. Work within the Information Security Team to provide a dynamic monitoring and incident response capability. Monitor and analyse security events identifying trends, attacks, and potential threats. Identify and raise problems. Communicate & escalate these via the appropriate channels and track through to remediation. Monitoring and gathering Threat intelligence and coordinating subsequent Threat Hunting. Assess security threats from multiple sources and plan mitigation/remediation. Gather relevant data, analyse and respond to cyber security incidents. Research and stay current on the latest trends, best practices, and technology developments for all things cyber. Assist in the design, management, and documentation of security policies, solutions, standards, and processes. Designing effective test methods for logical security controls. Day to day management of Endpoint Detection and Response (EDR). A good understanding of technical and network security requirements. Ability to proactively identify control weakness and vulnerabilities. Knowledge and use of SIEM tooling i.e., Splunk, Chronicle, Sentinel etc and event log data. Experience in understanding Firewalls and IDS/IPS and Windows Security Event Logs. Strong verbal and written communication skills with the ability to articulate complex ideas in easy to comprehend business terms. Comfortable taking ownership for own work, identifying the need for action whilst working effectively within a team. Ability to quickly understand existing infrastructure, network security principles, data flow and security architectures. Knowledge of the fundamentals of cloud infrastructure as well as traditional technologies. Degree in IT / Cyber preferred or industry recognised qualification. Group Personal Pension Plan- 8% employer contribution and 4% employee contribution Life AssuranceandGroup Income Protection Private Medical Insurance- Provided by Bupa 25 Days Annual Leave, plus bank holidays Staff Discountson our investment products Personal & Well-being Fund- Supporting your physical and mental wellness Retail Discounts- Savings at a wide range of high street and online retailers Voluntary Flexible Benefits- Tailor your benefits to suit your lifestyle Please Note: We will do our utmost efforts to respond to all applicants. However, due to the high volume of applications we're currently receiving, if you haven't been contacted within 30 days of application, please consider unsuccessful. interactive investor operates in accordance with the UKEqualityAct2010. We welcome applications from individuals of all ages, disabilities, gender identities, marital status, pregnancy/maternity, race, religion or belief, sex, and sexual orientation. We are committed to treating all applicants fairly and making reasonable adjustments where needed to support disabled applicants. We actively prevent all forms of discrimination, harassment, and victimisation-whether direct, indirect, associative, or perceptive.
Security Analyst - Hybrid (Dorking, 3 days per week) Unum is seeking a passionate and driven Security Analyst to join our dynamic Security Operations Team. This is an exciting opportunity for someone with a strong foundation in networking and endpoint security who is eager to grow, contribute, and make a real impact in protecting our organisation. Responsibilities Security Monitoring & Response: triage, investigate, and respond to alerts from tools such as our SIEM platform. Threat Analysis: examine phishing attempts and other suspicious activities. Ticket Management: handle incoming security related tickets and ensure timely resolution. Continuous Improvement: contribute to rule creation, tool enhancements, and automation initiatives. Collaboration: work closely with team members and other departments to strengthen our security posture. Soft Skills A collaborative team player who shares ideas and supports others. Curious and enthusiastic about cybersecurity and continuous learning. Strong communication skills, including the ability to present to senior stakeholders. Critical thinker and creative problem solver. Self starter with basic project management capabilities. Technical Skills Solid understanding of networking and OS fundamentals, including ports, protocols, and their potential misuse. Experience using SIEM platforms for search, aggregation, and visualization. Logical and methodical approach to security analysis. Awareness of modern threats, malware families, and threat actor tactics. Ability to interpret dynamic sandbox reports and assess risk. Basic scripting skills and familiarity with regular expressions (regex). Experience with version control tools such as Git. Understanding of endpoint artifacts (e.g., Event IDs, registry keys) and their implications. Knowledge of compliance frameworks and associated obligations. Equal Opportunity Statement We are proud to be a Disability Confident Employer. We encourage applications from those with disabilities and long term health conditions. If you meet the essential criteria for the role and choose to opt in to the scheme during your application, you will be offered an interview under the Disability Confident Scheme. If you need assistance and/or reasonable accommodation due to a disability during the application or recruiting process, please send a request to .
01/06/2026
Full time
Security Analyst - Hybrid (Dorking, 3 days per week) Unum is seeking a passionate and driven Security Analyst to join our dynamic Security Operations Team. This is an exciting opportunity for someone with a strong foundation in networking and endpoint security who is eager to grow, contribute, and make a real impact in protecting our organisation. Responsibilities Security Monitoring & Response: triage, investigate, and respond to alerts from tools such as our SIEM platform. Threat Analysis: examine phishing attempts and other suspicious activities. Ticket Management: handle incoming security related tickets and ensure timely resolution. Continuous Improvement: contribute to rule creation, tool enhancements, and automation initiatives. Collaboration: work closely with team members and other departments to strengthen our security posture. Soft Skills A collaborative team player who shares ideas and supports others. Curious and enthusiastic about cybersecurity and continuous learning. Strong communication skills, including the ability to present to senior stakeholders. Critical thinker and creative problem solver. Self starter with basic project management capabilities. Technical Skills Solid understanding of networking and OS fundamentals, including ports, protocols, and their potential misuse. Experience using SIEM platforms for search, aggregation, and visualization. Logical and methodical approach to security analysis. Awareness of modern threats, malware families, and threat actor tactics. Ability to interpret dynamic sandbox reports and assess risk. Basic scripting skills and familiarity with regular expressions (regex). Experience with version control tools such as Git. Understanding of endpoint artifacts (e.g., Event IDs, registry keys) and their implications. Knowledge of compliance frameworks and associated obligations. Equal Opportunity Statement We are proud to be a Disability Confident Employer. We encourage applications from those with disabilities and long term health conditions. If you meet the essential criteria for the role and choose to opt in to the scheme during your application, you will be offered an interview under the Disability Confident Scheme. If you need assistance and/or reasonable accommodation due to a disability during the application or recruiting process, please send a request to .
Title Senior Security Operations Analyst Location Hybrid - Manchester or Leeds 3 days per week, 2 days remote Salary From £54,000 Who we are interactive investor is an award-winning investment platform that puts its customers in control of their financial future. We've been helping investors for nearly 30 years. We've seen market highs and lows and been resilient throughout. We're now the UK's number one flat-fee investment platform, with assets under administration approaching £75 billion and over 500,000 customers. For a simple, flat monthly fee we provide a secure home for your pensions, ISAs and investments. We offer a wide choice of over 20,000 UK and international investment options, including shares, funds, trusts and ETFs. We also bring impartial, expert content from our award-winning financial journalists, highly engaged community of investors, and daily newsletters and insights. Purpose of the Role We are recruiting for a Senior Security Operations Analyst to join the Information Security Team to support our continued growth. You will help maintain and protect our key business assets from threats and risks by monitoring, detecting, analysing, and responding to security incidents. Key Responsibilities Oversee the day to day running of our SIEM solution (Chronicle) working closely with Infrastructure, Networks, DevOps and our outsourced Security Operations Centre (SOC) team. Define and facilitate the creation of new rules or fine tuning existing rules within SIEM. Investigate SIEM alerts and other security incidents through to completion. Work within the Information Security Team to provide a dynamic monitoring and incident response capability. Monitor and analyse security events identifying trends, attacks, and potential threats. Identify and raise problems. Communicate & escal Monitoring and gathering Threat intelligence and coordinating subsequent Threat Hunting. Assess security threats from multiple sources and plan mitigation/remediation. Gather relevant data, analyse and respond to cyber security incidents. Research and stay current on the latest trends, best practices, and technology developments for all things cyber. Assist in the design, management, and documentation of security policies, solutions, standards, and processes. Designing effective test methods for logical security controls. Day to day management of Endpoint Detection and Response (EDR). Qualifications A good understanding of technical and network security requirements. Ability to proactively identify control weakness and vulnerabilities. Knowledge and use of SIEM tooling i.e., Splunk, Chronicle, Sentinel etc and event log data. Experience in understanding Firewalls and IDS/IPS and Windows Security Event Logs. Strong verbal and written communication skills with the ability to articulate complex ideas in easy to comprehend business terms. Comfortable taking ownership for own work, identifying the need for action whilst working effectively within a team. Ability to quickly understand existing infrastructure, network security principles, data flow and security architectures. Knowledge of the fundamentals of cloud infrastructure as well as traditional technologies. Degree in IT / Cyber preferred or industry recognised qualification. Benefits Group Personal Pension Plan - 8% employer contribution and 4% employee contribution Life Assurance and Group Income Protection Private Medical Insurance - Provided by Bupa 25 Days Annual Leave, plus bank holidays Staff Discounts on our investment products Personal & Well being Fund - Supporting your physical and mental wellness Retail Discounts - Savings at a wide range of high street and online retailers Voluntary Flexible Benefits - Tailor your benefits to suit your lifestyle Equal Employment Opportunity Statement interactive investor operates in accordance with the UKEqualityAct2010. We welcome applications from individuals of all ages, disabilities, gender identities, marital status, pregnancy/maternity, race, religion or belief, sex, and sexual orientation. We are committed to treating all applicants fairly and making reasonable adjustments where needed to support disabled applicants. We actively prevent all forms of discrimination, harassment, and victimisation-whether direct, indirect, associative, or perceptive.
01/06/2026
Full time
Title Senior Security Operations Analyst Location Hybrid - Manchester or Leeds 3 days per week, 2 days remote Salary From £54,000 Who we are interactive investor is an award-winning investment platform that puts its customers in control of their financial future. We've been helping investors for nearly 30 years. We've seen market highs and lows and been resilient throughout. We're now the UK's number one flat-fee investment platform, with assets under administration approaching £75 billion and over 500,000 customers. For a simple, flat monthly fee we provide a secure home for your pensions, ISAs and investments. We offer a wide choice of over 20,000 UK and international investment options, including shares, funds, trusts and ETFs. We also bring impartial, expert content from our award-winning financial journalists, highly engaged community of investors, and daily newsletters and insights. Purpose of the Role We are recruiting for a Senior Security Operations Analyst to join the Information Security Team to support our continued growth. You will help maintain and protect our key business assets from threats and risks by monitoring, detecting, analysing, and responding to security incidents. Key Responsibilities Oversee the day to day running of our SIEM solution (Chronicle) working closely with Infrastructure, Networks, DevOps and our outsourced Security Operations Centre (SOC) team. Define and facilitate the creation of new rules or fine tuning existing rules within SIEM. Investigate SIEM alerts and other security incidents through to completion. Work within the Information Security Team to provide a dynamic monitoring and incident response capability. Monitor and analyse security events identifying trends, attacks, and potential threats. Identify and raise problems. Communicate & escal Monitoring and gathering Threat intelligence and coordinating subsequent Threat Hunting. Assess security threats from multiple sources and plan mitigation/remediation. Gather relevant data, analyse and respond to cyber security incidents. Research and stay current on the latest trends, best practices, and technology developments for all things cyber. Assist in the design, management, and documentation of security policies, solutions, standards, and processes. Designing effective test methods for logical security controls. Day to day management of Endpoint Detection and Response (EDR). Qualifications A good understanding of technical and network security requirements. Ability to proactively identify control weakness and vulnerabilities. Knowledge and use of SIEM tooling i.e., Splunk, Chronicle, Sentinel etc and event log data. Experience in understanding Firewalls and IDS/IPS and Windows Security Event Logs. Strong verbal and written communication skills with the ability to articulate complex ideas in easy to comprehend business terms. Comfortable taking ownership for own work, identifying the need for action whilst working effectively within a team. Ability to quickly understand existing infrastructure, network security principles, data flow and security architectures. Knowledge of the fundamentals of cloud infrastructure as well as traditional technologies. Degree in IT / Cyber preferred or industry recognised qualification. Benefits Group Personal Pension Plan - 8% employer contribution and 4% employee contribution Life Assurance and Group Income Protection Private Medical Insurance - Provided by Bupa 25 Days Annual Leave, plus bank holidays Staff Discounts on our investment products Personal & Well being Fund - Supporting your physical and mental wellness Retail Discounts - Savings at a wide range of high street and online retailers Voluntary Flexible Benefits - Tailor your benefits to suit your lifestyle Equal Employment Opportunity Statement interactive investor operates in accordance with the UKEqualityAct2010. We welcome applications from individuals of all ages, disabilities, gender identities, marital status, pregnancy/maternity, race, religion or belief, sex, and sexual orientation. We are committed to treating all applicants fairly and making reasonable adjustments where needed to support disabled applicants. We actively prevent all forms of discrimination, harassment, and victimisation-whether direct, indirect, associative, or perceptive.
Join Us At Vodafone, we're not just shaping the future of connectivity for our customers - we're shaping the future for everyone who joins our team. When you work with us, you're part of a global mission to connect people, solve complex challenges, and create a sustainable and more inclusive world. If you want to grow your career whilst finding the perfect balance between work and life, Vodafone offers the opportunities to help you belong and make a real impact. What you'll do Join Vodafone's Cyber Defence Operations Center of Excellence (CDO) and play a pivotal role in protecting millions of customers from global cyber threats. As a Level 3 Security Analyst, you'll be at the forefront of advanced incident response, tackling complex security challenges and driving continuous improvement in our cyber defence posture. You'll investigate and validate threats using cutting edge tools, collaborate with global teams on incident investigations, and mentor colleagues to uplift skills across the CSOC. From fine tuning SIEM systems and automating response actions to delivering insightful security reports and advisories, your expertise will help shape Vodafone's resilience against evolving threats. This is a role where your critical thinking, leadership, and technical mastery will make a real impact every day. Who you are We welcome applications from all backgrounds and are committed to building a diverse and inclusive team. You might be a great fit if you bring: Experienced SOC analyst (Level 2 or above) with at least 4 years in security event analysis and incident response Strong technical knowledge of networking protocols, operating systems (Windows/Linux), and security technologies (SIEM, EDR, IDS/IPS, firewalls, proxies) Hands on experience with SIEM tuning and SOAR automation Familiarity with frameworks like MITRE ATT&CK and cyber kill chain Knowledge of cloud platforms (Azure, AWS, GoogleCloud) and scripting/programming skills Excellent analytical, communication, and collaboration skills, with the ability to explain technical concepts to non technical audiences Passion for continuous learning and professional development, ideally working toward certifications such as GCIA, GCIH, GCFA, GNFA, CEH, or ECSA A proactive, disciplined approach and the ability to work independently or as part of a team in a fast paced environment We are passionate about empowering people and creating a workplace where everyone can thrive, whatever their personal or professional background. What's in it for you We want you to feel happy and fulfilled at work, without compromising the other things in life that matter to you. There are lots of ways we support this, including hybrid working and generous parental leave. You'll also get four Spirit Days a year to focus on your personal development and wellbeing, plus a host of other great benefits too. Yearly bonus: 10% Annual leave: 28 days + bank holidays + the opportunity to buy/sell/carry over 5 days/year Charity days: 5 days/year Maternity leave: 52 weeks: the first 13 weeks are fully paid, followed by 26 weeks of half pay Private pension: You can contribute up to 5% of your basic pay with 2:1 matching from Vodafone up to 10% Access to private medical, private dental, free health assessments, share save scheme Additional discounts: Vodafone retail, gym, cinema, cycle to work, season ticket loan Who we are We are a leading international Telco, serving millions of customers. At Vodafone, we believe that connectivity is a force for good. If we use it for the things that really matter, it can improve people's lives and the world around us. Through our technology we empower people, connecting everyone regardless of who they are or where they live and we protect the planet, whilst helping our customers do the same. Belonging at Vodafone isn't a concept; it's lived, breathed, and cultivated through everything we do. You'll be part of a global and diverse community, with many different minds, abilities, backgrounds and cultures. We're committed to increase diversity, ensure equal representation, and make Vodafone a place everyone feels safe, valued and included. If you require any reasonable adjustments or have an accessibility request as part of your recruitment journey, for example, extended time or breaks in between online assessments, please refer to your application process for guidance. Together we can.
01/06/2026
Full time
Join Us At Vodafone, we're not just shaping the future of connectivity for our customers - we're shaping the future for everyone who joins our team. When you work with us, you're part of a global mission to connect people, solve complex challenges, and create a sustainable and more inclusive world. If you want to grow your career whilst finding the perfect balance between work and life, Vodafone offers the opportunities to help you belong and make a real impact. What you'll do Join Vodafone's Cyber Defence Operations Center of Excellence (CDO) and play a pivotal role in protecting millions of customers from global cyber threats. As a Level 3 Security Analyst, you'll be at the forefront of advanced incident response, tackling complex security challenges and driving continuous improvement in our cyber defence posture. You'll investigate and validate threats using cutting edge tools, collaborate with global teams on incident investigations, and mentor colleagues to uplift skills across the CSOC. From fine tuning SIEM systems and automating response actions to delivering insightful security reports and advisories, your expertise will help shape Vodafone's resilience against evolving threats. This is a role where your critical thinking, leadership, and technical mastery will make a real impact every day. Who you are We welcome applications from all backgrounds and are committed to building a diverse and inclusive team. You might be a great fit if you bring: Experienced SOC analyst (Level 2 or above) with at least 4 years in security event analysis and incident response Strong technical knowledge of networking protocols, operating systems (Windows/Linux), and security technologies (SIEM, EDR, IDS/IPS, firewalls, proxies) Hands on experience with SIEM tuning and SOAR automation Familiarity with frameworks like MITRE ATT&CK and cyber kill chain Knowledge of cloud platforms (Azure, AWS, GoogleCloud) and scripting/programming skills Excellent analytical, communication, and collaboration skills, with the ability to explain technical concepts to non technical audiences Passion for continuous learning and professional development, ideally working toward certifications such as GCIA, GCIH, GCFA, GNFA, CEH, or ECSA A proactive, disciplined approach and the ability to work independently or as part of a team in a fast paced environment We are passionate about empowering people and creating a workplace where everyone can thrive, whatever their personal or professional background. What's in it for you We want you to feel happy and fulfilled at work, without compromising the other things in life that matter to you. There are lots of ways we support this, including hybrid working and generous parental leave. You'll also get four Spirit Days a year to focus on your personal development and wellbeing, plus a host of other great benefits too. Yearly bonus: 10% Annual leave: 28 days + bank holidays + the opportunity to buy/sell/carry over 5 days/year Charity days: 5 days/year Maternity leave: 52 weeks: the first 13 weeks are fully paid, followed by 26 weeks of half pay Private pension: You can contribute up to 5% of your basic pay with 2:1 matching from Vodafone up to 10% Access to private medical, private dental, free health assessments, share save scheme Additional discounts: Vodafone retail, gym, cinema, cycle to work, season ticket loan Who we are We are a leading international Telco, serving millions of customers. At Vodafone, we believe that connectivity is a force for good. If we use it for the things that really matter, it can improve people's lives and the world around us. Through our technology we empower people, connecting everyone regardless of who they are or where they live and we protect the planet, whilst helping our customers do the same. Belonging at Vodafone isn't a concept; it's lived, breathed, and cultivated through everything we do. You'll be part of a global and diverse community, with many different minds, abilities, backgrounds and cultures. We're committed to increase diversity, ensure equal representation, and make Vodafone a place everyone feels safe, valued and included. If you require any reasonable adjustments or have an accessibility request as part of your recruitment journey, for example, extended time or breaks in between online assessments, please refer to your application process for guidance. Together we can.
