SOC Analyst

• Monitoring and triaging security alerts to identify potential threats across client environments
• Investigating events using system logs, network traffic, and endpoint telemetry
• Supporting containment and recovery efforts during active security incidents
• Continuously enhancing SOC capabilities, tooling, and detection rules using threat-informed approaches like MITRE ATT&CK
• Producing detailed incident reports and documentation for both technical and non-technical stakeholders
• Assisting with threat intelligence activities as needed
• Staying current on evolving threats, attack techniques, and industry best practices

• Hands-on experience working in a Security Operations Centre (SOC)
• Solid knowledge of SIEM tools such as Microsoft Sentinel or Splunk
• Familiarity with the MITRE ATT&CK framework and threat detection methodologies
• Strong analytical skills with a keen eye for detail in log analysis and network monitoring
• Basic understanding of enterprise security architecture including firewalls, VPNs, AV, and web applications
• Good grasp of network protocols such as TCP/IP, HTTP, SMTP, and DNS
• Eligibility for DV clearance (must have resided in the UK for the last 10 years)

Join a leading consultancy at the forefront of cybersecurity within the aerospace, defence, and national security sectors. We're looking for a SOC Analyst (Level 2) to become a core part of our high-performing Security Operations Centre, helping to protect critical systems and infrastructure for some of the most secure organisations in the UK.