SOC Analyst

Chapman Tate Associates
Aylesbury, United Kingdom
4 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Junior
Compensation
£ 45K

Job location

Aylesbury, United Kingdom

Tech stack

DNS
Hypertext Transfer Protocols (HTTP)
Intrusion Detection and Prevention
Python
Network Protocols
Powershell
Security Information and Event Management
TCP/IP
Software Vulnerability Management
Scripting (Bash/Python/Go/Ruby)
Cybercrime
Microsoft Sentinel
Sumo Logic

Job description

  • Advanced Security Monitoring: Analyse SIEM alerts, logs, and security events to identify and respond to complex threats.
  • Incident Response: Lead investigations, perform deep analysis, determine impact, and coordinate response activities.
  • Threat Detection & Analysis: Develop and refine detection rules and use cases to improve threat visibility.
  • Threat Hunting: Proactively hunt for advanced threats and indicators of compromise across the environment.
  • Vulnerability Management: Identify, assess, and prioritise vulnerabilities and recommend remediation actions.
  • Security Reporting: Produce detailed reports on incidents, trends, and overall security posture.
  • Process Improvement & Automation: Enhance SOC processes, playbooks, and automation capabilities., * Working closely with customers and internal teams on incident investigations
  • Tuning detection rules and improving alert quality
  • Staying up to date with emerging threats, vulnerabilities, and attack techniques
  • Supporting and mentoring junior analysts

Requirements

  • Strong experience with SIEM platforms (e.g., Microsoft Sentinel, Sumo Logic)
  • Hands-on experience with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender)
  • Solid understanding of:
  • Incident response lifecycle
  • Threat detection methodologies
  • Networking protocols (TCP/IP, DNS, HTTP/S)
  • Experience analysing logs from multiple sources (endpoints, network, cloud)
  • Ability to independently investigate and resolve security incidents
  • Scripting or automation experience (e.g., Python, PowerShell) is a plus
  • Strong communication and stakeholder management skills, * UK Citizenship (required due to the nature of the role)

Apply for this position