Experis - ManpowerGroup is seeking a Senior Cyber Security Operations Analyst in Corsham. The role requires maintaining and optimising SOC toolsets and enhancing threat detection processes. Candidates must have DV clearance and strong skills in SIEM platforms, Windows, and Linux OS. This position is ideal for cyber security professionals eager to protect critical assets and combat evolving threats. The contract offers a rate of up to £850 per day and runs until 31/12/2026.
12/06/2026
Full time
Experis - ManpowerGroup is seeking a Senior Cyber Security Operations Analyst in Corsham. The role requires maintaining and optimising SOC toolsets and enhancing threat detection processes. Candidates must have DV clearance and strong skills in SIEM platforms, Windows, and Linux OS. This position is ideal for cyber security professionals eager to protect critical assets and combat evolving threats. The contract offers a rate of up to £850 per day and runs until 31/12/2026.
Sanderson Government & Defence
Hemel Hempstead, Hertfordshire
L2 SOC Analyst (Perm) - SC/DV Clearable Location : Hemel Hempstead Salary: £40,000 - £58,000 + 20% Shift Allowance Shift Pattern: 4 on, 4 off (12 hour shifts) Clearance: SC Cleared (Must be eligible for DV) Contingency: Must be a sole British National Sanderson G&D are seeking multiple SOC Analysts to join a fast-growing Security Operations Centre, where you'll help defend multiple organisations across a wide range of industries - from critical infrastructure to complex enterprise environments. As part of a SOC team, you'll play a key role in strengthening and maturing services, helping deliver smart, efficient and high-impact security outcomes for clients. What you'll be doing: Monitoring and analysing security alerts and events, conducting initial investigations responding. Escalating complex incidents to Senior Analysts for deeper analysis and resolution. Managing SOC incident queues. Maintaining and improving asset baselines across customer environments. Producing clear, insightful reports for both technical and non-technical audiences. Enhancing detection rules and use cases aligned to MITRE ATT&CK and threat-informed defence. What you'll bring: Hands-on experience with Microsoft Sentinel and Splunk. Knowledge of the MITRE ATT&CK framework. Understanding of Client Server and multi-tier applications, databases, Firewalls, VPNs and endpoint security. Solid networking fundamentals (TCP/IP, LAN/WAN, HTTP, SMTP, FTP, LDAP, etc.). Strong analytical thinking and structured problem-solving. An entry-level cyber security certification (eg Security+, CEH, CPSA) or similar. if you're interested in the above, apply or reach out to (see below) Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
11/06/2026
Full time
L2 SOC Analyst (Perm) - SC/DV Clearable Location : Hemel Hempstead Salary: £40,000 - £58,000 + 20% Shift Allowance Shift Pattern: 4 on, 4 off (12 hour shifts) Clearance: SC Cleared (Must be eligible for DV) Contingency: Must be a sole British National Sanderson G&D are seeking multiple SOC Analysts to join a fast-growing Security Operations Centre, where you'll help defend multiple organisations across a wide range of industries - from critical infrastructure to complex enterprise environments. As part of a SOC team, you'll play a key role in strengthening and maturing services, helping deliver smart, efficient and high-impact security outcomes for clients. What you'll be doing: Monitoring and analysing security alerts and events, conducting initial investigations responding. Escalating complex incidents to Senior Analysts for deeper analysis and resolution. Managing SOC incident queues. Maintaining and improving asset baselines across customer environments. Producing clear, insightful reports for both technical and non-technical audiences. Enhancing detection rules and use cases aligned to MITRE ATT&CK and threat-informed defence. What you'll bring: Hands-on experience with Microsoft Sentinel and Splunk. Knowledge of the MITRE ATT&CK framework. Understanding of Client Server and multi-tier applications, databases, Firewalls, VPNs and endpoint security. Solid networking fundamentals (TCP/IP, LAN/WAN, HTTP, SMTP, FTP, LDAP, etc.). Strong analytical thinking and structured problem-solving. An entry-level cyber security certification (eg Security+, CEH, CPSA) or similar. if you're interested in the above, apply or reach out to (see below) Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Job Title: DV Cleared Cyber Security Operations - Senior Analyst Location: Corsham Duration: Until 31/12/2026 Rate: Up to £850 per day via an approved umbrella company Must be willing and eligible to go through the DV clearance process Are you an experienced cyber security professional with a passion for protecting critical assets? Our client, a reputable organisation, is hiring for a Senior Analyst to join their Cyber Security Operations team. This is a fantastic opportunity to work within a dynamic environment, supporting the delivery of essential security controls aligned with the NIST Cyber Security Framework. What you'll be doing: Maintain and optimise SOC PROTECT, DETECT, and RESPOND toolsets, including SIEM, SOAR, and vulnerability scanning tools. Support the development, configuration, and automation of security tooling to enhance threat detection and incident response. Conduct forensic analysis, malware reverse engineering, and develop IOCs and detection signatures. Manage and integrate logs from various sources, ensuring full visibility and compliance. Analyse attacker TTPs and manage threat intelligence, including incident assessment and reporting. Collaborate with stakeholders to ensure operational effectiveness and continuous process improvement. Maintain knowledge of current cyber threats and emerging trends. What you'll bring: Proven hands on experience with SIEM and SOAR platforms such as Trend, Elastic, or SolarWinds. Strong understanding of Windows and Linux OS, log collection, and threat detection techniques. Ability to create and modify detection rules, automate scripts, and correlate data from multiple sources. Knowledge of malware analysis, threat intelligence, and forensic techniques. Current DV clearance is essential. Skills in Python, PowerShell, Bash, or similar scripting languages. Familiarity with ISO 27001, MITRE ATT&CK, and ITIL frameworks. Desired skills: Certifications like CompTIA Security+, CySA+, PenTest+, or MCSE. Experience with network forensics and intrusion detection systems. Join a forward-thinking team where your expertise will make a real impact. If you're ready to take on a challenging role in cyber security, apply now to support our client's mission to stay ahead of evolving threats. If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
09/06/2026
Full time
Job Title: DV Cleared Cyber Security Operations - Senior Analyst Location: Corsham Duration: Until 31/12/2026 Rate: Up to £850 per day via an approved umbrella company Must be willing and eligible to go through the DV clearance process Are you an experienced cyber security professional with a passion for protecting critical assets? Our client, a reputable organisation, is hiring for a Senior Analyst to join their Cyber Security Operations team. This is a fantastic opportunity to work within a dynamic environment, supporting the delivery of essential security controls aligned with the NIST Cyber Security Framework. What you'll be doing: Maintain and optimise SOC PROTECT, DETECT, and RESPOND toolsets, including SIEM, SOAR, and vulnerability scanning tools. Support the development, configuration, and automation of security tooling to enhance threat detection and incident response. Conduct forensic analysis, malware reverse engineering, and develop IOCs and detection signatures. Manage and integrate logs from various sources, ensuring full visibility and compliance. Analyse attacker TTPs and manage threat intelligence, including incident assessment and reporting. Collaborate with stakeholders to ensure operational effectiveness and continuous process improvement. Maintain knowledge of current cyber threats and emerging trends. What you'll bring: Proven hands on experience with SIEM and SOAR platforms such as Trend, Elastic, or SolarWinds. Strong understanding of Windows and Linux OS, log collection, and threat detection techniques. Ability to create and modify detection rules, automate scripts, and correlate data from multiple sources. Knowledge of malware analysis, threat intelligence, and forensic techniques. Current DV clearance is essential. Skills in Python, PowerShell, Bash, or similar scripting languages. Familiarity with ISO 27001, MITRE ATT&CK, and ITIL frameworks. Desired skills: Certifications like CompTIA Security+, CySA+, PenTest+, or MCSE. Experience with network forensics and intrusion detection systems. Join a forward-thinking team where your expertise will make a real impact. If you're ready to take on a challenging role in cyber security, apply now to support our client's mission to stay ahead of evolving threats. If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
Join a Managed Security Service Provider (MSSP), that has been securing businesses globally since 2004. Initially a SIEM company, they evolved to offer managed services 12 years ago, driven by client demand for better staff retention. With an agile and dynamic team, they have maintained long-term client relationships, with their first client still with them after a decade. Their team members thrive here, with opportunities for rapid advancement. Clients span various sectors primarily in the UK, with growing interests in France, Germany, the Middle East, and the United States. We are seeking both Graduate and Experienced Security Analysts to join the SOC team. The role involves working with Elastic, Sentinel, Defender, and occasionally Splunk. Analysts must be SC & NPPV3 cleared or capable of obtaining these clearances. This role sits within a 24/7 SOC environment and follows a rotating 12-hour shift pattern (days and nights). The schedule alternates between three and four shifts per week, providing regular time off. All night shifts are fully remote, and day shifts that fall outside UK business hours can also be worked from home, offering a flexible and balanced working setup. If you are interested in this opportunity, get in touch and apply today. Responsibilities: Monitor and analyse security alerts using SIEM tools. Investigate and respond to security incidents. Collaborate with team members to enhance security measures. Provide detailed reports on security events and trends. Assist in maintaining and improving SOC operations. Skills/Must have: 1-2 years of experience in a SOC or relevant IT infrastructure role. Proficiency in AD, Intune, and general IT infrastructure. Experience with Elastic, Sentinel, Defender, and Splunk is desirable. Benefits: Be part of a company with a proven track record and long-term client relationships. Work in a supportive and agile environment where good performance is recognised and rewarded. Benefit from a hybrid working policy that supports work-life balance. Join a team with a history of progression; many have advanced from entry-level to senior positions. Salary: £24,000 - £26,000 basic salary per annum 15% bonus
09/06/2026
Full time
Join a Managed Security Service Provider (MSSP), that has been securing businesses globally since 2004. Initially a SIEM company, they evolved to offer managed services 12 years ago, driven by client demand for better staff retention. With an agile and dynamic team, they have maintained long-term client relationships, with their first client still with them after a decade. Their team members thrive here, with opportunities for rapid advancement. Clients span various sectors primarily in the UK, with growing interests in France, Germany, the Middle East, and the United States. We are seeking both Graduate and Experienced Security Analysts to join the SOC team. The role involves working with Elastic, Sentinel, Defender, and occasionally Splunk. Analysts must be SC & NPPV3 cleared or capable of obtaining these clearances. This role sits within a 24/7 SOC environment and follows a rotating 12-hour shift pattern (days and nights). The schedule alternates between three and four shifts per week, providing regular time off. All night shifts are fully remote, and day shifts that fall outside UK business hours can also be worked from home, offering a flexible and balanced working setup. If you are interested in this opportunity, get in touch and apply today. Responsibilities: Monitor and analyse security alerts using SIEM tools. Investigate and respond to security incidents. Collaborate with team members to enhance security measures. Provide detailed reports on security events and trends. Assist in maintaining and improving SOC operations. Skills/Must have: 1-2 years of experience in a SOC or relevant IT infrastructure role. Proficiency in AD, Intune, and general IT infrastructure. Experience with Elastic, Sentinel, Defender, and Splunk is desirable. Benefits: Be part of a company with a proven track record and long-term client relationships. Work in a supportive and agile environment where good performance is recognised and rewarded. Benefit from a hybrid working policy that supports work-life balance. Join a team with a history of progression; many have advanced from entry-level to senior positions. Salary: £24,000 - £26,000 basic salary per annum 15% bonus
CBSbutler Ltd. is seeking an experienced Senior SOC Analyst based in Portsmouth. This role involves maintaining and enhancing security monitoring tools to protect critical national security environments. You will lead threat detection, incident response, and forensic investigations while ensuring strong security practices. Candidates must hold current DV clearance and have experience with key security technologies, including SIEM and SOAR platforms. The position offers a daily rate of £575 to £630 and falls within the Inside IR35 guidelines.
09/06/2026
Full time
CBSbutler Ltd. is seeking an experienced Senior SOC Analyst based in Portsmouth. This role involves maintaining and enhancing security monitoring tools to protect critical national security environments. You will lead threat detection, incident response, and forensic investigations while ensuring strong security practices. Candidates must hold current DV clearance and have experience with key security technologies, including SIEM and SOAR platforms. The position offers a daily rate of £575 to £630 and falls within the Inside IR35 guidelines.
CBSbutler Ltd. is seeking a Senior SOC Analyst to join a high-performing Cyber Security Operations Centre in Corsham. The role involves leading threat detection, incident response, and vulnerability management. Candidates should have strong experience with SIEM/ SOAR platforms and current DV clearance. The position offers a salary of £575 - £650 per day and focuses on enhancing security monitoring capabilities.
09/06/2026
Full time
CBSbutler Ltd. is seeking a Senior SOC Analyst to join a high-performing Cyber Security Operations Centre in Corsham. The role involves leading threat detection, incident response, and vulnerability management. Candidates should have strong experience with SIEM/ SOAR platforms and current DV clearance. The position offers a salary of £575 - £650 per day and focuses on enhancing security monitoring capabilities.
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 +£575 - £650 a day +Corsham / Portsmouth We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance. Strong experience administering and tuning SIEM and SOAR platforms. Hands on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds. Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022, MITRE ATT&CK, and IT Service Management principles.
09/06/2026
Full time
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 +£575 - £650 a day +Corsham / Portsmouth We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance. Strong experience administering and tuning SIEM and SOAR platforms. Hands on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds. Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022, MITRE ATT&CK, and IT Service Management principles.
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 +£575 - £630 a day +Corsham / Portsmouth Key Skills: ISO27001 DV Cleareance SIEM/SOAR - Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds. We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance. Strong experience administering and tuning SIEM and SOAR platforms. Hands on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds. Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022, MITRE ATT&CK, and IT Service Management principles.
09/06/2026
Full time
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 +£575 - £630 a day +Corsham / Portsmouth Key Skills: ISO27001 DV Cleareance SIEM/SOAR - Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds. We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance. Strong experience administering and tuning SIEM and SOAR platforms. Hands on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds. Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022, MITRE ATT&CK, and IT Service Management principles.
DV Cleared Senior SOC Analyst - 12 Month Contract Role - £650 a day (Inside IR35) - Corsham iO Associates are currently looking for a DV Cleared Senior SOC Analyst / Engineer to join our client on a contract basis (12 Month initial contract with another likely 12 month extension after) offering up to £650 a day (Inside IR35). This role requires someone to work in Corsham full time, so we're looking for someone who's happy to commute to Corsham on a daily basis or stay over in Corsham throughout the week. You must hold active DV Clearance to be considered for this position. We're looking for: Hold active DV clearance Experience in forensics, malware analysis, threat intelligence Experience using Python, Perl, PowerShell, BASH or an equivalent language Experience with network forensics and associated toolsets and analysis techniques ISO 27001:2022 security and risk controls MITRE ATT&CK adversarial framework ITILv3/v4 Foundation CompTIA A+ CompTIA Security+ CompTIA CySA+ SANS 504 - Incident Handling We'll be reviewing CVs immediately so please get in touch if you're interested in the position and I'll give you a call to discuss the role and client in more detail.
09/06/2026
Full time
DV Cleared Senior SOC Analyst - 12 Month Contract Role - £650 a day (Inside IR35) - Corsham iO Associates are currently looking for a DV Cleared Senior SOC Analyst / Engineer to join our client on a contract basis (12 Month initial contract with another likely 12 month extension after) offering up to £650 a day (Inside IR35). This role requires someone to work in Corsham full time, so we're looking for someone who's happy to commute to Corsham on a daily basis or stay over in Corsham throughout the week. You must hold active DV Clearance to be considered for this position. We're looking for: Hold active DV clearance Experience in forensics, malware analysis, threat intelligence Experience using Python, Perl, PowerShell, BASH or an equivalent language Experience with network forensics and associated toolsets and analysis techniques ISO 27001:2022 security and risk controls MITRE ATT&CK adversarial framework ITILv3/v4 Foundation CompTIA A+ CompTIA Security+ CompTIA CySA+ SANS 504 - Incident Handling We'll be reviewing CVs immediately so please get in touch if you're interested in the position and I'll give you a call to discuss the role and client in more detail.
iO Associates is seeking a DV Cleared Senior SOC Analyst for a 12-month contract role in Corsham, offering up to £650 a day. The ideal candidate must have active DV Clearance and experience in forensics, malware analysis, and threat intelligence. This position requires full-time work in Corsham, with options for commuting or staying over. Interested candidates should apply promptly as CVs are being reviewed immediately.
09/06/2026
Full time
iO Associates is seeking a DV Cleared Senior SOC Analyst for a 12-month contract role in Corsham, offering up to £650 a day. The ideal candidate must have active DV Clearance and experience in forensics, malware analysis, and threat intelligence. This position requires full-time work in Corsham, with options for commuting or staying over. Interested candidates should apply promptly as CVs are being reviewed immediately.
CBSbutler Holdings Limited trading as CBSbutler
Portsmouth, Hampshire
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 630 a day +Corsham / Portsmouth Key Skills: ISO27001 DV Cleareance SIEM/SOAR - Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles.
05/06/2026
Contractor
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 630 a day +Corsham / Portsmouth Key Skills: ISO27001 DV Cleareance SIEM/SOAR - Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles.
CBSbutler Holdings Limited trading as CBSbutler
Corsham, Wiltshire
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 650 a day +Corsham / Portsmouth We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles. If you'd like to discuss this Senior SOC Analyst in more detail, please send your updated CV to (url removed) and I will get in touch.
02/06/2026
Contractor
Senior SOC Analyst +9 months + +DV cleared role - current active DV clearance is essential +Inside IR35 + 575 - 650 a day +Corsham / Portsmouth We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities. As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience. Key Responsibilities Maintain and optimise SOC Protect, Detect and Respond tooling. Configure, implement and support new security monitoring technologies. Develop detection rules, correlation logic, automation scripts and response playbooks. Manage vulnerability scanning platforms and contribute to wider SOC strategy. Integrate and onboard standard and non-standard log sources into SIEM platforms. Monitor, investigate and respond to security incidents and emerging threats. Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs). Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across SOC processes, tooling and service delivery. Essential Skills & Experience Current Developed Vetting (DV) Clearance . Strong experience administering and tuning SIEM and SOAR platforms. Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds . Experience in threat hunting, incident response, digital forensics and malware analysis. Strong understanding of Windows and Linux environments. Experience writing and tuning detection signatures, correlation rules and monitoring use cases. Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding. Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles. If you'd like to discuss this Senior SOC Analyst in more detail, please send your updated CV to (url removed) and I will get in touch.
Security Monitoring & SIEM Analyst Location: Berkshire (Onsite) Salary: 45,000 - 60,000 + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC (UK Nationals only) Company Overview An exciting opportunity to join a global technology organisation with a well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices to defend against evolving threats. Role Overview As a Security Monitoring & SIEM Analyst, you will play a key role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through effective monitoring and rapid response. Key Responsibilities Monitor, analyse, and investigate security alerts across SIEM and security tooling Conduct detailed investigations across log, endpoint, identity, and network telemetry Develop and optimise detection logic and SIEM queries to improve alert fidelity Analyse security events and correlate activity across multiple data sources Support incident response activities, including containment, escalation, and remediation Perform IOC analysis, enrichment, and validation using threat intelligence sources Identify gaps in detection capabilities and contribute to continuous improvement Work closely with infrastructure, SOC, and incident response teams to enhance response capability Produce clear and structured investigation reports and escalation summaries Skills & Experience Required Core SIEM & Detection Skills Strong knowledge of SIEM platforms (e.g. Microsoft Sentinel, Splunk, Elastic) Experience writing and tuning queries using: o Kusto Query Language (KQL) o ES QL / Kibana Query Language o Splunk SPL Understanding of event correlation, alerting, and detection use-case development Technical Foundations Strong knowledge of: o Linux and Windows operating systems o Core networking concepts (TCP/IP, DNS, HTTP/S, firewalls, VPNs) Experience analysing logs across: o Endpoint, identity, network, and cloud environments Threat Detection & Security Tooling Strong knowledge of: o EDR/XDR concepts and workflows o IDS/IPS technologies and signature-based detection Experience working with tools such as: o Microsoft Defender, CrowdStrike, SentinelOne, or similar Threat & Adversary Knowledge Understanding of attacker Tactics, Techniques and Procedures (TTPs) and how they manifest in logs and telemetry Familiarity with MITRE ATT&CK framework Evidence of staying up to date with: o Emerging threats o Adversary tradecraft o Defensive techniques Incident Handling & Investigation Experience handling security incidents through: o Detection and triage o Investigation and analysis o Handover to Incident Response teams Strong understanding of: o Incident management processes o Host-based forensic concepts Ability to apply post-incident review (PIR) learnings to improve detection and response Desirable Experience Experience within a SOC or cyber defence environment Exposure to threat hunting or detection engineering Experience in high-security or regulated environments Certifications (Beneficial) Microsoft SC-200 (Security Operations Analyst) GIAC / SANS certifications (GCIH, GCIA, GCED, etc.) CREST (CPIA, CRIA, CCTIA, CCBTP) Other recognised cyber security certifications Why Join? Work within a mature Security Operations environment Exposure to advanced SIEM tooling and large-scale environments Strong investment in training, certifications, and progression Opportunity to develop into: o Senior SIEM Analyst o Detection Engineer o Threat Hunter About Adecco Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client's supplier list for this role.
02/06/2026
Full time
Security Monitoring & SIEM Analyst Location: Berkshire (Onsite) Salary: 45,000 - 60,000 + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC (UK Nationals only) Company Overview An exciting opportunity to join a global technology organisation with a well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices to defend against evolving threats. Role Overview As a Security Monitoring & SIEM Analyst, you will play a key role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through effective monitoring and rapid response. Key Responsibilities Monitor, analyse, and investigate security alerts across SIEM and security tooling Conduct detailed investigations across log, endpoint, identity, and network telemetry Develop and optimise detection logic and SIEM queries to improve alert fidelity Analyse security events and correlate activity across multiple data sources Support incident response activities, including containment, escalation, and remediation Perform IOC analysis, enrichment, and validation using threat intelligence sources Identify gaps in detection capabilities and contribute to continuous improvement Work closely with infrastructure, SOC, and incident response teams to enhance response capability Produce clear and structured investigation reports and escalation summaries Skills & Experience Required Core SIEM & Detection Skills Strong knowledge of SIEM platforms (e.g. Microsoft Sentinel, Splunk, Elastic) Experience writing and tuning queries using: o Kusto Query Language (KQL) o ES QL / Kibana Query Language o Splunk SPL Understanding of event correlation, alerting, and detection use-case development Technical Foundations Strong knowledge of: o Linux and Windows operating systems o Core networking concepts (TCP/IP, DNS, HTTP/S, firewalls, VPNs) Experience analysing logs across: o Endpoint, identity, network, and cloud environments Threat Detection & Security Tooling Strong knowledge of: o EDR/XDR concepts and workflows o IDS/IPS technologies and signature-based detection Experience working with tools such as: o Microsoft Defender, CrowdStrike, SentinelOne, or similar Threat & Adversary Knowledge Understanding of attacker Tactics, Techniques and Procedures (TTPs) and how they manifest in logs and telemetry Familiarity with MITRE ATT&CK framework Evidence of staying up to date with: o Emerging threats o Adversary tradecraft o Defensive techniques Incident Handling & Investigation Experience handling security incidents through: o Detection and triage o Investigation and analysis o Handover to Incident Response teams Strong understanding of: o Incident management processes o Host-based forensic concepts Ability to apply post-incident review (PIR) learnings to improve detection and response Desirable Experience Experience within a SOC or cyber defence environment Exposure to threat hunting or detection engineering Experience in high-security or regulated environments Certifications (Beneficial) Microsoft SC-200 (Security Operations Analyst) GIAC / SANS certifications (GCIH, GCIA, GCED, etc.) CREST (CPIA, CRIA, CCTIA, CCBTP) Other recognised cyber security certifications Why Join? Work within a mature Security Operations environment Exposure to advanced SIEM tooling and large-scale environments Strong investment in training, certifications, and progression Opportunity to develop into: o Senior SIEM Analyst o Detection Engineer o Threat Hunter About Adecco Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client's supplier list for this role.
Location Client Site in Barrow-in-Furness The job on offer Are you passionate about cybersecurity? Are you an excellent communicator with demonstrable experience of security analysts activities within organisations? Would you relish putting these skills into practice by taking on a role within Capgemini to protect our clients from cyber threats? As the Senior Security Analyst, you will be the lead Security Analyst within the a client account IT Security Operations Team. You will be joining a fantastic team of more than 400 UK based security professionals that deliver world-class security services day in and day out. Your role • Manage escalated Security Incidents from a people and process perspective • Identify and prioritise Security Incidents, Security Tickets and Security Service Requests • Bring incidents to successful conclusions with thorough remediation plans • Prioritising and differentiating between potential intrusion activity and false alarms • Conduct vulnerability analysis and create impact assessments • Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement • Work closely together with technical architects to produce design specifications according to information security policies, while fulfilling business needs Your profile • A good knowledge of Cyber Security and Information Assurance - an ability to demonstrate understanding of governance, compliance and risk from different perspectives i.e. across people, processes and technology • Someone who is an advocate for security good practice, with the ability to influence others • Hold, or be working towards, ISO27001 Lead Auditor • A working knowledge of ISO27001 required, and desirable to have knowledge of ISO33052, ISO33072 and METSec • Current NPPV3/SC clearance or the ability to be cleared to that level • Have been resident in the United Kingdom for at least five (5) years • Experience in the public sector preferred but not required • Due to the security classification of the work you will be involved in, you must be a UK national and must hold or be eligible to hold a SC security clearance. Why Capgemini is unique We aim to build an environment where employees can enjoy a positive work-life balance. Through our New Normal campaign, we are looking to embed hybrid working in all that we do and make flexible working arrangements the day-to-day reality for our people. All UK employees are eligible to request flexible working arrangements. We work with a range of clients all with a unique set of business, technological and societal ambitions. Working for Capgemini you get to be at the forefront of designing future experiences, which truly impact our clients and wider society for the better. We realise a Total Reward package should be move than just compensation. At Capgemini we offer range of core and flexible benefits and have a Peer Recognition Portal called Applaud Get the future you want Growing clients' businesses while building a more sustainable, more inclusive future is a tough ask. But when you join Capgemini, you join a thriving company and become part of a diverse collective of free-thinkers, entrepreneurs and industry experts. A powerful source of energy that drives us all to find new ways technology can help us reimagine what's possible. It's why, together, we seek out opportunities that will transform the world's leading businesses. And it's how you'll gain the experiences and connections you need to shape your future. By learning from each other every day, sharing knowledge and always pushing yourself to do better, you'll build the skills you want. And you'll use them to help our clients leverage technology to grow their business and give innovation that human touch the world needs. So, it might not always be easy, but making the world a better place rarely is. Capgemini. Get The Future You Want. About Capgemini Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. The Group is guided everyday by its purpose of unleashing human energy through technology for an inclusive and sustainable future. It is a responsible and diverse organization of over 340,000 team members in more than 50 countries. With its strong 55-year heritage and deep industry expertise, Capgemini is trusted by its clients to address the entire breadth of their business needs, from strategy and design to operations, fueled by the fast evolving and innovative world of cloud, data, AI, connectivity, software, digital engineering and platforms. The Group reported in 2021 global revenues of €18 billion. Get the Future You Want
24/09/2022
Full time
Location Client Site in Barrow-in-Furness The job on offer Are you passionate about cybersecurity? Are you an excellent communicator with demonstrable experience of security analysts activities within organisations? Would you relish putting these skills into practice by taking on a role within Capgemini to protect our clients from cyber threats? As the Senior Security Analyst, you will be the lead Security Analyst within the a client account IT Security Operations Team. You will be joining a fantastic team of more than 400 UK based security professionals that deliver world-class security services day in and day out. Your role • Manage escalated Security Incidents from a people and process perspective • Identify and prioritise Security Incidents, Security Tickets and Security Service Requests • Bring incidents to successful conclusions with thorough remediation plans • Prioritising and differentiating between potential intrusion activity and false alarms • Conduct vulnerability analysis and create impact assessments • Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement • Work closely together with technical architects to produce design specifications according to information security policies, while fulfilling business needs Your profile • A good knowledge of Cyber Security and Information Assurance - an ability to demonstrate understanding of governance, compliance and risk from different perspectives i.e. across people, processes and technology • Someone who is an advocate for security good practice, with the ability to influence others • Hold, or be working towards, ISO27001 Lead Auditor • A working knowledge of ISO27001 required, and desirable to have knowledge of ISO33052, ISO33072 and METSec • Current NPPV3/SC clearance or the ability to be cleared to that level • Have been resident in the United Kingdom for at least five (5) years • Experience in the public sector preferred but not required • Due to the security classification of the work you will be involved in, you must be a UK national and must hold or be eligible to hold a SC security clearance. Why Capgemini is unique We aim to build an environment where employees can enjoy a positive work-life balance. Through our New Normal campaign, we are looking to embed hybrid working in all that we do and make flexible working arrangements the day-to-day reality for our people. All UK employees are eligible to request flexible working arrangements. We work with a range of clients all with a unique set of business, technological and societal ambitions. Working for Capgemini you get to be at the forefront of designing future experiences, which truly impact our clients and wider society for the better. We realise a Total Reward package should be move than just compensation. At Capgemini we offer range of core and flexible benefits and have a Peer Recognition Portal called Applaud Get the future you want Growing clients' businesses while building a more sustainable, more inclusive future is a tough ask. But when you join Capgemini, you join a thriving company and become part of a diverse collective of free-thinkers, entrepreneurs and industry experts. A powerful source of energy that drives us all to find new ways technology can help us reimagine what's possible. It's why, together, we seek out opportunities that will transform the world's leading businesses. And it's how you'll gain the experiences and connections you need to shape your future. By learning from each other every day, sharing knowledge and always pushing yourself to do better, you'll build the skills you want. And you'll use them to help our clients leverage technology to grow their business and give innovation that human touch the world needs. So, it might not always be easy, but making the world a better place rarely is. Capgemini. Get The Future You Want. About Capgemini Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. The Group is guided everyday by its purpose of unleashing human energy through technology for an inclusive and sustainable future. It is a responsible and diverse organization of over 340,000 team members in more than 50 countries. With its strong 55-year heritage and deep industry expertise, Capgemini is trusted by its clients to address the entire breadth of their business needs, from strategy and design to operations, fueled by the fast evolving and innovative world of cloud, data, AI, connectivity, software, digital engineering and platforms. The Group reported in 2021 global revenues of €18 billion. Get the Future You Want
