At a Glance
- Tasks: Secure and operate a private cloud environment while managing vulnerabilities and incidents.
- Company: Join a leading defence organisation focused on innovative security solutions.
- Benefits: Competitive salary, DV clearance support, and opportunities for professional growth.
- Other info: Dynamic role with excellent career advancement in a highly governed environment.
- Why this job: Make a real difference in national security while working with cutting-edge technology.
- Qualifications: Experience in Security Operations, SIEM, EDR, and vulnerability management.
The predicted salary is between 45000 - 55000 £ per year.
We are seeking a hand‑on Security Operations (SecOps) Engineer to secure and operate a MoD‑hosted private cloud environment and its associated services. You will play a key role in active defence of live services, combining security, vulnerability management, platform hardening, and operational security assurance. You will work across infrastructure, platform and data layers to ensure systems are secure, compliant and resilient within a highly governed environment.
Key Responsibilities
- Monitor and respond to security events, alerts and incidents across cloud, platform, and application layers.
- Execute vulnerability scanning, patch assurance and configuration compliance checks.
- Maintain security tooling such as SIEM, EDR, vulnerability scanners, and cloud‑native controls.
- Support ISO 27001 control operation and evidence collection.
- Ensure compliance with MoD security standards including JSP 440 and SbD requirements.
- Support internal/external audit, accreditation and remediation activities.
- Maintain secure configurations, firewall rules, access control policies, and logging standards.
- Provide security assurance during change, deployment and release activities.
- Support improvement of SecOps processes, SOPs and monitoring automation.
Essential Skills
- Experience operating within a Security Operations or SecOps function.
- Hands‑on experience with SIEM (e.g. ELK), EDR and vulnerability tooling.
- Experience securing Linux and Windows environments.
- Understanding of ISO 27001 and secure configuration principles.
- Experience supporting cloud or virtualised platforms (e.g. VMware).
- Ability to investigate and respond to security incidents.
- Strong understanding of operational security within governed environments.
- Eligible for DV clearance.
Desirable
- Experience in MOD or classified environments.
- Automation experience (Ansible, Terraform, scripting).
- Experience with Nessus/Tenable or similar tools.
- Familiarity with JSP 440/441/453 and NCSC guidance.
Role Purpose
To deliver security operations for a private cloud platform, ensuring systems are actively monitored, vulnerabilities are managed, and services remain secure, compliant and resilient.
Security Monitoring & Response
- Monitor SIEM, EDR and platform telemetry.
- Investigate alerts and perform incident triage and escalation.
- Conduct structured incident response activities.
Vulnerability & Patch Management
- Execute vulnerability scans and interpret results.
- Prioritise remediation based on risk and impact.
- Track and verify remediation activities.
Platform Security Engineering
- Maintain secure configurations across: VMware / virtualisation platforms, Linux and Windows systems, network security controls (firewalls, proxies).
- Support least privilege and zero‑trust principles.
Security Tooling & Automation
- Operate and maintain SIEM, EDR and scanning tools.
- Improve detection rules and alert quality.
- Contribute to automation of security processes.
Compliance & Assurance
- Support ISO 27001 control operation and evidence collection.
- Maintain audit trails and configuration baselines.
- Support JSP 440/441/453 compliance and accreditation.
Change & Release Security
- Assess changes for security impact.
- Ensure deployments meet security requirements.
- Support secure‑by‑design implementation.
Documentation & Continuous Improvement
- Maintain SOPs, runbooks and incident documentation.
- Contribute to improvement of SecOps processes and tooling.
Essential Experience & Skills
- Experience in Security Operations or SecOps.
- SIEM, EDR and vulnerability management tooling experience.
- Strong Linux/Windows security and administration knowledge.
- Experience securing virtualised or cloud platforms.
- Understanding of ISO 27001 controls and audit processes.
- Ability to investigate and resolve security incidents.
- Aware of networking and infrastructure security.
Desirable
- MOD or defence environment experience.
- Knowledge of JSP 440/441/453.
- Automation/scripting (Python, Bash, PowerShell).
- Experience with VMware NSX‑T, vSphere.
- Security certifications (CISSP, Security+, GIAC etc.).
Locations
SecOps Analyst in Hampshire, Portsmouth employer: Carbon60
As a leading employer in the defence sector, we offer an exceptional work environment in Portsmouth, where you will be at the forefront of securing critical cloud infrastructure. Our commitment to employee growth is evident through continuous training opportunities and a culture that values innovation and collaboration. Join us to make a meaningful impact while enjoying competitive benefits and a supportive team atmosphere.
StudySmarter Expert Advice🤫
We think this is how you could land SecOps Analyst in Hampshire, Portsmouth
✨Tip Number 1
Network, network, network! Get out there and connect with people in the SecOps field. Attend meetups, webinars, or even local tech events. You never know who might have a lead on your dream job!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to SIEM, EDR, or vulnerability management. This gives potential employers a taste of what you can do.
✨Tip Number 3
Prepare for interviews by brushing up on common SecOps scenarios. Think about how you would handle specific incidents or vulnerabilities. Practising these responses will help you feel more confident when it’s time to shine.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities waiting for talented folks like you. Plus, it’s a great way to ensure your application gets seen by the right people.
We think you need these skills to ace SecOps Analyst in Hampshire, Portsmouth
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the SecOps role. Highlight your experience with SIEM, EDR, and vulnerability management tools. We want to see how your skills match up with what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about security operations and how your background makes you a great fit for our team. Keep it concise but impactful!
Showcase Relevant Experience:When detailing your experience, focus on specific projects or tasks that relate to the key responsibilities listed in the job description. We love seeing real-world examples of your skills in action!
Apply Through Our Website:Don't forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at Carbon60
✨Know Your Tools
Familiarise yourself with the specific security tools mentioned in the job description, like SIEM and EDR systems. Be ready to discuss your hands-on experience with these tools and how you've used them to monitor and respond to security incidents.
✨Understand Compliance Standards
Make sure you have a solid grasp of ISO 27001 and MoD security standards like JSP 440. Prepare examples of how you've ensured compliance in previous roles, as this will show your understanding of the regulatory environment you'll be working in.
✨Showcase Your Incident Response Skills
Be prepared to talk about specific incidents you've managed in the past. Highlight your approach to investigating alerts, performing triage, and how you prioritised remediation based on risk and impact. This will demonstrate your practical experience in a SecOps role.
✨Emphasise Continuous Improvement
Discuss any experiences you have with improving SecOps processes or automating security tasks. Mention any scripting or automation tools you've used, as this aligns with the role's focus on enhancing security operations and efficiency.
