Senior Cyber Security Operations Centre (CSOC) Consultant
DV Cleared
Corsham/Hybrid

Rate: £700 - £750pd (Inside IR35)

We're supporting a major national security programme seeking an experienced Cyber Security Operations Centre (CSOC) Consultant to join a growing cyber security function delivering services within a highly secure environment.

This is an opportunity to play a key role in protecting critical systems and services, working alongside security, infrastructure, and cloud teams to enhance security monitoring, incident response, threat detection, and operational resilience.

The successful candidate will bring a strong background in cyber security operations, ideally gained within Defence, Government, or other highly regulated environments.

Responsibilities

• Support the operation and continual improvement of cyber security monitoring and incident response capabilities.
• Investigate and manage cyber security incidents, ensuring appropriate containment, remediation, and reporting.
• Analyse security alerts, events, and threat intelligence to identify potential risks and vulnerabilities.
• Develop and refine detection use cases, correlation rules, and security monitoring processes.
• Work closely with cloud, infrastructure, and engineering teams to improve security posture across complex environments.
• Contribute to threat hunting activities and proactive identification of emerging threats.
• Support security assurance, risk management, and compliance activities.
• Produce technical documentation, reports, and recommendations for both technical and non-technical stakeholders.
• Provide subject matter expertise on security operations best practice within secure government environments.

Experience Required

• Current UK Developed Vetting (DV) clearance.
• Strong experience within a Security Operations Centre (SOC) or Cyber Security Operations Centre (CSOC) environment.
• Experience investigating and responding to cyber security incidents.
• Knowledge of SIEM platforms and security monitoring technologies.
• Understanding of threat detection, threat hunting, vulnerability management, and incident response methodologies.
• Experience working within Defence, Central Government, or other secure environments.
• Strong stakeholder engagement and communication skills.

Desirable Experience

• Experience supporting cloud-hosted environments, particularly Google Cloud Platform (GCP).
• Experience of MOD Cloud (MODCloud) programmes or secure cloud transformation initiatives.
• Familiarity with NCSC guidance and secure-by-design principles.
• Knowledge of security frameworks including JSP 440, JSP 604, NIST, ISO27001, or Cyber Assessment Framework (CAF).
• Relevant certifications such as CISSP, CCSP, GCIH, GCIA, Security+, or similar.

We are looking to have someone in position by 1st July 2026, so if you meet the criteria outlined and want to know more, please get in touch ASAP.

If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.