Senior Security Analyst – Microsoft E5 / Sentinel

Rate – £400 / £450 Inside IR35 (Total to umbrella)

Duration – 6 months

Location – Hybrid into London or Middlesbrough (Infrequent travel per month)

A complex organisation that we work with extensively is looking for a Senior Security Analyst proficient in Microsoft E5, Sentinel and Defender (security operations perspective) to join them and work on triage incidents and optimisation to improve processes and detection rules.

You will:

• Handle triage incidents.
• Understand Microsoft E5, Sentinel and Defender capabilities (Automation, Threat, Rules, Access).
• Assist with Microsoft E5, Sentinel and Defender optimisation.
• Use previous experiences to ensure best practices are upheld and improve processes.
• Liaise and escalate with stakeholders and team members regarding incidents.

Skills and Experience required:

• Microsoft E5, Sentinel, Defender configuration and optimisation.
• Security analysis.
• Stakeholder management.
• Sentinel SOC experience – implementation, triage, security, utilisation, deploy controls, maintenance.

Please apply in the link provided if suitable.

Cyber Risk Consultant (SC Cleared)

Remote (travel to customer site as required)

£45k – £65k DOE

Role details:

We’ve partnered with a growing cyber security consultancy who have market-leading accreditations and 20+ years of expertise. They offer NCSC assured consultancy, identification and protection and proactive detection and response services to a variety of clients.

They are looking for a Cyber Risk Consultant to support clients across various sectors to define and implement security risk assessment and best practice solutions.

Essential Requirements:

• Excellent understanding of risk management and assessment principles and frameworks: ISO27005 and NIST Cyber Security Framework
• Customer-focused with strong verbal and written communication skills.
• Hands-on experience with: Reviewing security project delivery plans, Evaluating network and cloud security designs, Creating secure architectures and solutions.
• Strong knowledge of cybersecurity industry trends.

Benefits:

• 25 days annual holiday
• Birthday off in addition and option to buy/sell additional 5 days
• Private medical Cover
• Life Assurance
• Extensive non-taxable benefits

Eligibility:

To be considered for the role, you must have active SC Clearance.

CHECK Team Leader

Cheltenham (Hybrid – min 3 days/week onsite)

£65k – £100k DOE

Role details:

We are working with a global cyber security consultancy who are a trusted advisory to 15,000 clients worldwide. They assess, develop and manage cyber threats for a variety of customers including governments and critical national infrastructure providers.

They are looking for a CHECK Team Leader to provide structured programmes of security testing, consultancy and research, as well as delivery of reports to key clients.

Essential Requirements:

• Current CHECK Team Leader status with either CTL-WEB, CTL-INF (or both)
• Experience of working both solely and as part of a team.
• Knowledge of cyber security principles
• Writing clear and accurate technical documentation

Benefits:

• Flexible working
• Life Assurance, Share Save Scheme
• Green Car Scheme
• Learning & Development with the goal of personal development and progression
• Lifestyle & Wellness via Perkbox

Eligibility:

To be considered for the role, you must have eligibility for security clearance (UK National + Residence in the UK for the past 5 years)

Red Team Consultant

London, Manchester or Cheltenham
Hybrid (2 days/week onsite)

£40k – £85k DOE

Role details:

We are working with a global cyber security consultancy who are a trusted advisory to 15,000 clients worldwide. They assess, develop and manage cyber threats for a variety of customers including governments and critical national infrastructure providers.

They are looking for a Red Team Consultant assist in all aspects of the attack chain – from social engineering and initial access, evading best-in-class EDR products, through lateral movement.

Responsibilities:

• Red Team activities across the attack chain – from social engineering and evading EDR systems to lateral movement,
• Managing operational risk
• Developing automation tools
• Communicating findings clearly to both technical and C-level stakeholders

Benefits:

• Flexible working
• Pension, Life Assurance, Share Save Scheme
• Green Car Scheme
• Learning & Development with the goal of personal development and progression
• Lifestyle & Wellness via Perkbox

Eligibility:

To be considered for the role, you must have eligibility for security clearance (UK National + Residence in the UK for the past 5 years)

Senior SOC Analyst
DV Clearance Required

Hemel Hempstead (Onsite)

£500/day – £900/day DOE (Inside IR35)
Initial 6 Month contract

Role details:

We are working with a global consultancy and recognised expert in defence and security. They are looking for a Senior SOC Analyst to support on a key project in Hemel Hempstead.

Responsibilities:

• Monitor, triage, and investigate security incidents on critical client infrastructure.
• Perform in-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities.
• Provide Incident Response support when required, providing guidance on containment, eradication and recovery activities.
• Maintain and, where appropriate, improve and develop team knowledge of SOC tools, security operations and triage.
• Prepare reports for managed clients to both technical and non-technical audiences and continuously improve their content and presentation.

Requirements:

• Proven experience in Security Operations Centre.
• Demonstrable experience of using Microsoft Sentinel and Splunk.
• Knowledge and experience with Mitre Att&ck Framework.
• Strong knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise AntiVirus products.
• Strong understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP

Eligibility:

To be considered for the role, you must have active MOD DV Clearance and be a Sole UK National.

Junior Professional Services Engineer

Location: Abingdon (Hybrid)
Salary: £27-32k per annum

An award-winning provider of IT security solutions, is looking for a Junior Professional Services Engineer to join their growing team. Specialising in IT security and with a focus on developing our people, our client is committed to providing opportunities for growth and career advancement. This role offers a fantastic pathway for someone to develop into a highly skilled and professional services engineer.

Key Responsibilities:
As a Junior Professional Services Engineer, you will:

• Provide onsite helpdesk support, troubleshooting and resolving IT issues at client locations.
• Act as the escalation point for onsite requirements and ensure all client issues are logged and managed appropriately.
• Deliver client projects alongside senior engineers, gaining hands-on experience and mentoring.
• Manage and prioritise incident tickets, ensuring SLAs are met and clients are kept informed.
• Work closely with other departments, including project management, to ensure smooth delivery of projects and services.
• Maintain communication with clients, vendors, and internal teams to ensure clarity on project scope and timelines.

Skills and Experience:
To be considered for this role, you should have:

• A minimum of 2 years’ experience in IT, preferably in a corporate or service environment.
• Strong technical knowledge in areas such as Windows 7/8/10, MacOS, Active Directory, Office 365, and Email Management (Exchange).
• Experience with troubleshooting, problem resolution, and client-facing communication.
• A full UK driving license and access to your own transport. Applicants must be local.
• A desire to grow within the IT sector, with the drive to further your skills and certifications.

Desirable Skills:

• Experience with Microsoft Server OS (2008/2012/2016)
• CompTIA A+, N+ certifications, and/or Microsoft certifications (MS-900, MS-100, MS-101)
• Experience with wireless management solutions (Ubiquiti, Meraki, Netgear)
• Experience in an MSP environment is a plus.

Apply today to join a company that supports your growth and success!

SOC Engineer (DV Cleared)

Farnborough (Hybrid)

£500 – £575/day (Outside IR35)
Initial 6 Month Contract

Role details:

We are working with a leading provider of digital solutions in high security environments. They specialise in digital experimentation, focused on fail-safe-fast cutting-edge technology solutions.

They are looking for a SOC Engineer to join them on fast moving, innovative and influential work that is underway in the Defence and Security Sector.

Responsibilities:

• Development of Use Cases
• Development of playbooks
• Development of alerts and dashboards in Elastic SIEM
• 2nd line Security Monitoring to triage incidents and carry out investigations

Requirements:

• Knowledge of configuring SIEM tooling
• Experience in developing use cases and playbooks for Security Operations Centre
• Experience in configuration Elastic SIEM

Eligibility:

To be considered for the role, you must have active MOD DV Clearance.

Senior SOC Analyst

DV Clearance Required
Gosport (Onsite)

£500/day – £900/day DOE (Inside IR35)
Initial 6 Month contract

Role details:

We are working with a global consultancy and recognised expert in defence and security. They are looking for a Senior SOC Analyst to support on a key MOD project in Gosport.

As an L2 SOC Analyst, you’ll be the escalation point from L1, supporting security monitoring and incident response activities. The team is transitioning to Splunk, so experience with it is a plus.

Requirements:

• L1 SOC experience – ready to take on L2 responsibilities
• Knowledge of Splunk (or willingness to learn)
• Strong security monitoring & incident response skills
• Certifications (e.g., Security+, GCIH, or similar) are beneficial but not essential
• Threat detection experience is a nice-to-have

Eligibility:

To be considered for the role, you must have active MOD DV Clearance and be a Sole UK National.

Security Assurance Consultant
MOD SC or DV Clearance
Reading (2 days/week onsite)

£70k – £80k DOE

Role details:

We are working with an industry leading organisation that delivers complex solutions to government and industry partners that operate in highly secure environments. They are looking for a Security Assurance Consultant to provide oversight, advice and guidance to critical MOD projects.

Requirements:

• Certified Information Systems Security Professional (CISSP) or equivalent.
• CESG Certified Professional (CCP) SIRA, Accreditor or IA Architect or equivalent certification.
• Previous experience of using appropriate methodologies to identify, assess and manage information risk.

Eligibility:

To be considered for the role, you must have active MOD SC Clearance OR DV clearance.

IT Security Engineer

Bristol – Hybrid Working / 1 or 2 days per week onsite

£45,000 – £50,000 + benefits

Fantastic new permanent opportunity for an experienced IT Security Engineer with this large financial services company based in Bristol.

As a key member of the Planning, Architecture & Security services team, the role will be at the forefront of the company’s security strategy, ensuring the confidentiality, integrity and availability of all their information and information systems.

This role will focus on security and quality control in the IT department and will include designing, building and securing, scalable and robust systems. This role will help the company understand security threats and help create strategies to protect the businesses assets and interests.

Main responsibilities:

• Proactively identify information security deficiencies or opportunities for improvement and facilitate development of pragmatic solutions.
• Plan, implement and upgrade security measures and controls.
• Establish plans and protocols to protect digital files and information systems against unauthorized access, modification and/or destruction.
• Contribute to the IT Strategy planning process with regards to Information Security, ISO27001/27002 developments.
• Provide advisory and consulting support to help the Company improve its security posture and adhere to security policies, expected controls and regulatory requirements.
• Maintain data and monitor security access.
• Perform vulnerability testing, risk analyses and security assessments.
• Define, implement and maintain corporate security policies.
• Anticipate security alerts, incidents and disasters and reduce their likelihood.
• Perform information security reviews of the core business and group business as well as third parties.
• Identify and document areas of IT Risk related to Information/Cyber Security.
• Support IT Risk Management by proposing appropriate risk mitigation and control measures.

Skills Required:

• A proven background within Security Operations / Network Security and Security Engineering.
• Able to demonstrate a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Mitre Att&ck Framework, OWASP).
• Experience in designing secure components (e.g. networks, systems, applications, security technologies)
• Knowledge of and skills in at least one scripting language such as PowerShell.
• Comprehensive knowledge of network design, defence-in-depth principles and network security architecture.
• Extensive experience and understanding of security analysis tools, defensive technologies and other security technologies (e.g. SIEM, VAS, IDS/IPS, Firewalls, IAM, PAM, NAC, Email Security, Web filtering, Patch management, Anti-malware).
• Experience in identifying, detecting, applying protection, responding and remediating to security incidents to within business risk appetite.
• Strong working knowledge of authentication technologies (e.g. two-factor, multifactor).
• Strong proficiency in using the Microsoft Ecosystem such as Active Directory and MS Entra ID, including GPO, DNS, DHCP.
• Knowledge of endpoint security solutions (e.g. HIDS, anti-malware, file integrity, DLP).
• AWS, Azure and other cloud platforms, including hybrid cloud (e.g. SaaS, IaaS, PaaS).
• System administration, supporting multiple platforms and applications.
• Skilled in conducting vulnerability scans and identifying vulnerabilities in systems.
• Effective technical and non-technical communication skills to provide security support for colleagues, at all levels, across the business.

For any further queries regarding the role or to apply, please contact Danny Palmer on at danny.palmer@sandersonplc.com