At a Glance
- Tasks: Secure and operate a private cloud environment while managing vulnerabilities and incidents.
- Company: Join a leading defence organisation focused on innovative security solutions.
- Benefits: Competitive salary, DV clearance support, and opportunities for professional growth.
- Other info: Work in a governed environment with excellent career advancement opportunities.
- Why this job: Make a real impact in national security while developing your skills in a dynamic environment.
- Qualifications: Experience in Security Operations and familiarity with SIEM and vulnerability tools.
The predicted salary is between 40000 - 50000 £ per year.
We are seeking a hands-on Security Operations (SecOps) Engineer to secure and operate a MoD-hosted private cloud environment and its associated services. You will play a key role in the active defence of live services, combining security, vulnerability management, platform hardening, and operational security assurance. You will work across infrastructure, platform, and data layers to ensure systems are secure, compliant, and resilient within a highly governed environment.
Role Purpose
To deliver security operations for a private cloud platform, ensuring systems are actively monitored, vulnerabilities are managed, and services remain secure, compliant, and resilient.
Key Responsibilities
- Monitor and respond to security events, alerts, and incidents across cloud, platform, and application layers.
- Execute vulnerability scanning, patch assurance, and configuration compliance checks.
- Maintain security tooling such as SIEM, EDR, vulnerability scanners, and cloud-native controls.
- Support ISO 27001 control operation and evidence collection.
- Ensure compliance with MoD security standards including JSP 440 and SbD requirements.
- Support internal/external audit, accreditation, and remediation activities.
- Maintain secure configurations, firewall rules, access control policies, and logging standards.
- Provide security assurance during change, deployment, and release activities.
- Support improvement of SecOps processes, SOPs, and monitoring automation.
- Investigate alerts and perform incident triage and escalation.
- Conduct structured incident response activities.
- Execute vulnerability scans and interpret results; prioritise remediation based on risk and impact; track and verify remediation activities.
- Maintain secure configurations across VMware/virtualisation platforms, Linux and Windows systems, network security controls (firewalls, proxies); support least privilege and zero-trust principles.
- Operate and maintain SIEM, EDR, and scanning tools; improve detection rules and alert quality; contribute to automation of security processes.
- Support ISO 27001 control operation and evidence collection; maintain audit trails and configuration baselines; support JSP 440/441/453 compliance and accreditation.
- Assess changes for security impact; ensure deployments meet security requirements; support secure-by-design implementation.
- Maintain SOPs, runbooks, and incident documentation; contribute to improvement of SecOps processes and tooling.
Essential Skills
- Experience operating within a Security Operations or SecOps function.
- Hands-on experience with SIEM (e.g. ELK), EDR, and vulnerability tooling.
- Experience securing Linux and Windows environments.
- Understanding of ISO 27001 and secure configuration principles.
- Experience supporting cloud or virtualised platforms (e.g. VMware).
- Ability to investigate and respond to security incidents.
- Strong understanding of operational security within governed environments.
- Eligible for DV clearance.
Desirable
- Experience in MOD or classified environments.
- Automation experience (Ansible, Terraform, scripting).
- Experience with Nessus/Tenable or similar tools.
- Familiarity with JSP 440/441/453 and NCSC guidance.
- MOD or defence environment experience.
- Knowledge of JSP 440/441/453.
- Automation/scripting (Python, Bash, PowerShell).
- Experience with VMware NSX-T, vSphere.
- Security certifications (CISSP, Security+, GIAC, etc.).
SecOps Analyst. Job in Southwick LilyLifestyle Jobs employer: Carbon 60
At LilyLifestyle, we pride ourselves on being an exceptional employer, particularly for our SecOps Analyst role in Portsmouth. Our dynamic work culture fosters collaboration and innovation, while our commitment to employee growth ensures that you will have access to continuous training and development opportunities. With a focus on security within a highly governed environment, you will be part of a mission-driven team dedicated to making a meaningful impact in the defence sector.
StudySmarter Expert Advice🤫
We think this is how you could land SecOps Analyst. Job in Southwick LilyLifestyle Jobs
✨Tip Number 1
Network, network, network! Get out there and connect with folks in the SecOps field. Attend meetups, webinars, or even local tech events. You never know who might have a lead on that perfect job!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to security operations. This gives potential employers a taste of what you can do beyond just a CV.
✨Tip Number 3
Prepare for interviews by brushing up on common SecOps scenarios. Think about how you would handle specific incidents or vulnerabilities. Practising these responses will help you feel more confident when it’s time to shine.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities waiting for you, and applying directly can sometimes give you an edge. Plus, we love seeing familiar faces!
We think you need these skills to ace SecOps Analyst. Job in Southwick LilyLifestyle Jobs
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the SecOps role. Highlight your hands-on experience with SIEM, EDR, and vulnerability tooling. We want to see how your skills match up with what we're looking for!
Showcase Relevant Experience:When writing your application, focus on your experience in Security Operations or SecOps functions. Mention any specific projects or tasks that relate to monitoring security events and managing vulnerabilities.
Be Clear and Concise:Keep your application clear and to the point. Use bullet points where possible to make it easy for us to read through your qualifications and experiences. We appreciate a straightforward approach!
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. We can’t wait to hear from you!
How to prepare for a job interview at Carbon 60
✨Know Your Stuff
Make sure you brush up on your knowledge of security operations, especially around SIEM, EDR, and vulnerability management tools. Familiarise yourself with the specific technologies mentioned in the job description, like VMware and Linux systems, so you can speak confidently about your hands-on experience.
✨Understand the Environment
Since this role involves working within a highly governed environment, it’s crucial to understand MoD security standards and compliance requirements. Research JSP 440 and ISO 27001 to show that you’re not just familiar with them but can also apply them in real-world scenarios.
✨Prepare for Scenario Questions
Expect to be asked about how you would handle specific security incidents or vulnerabilities. Prepare examples from your past experiences where you successfully managed incidents or improved security processes. This will demonstrate your problem-solving skills and practical knowledge.
✨Show Your Passion for Security
Let your enthusiasm for cybersecurity shine through during the interview. Discuss any personal projects, certifications, or continuous learning efforts you've undertaken. This shows that you’re proactive and genuinely interested in the field, which is a big plus for any employer.
