Eplass in Reading is seeking an experienced Lead Security Operations Centre (SOC) Analyst to oversee daily operations and improve the SOC's effectiveness in managing security threats. The candidate will lead investigations, collaborate with various teams, and ensure a proactive security posture. The role offers hybrid working and opportunities for continuous learning within a collaborative environment.
24/06/2026
Full time
Eplass in Reading is seeking an experienced Lead Security Operations Centre (SOC) Analyst to oversee daily operations and improve the SOC's effectiveness in managing security threats. The candidate will lead investigations, collaborate with various teams, and ensure a proactive security posture. The role offers hybrid working and opportunities for continuous learning within a collaborative environment.
National Gas Transmission PLC
Warwick, Warwickshire
Location: Warwick, GB, CV34 6DA Company: National Gas Requisition ID: 2896 Warwick, hybrid flexible working Permanent, full time Through nearly 5,000 miles of pipes across Great Britain, National Gas transports gas to power stations, major industries, storage facilities, and more than half a million businesses and 24 million homes. We are the national gas network, and are proud to be leading the way in transforming the energy network for a clean energy future. The Cyber Threat Intelligence (CTI) Analyst is crucial to influencing the Cyber Defend engineering team by sharing cyber threat intelligence to understand what threats are emerging as well as advanced persistent threat actors are leveraging to compromise systems. Join us, and help be the energy behind the change. Key accountabilities: Working across all areas of Cyber Defend producing bespoke and technical intelligence across Tactical, Strategic, and Operational intelligence, working with key stakeholders from around the business in vital operational areas such as Critical National Infrastructure (CNI) and Operational Technology (OT). Provide actionable technical intelligence to our detection engineers, threat hunters and security operations to improve security controls based from threat intelligence. Monitor, research and evaluate cyber threats and trends providing corresponding guidance and recommendations to inform risk assessments and business decisions relating to security posture, operations, investments and partners. Develop, implement and maintain a framework for monitoring and analysis, centred on clear intelligence requirements and key indicators or warnings. Engage with senior business stakeholders to define and agree intelligence requirements and understanding of assessments and recommendations. Provide direction and outlook by horizon scanning for future trends and threats in the cyber domain. Simultaneously work closely with Cyber Defend and the SOC to ensure technical intelligence is distributed to allow effective cyber defence mitigations to be implemented. Engage with high profile intelligence partners in Government and industry, ensure collection against intelligence requirements and corroborate assessments. Represent and speak for NG at intelligence sharing and analysis platforms that cut across Gov't and multiple sectors. Generate confidence in intelligence products by managing disagreement and questions relating to intelligence sources and assessments. Manage conflict and orchestrate consensus in high pressure and politically sensitive environments, always ensuring operational security of assessments and sources. About you: Significant proven experience in Cyber Threat Intelligence, ideally with degree and relevant Cyber qualifications. Energy or financial services sector background would be most highly regarded. High technical aptitude and a deep understanding of the current cyber threat landscapes and geopolitics. Full understanding of the MITRE attack framework. Technical understanding of CTI, including TTPs and MOs employed by threat actors. Must be able to translate this to not only a technical audience in Cyber Defend but also to the wider business. Excellent research, analysis and critical thinking skills. Strong geopolitical understanding of how threat intelligence is translated into intelligence / defence in an all-source analysis environment. Strong automation and scripting skills. Proven ability to work independently and proactively to conduct high-quality preliminary research and analysis. Strong analytical skills and attention for detail. Strong stakeholder management skillset with a proven ability to get things done. What we can offer you: Salary £65,000-£70,000 dependant on experience Annual performance bonus 34 days holiday (inc. statutory days) - plus option to buy/sell 5 further days Opt-In flexible benefit scheme, including salary sacrifice car plan, private healthcare, dental insurance, technology plans, and more Financial protection with 10x salary death in service and financial support if you're unable to work Excellent family friendly provisions About us: National Gas provides secure energy to power the country, achieve net zero and maintain our industrial competitiveness. Gas is an essential part of a secure energy supply in Britain and will continue to play a vital role in the energy system for decades to come. More than ever, we need the security that gas brings to keep the lights on, businesses running, and homes warm. National Gas provides that security. At National Gas, we're committed to building a workforce that reflects the communities that we serve. We celebrate the different experiences our colleagues bring and encourage applicants of all backgrounds to apply. To that end we want to support you during the interview process, please advise your recruitment partner if you require any reasonable adjustments. Security Clearance: This role requires Security Check (SC) clearance. Please note that eligibility may be impacted by nationality, citizenship, or residency under UK security and trade regulations. Further details: UK Security Vetting (). Further information: Please note: this role is subject to National Security Vetting
24/06/2026
Full time
Location: Warwick, GB, CV34 6DA Company: National Gas Requisition ID: 2896 Warwick, hybrid flexible working Permanent, full time Through nearly 5,000 miles of pipes across Great Britain, National Gas transports gas to power stations, major industries, storage facilities, and more than half a million businesses and 24 million homes. We are the national gas network, and are proud to be leading the way in transforming the energy network for a clean energy future. The Cyber Threat Intelligence (CTI) Analyst is crucial to influencing the Cyber Defend engineering team by sharing cyber threat intelligence to understand what threats are emerging as well as advanced persistent threat actors are leveraging to compromise systems. Join us, and help be the energy behind the change. Key accountabilities: Working across all areas of Cyber Defend producing bespoke and technical intelligence across Tactical, Strategic, and Operational intelligence, working with key stakeholders from around the business in vital operational areas such as Critical National Infrastructure (CNI) and Operational Technology (OT). Provide actionable technical intelligence to our detection engineers, threat hunters and security operations to improve security controls based from threat intelligence. Monitor, research and evaluate cyber threats and trends providing corresponding guidance and recommendations to inform risk assessments and business decisions relating to security posture, operations, investments and partners. Develop, implement and maintain a framework for monitoring and analysis, centred on clear intelligence requirements and key indicators or warnings. Engage with senior business stakeholders to define and agree intelligence requirements and understanding of assessments and recommendations. Provide direction and outlook by horizon scanning for future trends and threats in the cyber domain. Simultaneously work closely with Cyber Defend and the SOC to ensure technical intelligence is distributed to allow effective cyber defence mitigations to be implemented. Engage with high profile intelligence partners in Government and industry, ensure collection against intelligence requirements and corroborate assessments. Represent and speak for NG at intelligence sharing and analysis platforms that cut across Gov't and multiple sectors. Generate confidence in intelligence products by managing disagreement and questions relating to intelligence sources and assessments. Manage conflict and orchestrate consensus in high pressure and politically sensitive environments, always ensuring operational security of assessments and sources. About you: Significant proven experience in Cyber Threat Intelligence, ideally with degree and relevant Cyber qualifications. Energy or financial services sector background would be most highly regarded. High technical aptitude and a deep understanding of the current cyber threat landscapes and geopolitics. Full understanding of the MITRE attack framework. Technical understanding of CTI, including TTPs and MOs employed by threat actors. Must be able to translate this to not only a technical audience in Cyber Defend but also to the wider business. Excellent research, analysis and critical thinking skills. Strong geopolitical understanding of how threat intelligence is translated into intelligence / defence in an all-source analysis environment. Strong automation and scripting skills. Proven ability to work independently and proactively to conduct high-quality preliminary research and analysis. Strong analytical skills and attention for detail. Strong stakeholder management skillset with a proven ability to get things done. What we can offer you: Salary £65,000-£70,000 dependant on experience Annual performance bonus 34 days holiday (inc. statutory days) - plus option to buy/sell 5 further days Opt-In flexible benefit scheme, including salary sacrifice car plan, private healthcare, dental insurance, technology plans, and more Financial protection with 10x salary death in service and financial support if you're unable to work Excellent family friendly provisions About us: National Gas provides secure energy to power the country, achieve net zero and maintain our industrial competitiveness. Gas is an essential part of a secure energy supply in Britain and will continue to play a vital role in the energy system for decades to come. More than ever, we need the security that gas brings to keep the lights on, businesses running, and homes warm. National Gas provides that security. At National Gas, we're committed to building a workforce that reflects the communities that we serve. We celebrate the different experiences our colleagues bring and encourage applicants of all backgrounds to apply. To that end we want to support you during the interview process, please advise your recruitment partner if you require any reasonable adjustments. Security Clearance: This role requires Security Check (SC) clearance. Please note that eligibility may be impacted by nationality, citizenship, or residency under UK security and trade regulations. Further details: UK Security Vetting (). Further information: Please note: this role is subject to National Security Vetting
Job Description Product Owner (Associate Manager) Location: Newcastle Hybrid Working: Minimum 3 days per week in-office requirement Please Note: Due to the nature of client work you will be undertaking, you will need to be willing to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application. Accenture is a leading global professional services company, providing a broad range of services in strategy and consulting, interactive, technology and operations, with digital capabilities across all of these services. With our thought leadership and culture of innovation, we apply industry expertise, diverse skill sets and next-generation technology to each business challenge. We believe in inclusion and diversity and supporting the whole person. Our core values comprise of Stewardship, Best People, Client Value Creation, One Global Network, Respect for the Individual and Integrity. Year after year, Accenture is recognized worldwide not just for business performance but for inclusion and diversity too. "Across the globe, one thing is universally true of the people of Accenture: We care deeply about what we do and the impact we have with our clients and with the communities in which we work and live. It is personal to all of us." - Julie Sweet, Accenture CEO As a team: You'll learn, grow and advance in an innovative culture that thrives on shared success, diverse ways of thinking and enables boundaryless opportunities that can drive your career in new and exciting ways. If you're looking for a challenging career working in a vibrant environment with access to training and a global network of experts, this could be the role for you. As part of our global team, you'll be working with cutting-edge technologies and will have the opportunity to develop a wide range of new skills on the job. At Accenture, we believe in reinventing what's possible - for our clients, our teams and ourselves. Our Advanced Technology Centre is a thriving technology and innovation hub from where we deliver high quality services to a number of private and public sector clients. Job Summary We are looking for a skilled Product Owner to join our dynamic team. As a Product Owner at Accenture, you will work closely with stakeholders, development teams and business leaders to define product vision, prioritise features and ensure successful delivery. You will play a key role in driving agile product development, aligning business objectives with technology solutions and delivering value to our clients. Key Responsibilities as a Product Owner Define and communicate the product vision, roadmap, and goals to development teams and stakeholders. Partner with stakeholders to co-create product strategy; serve as proxy Product Owner when required to ensure client priorities are reflected in the backlog. Maintain and refine the product backlog, ensuring alignment with strategic objectives and business requirements. Collaborate with Business Analysts and User-Centered Design (UCD) teams to gather, analyse, and document requirements, integrating UX research insights into product decisions. Act as the primary liaison between stakeholders and development teams, ensuring transparency, alignment, and effective communication. Facilitate agile ceremonies, including sprint planning, backlog refinement, and sprint reviews, to drive successful sprint execution. Oversee sprint planning and execution, proactively identifying risks and dependencies that may impact delivery. Develop and execute product rollout and scaling strategies in collaboration with stakeholders and operations. Monitor product performance, gather user feedback, and drive continuous improvement and innovation. Ensure compliance with industry standards, security best practices, and regulatory requirements. Qualifications We are looking for experience in the following skills 5+ years of experience in product management or a related role, preferably within a consulting environment. Demonstrated leadership in mentoring Product Owners or Business Analysts, championing best practices and driving a culture of continuous improvement and growth. Proven expertise managing the full product lifecycle - from ideation and discovery through launch, enhancements, and ongoing maintenance. Hands on experience in Agile, Scrum, Kanban or Scaled Agile (SAFe) environments, utilising Agile project management tools such as JIRA & Confluence. Strong grasp of software development lifecycle (SDLC) and digital transformation. Excellent communication, leadership and stakeholder management skills. Advanced analytical and problem solving capabilities, with a track record of successful delivery. Experience leading cross functional teams and shaping product strategy. Ability to establish and implement mechanisms for measuring and delivering business benefits. Demonstrated innovation in solution design and delivery. Set yourself apart Professional Certifications - Professional Scrum Product Owner (PSPO), Certified Scrum Product Owner (CSPO), SAFe Product Owner/Product Manager (POPM), IIBA Product Ownership Analysis Certification (IIBA-CPOA). Experience working with cloud platforms (AWS, Azure, Google Cloud). Demonstrated ability to apply Government Digital Service (GDS) principles in product development and delivery. Proven experience leveraging artificial intelligence (AI) technologies to drive product innovation, enhance user experiences, and deliver measurable business benefits. Strong knowledge of UX/UI best practices. Industry experience in public sector, finance, healthcare or telecommunications. What's in it for you At Accenture in addition to a competitive basic salary, you will also have an extensive benefits package which includes 25 days' vacation per year, private medical insurance and 3 extra days leave per year for charitable work of your choice! Flexibility and mobility are required to deliver this role as there will be requirements to spend time onsite with our clients and partners to enable delivery of the first class services we are known for. Locations Newcastle Equal Employment Opportunity Statement All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. Accenture is committed to providing veteran employment opportunities to our service men and women.
24/06/2026
Full time
Job Description Product Owner (Associate Manager) Location: Newcastle Hybrid Working: Minimum 3 days per week in-office requirement Please Note: Due to the nature of client work you will be undertaking, you will need to be willing to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application. Accenture is a leading global professional services company, providing a broad range of services in strategy and consulting, interactive, technology and operations, with digital capabilities across all of these services. With our thought leadership and culture of innovation, we apply industry expertise, diverse skill sets and next-generation technology to each business challenge. We believe in inclusion and diversity and supporting the whole person. Our core values comprise of Stewardship, Best People, Client Value Creation, One Global Network, Respect for the Individual and Integrity. Year after year, Accenture is recognized worldwide not just for business performance but for inclusion and diversity too. "Across the globe, one thing is universally true of the people of Accenture: We care deeply about what we do and the impact we have with our clients and with the communities in which we work and live. It is personal to all of us." - Julie Sweet, Accenture CEO As a team: You'll learn, grow and advance in an innovative culture that thrives on shared success, diverse ways of thinking and enables boundaryless opportunities that can drive your career in new and exciting ways. If you're looking for a challenging career working in a vibrant environment with access to training and a global network of experts, this could be the role for you. As part of our global team, you'll be working with cutting-edge technologies and will have the opportunity to develop a wide range of new skills on the job. At Accenture, we believe in reinventing what's possible - for our clients, our teams and ourselves. Our Advanced Technology Centre is a thriving technology and innovation hub from where we deliver high quality services to a number of private and public sector clients. Job Summary We are looking for a skilled Product Owner to join our dynamic team. As a Product Owner at Accenture, you will work closely with stakeholders, development teams and business leaders to define product vision, prioritise features and ensure successful delivery. You will play a key role in driving agile product development, aligning business objectives with technology solutions and delivering value to our clients. Key Responsibilities as a Product Owner Define and communicate the product vision, roadmap, and goals to development teams and stakeholders. Partner with stakeholders to co-create product strategy; serve as proxy Product Owner when required to ensure client priorities are reflected in the backlog. Maintain and refine the product backlog, ensuring alignment with strategic objectives and business requirements. Collaborate with Business Analysts and User-Centered Design (UCD) teams to gather, analyse, and document requirements, integrating UX research insights into product decisions. Act as the primary liaison between stakeholders and development teams, ensuring transparency, alignment, and effective communication. Facilitate agile ceremonies, including sprint planning, backlog refinement, and sprint reviews, to drive successful sprint execution. Oversee sprint planning and execution, proactively identifying risks and dependencies that may impact delivery. Develop and execute product rollout and scaling strategies in collaboration with stakeholders and operations. Monitor product performance, gather user feedback, and drive continuous improvement and innovation. Ensure compliance with industry standards, security best practices, and regulatory requirements. Qualifications We are looking for experience in the following skills 5+ years of experience in product management or a related role, preferably within a consulting environment. Demonstrated leadership in mentoring Product Owners or Business Analysts, championing best practices and driving a culture of continuous improvement and growth. Proven expertise managing the full product lifecycle - from ideation and discovery through launch, enhancements, and ongoing maintenance. Hands on experience in Agile, Scrum, Kanban or Scaled Agile (SAFe) environments, utilising Agile project management tools such as JIRA & Confluence. Strong grasp of software development lifecycle (SDLC) and digital transformation. Excellent communication, leadership and stakeholder management skills. Advanced analytical and problem solving capabilities, with a track record of successful delivery. Experience leading cross functional teams and shaping product strategy. Ability to establish and implement mechanisms for measuring and delivering business benefits. Demonstrated innovation in solution design and delivery. Set yourself apart Professional Certifications - Professional Scrum Product Owner (PSPO), Certified Scrum Product Owner (CSPO), SAFe Product Owner/Product Manager (POPM), IIBA Product Ownership Analysis Certification (IIBA-CPOA). Experience working with cloud platforms (AWS, Azure, Google Cloud). Demonstrated ability to apply Government Digital Service (GDS) principles in product development and delivery. Proven experience leveraging artificial intelligence (AI) technologies to drive product innovation, enhance user experiences, and deliver measurable business benefits. Strong knowledge of UX/UI best practices. Industry experience in public sector, finance, healthcare or telecommunications. What's in it for you At Accenture in addition to a competitive basic salary, you will also have an extensive benefits package which includes 25 days' vacation per year, private medical insurance and 3 extra days leave per year for charitable work of your choice! Flexibility and mobility are required to deliver this role as there will be requirements to spend time onsite with our clients and partners to enable delivery of the first class services we are known for. Locations Newcastle Equal Employment Opportunity Statement All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. Accenture is committed to providing veteran employment opportunities to our service men and women.
The Role We are looking for a Business Analyst to join our Advisory Consulting Team. In this role, you will play a key part in delivering business change initiatives by conducting structured analysis, engaging with a wide range of stakeholders, and translating business needs into practical, effective solutions in the UK national security markets. You will lead efforts to identify, design, prioritise, and implement process and technology improvements that drive operational efficiency and enhance the client experience. This role involves close collaboration with stakeholders across technical teams, product owners, digital functions, governance, contact centre and claims operations, IT, data teams, and board-level executives. This is an exciting opportunity for someone with a strong background in the National Security sector. About The Team You'll be joining a strategic team of consultants that deliver the big ideas and bold initiatives that help our customers stay ahead. They work closely with our customers to design strategies that drive long term success and tangible impact. As the backbone of our Consulting division, they connect the dots between business goals and tech innovation, helping both our customers and company grow strong, smarter and faster. If you're ready to think big and with purpose, you'll fit right in. Job Responsibilities Lead structured analysis to support strategic business change and technology enabled transformation projects. Partner with a diverse set of clients - from IT and digital teams to executive leadership - to shape impactful solutions. Define and document business and functional requirements, customer journeys, service blueprints, and prototypes. Drive improvements in operational efficiency and client experience through insight driven design thinking. Ensure seamless collaboration between business and technical teams to deliver scalable and user focused solutions. Support testing, implementation, and integration of digital platforms and technical solutions. Champion continuous improvement and contribute to the evolution of BA standards, tools, and best practices. Skills Required Experience in a senior level Business Analyst role, leading complex projects or workstreams. Strong understanding and application of customer insight and design thinking principles. Familiarity with project management methodologies such as PRINCE2 and Agile (certifications desirable). Deep knowledge of product delivery approaches, with practical experience in user story writing, backlog management, and defining acceptance criteria. Demonstrated experience delivering business change and IT enabled transformation. Experience collaborating with third party suppliers and vendors to achieve delivery goals. Solid understanding of data models, APIs, and modern cloud based platforms. Proficiency in tools such as Azure DevOps, Visio, JIRA, or similar. Ability to assess organisational risk and evaluate long term business impacts. Security Clearance Requirements The successful candidate must hold a current DV security clearance with the ability to go through an enhanced level. Location It is anticipated the role will require up to 80% (4d/wk) onsite working at client locations - Gloucester, London, Manchester (based on project requirements). Benefits Annual Leave: 25 days plus your birthday off. You will have the ability to buy and sell 5 days holiday to work around your needs. Private Healthcare Coverage: Our health plan is tailored to meet the diverse needs of our employees with additional levels for family if required. Training & Skills Development: Stay ahead in your career with ongoing training opportunities and skill development initiatives tailored to your evolving needs. Fitness Reimbursement: We encourage an active lifestyle. Our fitness reimbursement program helps you stay fit by covering a portion of your gym memberships or fitness related expenses. Life Assurance: Gain peace of mind with extensive life insurance coverage that ensures financial protection for you and your loved ones. Pension Contribution: Plan for your future with our pension options. We provide resources and support to help you build a secure financial foundation. Perkbox Subscription: Enjoy exclusive discounts on a variety of products and services. From technology to entertainment, we've partnered with various businesses to bring you special perks. Internal Reward Schemes: Be rewarded for your exceptional contributions through our employee recognition initiatives that celebrate your achievements. Community Engagement & Volunteer Opportunities: Contribute meaningfully to causes with company sponsored volunteer programmes, fostering a sense of community and social responsibility. Inclusion at Envitia We celebrate diversity and are committed to creating an inclusive environment for all employees. We welcome applicants from all backgrounds and walks of life. We believe that our strength lies in our differences, and we are dedicated to fostering a workplace where everyone feels valued, respected, and empowered. We encourage applications from people of all abilities, ages, genders, sexual orientations, races, ethnicities, and religions. We strive to support a culture of inclusion, accessibility, and work life balance. If you require any accommodations during the application or interview process, please let us know.
24/06/2026
Full time
The Role We are looking for a Business Analyst to join our Advisory Consulting Team. In this role, you will play a key part in delivering business change initiatives by conducting structured analysis, engaging with a wide range of stakeholders, and translating business needs into practical, effective solutions in the UK national security markets. You will lead efforts to identify, design, prioritise, and implement process and technology improvements that drive operational efficiency and enhance the client experience. This role involves close collaboration with stakeholders across technical teams, product owners, digital functions, governance, contact centre and claims operations, IT, data teams, and board-level executives. This is an exciting opportunity for someone with a strong background in the National Security sector. About The Team You'll be joining a strategic team of consultants that deliver the big ideas and bold initiatives that help our customers stay ahead. They work closely with our customers to design strategies that drive long term success and tangible impact. As the backbone of our Consulting division, they connect the dots between business goals and tech innovation, helping both our customers and company grow strong, smarter and faster. If you're ready to think big and with purpose, you'll fit right in. Job Responsibilities Lead structured analysis to support strategic business change and technology enabled transformation projects. Partner with a diverse set of clients - from IT and digital teams to executive leadership - to shape impactful solutions. Define and document business and functional requirements, customer journeys, service blueprints, and prototypes. Drive improvements in operational efficiency and client experience through insight driven design thinking. Ensure seamless collaboration between business and technical teams to deliver scalable and user focused solutions. Support testing, implementation, and integration of digital platforms and technical solutions. Champion continuous improvement and contribute to the evolution of BA standards, tools, and best practices. Skills Required Experience in a senior level Business Analyst role, leading complex projects or workstreams. Strong understanding and application of customer insight and design thinking principles. Familiarity with project management methodologies such as PRINCE2 and Agile (certifications desirable). Deep knowledge of product delivery approaches, with practical experience in user story writing, backlog management, and defining acceptance criteria. Demonstrated experience delivering business change and IT enabled transformation. Experience collaborating with third party suppliers and vendors to achieve delivery goals. Solid understanding of data models, APIs, and modern cloud based platforms. Proficiency in tools such as Azure DevOps, Visio, JIRA, or similar. Ability to assess organisational risk and evaluate long term business impacts. Security Clearance Requirements The successful candidate must hold a current DV security clearance with the ability to go through an enhanced level. Location It is anticipated the role will require up to 80% (4d/wk) onsite working at client locations - Gloucester, London, Manchester (based on project requirements). Benefits Annual Leave: 25 days plus your birthday off. You will have the ability to buy and sell 5 days holiday to work around your needs. Private Healthcare Coverage: Our health plan is tailored to meet the diverse needs of our employees with additional levels for family if required. Training & Skills Development: Stay ahead in your career with ongoing training opportunities and skill development initiatives tailored to your evolving needs. Fitness Reimbursement: We encourage an active lifestyle. Our fitness reimbursement program helps you stay fit by covering a portion of your gym memberships or fitness related expenses. Life Assurance: Gain peace of mind with extensive life insurance coverage that ensures financial protection for you and your loved ones. Pension Contribution: Plan for your future with our pension options. We provide resources and support to help you build a secure financial foundation. Perkbox Subscription: Enjoy exclusive discounts on a variety of products and services. From technology to entertainment, we've partnered with various businesses to bring you special perks. Internal Reward Schemes: Be rewarded for your exceptional contributions through our employee recognition initiatives that celebrate your achievements. Community Engagement & Volunteer Opportunities: Contribute meaningfully to causes with company sponsored volunteer programmes, fostering a sense of community and social responsibility. Inclusion at Envitia We celebrate diversity and are committed to creating an inclusive environment for all employees. We welcome applicants from all backgrounds and walks of life. We believe that our strength lies in our differences, and we are dedicated to fostering a workplace where everyone feels valued, respected, and empowered. We encourage applications from people of all abilities, ages, genders, sexual orientations, races, ethnicities, and religions. We strive to support a culture of inclusion, accessibility, and work life balance. If you require any accommodations during the application or interview process, please let us know.
Experis - ManpowerGroup is looking for skilled SOC Analysts to join a high-performing Security Operations Centre in Southampton. You will work in a 24 7 shift team to provide protective monitoring, investigate security alerts, and support incident response activities. The ideal candidates will have strong cyber security awareness, work effectively in a shift environment, and understand security monitoring. This role offers the chance to work with leading technologies in national-level cyber defence.
24/06/2026
Full time
Experis - ManpowerGroup is looking for skilled SOC Analysts to join a high-performing Security Operations Centre in Southampton. You will work in a 24 7 shift team to provide protective monitoring, investigate security alerts, and support incident response activities. The ideal candidates will have strong cyber security awareness, work effectively in a shift environment, and understand security monitoring. This role offers the chance to work with leading technologies in national-level cyber defence.
Information Security Analyst - ISO 27001, SOC2, PCI DSS Audit & Compliance - Large Government Projects London Hybrid Full-Time Permanent £80,000 - £90,000 plus bonus & benefits We're working with a global leader in workforce management solutions to find a certified Information Security Analyst well versed in ISO Audit & Compliance. You'll join a talented team and contribute towards delivering compliance with leading security frameworks, preparing for and conducting audits, and contributing to security operations. You'll be joining a collaborative, ambitious team delivering GRC initiatives across large government projects. The Role Lead and conduct internal audits across ISO 27001, GDPR, DORA, Cyber Essentials & more. Prepare teams for external audits and manage the audit process end-to-end. Monitor changes in compliance frameworks and maintain alignment. Support the Cyber Security Operations Centre (CSOC) in incident monitoring and response. Develop and maintain policies, procedures, and security documentation. Collaborate with IT & Security teams to identify and remediate vulnerabilities. What We're Looking For Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials Assessor, or equivalent). Eligible for UK Security Clearance.
24/06/2026
Full time
Information Security Analyst - ISO 27001, SOC2, PCI DSS Audit & Compliance - Large Government Projects London Hybrid Full-Time Permanent £80,000 - £90,000 plus bonus & benefits We're working with a global leader in workforce management solutions to find a certified Information Security Analyst well versed in ISO Audit & Compliance. You'll join a talented team and contribute towards delivering compliance with leading security frameworks, preparing for and conducting audits, and contributing to security operations. You'll be joining a collaborative, ambitious team delivering GRC initiatives across large government projects. The Role Lead and conduct internal audits across ISO 27001, GDPR, DORA, Cyber Essentials & more. Prepare teams for external audits and manage the audit process end-to-end. Monitor changes in compliance frameworks and maintain alignment. Support the Cyber Security Operations Centre (CSOC) in incident monitoring and response. Develop and maintain policies, procedures, and security documentation. Collaborate with IT & Security teams to identify and remediate vulnerabilities. What We're Looking For Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials Assessor, or equivalent). Eligible for UK Security Clearance.
Marshall of Cambridge (Holdings) Limited
Cambridge, Cambridgeshire
Competitive salary and remuneration package including, 27 days holiday, pension contributions matched up to 9%Hybrid working opportunityPrivate HealthcareMarshall, an independent, family-owned British company, proudly helping our customers move forwards since 1909We now have an opportunity for a Senior Cyber Security Analyst (12 month contract) within Marshall.The focus of this technical role is on threat prevention, detection and response for Marshall, including the configuration and monitoring of a security information and event management (SIEM) system, operating next generation antivirus, intrusion detection/prevention systems (IDS/IPS), vulnerability management tools and Firewall, DLP, Web and Email Security Gateways.This is a senior role, where the holder will also be expected to evolve and expand the use of current security toolsets, help identify and implement additional tools, services, process changes, policy decisions and close compliance gaps, to enhance the Marshall protection and detection capabilities as risks evolve over time.Responsibilities include:Managing set checklistsProblem management through to handover or resolutionThreat identification and classificationIncident response leadReport writingStakeholder managementContinuous improvementJunior SOC staff mentoringTasks:Helping to maintain and monitor the effectiveness of security measures and controlsConduct and help coordinate, routine security event monitoring and investigations using available toolsUse, configure and develop the use of a security information and event management (SIEM) and EDR toolMonitor and configure network intrusion detection and prevention systemsAnalyse and create reports for security incidents, to determine root cause and lessons learntCreate and rehearse Incident Response plans, support audits and red team engagementsWork closely with other Cyber Security/IT team members and external support groupsRoutinely communicate with individuals both inside and outside the businessResponding to, own and close/escalate service ticketsTake ownership as required, of project activities assigned from internal or external projectsConfiguring, reviewing and reporting relevant risks using vulnerability testing tools/servicesInput into the risk management process and help prioritise key mitigation strategiesConfidently work with outside services in the event of incident response or routine investigations, including Red/Blue Team engagementsAid in the delivery of security awareness training to the businessMentor junior cyber security analyst/sOn occasion, be able to cover Cyber Security Manager operational responsibilitiesPlease apply if you have most of the following:Technical Competencies:Deep hands-on skills with Windows and ideally Linux operating systems, also networking and bespoke device typesVery good awareness of computer networking protocols in relation to cyber securityAdministration, configuration and use of a Security Information and Event Management (SIEM) system, including creating alerts, reports, dashboards, handling IOCs and Threat FeedsAdministration of Firewalls, Web Proxies, Web Application Firewalls, Email Security and Endpoint Detection-Response softwareTechnical understanding of common cyber security threats, faced by individuals or organisations, as well as mapping threats to frameworks such as MITRE ATT&CKExtensive and detailed knowledge of how software/hardware vulnerabilities can be exploitedAbility to prioritise risks in terms of potential likelihood, impact, consequences and mitigationsAny Cyber Security related qualificationsExperience:Experience of working in a Security Operations Centre or similar roleDetailed exposure to Applications, Networks, Servers and/or Endpoint devicesWorking with large amounts of data, for analysis, reporting or general IT servicesDocumenting, developing and expanding on existing operational cyber security processes and playbooksExposure to and experience of recovering from cyber security incidentsExperience working in or for a highly regulated industry, with data classifications and compliance frameworksPractical experience knowledge of vulnerability scanning and pen testing type toolsExperience doing gap analysis, threat modelling and managing/mapping TTPsExperience of collating and presenting information to others inside and outside IT or Security TeamsCompiling risk assessments, technical, security or otherwise, including lessons learntYou must Be available to attend site at short notice should there be a major cyber incident which requires onsite investigation, coordination or responseAre you eligible for a guaranteed interview? If you identify as disabled under the Disability Confident Scheme, a care leaver, have experience in care, or are a member/veteran of the armed forces, you may qualify. If you meet the essential criteria for the role, reach out to .A Resourcing team member will respond to you as soon as possible. Group is an Equal Opportunity EmployerMarshall Group is an Equal Opportunity EmployerMarshall Group is an equal opportunity employer and values a diverse and inclusive workplace. All qualified candidates will receive consideration for employment without regard to age, race, colour, religion, genetic information, sex, sexual orientation, gender identity, national origin, disability status, or any other characteristic protected by law. For more information about Equal Opportunity in the Workplaceeveryone feels valued, respected, and able to thrive, free from bullying, harassment, and discrimination. Fostering a positive culture is key to our individual and shared success.
23/06/2026
Full time
Competitive salary and remuneration package including, 27 days holiday, pension contributions matched up to 9%Hybrid working opportunityPrivate HealthcareMarshall, an independent, family-owned British company, proudly helping our customers move forwards since 1909We now have an opportunity for a Senior Cyber Security Analyst (12 month contract) within Marshall.The focus of this technical role is on threat prevention, detection and response for Marshall, including the configuration and monitoring of a security information and event management (SIEM) system, operating next generation antivirus, intrusion detection/prevention systems (IDS/IPS), vulnerability management tools and Firewall, DLP, Web and Email Security Gateways.This is a senior role, where the holder will also be expected to evolve and expand the use of current security toolsets, help identify and implement additional tools, services, process changes, policy decisions and close compliance gaps, to enhance the Marshall protection and detection capabilities as risks evolve over time.Responsibilities include:Managing set checklistsProblem management through to handover or resolutionThreat identification and classificationIncident response leadReport writingStakeholder managementContinuous improvementJunior SOC staff mentoringTasks:Helping to maintain and monitor the effectiveness of security measures and controlsConduct and help coordinate, routine security event monitoring and investigations using available toolsUse, configure and develop the use of a security information and event management (SIEM) and EDR toolMonitor and configure network intrusion detection and prevention systemsAnalyse and create reports for security incidents, to determine root cause and lessons learntCreate and rehearse Incident Response plans, support audits and red team engagementsWork closely with other Cyber Security/IT team members and external support groupsRoutinely communicate with individuals both inside and outside the businessResponding to, own and close/escalate service ticketsTake ownership as required, of project activities assigned from internal or external projectsConfiguring, reviewing and reporting relevant risks using vulnerability testing tools/servicesInput into the risk management process and help prioritise key mitigation strategiesConfidently work with outside services in the event of incident response or routine investigations, including Red/Blue Team engagementsAid in the delivery of security awareness training to the businessMentor junior cyber security analyst/sOn occasion, be able to cover Cyber Security Manager operational responsibilitiesPlease apply if you have most of the following:Technical Competencies:Deep hands-on skills with Windows and ideally Linux operating systems, also networking and bespoke device typesVery good awareness of computer networking protocols in relation to cyber securityAdministration, configuration and use of a Security Information and Event Management (SIEM) system, including creating alerts, reports, dashboards, handling IOCs and Threat FeedsAdministration of Firewalls, Web Proxies, Web Application Firewalls, Email Security and Endpoint Detection-Response softwareTechnical understanding of common cyber security threats, faced by individuals or organisations, as well as mapping threats to frameworks such as MITRE ATT&CKExtensive and detailed knowledge of how software/hardware vulnerabilities can be exploitedAbility to prioritise risks in terms of potential likelihood, impact, consequences and mitigationsAny Cyber Security related qualificationsExperience:Experience of working in a Security Operations Centre or similar roleDetailed exposure to Applications, Networks, Servers and/or Endpoint devicesWorking with large amounts of data, for analysis, reporting or general IT servicesDocumenting, developing and expanding on existing operational cyber security processes and playbooksExposure to and experience of recovering from cyber security incidentsExperience working in or for a highly regulated industry, with data classifications and compliance frameworksPractical experience knowledge of vulnerability scanning and pen testing type toolsExperience doing gap analysis, threat modelling and managing/mapping TTPsExperience of collating and presenting information to others inside and outside IT or Security TeamsCompiling risk assessments, technical, security or otherwise, including lessons learntYou must Be available to attend site at short notice should there be a major cyber incident which requires onsite investigation, coordination or responseAre you eligible for a guaranteed interview? If you identify as disabled under the Disability Confident Scheme, a care leaver, have experience in care, or are a member/veteran of the armed forces, you may qualify. If you meet the essential criteria for the role, reach out to .A Resourcing team member will respond to you as soon as possible. Group is an Equal Opportunity EmployerMarshall Group is an Equal Opportunity EmployerMarshall Group is an equal opportunity employer and values a diverse and inclusive workplace. All qualified candidates will receive consideration for employment without regard to age, race, colour, religion, genetic information, sex, sexual orientation, gender identity, national origin, disability status, or any other characteristic protected by law. For more information about Equal Opportunity in the Workplaceeveryone feels valued, respected, and able to thrive, free from bullying, harassment, and discrimination. Fostering a positive culture is key to our individual and shared success.
We don't just believe in better. We make it happen. Better content. Better products. And better careers. Working in Tech, Product or Data at Sky is about building the next and the new. From broadband to broadcast, streaming to mobile, Sky Stream to Sky Glass, we never stand still. We optimise and innovate. We turn big ideas into the products, content and services millions of people love. And we do it all right here at Sky. Role overview Our products, platforms and technologies are constantly evolving that's why keeping Sky safe from cyber-attacks is one of our top priorities. Our Cyber Security team helps the business grow while protecting our customers, colleagues and partners from increasingly sophisticated cyber threats. Our team includes Cyber Fusion Centre, Security Services, Risk and Compliance, Programme Delivery and Business Security, and we work across the UK, Italy and Germany. Join us and you'll get involved in tackling challenges and future threats in an ever-changing cyber landscape. You will join our comprehensive Cyber Defence Department as a senior member of the dedicated Threat Hunt team. You will operate within a robust security ecosystem, partnering directly with Cyber Operations, Threat Intelligence, Engineering, and Threat Vulnerability Management. What you'll do : Conduct proactive threat hunts across the enterprise, broadcast, and telco networks to identify abnormal activity, emerging attack techniques, and advanced threats. Develop and execute hypothesis-driven threat hunts utilising datasets across a variety of security tooling, including EDR, SIEM, and network-layer defences. Collaborate directly with the Cyber Threat Intelligence team to operationalise intelligence, maintaining and refining hunting playbooks for priority threat actors and relevant TTPs. Partner with security engineering teams to translate hunt findings into productionised, high-fidelity detections and drive continuous improvement in data source coverage and quality. Act as a technical mentor within the Cyber Defence function, guiding junior analysts, conducting peer reviews, and fostering a culture of continuous learning. Document and communicate hunt outcomes comprehensively, translating complex technical findings into actionable remediation strategies and executive-level summaries. What you'll bring : Essential Criteria Extensive prior experience in threat hunting at a large enterprise environment. Experience with incident response, SOC, or detection engineering. Deep understanding of the MITRE ATT&CK framework and how to practically apply it to threat hunting methodologies and detection logic. Proficiency in complex query writing (e.g., KQL, SPL, SQL) to filter, analyse, and visualise large, disparate datasets. Hands-on experience with EDR, NDR, SIEM, SOAR security platforms and data analysis platforms such as Databricks. Strong investigative acumen combined with a curious, highly analytical mindset capable of navigating ambiguity. Proven ability to work cross-functionally, bridging the gap between security and broader technology teams to demonstrably improve the overall security posture. Desirable skills and experience: Scripting and automation capabilities, particularly utilising Python, PySpark, and SQL to streamline analytical workflows. Experience navigating cloud-native security environments (AWS, Azure, or GCP) alongside familiarity with the Microsoft 365 ecosystem. Advanced knowledge of offensive security methodologies, including common exploit chains, reverse engineering basics, or penetration testing techniques. Relevant industry certifications demonstrating specialised knowledge in threat hunting, incident response, or forensics (e.g., SANS GCIA, GCIH, GCFA, OSCP). Benefits and perks There's one thing people can't stop talking about when it comes to life at Sky: the perks . Here's a taster: Free Sky TV or NOW package, including Sky Sports and Sky Cinema Pension package with up to 9% employer contribution Private healthcare with mental health support Aviva Digital GP and dental insurance Discounts on Sky products, including Sky Mobile, Sky Broadband, Sky Glass and Sky Protect Sharesave and Tech schemes A range of Sky VIP rewards and experiences How you'll work Osterley The hybrid working expectations for this role are 2 days in the office per week. Our Sky Group HQ. Equipped with state-of-the-art technology and workspaces, there's plenty of space to see your big ideas come to life. Here you'll find 13 subsidised restaurants and cafes. You can re-energise at our gym, catch the latest films at our cinema, get your car washed and even get pampered at our beauty salon . Our Osterley Campus is just a 10-minute walk from Syon Lane train station, or you can get one of our free shuttle buses from Osterley, Gunnersbury and Ealing Broadway stations. Plus, there's free onsite parking available for cars, motorbikes and bicycles. Who we are We're Sky, a leading media and entertainment company who connect millions with entertainment, sports, news and arts through innovative products and services. Working with us means you'll be bringing the joy of a better experience to more people, every day. All so we can do better and deliver better for our customers, colleagues and society. We're an equal opportunity employer and value diversity at our company. We're a Disability Confident Accredited Employer, and welcome and encourage applications from all candidates. We will look to ensure a fair and consistent experience for all and will make reasonable adjustments to support you where appropriate . Please flag any adjustments you need as early as you can. Just so you know: if your application is successful, we'll ask you to complete a criminal record check. And depending on the role you have applied for and the nature of any convictions you may have, we might have to withdraw the offer. To be eligible for this role you are required to have the appropriate right to work in the UK. Please be aware Sky does not offer sponsorship for this position. To find out more about working with us, search on social media.
23/06/2026
Full time
We don't just believe in better. We make it happen. Better content. Better products. And better careers. Working in Tech, Product or Data at Sky is about building the next and the new. From broadband to broadcast, streaming to mobile, Sky Stream to Sky Glass, we never stand still. We optimise and innovate. We turn big ideas into the products, content and services millions of people love. And we do it all right here at Sky. Role overview Our products, platforms and technologies are constantly evolving that's why keeping Sky safe from cyber-attacks is one of our top priorities. Our Cyber Security team helps the business grow while protecting our customers, colleagues and partners from increasingly sophisticated cyber threats. Our team includes Cyber Fusion Centre, Security Services, Risk and Compliance, Programme Delivery and Business Security, and we work across the UK, Italy and Germany. Join us and you'll get involved in tackling challenges and future threats in an ever-changing cyber landscape. You will join our comprehensive Cyber Defence Department as a senior member of the dedicated Threat Hunt team. You will operate within a robust security ecosystem, partnering directly with Cyber Operations, Threat Intelligence, Engineering, and Threat Vulnerability Management. What you'll do : Conduct proactive threat hunts across the enterprise, broadcast, and telco networks to identify abnormal activity, emerging attack techniques, and advanced threats. Develop and execute hypothesis-driven threat hunts utilising datasets across a variety of security tooling, including EDR, SIEM, and network-layer defences. Collaborate directly with the Cyber Threat Intelligence team to operationalise intelligence, maintaining and refining hunting playbooks for priority threat actors and relevant TTPs. Partner with security engineering teams to translate hunt findings into productionised, high-fidelity detections and drive continuous improvement in data source coverage and quality. Act as a technical mentor within the Cyber Defence function, guiding junior analysts, conducting peer reviews, and fostering a culture of continuous learning. Document and communicate hunt outcomes comprehensively, translating complex technical findings into actionable remediation strategies and executive-level summaries. What you'll bring : Essential Criteria Extensive prior experience in threat hunting at a large enterprise environment. Experience with incident response, SOC, or detection engineering. Deep understanding of the MITRE ATT&CK framework and how to practically apply it to threat hunting methodologies and detection logic. Proficiency in complex query writing (e.g., KQL, SPL, SQL) to filter, analyse, and visualise large, disparate datasets. Hands-on experience with EDR, NDR, SIEM, SOAR security platforms and data analysis platforms such as Databricks. Strong investigative acumen combined with a curious, highly analytical mindset capable of navigating ambiguity. Proven ability to work cross-functionally, bridging the gap between security and broader technology teams to demonstrably improve the overall security posture. Desirable skills and experience: Scripting and automation capabilities, particularly utilising Python, PySpark, and SQL to streamline analytical workflows. Experience navigating cloud-native security environments (AWS, Azure, or GCP) alongside familiarity with the Microsoft 365 ecosystem. Advanced knowledge of offensive security methodologies, including common exploit chains, reverse engineering basics, or penetration testing techniques. Relevant industry certifications demonstrating specialised knowledge in threat hunting, incident response, or forensics (e.g., SANS GCIA, GCIH, GCFA, OSCP). Benefits and perks There's one thing people can't stop talking about when it comes to life at Sky: the perks . Here's a taster: Free Sky TV or NOW package, including Sky Sports and Sky Cinema Pension package with up to 9% employer contribution Private healthcare with mental health support Aviva Digital GP and dental insurance Discounts on Sky products, including Sky Mobile, Sky Broadband, Sky Glass and Sky Protect Sharesave and Tech schemes A range of Sky VIP rewards and experiences How you'll work Osterley The hybrid working expectations for this role are 2 days in the office per week. Our Sky Group HQ. Equipped with state-of-the-art technology and workspaces, there's plenty of space to see your big ideas come to life. Here you'll find 13 subsidised restaurants and cafes. You can re-energise at our gym, catch the latest films at our cinema, get your car washed and even get pampered at our beauty salon . Our Osterley Campus is just a 10-minute walk from Syon Lane train station, or you can get one of our free shuttle buses from Osterley, Gunnersbury and Ealing Broadway stations. Plus, there's free onsite parking available for cars, motorbikes and bicycles. Who we are We're Sky, a leading media and entertainment company who connect millions with entertainment, sports, news and arts through innovative products and services. Working with us means you'll be bringing the joy of a better experience to more people, every day. All so we can do better and deliver better for our customers, colleagues and society. We're an equal opportunity employer and value diversity at our company. We're a Disability Confident Accredited Employer, and welcome and encourage applications from all candidates. We will look to ensure a fair and consistent experience for all and will make reasonable adjustments to support you where appropriate . Please flag any adjustments you need as early as you can. Just so you know: if your application is successful, we'll ask you to complete a criminal record check. And depending on the role you have applied for and the nature of any convictions you may have, we might have to withdraw the offer. To be eligible for this role you are required to have the appropriate right to work in the UK. Please be aware Sky does not offer sponsorship for this position. To find out more about working with us, search on social media.
Securecloudplus is looking for a skilled Tier 2 Security Operations Centre (SOC) Analyst to take responsibility for incident detection, response, and overall security operations in a 24x7 environment. The successful candidate will lead investigations, mentor junior analysts, and collaborate with various internal teams to enhance the organization's security posture. The position offers opportunities for professional growth and is suited for those with prior SOC experience and relevant certifications.
23/06/2026
Full time
Securecloudplus is looking for a skilled Tier 2 Security Operations Centre (SOC) Analyst to take responsibility for incident detection, response, and overall security operations in a 24x7 environment. The successful candidate will lead investigations, mentor junior analysts, and collaborate with various internal teams to enhance the organization's security posture. The position offers opportunities for professional growth and is suited for those with prior SOC experience and relevant certifications.
Salary: £55,000 - 60,000 per year Requirements We want candidates with experience in one or more of the following areas: Security Operations Centre (SOC) environments, security monitoring, incident response, cyber security analysis, threat detection, threat hunting, vulnerability management, and security operations. We are looking for someone with experience monitoring and investigating security events. We need a strong understanding of cyber security threats, attack techniques, and security controls. We would like exposure to SIEM technologies. We require strong analytical and problem-solving skills. We are seeking experience working within a security operations environment. We value excellent communication and documentation skills. Desirable experience includes Microsoft Sentinel, KQL (Kusto Query Language), Microsoft Defender XDR technologies, threat hunting, detection engineering, security automation, vulnerability assessment platforms such as Qualys, MITRE ATT&CK, and exposure to NIST, ISO27001, or CIS Controls. We prefer candidates with experience supporting regulated environments. We are open to applicants currently working as SOC Analysts, Cyber Security Analysts, Security Analysts, Security Operations Analysts, Threat Detection Analysts, Blue Team Analysts, or Information Security Analysts. Responsibilities We monitor and investigate security alerts and events across cloud, endpoint, identity, and network environments. We support the management of security incidents through the incident response lifecycle. We perform security investigations and root cause analysis. We validate indicators of compromise and assess potential business impact. We conduct proactive threat hunting activities. We query and analyse security data using Microsoft Sentinel and KQL. We support vulnerability management and remediation activities. We work closely with technical teams to coordinate containment and recovery actions. We produce incident reports, documentation, and recommendations. We contribute to the continuous improvement of security monitoring capabilities. Technologies Cloud Support Network Security AWS Cisco Microsoft Intune More We are an established international technology and cyber security services provider investing heavily in our Security Operations capability. Based in Leeds with a hybrid working model, we are growing our 24/7 Cyber Defence team and offering the opportunity to work in a mature Security Operations environment with exposure to incident response, threat detection, vulnerability management, and modern Microsoft security technologies. We provide a competitive package of £50,000 to £58,000 plus benefits including 25 days holiday rising to 27, a buy and sell scheme, pension with 5% employer contribution, healthcare, private medical insurance, life assurance, income protection, a birthday day off, learning and development support, dedicated certification programmes, vendor training pathways, leadership development, employee wellbeing initiatives, cycle to work scheme, retail discounts, and a modern office environment.
23/06/2026
Full time
Salary: £55,000 - 60,000 per year Requirements We want candidates with experience in one or more of the following areas: Security Operations Centre (SOC) environments, security monitoring, incident response, cyber security analysis, threat detection, threat hunting, vulnerability management, and security operations. We are looking for someone with experience monitoring and investigating security events. We need a strong understanding of cyber security threats, attack techniques, and security controls. We would like exposure to SIEM technologies. We require strong analytical and problem-solving skills. We are seeking experience working within a security operations environment. We value excellent communication and documentation skills. Desirable experience includes Microsoft Sentinel, KQL (Kusto Query Language), Microsoft Defender XDR technologies, threat hunting, detection engineering, security automation, vulnerability assessment platforms such as Qualys, MITRE ATT&CK, and exposure to NIST, ISO27001, or CIS Controls. We prefer candidates with experience supporting regulated environments. We are open to applicants currently working as SOC Analysts, Cyber Security Analysts, Security Analysts, Security Operations Analysts, Threat Detection Analysts, Blue Team Analysts, or Information Security Analysts. Responsibilities We monitor and investigate security alerts and events across cloud, endpoint, identity, and network environments. We support the management of security incidents through the incident response lifecycle. We perform security investigations and root cause analysis. We validate indicators of compromise and assess potential business impact. We conduct proactive threat hunting activities. We query and analyse security data using Microsoft Sentinel and KQL. We support vulnerability management and remediation activities. We work closely with technical teams to coordinate containment and recovery actions. We produce incident reports, documentation, and recommendations. We contribute to the continuous improvement of security monitoring capabilities. Technologies Cloud Support Network Security AWS Cisco Microsoft Intune More We are an established international technology and cyber security services provider investing heavily in our Security Operations capability. Based in Leeds with a hybrid working model, we are growing our 24/7 Cyber Defence team and offering the opportunity to work in a mature Security Operations environment with exposure to incident response, threat detection, vulnerability management, and modern Microsoft security technologies. We provide a competitive package of £50,000 to £58,000 plus benefits including 25 days holiday rising to 27, a buy and sell scheme, pension with 5% employer contribution, healthcare, private medical insurance, life assurance, income protection, a birthday day off, learning and development support, dedicated certification programmes, vendor training pathways, leadership development, employee wellbeing initiatives, cycle to work scheme, retail discounts, and a modern office environment.
We are seeking a skilled and proactive Tier 2 Security Operations Centre (SOC) Analyst to play a critical role in our 24x7 Security Operations Centre. As a Tier 2 Analyst, you will lead the investigation, containment, and coordination of security incidents, working closely with Tier 1 analysts, internal IT teams, and external stakeholders. You'll take ownership of more complex alerts, support threat hunting and intelligence efforts, and contribute to the refinement of detection rules, playbooks, and response procedures. This is an excellent opportunity for an experienced security analyst ready to take the next step - with a chance to mentor junior analysts, deepen your technical expertise, and help shape our evolving security posture in a collaborative, hands on environment. Key responsibilities for this role may include: Incident Detection & Response: Lead the triage, investigation, and classification of security events using SIEM and other tooling Take ownership of end to end handling of medium to high severity incidents, coordinating containment and remediation efforts Maintain detailed incident records, including timelines, impact assessments, root cause analysis, and mitigation steps Act as an escalation point for Tier 1 analysts, guiding initial response actions and validating escalations Threat Intelligence and Analysis: Perform in depth analysis of suspicious activity, identifying indicators of compromise and attribution patterns Lead threat intelligence sharing within the organisation and with external partners Mentor Tier 1 staff in interpreting threat data and logs during investigations Security Monitoring and Detection Engineering: Conduct continuous security monitoring of network traffic, endpoints, and critical systems Proactively tune and improve SIEM rules, alerts, and correlation logic to reduce false positives and increase detection fidelity Support onboarding of new data sources into SIEM and help define parsing, enrichment, and correlation logic Lead investigations into recurring false positives or noisy alerts and propose sustainable resolutions Support deployment and configuration of security tooling Compliance, Reporting and Documentation: Lead security audits and assessments, providing evidence of SOC activities and controls Maintain accurate records of all events handled, including triage notes and escalation details. Lead the delivery of incident and vulnerability summaries to the management team and customers as part of Service Reviews or Security Working Groups Lead post incident reviews and document lessons learned Ensure compliance with industry standards, regulations, and internal security policies Prepare and present regular reports and metrics on SOC operations and overall security posture Vulnerability Management: Coordinate and support risk based prioritisation of vulnerability remediation efforts Support vulnerability lifecycle management, including exception handling, patch validation, and reporting Provide vulnerability remediation guidance based on CVSS scores, threat context and business impacts Collaboration and knowledge sharing: Act as a technical mentor to Tier 1 analysts, supporting their development and escalation handling Work closely with other IT teams (e.g., Network, Architecture, and Development teams) to identify and resolve security issues Share insights, threat intelligence, and incident learnings to improve the overall security posture of the organization As a T2 SOC Analyst, you will have: 1 to 5 years of hands on experience in a SOC or similar security operations role, with demonstrable exposure to alert triage, incident response, security monitoring, and threat analysis Experience handling real world security incidents and working with SIEM, EDR, or vulnerability management tools Candidates with strong practical experience through labs, home projects, certifications, or internships may also be considered if they can demonstrate applied knowledge at a Tier 2 level Bachelor's degree in Computer Science, Information Security, Cyber Security or related field, or equivalent experience desirable. Any SIEM specific certification or vendor specific training. Relevant cybersecurity certifications such as Certified Cloud Security Professional (CCSP) or other relevant security certifications, Security+ (CompTIA), CEH (Certified Ethical Hacker), CISSP, BTL1, BTL2 or others are highly desirable but not essential.
23/06/2026
Full time
We are seeking a skilled and proactive Tier 2 Security Operations Centre (SOC) Analyst to play a critical role in our 24x7 Security Operations Centre. As a Tier 2 Analyst, you will lead the investigation, containment, and coordination of security incidents, working closely with Tier 1 analysts, internal IT teams, and external stakeholders. You'll take ownership of more complex alerts, support threat hunting and intelligence efforts, and contribute to the refinement of detection rules, playbooks, and response procedures. This is an excellent opportunity for an experienced security analyst ready to take the next step - with a chance to mentor junior analysts, deepen your technical expertise, and help shape our evolving security posture in a collaborative, hands on environment. Key responsibilities for this role may include: Incident Detection & Response: Lead the triage, investigation, and classification of security events using SIEM and other tooling Take ownership of end to end handling of medium to high severity incidents, coordinating containment and remediation efforts Maintain detailed incident records, including timelines, impact assessments, root cause analysis, and mitigation steps Act as an escalation point for Tier 1 analysts, guiding initial response actions and validating escalations Threat Intelligence and Analysis: Perform in depth analysis of suspicious activity, identifying indicators of compromise and attribution patterns Lead threat intelligence sharing within the organisation and with external partners Mentor Tier 1 staff in interpreting threat data and logs during investigations Security Monitoring and Detection Engineering: Conduct continuous security monitoring of network traffic, endpoints, and critical systems Proactively tune and improve SIEM rules, alerts, and correlation logic to reduce false positives and increase detection fidelity Support onboarding of new data sources into SIEM and help define parsing, enrichment, and correlation logic Lead investigations into recurring false positives or noisy alerts and propose sustainable resolutions Support deployment and configuration of security tooling Compliance, Reporting and Documentation: Lead security audits and assessments, providing evidence of SOC activities and controls Maintain accurate records of all events handled, including triage notes and escalation details. Lead the delivery of incident and vulnerability summaries to the management team and customers as part of Service Reviews or Security Working Groups Lead post incident reviews and document lessons learned Ensure compliance with industry standards, regulations, and internal security policies Prepare and present regular reports and metrics on SOC operations and overall security posture Vulnerability Management: Coordinate and support risk based prioritisation of vulnerability remediation efforts Support vulnerability lifecycle management, including exception handling, patch validation, and reporting Provide vulnerability remediation guidance based on CVSS scores, threat context and business impacts Collaboration and knowledge sharing: Act as a technical mentor to Tier 1 analysts, supporting their development and escalation handling Work closely with other IT teams (e.g., Network, Architecture, and Development teams) to identify and resolve security issues Share insights, threat intelligence, and incident learnings to improve the overall security posture of the organization As a T2 SOC Analyst, you will have: 1 to 5 years of hands on experience in a SOC or similar security operations role, with demonstrable exposure to alert triage, incident response, security monitoring, and threat analysis Experience handling real world security incidents and working with SIEM, EDR, or vulnerability management tools Candidates with strong practical experience through labs, home projects, certifications, or internships may also be considered if they can demonstrate applied knowledge at a Tier 2 level Bachelor's degree in Computer Science, Information Security, Cyber Security or related field, or equivalent experience desirable. Any SIEM specific certification or vendor specific training. Relevant cybersecurity certifications such as Certified Cloud Security Professional (CCSP) or other relevant security certifications, Security+ (CompTIA), CEH (Certified Ethical Hacker), CISSP, BTL1, BTL2 or others are highly desirable but not essential.
Job Description We are looking for a Cyber Security Analyst to join the ARCHANGEL Protective Monitoring (ProMon) Team. ARCHANGEL delivers specialist technical cyber security services to a range of clients across a variety of industries including construction, government, defence and aerospace. The ARCHANGEL ProMon Team sits within the Bristol Service Operations Centre (SOC) and is responsible for providing thorough initial investigation into anomalous network activity that may lead to potential security incidents. What You Will Do As a Cyber Security Analyst Provide monitoring, alerting and incident handling services within the SOC in line with SLAs. Act as the initial analytical reference point for identifying and then quantifying the nature and extent of security incidents and offer initial professional advice relating to possible business impact in order to reduce both the Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR). Advise on incident containment measures through recommended initial actions to customers in collaboration with the Incident Response (IR) Team. Provide advice relating to potential mitigation measures in order to prevent or limit future reoccurrence in collaboration with the Incident Response (IR) Team. Perform proactive analysis across client networks by staying abreast of current threats and trends. Develop and maintain a credible knowledge of current and emerging threats likely to affect the integrity of the managed service you are protecting. Review reoccurring false positive firings and assist in tuning of SIEM and IDS rules to reduce false positives and maintain good security alerting. Create reporting for management and clients on security incidents and threat intelligence trends. What You'll Bring Ability to excellently communicate at all levels - working with customers is a must, so you must be able to let them know what's going on. Experience in Cyber Security, e.g. Protective Monitoring, Incident Response, Security Engineering. SIEM (LogRhythm, Arcsight, Splunk, etc) & IDS (Snort) experience. Sound knowledge of IT security best practices, common attack types & detection/prevention methods. Understanding of Incident Response, Cyber Kill Chain, Threat Modelling and pertinent Attack Vectors. Collaborative working ethos to create pertinent Playbooks and Use Cases. Experience analysing & interpreting system, security & application logs to diagnose faults & spot abnormal behaviours. Great organisational skills & attention to detail. Ability to work independently & as part of a team. Highly motivated, with the aptitude to learn new skills. These Additional Skills Will Also Help SANS SEC 503 Intrusion Detection in Depth or equivalent. SANS SEC 504 Incident Handling, Hacker Tools and Techniques or equivalent. SANS SEC 508 Advanced Incident Response, Threat Hunting, and Digital Forensics or equivalent. SANS SEC 511 Continuous Monitoring and Security Operations or equivalent. Exposure to IT service management best practices such as ITIL. Knowledge of standards & guidelines such as ISO27001, GDPR principles and GPG-13. Threat Intelligence experience. Report writing. Security Clearance This role is subject to pre employment screening in line with the UK Government's Baseline Personnel Security Standard (BPSS). An additional range of Personnel Security Controls referred to as National Security Vetting (NSV) may apply, which could include meeting the eligibility requirements for The Security Check (SC) or Developed Vetting (DV). Why join us Enjoy generous leave with the opportunity to accrue up to 12 additional flexi days each year. Benefit from an award winning pension scheme with up to 15% employer contribution. Free access to mental health support, financial advice, and employee led networks championing inclusion and diversity. Eligible for the bonus scheme for employees at management level and below. Free access to 4,000+ online courses via Coursera and LinkedIn Learning. Financial reward through the referral programme. Spend up to £500 annually on flexible benefits including private healthcare, dental, family cover, tech & lifestyle discounts, gym memberships and more. Flexible working - flexible hours with hybrid working options; onsite is required for part time roles. We are committed to building an inclusive, accessible and welcoming workplace. Primary Location: GB - Bristol - Coldharbour Lane Contract Type: Permanent Hybrid Working: Onsite
23/06/2026
Full time
Job Description We are looking for a Cyber Security Analyst to join the ARCHANGEL Protective Monitoring (ProMon) Team. ARCHANGEL delivers specialist technical cyber security services to a range of clients across a variety of industries including construction, government, defence and aerospace. The ARCHANGEL ProMon Team sits within the Bristol Service Operations Centre (SOC) and is responsible for providing thorough initial investigation into anomalous network activity that may lead to potential security incidents. What You Will Do As a Cyber Security Analyst Provide monitoring, alerting and incident handling services within the SOC in line with SLAs. Act as the initial analytical reference point for identifying and then quantifying the nature and extent of security incidents and offer initial professional advice relating to possible business impact in order to reduce both the Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR). Advise on incident containment measures through recommended initial actions to customers in collaboration with the Incident Response (IR) Team. Provide advice relating to potential mitigation measures in order to prevent or limit future reoccurrence in collaboration with the Incident Response (IR) Team. Perform proactive analysis across client networks by staying abreast of current threats and trends. Develop and maintain a credible knowledge of current and emerging threats likely to affect the integrity of the managed service you are protecting. Review reoccurring false positive firings and assist in tuning of SIEM and IDS rules to reduce false positives and maintain good security alerting. Create reporting for management and clients on security incidents and threat intelligence trends. What You'll Bring Ability to excellently communicate at all levels - working with customers is a must, so you must be able to let them know what's going on. Experience in Cyber Security, e.g. Protective Monitoring, Incident Response, Security Engineering. SIEM (LogRhythm, Arcsight, Splunk, etc) & IDS (Snort) experience. Sound knowledge of IT security best practices, common attack types & detection/prevention methods. Understanding of Incident Response, Cyber Kill Chain, Threat Modelling and pertinent Attack Vectors. Collaborative working ethos to create pertinent Playbooks and Use Cases. Experience analysing & interpreting system, security & application logs to diagnose faults & spot abnormal behaviours. Great organisational skills & attention to detail. Ability to work independently & as part of a team. Highly motivated, with the aptitude to learn new skills. These Additional Skills Will Also Help SANS SEC 503 Intrusion Detection in Depth or equivalent. SANS SEC 504 Incident Handling, Hacker Tools and Techniques or equivalent. SANS SEC 508 Advanced Incident Response, Threat Hunting, and Digital Forensics or equivalent. SANS SEC 511 Continuous Monitoring and Security Operations or equivalent. Exposure to IT service management best practices such as ITIL. Knowledge of standards & guidelines such as ISO27001, GDPR principles and GPG-13. Threat Intelligence experience. Report writing. Security Clearance This role is subject to pre employment screening in line with the UK Government's Baseline Personnel Security Standard (BPSS). An additional range of Personnel Security Controls referred to as National Security Vetting (NSV) may apply, which could include meeting the eligibility requirements for The Security Check (SC) or Developed Vetting (DV). Why join us Enjoy generous leave with the opportunity to accrue up to 12 additional flexi days each year. Benefit from an award winning pension scheme with up to 15% employer contribution. Free access to mental health support, financial advice, and employee led networks championing inclusion and diversity. Eligible for the bonus scheme for employees at management level and below. Free access to 4,000+ online courses via Coursera and LinkedIn Learning. Financial reward through the referral programme. Spend up to £500 annually on flexible benefits including private healthcare, dental, family cover, tech & lifestyle discounts, gym memberships and more. Flexible working - flexible hours with hybrid working options; onsite is required for part time roles. We are committed to building an inclusive, accessible and welcoming workplace. Primary Location: GB - Bristol - Coldharbour Lane Contract Type: Permanent Hybrid Working: Onsite
Information Security Analyst - ISO 27001, SOC2, PCI DSS Audit & Compliance - Large Government Projects London Hybrid. Full-Time Permanent 80,000 - 90,000 plus bonus & benefits We're working with a global leader in workforce management solutions to find a certified Information Security Analyst well versed in ISO Audit & Compliance. You'll join a talented team and contribute towards delivering compliance with leading security frameworks, preparing for and conducting audits, and contributing to security operations. You'll be joining a collaborative, ambitious team delivering GRC initiatives across large government projects. The Role Lead and conduct internal audits across ISO 27001, GDPR, DORA, Cyber Essentials & more. Prepare teams for external audits and manage the audit process end-to-end. Monitor changes in compliance frameworks and maintain alignment. Support the Cyber Security Operations Centre (CSOC) in incident monitoring and response. Develop and maintain policies, procedures, and security documentation. Collaborate with IT & Security teams to identify and remediate vulnerabilities. What We're Looking For Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials Assessor, or equivalent). Eligible for UK Security Clearance. This is a great opportunity to work with Hit apply to upload your CV Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
22/06/2026
Full time
Information Security Analyst - ISO 27001, SOC2, PCI DSS Audit & Compliance - Large Government Projects London Hybrid. Full-Time Permanent 80,000 - 90,000 plus bonus & benefits We're working with a global leader in workforce management solutions to find a certified Information Security Analyst well versed in ISO Audit & Compliance. You'll join a talented team and contribute towards delivering compliance with leading security frameworks, preparing for and conducting audits, and contributing to security operations. You'll be joining a collaborative, ambitious team delivering GRC initiatives across large government projects. The Role Lead and conduct internal audits across ISO 27001, GDPR, DORA, Cyber Essentials & more. Prepare teams for external audits and manage the audit process end-to-end. Monitor changes in compliance frameworks and maintain alignment. Support the Cyber Security Operations Centre (CSOC) in incident monitoring and response. Develop and maintain policies, procedures, and security documentation. Collaborate with IT & Security teams to identify and remediate vulnerabilities. What We're Looking For Strong knowledge of audit & compliance frameworks (ISO 27001, Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal/external audits and compliance assessments. Relevant security/audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials Assessor, or equivalent). Eligible for UK Security Clearance. This is a great opportunity to work with Hit apply to upload your CV Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Vodafone Group Plc is seeking a Cyber Security Level 3 Analyst to enhance the Cyber Security Operations Centre. The role involves leading investigations, mentoring new team members, and continuously improving detection capabilities. The ideal candidate will have at least 8 years of experience in SOC operations, proficiency in SIEM tools, and relevant industry certifications. This position offers opportunities for professional growth in a collaborative global environment.
22/06/2026
Full time
Vodafone Group Plc is seeking a Cyber Security Level 3 Analyst to enhance the Cyber Security Operations Centre. The role involves leading investigations, mentoring new team members, and continuously improving detection capabilities. The ideal candidate will have at least 8 years of experience in SOC operations, proficiency in SIEM tools, and relevant industry certifications. This position offers opportunities for professional growth in a collaborative global environment.
Who we areVOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value for customers by delivering intelligent solutions through Talent, Technology & Transformation.As the largest shared services organisation in the global telco industry with 30,000 FTE, our portfolio of next-generation solutions and services are designed in partnership with customers across Vodafone Group, local markets, and partner markets to simplify and drive growth. With our strategic partner Accenture, we work alongside our Vodafone customers, other Telco and tech companies to drive transformation, meet the challenges of our industry and ensure we stay relevant and resilient. This partnership is a unique, industry-first model which brings together the best of in-house and 3rd party capability.We work with customers across 28 countries from 10 VOIS locations: Albania, Egypt, Hungary, India, Romania, Spain, Turkey, UK, Germany, Ireland, and with a network of teams in Czech Republic, Italy, Greece, and Portugal. this RoleWe are seeking an experienced Cyber Security Level 3 Analyst to play a critical role within the Cyber Security Operations Centre (CSOC). This role focuses on advanced security alert investigation, threat analysis, and incident triage across enterprise environments, including cloud platforms. The individual will act as a technical subject matter expert, mentor team members, contribute to automation and process stabilisation, and support continuous improvement of detection capabilities to ensure secure and seamless business operations.What you'll doLead Level 3 investigation, analysis and triage of complex security alerts and incidents across SIEM platforms.Act as the primary technical subject matter expert for security alert investigation within the CSOC.Drive automation initiatives, alert fine-tuning, and process stabilisation to reduce operational effort and risk.Participate in daily stand-ups and actively lead incident investigations.Collaborate closely with onshore teams to optimise alert volumes and improve detection accuracy.Create and maintain SOPs, KEDB entries, playbooks, process and procedure documentation.Build and sustain a strong knowledge base by authoring and reviewing KB articles.Produce daily and management-level reports on alert trends, investigations and operational challenges.Mentor and guide new team members, fostering a culture of learning and knowledge sharing.Conduct brown-bag sessions to enhance team capability and awareness.Coordinate with Local Market CSIRT teams on ongoing cases to ensure customer experience remains a top priority.Lead by example through strong analytical thinking, judgement and collaborative leadershipWho you areAn experienced cyber security professional with 8+ years in SOC operations, SIEM monitoring, event analysis and incident management.Comfortable operating at Level 3 or senior Level 2 within large, complex organisations.Skilled in SIEM platforms such as ArcSight, Splunk, QRadar, LogRhythm or similar technologies.Knowledgeable in security event correlation logic, log analysis, and threat investigation techniques.Confident in networking and core security concepts across on premise and cloud environments.Experienced in creating playbooks, SOPs and process documentation.Proactive in learning about emerging cyber threats and defensive techniques.Certified with industry-recognised credentials such as CISSP or CISM (SANS certification is advantageous).Able to communicate clearly and effectively with technical and non-technical stakeholders.Known for integrity, self-motivation, cultural sensitivity and strong interpersonal skills.Experienced in supporting global customers and working across distributed teams.Not a perfect fit?Concerned you may not meet every requirement? Vodafone is committed to creating an inclusive workplace where everyone can thrive. If you are excited about this role but your experience does not align exactly with every aspect of the job description, you are encouraged to apply. You may be the right candidate for this or another opportunity, and the recruitment team will support you in exploring where your skills fit best.What's in it for youExposure to advanced cyber defence operations within a global telecom environment.Opportunities to influence detection strategy, automation and operational maturity.Collaboration with global CSOC and CSIRT teams across multiple markets.A platform to develop leadership, mentoring and technical specialisation skills.A supportive environment that values continuous learning and knowledge sharing.What skills you will learnAdvanced threat investigation and incident response techniques.SIEM optimisation, correlation rule tuning and automation approaches.Cloud security monitoring and operational defence practices.Knowledge management, playbook development and process design.Stakeholder communication and operational leadership within cyber defenceVOIS Equal Opportunity Employer CommitmentVodafone recognises and celebrates the value of diversity in building a workforce that reflects the customers and communities it serves. No form of discrimination is tolerated. This includes, but is not limited to, discrimination based on race, colour, age, veteran status, gender identity, gender expression, sexual orientation, pregnancy, maternity or parental status, ethnicity, disability, religion or belief, political affiliation, trade union membership, nationality, citizenship, indigenous status, medical condition, HIV status, neurodiversity, social origin, cultural background, marital or civil partnership status, or socio-economic background.Join UsAt Vodafone, we're working hard to build a better future. A more connected, inclusive and sustainable world. As a dynamic global community, it's our human spirit, together with technology, that empowers us to achieve this.We challenge and innovate in order to connect people, businesses, and communities across the world. Delighting our customers and earning their loyalty drive us, and we experiment, learn fast and get it done, together.With us, you can truly be yourself and belong, share inspiration, embrace new opportunities, thrive, and make a real difference.AlertApply for Vodafone jobs only through the official Vodafone Careers website to avoid job scams and fraud. us on social media on LinkedInVOIS on FacebookVOIS on Instagram
22/06/2026
Full time
Who we areVOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value for customers by delivering intelligent solutions through Talent, Technology & Transformation.As the largest shared services organisation in the global telco industry with 30,000 FTE, our portfolio of next-generation solutions and services are designed in partnership with customers across Vodafone Group, local markets, and partner markets to simplify and drive growth. With our strategic partner Accenture, we work alongside our Vodafone customers, other Telco and tech companies to drive transformation, meet the challenges of our industry and ensure we stay relevant and resilient. This partnership is a unique, industry-first model which brings together the best of in-house and 3rd party capability.We work with customers across 28 countries from 10 VOIS locations: Albania, Egypt, Hungary, India, Romania, Spain, Turkey, UK, Germany, Ireland, and with a network of teams in Czech Republic, Italy, Greece, and Portugal. this RoleWe are seeking an experienced Cyber Security Level 3 Analyst to play a critical role within the Cyber Security Operations Centre (CSOC). This role focuses on advanced security alert investigation, threat analysis, and incident triage across enterprise environments, including cloud platforms. The individual will act as a technical subject matter expert, mentor team members, contribute to automation and process stabilisation, and support continuous improvement of detection capabilities to ensure secure and seamless business operations.What you'll doLead Level 3 investigation, analysis and triage of complex security alerts and incidents across SIEM platforms.Act as the primary technical subject matter expert for security alert investigation within the CSOC.Drive automation initiatives, alert fine-tuning, and process stabilisation to reduce operational effort and risk.Participate in daily stand-ups and actively lead incident investigations.Collaborate closely with onshore teams to optimise alert volumes and improve detection accuracy.Create and maintain SOPs, KEDB entries, playbooks, process and procedure documentation.Build and sustain a strong knowledge base by authoring and reviewing KB articles.Produce daily and management-level reports on alert trends, investigations and operational challenges.Mentor and guide new team members, fostering a culture of learning and knowledge sharing.Conduct brown-bag sessions to enhance team capability and awareness.Coordinate with Local Market CSIRT teams on ongoing cases to ensure customer experience remains a top priority.Lead by example through strong analytical thinking, judgement and collaborative leadershipWho you areAn experienced cyber security professional with 8+ years in SOC operations, SIEM monitoring, event analysis and incident management.Comfortable operating at Level 3 or senior Level 2 within large, complex organisations.Skilled in SIEM platforms such as ArcSight, Splunk, QRadar, LogRhythm or similar technologies.Knowledgeable in security event correlation logic, log analysis, and threat investigation techniques.Confident in networking and core security concepts across on premise and cloud environments.Experienced in creating playbooks, SOPs and process documentation.Proactive in learning about emerging cyber threats and defensive techniques.Certified with industry-recognised credentials such as CISSP or CISM (SANS certification is advantageous).Able to communicate clearly and effectively with technical and non-technical stakeholders.Known for integrity, self-motivation, cultural sensitivity and strong interpersonal skills.Experienced in supporting global customers and working across distributed teams.Not a perfect fit?Concerned you may not meet every requirement? Vodafone is committed to creating an inclusive workplace where everyone can thrive. If you are excited about this role but your experience does not align exactly with every aspect of the job description, you are encouraged to apply. You may be the right candidate for this or another opportunity, and the recruitment team will support you in exploring where your skills fit best.What's in it for youExposure to advanced cyber defence operations within a global telecom environment.Opportunities to influence detection strategy, automation and operational maturity.Collaboration with global CSOC and CSIRT teams across multiple markets.A platform to develop leadership, mentoring and technical specialisation skills.A supportive environment that values continuous learning and knowledge sharing.What skills you will learnAdvanced threat investigation and incident response techniques.SIEM optimisation, correlation rule tuning and automation approaches.Cloud security monitoring and operational defence practices.Knowledge management, playbook development and process design.Stakeholder communication and operational leadership within cyber defenceVOIS Equal Opportunity Employer CommitmentVodafone recognises and celebrates the value of diversity in building a workforce that reflects the customers and communities it serves. No form of discrimination is tolerated. This includes, but is not limited to, discrimination based on race, colour, age, veteran status, gender identity, gender expression, sexual orientation, pregnancy, maternity or parental status, ethnicity, disability, religion or belief, political affiliation, trade union membership, nationality, citizenship, indigenous status, medical condition, HIV status, neurodiversity, social origin, cultural background, marital or civil partnership status, or socio-economic background.Join UsAt Vodafone, we're working hard to build a better future. A more connected, inclusive and sustainable world. As a dynamic global community, it's our human spirit, together with technology, that empowers us to achieve this.We challenge and innovate in order to connect people, businesses, and communities across the world. Delighting our customers and earning their loyalty drive us, and we experiment, learn fast and get it done, together.With us, you can truly be yourself and belong, share inspiration, embrace new opportunities, thrive, and make a real difference.AlertApply for Vodafone jobs only through the official Vodafone Careers website to avoid job scams and fraud. us on social media on LinkedInVOIS on FacebookVOIS on Instagram
Location: Warwick, GB, CV34 6DA Company: National Gas Requisition ID: 2896 Warwick, hybrid flexible working Permanent, full time Through nearly 5,000 miles of pipes across Great Britain, National Gas transports gas to power stations, major industries, storage facilities, and more than half a million businesses and 24 million homes. We are the national gas network, and are proud to be leading the way in transforming the energy network for a clean energy future. The Cyber Threat Intelligence (CTI) Analyst is crucial to influencing the Cyber Defend engineering team by sharing cyber threat intelligence to understand what threats are emerging as well as advanced persistent threat actors are leveraging to compromise systems. Join us, and help be the energy behind the change. Key accountabilities: Working across all areas of Cyber Defend producing bespoke and technical intelligence across Tactical, Strategic, and Operational intelligence, working with key stakeholders from around the business in vital operational areas such as Critical National Infrastructure (CNI) and Operational Technology (OT). Provide actionable technical intelligence to our detection engineers, threat hunters and security operations to improve security controls based from threat intelligence. Monitor, research and evaluate cyber threats and trends providing corresponding guidance and recommendations to inform risk assessments and business decisions relating to security posture, operations, investments and partners. Develop, implement and maintain a framework for monitoring and analysis, centred on clear intelligence requirements and key indicators or warnings. Engage with senior business stakeholders to define and agree intelligence requirements and understanding of assessments and recommendations. Provide direction and outlook by horizon scanning for future trends and threats in the cyber domain. Simultaneously work closely with Cyber Defend and the SOC to ensure technical intelligence is distributed to allow effective cyber defence mitigations to be implemented. Engage with high profile intelligence partners in Government and industry, ensure collection against intelligence requirements and corroborate assessments. Represent and speak for NG at intelligence sharing and analysis platforms that cut across Gov't and multiple sectors. Generate confidence in intelligence products by managing disagreement and questions relating to intelligence sources and assessments. Manage conflict and orchestrate consensus in high pressure and politically sensitive environments, always ensuring operational security of assessments and sources. About you: Significant proven experience in Cyber Threat Intelligence, ideally with degree and relevant Cyber qualifications. Energy or financial services sector background would be most highly regarded. High technical aptitude and a deep understanding of the current cyber threat landscapes and geopolitics. Full understanding of the MITRE attack framework. Technical understanding of CTI, including TTPs and MOs employed by threat actors. Must be able to translate this to not only a technical audience in Cyber Defend but also to the wider business. Excellent research, analysis and critical thinking skills. Strong geopolitical understanding of how threat intelligence is translated into intelligence / defence in an all-source analysis environment. Strong automation and scripting skills. Proven ability to work independently and proactively to conduct high-quality preliminary research and analysis. Strong analytical skills and attention for detail. Strong stakeholder management skillset with a proven ability to get things done. What we can offer you: Salary £65,000-£70,000 dependant on experience Annual performance bonus 34 days holiday (inc. statutory days) - plus option to buy/sell 5 further days Opt-In flexible benefit scheme, including salary sacrifice car plan, private healthcare, dental insurance, technology plans, and more Financial protection with 10x salary death in service and financial support if you're unable to work Excellent family friendly provisions About us: National Gas provides secure energy to power the country, achieve net zero and maintain our industrial competitiveness. Gas is an essential part of a secure energy supply in Britain and will continue to play a vital role in the energy system for decades to come. More than ever, we need the security that gas brings to keep the lights on, businesses running, and homes warm. National Gas provides that security. At National Gas, we're committed to building a workforce that reflects the communities that we serve. We celebrate the different experiences our colleagues bring and encourage applicants of all backgrounds to apply. To that end we want to support you during the interview process, please advise your recruitment partner if you require any reasonable adjustments. Security Clearance: This role requires Security Check (SC) clearance. Please note that eligibility may be impacted by nationality, citizenship, or residency under UK security and trade regulations. Further details: UK Security Vetting (). Further information: Please note: this role is subject to National Security Vetting
21/06/2026
Full time
Location: Warwick, GB, CV34 6DA Company: National Gas Requisition ID: 2896 Warwick, hybrid flexible working Permanent, full time Through nearly 5,000 miles of pipes across Great Britain, National Gas transports gas to power stations, major industries, storage facilities, and more than half a million businesses and 24 million homes. We are the national gas network, and are proud to be leading the way in transforming the energy network for a clean energy future. The Cyber Threat Intelligence (CTI) Analyst is crucial to influencing the Cyber Defend engineering team by sharing cyber threat intelligence to understand what threats are emerging as well as advanced persistent threat actors are leveraging to compromise systems. Join us, and help be the energy behind the change. Key accountabilities: Working across all areas of Cyber Defend producing bespoke and technical intelligence across Tactical, Strategic, and Operational intelligence, working with key stakeholders from around the business in vital operational areas such as Critical National Infrastructure (CNI) and Operational Technology (OT). Provide actionable technical intelligence to our detection engineers, threat hunters and security operations to improve security controls based from threat intelligence. Monitor, research and evaluate cyber threats and trends providing corresponding guidance and recommendations to inform risk assessments and business decisions relating to security posture, operations, investments and partners. Develop, implement and maintain a framework for monitoring and analysis, centred on clear intelligence requirements and key indicators or warnings. Engage with senior business stakeholders to define and agree intelligence requirements and understanding of assessments and recommendations. Provide direction and outlook by horizon scanning for future trends and threats in the cyber domain. Simultaneously work closely with Cyber Defend and the SOC to ensure technical intelligence is distributed to allow effective cyber defence mitigations to be implemented. Engage with high profile intelligence partners in Government and industry, ensure collection against intelligence requirements and corroborate assessments. Represent and speak for NG at intelligence sharing and analysis platforms that cut across Gov't and multiple sectors. Generate confidence in intelligence products by managing disagreement and questions relating to intelligence sources and assessments. Manage conflict and orchestrate consensus in high pressure and politically sensitive environments, always ensuring operational security of assessments and sources. About you: Significant proven experience in Cyber Threat Intelligence, ideally with degree and relevant Cyber qualifications. Energy or financial services sector background would be most highly regarded. High technical aptitude and a deep understanding of the current cyber threat landscapes and geopolitics. Full understanding of the MITRE attack framework. Technical understanding of CTI, including TTPs and MOs employed by threat actors. Must be able to translate this to not only a technical audience in Cyber Defend but also to the wider business. Excellent research, analysis and critical thinking skills. Strong geopolitical understanding of how threat intelligence is translated into intelligence / defence in an all-source analysis environment. Strong automation and scripting skills. Proven ability to work independently and proactively to conduct high-quality preliminary research and analysis. Strong analytical skills and attention for detail. Strong stakeholder management skillset with a proven ability to get things done. What we can offer you: Salary £65,000-£70,000 dependant on experience Annual performance bonus 34 days holiday (inc. statutory days) - plus option to buy/sell 5 further days Opt-In flexible benefit scheme, including salary sacrifice car plan, private healthcare, dental insurance, technology plans, and more Financial protection with 10x salary death in service and financial support if you're unable to work Excellent family friendly provisions About us: National Gas provides secure energy to power the country, achieve net zero and maintain our industrial competitiveness. Gas is an essential part of a secure energy supply in Britain and will continue to play a vital role in the energy system for decades to come. More than ever, we need the security that gas brings to keep the lights on, businesses running, and homes warm. National Gas provides that security. At National Gas, we're committed to building a workforce that reflects the communities that we serve. We celebrate the different experiences our colleagues bring and encourage applicants of all backgrounds to apply. To that end we want to support you during the interview process, please advise your recruitment partner if you require any reasonable adjustments. Security Clearance: This role requires Security Check (SC) clearance. Please note that eligibility may be impacted by nationality, citizenship, or residency under UK security and trade regulations. Further details: UK Security Vetting (). Further information: Please note: this role is subject to National Security Vetting
Salary: £12,000 - 15,000 per year Requirements: Job Title: SOC Analyst (x3 Roles) Location: On-site, London moving to hybrid 3 days on-site after 2-week induction Start Date: Immediate Contract Length: 31/03/26, with further extensions expected Clearance Required: BPSS (must be obtained prior to onboarding) Day Rate: £400 - £500 We are looking for candidates with proven experience in a hands on SOC Analyst role within an enterprise environment. You should have a strong understanding of security operations, threat detection, and incident response workflows. Strong expertise in at least two of the following areas is essential: Microsoft Security Stack, including triaging and managing alerts from the Microsoft Security Centre / Microsoft Defender portal Microsoft Defender for Endpoint (MDE) with advanced operational expertise in investigations, threat hunting, and response Trellix (ePO) with hands on experience in configuration, policy management, agent deployment, and alert handling SentinelOne, focusing on tuning, alert triage, threat investigation, and incident response Excellent communication skills and the ability to work effectively within a collaborative SOC team. Responsibilities: As part of our security operations team, you will: Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint security tools Conduct in-depth investigations of security events, escalating and containing incidents as required Optimize and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency Collaborate with internal teams to support security operations, threat analysis, and incident recovery Produce clear incident documentation, reports, and recommendations for continuous improvement Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows Technologies: Support Security More: While we require strong technical expertise, we also appreciate desirable skills such as experience with incident documentation and reporting, familiarity with security frameworks (e.g., MITRE ATT&CK, NIST, ISO 27001), and the ability to adapt quickly to new tools, threats, and operational priorities. Relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC) are also a plus. We look forward to welcoming passionate SOC Analysts who are ready to make an impact in our security operations team. last updated 25 week of 2026
21/06/2026
Full time
Salary: £12,000 - 15,000 per year Requirements: Job Title: SOC Analyst (x3 Roles) Location: On-site, London moving to hybrid 3 days on-site after 2-week induction Start Date: Immediate Contract Length: 31/03/26, with further extensions expected Clearance Required: BPSS (must be obtained prior to onboarding) Day Rate: £400 - £500 We are looking for candidates with proven experience in a hands on SOC Analyst role within an enterprise environment. You should have a strong understanding of security operations, threat detection, and incident response workflows. Strong expertise in at least two of the following areas is essential: Microsoft Security Stack, including triaging and managing alerts from the Microsoft Security Centre / Microsoft Defender portal Microsoft Defender for Endpoint (MDE) with advanced operational expertise in investigations, threat hunting, and response Trellix (ePO) with hands on experience in configuration, policy management, agent deployment, and alert handling SentinelOne, focusing on tuning, alert triage, threat investigation, and incident response Excellent communication skills and the ability to work effectively within a collaborative SOC team. Responsibilities: As part of our security operations team, you will: Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint security tools Conduct in-depth investigations of security events, escalating and containing incidents as required Optimize and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency Collaborate with internal teams to support security operations, threat analysis, and incident recovery Produce clear incident documentation, reports, and recommendations for continuous improvement Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows Technologies: Support Security More: While we require strong technical expertise, we also appreciate desirable skills such as experience with incident documentation and reporting, familiarity with security frameworks (e.g., MITRE ATT&CK, NIST, ISO 27001), and the ability to adapt quickly to new tools, threats, and operational priorities. Relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC) are also a plus. We look forward to welcoming passionate SOC Analysts who are ready to make an impact in our security operations team. last updated 25 week of 2026
Sivara GmbH is seeking a Security Operations Centre (SOC) Analyst for a 12-month assignment in London, with hybrid working options. The ideal candidate will have strong cyber security experience, active SC or DV clearance, and relevant industry certifications. The role involves SOC operations, incident response, and forensic analysis, leveraging SIEM tools to effectively monitor and triage security incidents. Join us to support a Central Government client in safeguarding their systems.
21/06/2026
Full time
Sivara GmbH is seeking a Security Operations Centre (SOC) Analyst for a 12-month assignment in London, with hybrid working options. The ideal candidate will have strong cyber security experience, active SC or DV clearance, and relevant industry certifications. The role involves SOC operations, incident response, and forensic analysis, leveraging SIEM tools to effectively monitor and triage security incidents. Join us to support a Central Government client in safeguarding their systems.
Salary: £30,000 - 55,000 per year Requirements We require active SC or DV clearance. We require proven experience in cyber security. We require experience in SOC operations, incident response, and forensic analysis. We require proficiency in Security Information and Event Management (SIEM) tools, including Splunk, Defender, and Tenable Threat Modelling System solutions. We require experience with IDS/IPS and vulnerability scanners. We require the ability to triage security events to determine scope, priority, and impact. We require the ability to make recommendations for efficient remediation. We require experience in network security principles, firewalls, and access control mechanisms. Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable. Responsibilities We will carry out SOC operations and support cyber security monitoring activities. We will investigate and respond to security incidents. We will perform forensic analysis on security events and incidents. We will use SIEM tools and related security technologies to identify and analyse threats. We will triage security events to assess their scope, priority, and impact. We will recommend efficient remediation actions for identified security issues. We will support network security controls, including firewalls and access control mechanisms. Technologies Support Network Security Splunk More We are supporting a Central Government client seeking a Security Operations Centre (SOC) Analyst / Cyber Security Analyst for an initial 12-month assignment, with the possibility of extension. The role is based in London with hybrid working. We are looking for candidates with strong cyber security experience and active SC or DV clearance. Industry-recognised certifications are highly desirable. last updated 25 week of 2026
21/06/2026
Full time
Salary: £30,000 - 55,000 per year Requirements We require active SC or DV clearance. We require proven experience in cyber security. We require experience in SOC operations, incident response, and forensic analysis. We require proficiency in Security Information and Event Management (SIEM) tools, including Splunk, Defender, and Tenable Threat Modelling System solutions. We require experience with IDS/IPS and vulnerability scanners. We require the ability to triage security events to determine scope, priority, and impact. We require the ability to make recommendations for efficient remediation. We require experience in network security principles, firewalls, and access control mechanisms. Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable. Responsibilities We will carry out SOC operations and support cyber security monitoring activities. We will investigate and respond to security incidents. We will perform forensic analysis on security events and incidents. We will use SIEM tools and related security technologies to identify and analyse threats. We will triage security events to assess their scope, priority, and impact. We will recommend efficient remediation actions for identified security issues. We will support network security controls, including firewalls and access control mechanisms. Technologies Support Network Security Splunk More We are supporting a Central Government client seeking a Security Operations Centre (SOC) Analyst / Cyber Security Analyst for an initial 12-month assignment, with the possibility of extension. The role is based in London with hybrid working. We are looking for candidates with strong cyber security experience and active SC or DV clearance. Industry-recognised certifications are highly desirable. last updated 25 week of 2026
Salary: £50,000 - 58,000 per year Requirements: Proven experience working in a Security Operations Centre (SOC) Hands on SIEM experience (Microsoft Sentinel, Splunk, or similar) Strong understanding of MITRE ATT&CK and modern detection techniques Confident analysis across logs, endpoints and network traffic Solid knowledge of core networking protocols (TCP/IP, DNS, HTTP, SMTP) Awareness of enterprise security tooling (firewalls, AV, VPNs, IDS/IPS) Eligibility for DV Clearance (sole British National, UK resident for the past 10 years) Responsibilities: Monitoring, triaging and investigating security alerts in highly secure environments Analysing threats using SIEM, endpoint telemetry, network traffic and logs Supporting live incident response, escalation and containment activities Enhancing detections, rules and playbooks aligned to MITRE ATT&CK Producing clear, high-quality incident reports for both technical and senior stakeholders Contributing to threat intelligence and proactive defence initiatives Staying ahead of emerging TTPs, tooling and adversary behaviour Technologies: HTTP Network Security Splunk TCP/IP We are a high-performing Security Operations Centre located in Hemel Hempstead, UK, dedicated to supporting UK defence, aerospace, and national security programmes. We offer a competitive salary of up to £58K with a 20% shift allowance and operate on a 24/7 shift pattern. Our team plays a critical role in protecting country important systems against sophisticated threats, including nation state activities, while benefiting from a trusted consultancy environment.
21/06/2026
Full time
Salary: £50,000 - 58,000 per year Requirements: Proven experience working in a Security Operations Centre (SOC) Hands on SIEM experience (Microsoft Sentinel, Splunk, or similar) Strong understanding of MITRE ATT&CK and modern detection techniques Confident analysis across logs, endpoints and network traffic Solid knowledge of core networking protocols (TCP/IP, DNS, HTTP, SMTP) Awareness of enterprise security tooling (firewalls, AV, VPNs, IDS/IPS) Eligibility for DV Clearance (sole British National, UK resident for the past 10 years) Responsibilities: Monitoring, triaging and investigating security alerts in highly secure environments Analysing threats using SIEM, endpoint telemetry, network traffic and logs Supporting live incident response, escalation and containment activities Enhancing detections, rules and playbooks aligned to MITRE ATT&CK Producing clear, high-quality incident reports for both technical and senior stakeholders Contributing to threat intelligence and proactive defence initiatives Staying ahead of emerging TTPs, tooling and adversary behaviour Technologies: HTTP Network Security Splunk TCP/IP We are a high-performing Security Operations Centre located in Hemel Hempstead, UK, dedicated to supporting UK defence, aerospace, and national security programmes. We offer a competitive salary of up to £58K with a 20% shift allowance and operate on a 24/7 shift pattern. Our team plays a critical role in protecting country important systems against sophisticated threats, including nation state activities, while benefiting from a trusted consultancy environment.
