At a Glance
- Tasks: Secure and operate a private cloud environment while managing vulnerabilities and incidents.
- Company: Join a leading defence organisation focused on security operations.
- Benefits: Competitive salary, DV clearance support, and opportunities for professional growth.
- Other info: Dynamic role with excellent career advancement in a highly governed environment.
- Why this job: Make a real difference in national security while working with cutting-edge technology.
- Qualifications: Experience in Security Operations, SIEM, EDR, and vulnerability management required.
The predicted salary is between 45000 - 55000 £ per year.
Clearance: DV required or ability to obtain
Location: Portsmouth
About the Role
We are seeking a hand‑on Security Operations (SecOps) Engineer to secure and operate a MoD‑hosted private cloud environment and its associated services. You will play a key role in active defence of live services, combining security, vulnerability management, platform hardening, and operational security assurance. You will work across infrastructure, platform and data layers to ensure systems are secure, compliant and resilient within a highly governed environment.
Key Responsibilities
- Monitor and respond to security events, alerts and incidents across cloud, platform, and application layers.
- Execute vulnerability scanning, patch assurance and configuration compliance checks.
- Maintain security tooling such as SIEM, EDR, vulnerability scanners, and cloud‑native controls.
- Support ISO 27001 control operation and evidence collection.
- Ensure compliance with MoD security standards including JSP 440 and SbD requirements.
- Support internal/external audit, accreditation and remediation activities.
- Maintain secure configurations, firewall rules, access control policies, and logging standards.
- Provide security assurance during change, deployment and release activities.
- Support improvement of SecOps processes, SOPs and monitoring automation.
Essential Skills
- Experience operating within a Security Operations or SecOps function.
- Hands‑on experience with SIEM (e.g. ELK), EDR and vulnerability tooling.
- Experience securing Linux and Windows environments.
- Understanding of ISO 27001 and secure configuration principles.
- Experience supporting cloud or virtualised platforms (e.g. VMware).
- Ability to investigate and respond to security incidents.
- Strong understanding of operational security within governed environments.
- Eligible for DV clearance.
Desirable
- Experience in MOD or classified environments.
- Automation experience (Ansible, Terraform, scripting).
- Experience with Nessus/Tenable or similar tools.
- Familiarity with JSP 440/441/453 and NCSC guidance.
Role Purpose
To deliver security operations for a private cloud platform, ensuring systems are actively monitored, vulnerabilities are managed, and services remain secure, compliant and resilient.
Security Monitoring & Response
- Monitor SIEM, EDR and platform telemetry.
- Investigate alerts and perform incident triage and escalation.
- Conduct structured incident response activities.
Vulnerability & Patch Management
- Execute vulnerability scans and interpret results.
- Prioritise remediation based on risk and impact.
- Track and verify remediation activities.
Platform Security Engineering
- Maintain secure configurations across:
- VMware / virtualisation platforms.
- Linux and Windows systems.
- Network security controls (firewalls, proxies).
- Support least privilege and zero‑trust principles.
Security Tooling & Automation
- Operate and maintain SIEM, EDR and scanning tools.
- Improve detection rules and alert quality.
- Contribute to automation of security processes.
Compliance & Assurance
- Support ISO 27001 control operation and evidence collection.
- Maintain audit trails and configuration baselines.
- Support JSP 440/441/453 compliance and accreditation.
Change & Release Security
- Assess changes for security impact.
- Ensure deployments meet security requirements.
- Support secure‑by‑design implementation.
Documentation & Continuous Improvement
- Maintain SOPs, runbooks and incident documentation.
- Contribute to improvement of SecOps processes and tooling.
Essential Experience & Skills
- Experience in Security Operations or SecOps.
- SIEM, EDR and vulnerability management tooling experience.
- Strong Linux/Windows security and administration knowledge.
- Experience securing virtualised or cloud platforms.
- Understanding of ISO 27001 controls and audit processes.
- Ability to investigate and resolve security incidents.
- Aware of networking and infrastructure security.
Desirable
- MOD or defence environment experience.
- Knowledge of JSP 440/441/453.
- Automation/scripting (Python, Bash, PowerShell).
- Experience with VMware NSX‑T, vSphere.
- Security certifications (CISSP, Security+, GIAC etc.).
SecOps Analyst in Portsmouth employer: Carbon60
Join our dynamic team in Portsmouth as a SecOps Analyst, where you will play a pivotal role in safeguarding a MoD-hosted private cloud environment. We pride ourselves on fostering a collaborative work culture that prioritises employee growth through continuous training and development opportunities, while offering competitive benefits and a commitment to compliance with the highest security standards. With a focus on innovation and resilience, we provide a unique environment for professionals looking to make a meaningful impact in the field of security operations.
StudySmarter Expert Advice🤫
We think this is how you could land SecOps Analyst in Portsmouth
✨Tip Number 1
Network, network, network! Get out there and connect with people in the SecOps field. Attend meetups, webinars, or even local tech events. You never know who might have a lead on your dream job!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to SIEM, EDR, or vulnerability management. This gives potential employers a taste of what you can do.
✨Tip Number 3
Prepare for interviews by brushing up on common SecOps scenarios. Think about how you'd handle security incidents or manage vulnerabilities. Practising these responses will help you stand out during the interview process.
✨Tip Number 4
Don't forget to apply through our website! We’ve got loads of opportunities that might be perfect for you. Plus, it’s a great way to show your interest in joining our team at StudySmarter.
We think you need these skills to ace SecOps Analyst in Portsmouth
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the SecOps Analyst role. Highlight your hands-on experience with SIEM, EDR, and vulnerability management tools. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about security operations and how your background makes you a perfect fit for our team. Keep it engaging and relevant to the job description.
Showcase Relevant Experience:When detailing your experience, focus on specific projects or roles where you've operated within a Security Operations function. We love seeing concrete examples of how you've tackled security challenges in the past.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen to join our team!
How to prepare for a job interview at Carbon60
✨Know Your Tools
Make sure you’re familiar with the specific security tools mentioned in the job description, like SIEM and EDR systems. Brush up on how they work and be ready to discuss your hands-on experience with them.
✨Understand Compliance Standards
Get a solid grasp of ISO 27001 and MoD security standards like JSP 440. Be prepared to explain how you've applied these standards in previous roles or how you would approach compliance in this position.
✨Showcase Incident Response Skills
Prepare examples of past incidents you've managed. Highlight your ability to investigate alerts, perform triage, and escalate issues effectively. This will demonstrate your practical experience in a SecOps environment.
✨Emphasise Continuous Improvement
Talk about any experiences you have with improving SecOps processes or automating security tasks. Companies love candidates who can contribute to efficiency and effectiveness in their operations.
