At a Glance
- Tasks: Secure and operate a private cloud environment while monitoring security events and incidents.
- Company: Join a leading MoD contractor focused on innovative security solutions.
- Benefits: Competitive salary, DV clearance support, and opportunities for professional growth.
- Other info: Dynamic role with potential for career advancement in a governed environment.
- Why this job: Make a real difference in national security by protecting vital services.
- Qualifications: Experience in SecOps, SIEM tools, and securing Linux/Windows environments.
The predicted salary is between 60000 - 80000 £ per year.
We are seeking a hand‑on Security Operations (SecOps) Engineer to secure and operate a MoD‑hosted private cloud environment and its associated services. You will play a key role in active defence of live services, combining security, vulnerability management, platform hardening, and operational security assurance. You will work across infrastructure, platform and data layers to ensure systems are secure, compliant and resilient within a highly governed environment.
Key Responsibilities
- Monitor and respond to security events, alerts and incidents across cloud, platform, and application layers.
- Execute vulnerability scanning, patch assurance and configuration compliance checks.
- Maintain security tooling such as SIEM, EDR, vulnerability scanners, and cloud‑native controls.
- Support ISO 27001 control operation and evidence collection.
- Ensure compliance with MoD security standards including JSP 440 and SbD requirements.
- Support internal/external audit, accreditation and remediation activities.
- Maintain secure configurations, firewall rules, access control policies, and logging standards.
- Provide security assurance during change, deployment and release activities.
- Support improvement of SecOps processes, SOPs and monitoring automation.
Essential Skills
- Experience operating within a Security Operations or SecOps function.
- Hands‑on experience with SIEM (e.g. ELK), EDR and vulnerability tooling.
- Experience securing Linux and Windows environments.
- Understanding of ISO 27001 and secure configuration principles.
- Experience supporting cloud or virtualised platforms (e.g. VMware).
- Ability to investigate and respond to security incidents.
- Strong understanding of operational security within governed environments.
- Eligible for DV clearance.
Desirable
- Experience in MOD or classified environments.
- Automation experience (Ansible, Terraform, scripting).
- Experience with Nessus/Tenable or similar tools.
- Familiarity with JSP 440/441/453 and NCSC guidance.
Role Purpose
To deliver security operations for a private cloud platform, ensuring systems are actively monitored, vulnerabilities are managed, and services remain secure, compliant and resilient.
Security Monitoring & Response
- Monitor SIEM, EDR and platform telemetry.
- Investigate alerts and perform incident triage and escalation.
- Conduct structured incident response activities.
Vulnerability & Patch Management
- Execute vulnerability scans and interpret results.
- Prioritise remediation based on risk and impact.
- Track and verify remediation activities.
Platform Security Engineering
- Maintain secure configurations across: VMware / virtualisation platforms, Linux and Windows systems, network security controls (firewalls, proxies).
- Support least privilege and zero‑trust principles.
Security Tooling & Automation
- Operate and maintain SIEM, EDR and scanning tools.
- Improve detection rules and alert quality.
- Contribute to automation of security processes.
Compliance & Assurance
- Support ISO 27001 control operation and evidence collection.
- Maintain audit trails and configuration baselines.
- Support JSP 440/441/453 compliance and accreditation.
Change & Release Security
- Assess changes for security impact.
- Ensure deployments meet security requirements.
- Support secure‑by‑design implementation.
Documentation & Continuous Improvement
- Maintain SOPs, runbooks and incident documentation.
- Contribute to improvement of SecOps processes and tooling.
Locations
SecOps Analyst in Hampshire, Portsmouth employer: Carbon60 Project Services
Join a leading organisation in Portsmouth that prioritises security and innovation, offering a dynamic work environment where your expertise as a SecOps Analyst will be valued. With a strong commitment to employee development, you will have access to continuous training opportunities and the chance to work on cutting-edge projects within a highly governed environment. Enjoy a collaborative culture that fosters teamwork and encourages proactive contributions to enhance security operations.
StudySmarter Expert Advice🤫
We think this is how you could land SecOps Analyst in Hampshire, Portsmouth
✨Tip Number 1
Network, network, network! Get out there and connect with people in the SecOps field. Attend meetups, webinars, or even local tech events. You never know who might have a lead on a job or can give you insider info about a company.
✨Tip Number 2
Show off your skills! Create a personal project or contribute to open-source projects related to security operations. This not only boosts your portfolio but also gives you real-world experience that employers love to see.
✨Tip Number 3
Prepare for interviews by brushing up on common SecOps scenarios. Be ready to discuss how you would handle specific incidents or vulnerabilities. Practising with a friend or using mock interview platforms can really help you nail it!
✨Tip Number 4
Don’t forget to apply through our website! We’ve got some fantastic opportunities waiting for you. Plus, applying directly can sometimes give you a better chance of getting noticed by hiring managers.
We think you need these skills to ace SecOps Analyst in Hampshire, Portsmouth
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the SecOps Analyst role. Highlight your hands-on experience with SIEM, EDR, and vulnerability tooling, as well as any relevant certifications like ISO 27001. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about security operations and how your experience aligns with our needs. Don't forget to mention your familiarity with MoD security standards and any automation experience you have.
Showcase Your Problem-Solving Skills:In your application, give examples of how you've tackled security incidents or vulnerabilities in the past. We love seeing candidates who can think on their feet and respond effectively to challenges, so share those stories!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us that you're keen on joining our team at StudySmarter!
How to prepare for a job interview at Carbon60 Project Services
✨Know Your Tools
Familiarise yourself with the specific security tools mentioned in the job description, like SIEM and EDR systems. Be ready to discuss your hands-on experience with these tools and how you've used them to monitor and respond to security incidents.
✨Understand Compliance Standards
Make sure you have a solid grasp of ISO 27001 and MoD security standards such as JSP 440. Prepare examples of how you've ensured compliance in previous roles, as this will show your understanding of the governed environment you'll be working in.
✨Demonstrate Incident Response Skills
Be prepared to talk about your experience with incident response. Think of specific incidents you've managed, how you triaged alerts, and what steps you took to resolve issues. This will highlight your ability to handle real-world security challenges.
✨Showcase Your Automation Knowledge
If you have experience with automation tools like Ansible or Terraform, make sure to mention it. Discuss how you've used automation to improve security processes or monitoring, as this aligns with the role's focus on enhancing SecOps efficiency.
