SOC Engineer - Cyber

We're looking for a hands-on SOC Engineer to join a rapidly growing Cyber Security function within a large enterprise technology environment. This is an opportunity to work in one of the most modern and well-equipped SOC environments in the market, supporting enterprise customers across a broad range of managed security services and cloud technologies. This is a genuinely engineering-led role rather than a traditional SOC analyst position. You'll be heavily involved in infrastructure, cloud security, security tooling, automation, and operational cyber engineering across enterprise-scale environments. Working from a Birmingham-based SOC three days a week, you'll play a key role in supporting customer environments, improving cyber capabilities, and helping showcase a cutting-edge SOC environment to visiting customers and stakeholders.

What's in it for you as our Cyber SOC Engineer?

• Salary of £45,000 - £50,000
• Hybrid working environment
• Excellent company benefits package
• Flexible benefits scheme
• Access to industry-leading SOC technology and tooling
• Dedicated training and development time each week
• Fully funded learning opportunities and partner-led certifications
• Opportunities to attend conferences and industry events
• Career progression within a large enterprise technology organisation
• Exposure to enterprise-scale cloud and cyber environments
• Supportive, collaborative, and highly technical team environment

Duties as SOC Engineer - Cyber As a Cyber SOC Engineer, you will:

• Act as a technical escalation point and engineering SME across SOC technologies including SIEM, MDR/XDR, EDR, vulnerability management, and cloud security tooling
• Support, maintain, and improve cyber security infrastructure across enterprise customer environments
• Work closely with internal teams and customers to onboard, configure, and optimise security technologies and services
• Investigate and resolve platform issues, security alerts, log source health problems, and tooling-related incidents
• Configure and support technologies such as Microsoft Defender, Sentinel, CrowdStrike, Tenable, and related security platforms
• Assist with vulnerability scanning, remediation support, and operational security improvements
• Contribute to automation and scripting initiatives using tools such as KQL, PowerShell, Python, or Bash
• Produce and maintain technical documentation, operational runbooks, and security playbooks
• Support governance and compliance activities aligned to standards such as ISO27001, GDPR, and NCSC guidance
• Work collaboratively across infrastructure, cloud, networking, and cyber teams to improve service delivery and operational resilience
• Stay up to date with emerging cyber threats, technologies, and security best practice
• Contribute to continual improvement initiatives across the SOC function

Who are we looking for as our Cyber SOC Engineer? We're looking for a technically capable and proactive engineer who enjoys solving problems, learning new technologies, and working collaboratively in a fast-paced environment. This role would suit someone from a SOC Engineering, Cloud Security, Infrastructure Security, or Cyber Engineering background who enjoys hands-on technical work rather than purely monitoring or analyst-based responsibilities. You'll ideally have experience with:

• Microsoft Sentinel and Microsoft Defender
• EDR/XDR/MDR technologies
• Vulnerability management tools such as Tenable or Qualys
• Azure, Microsoft 365, Intune, or AWS environments
• Security tooling, infrastructure, and cloud platforms
• Linux and Windows operating systems
• SIEM technologies and security monitoring
• Basic scripting or automation using KQL, PowerShell, Python, or Bash
• ITIL environments and structured change control processes
• Firewall, endpoint, or cloud security technologies

• Strong communicators who can work confidently with both technical and non-technical stakeholders
• Organised, collaborative, and eager to learn
• Comfortable working in a customer-facing environment
• Self-driven and proactive in solving problems
• Able to take ownership while also working well within a team
• Interested in developing their cyber engineering and cloud security expertise further

Relevant certifications such as SC-200, SC-900, AZ-500, CISSP, or similar would be advantageous, but practical engineering experience is equally important. Please note: Candidates must be eligible for UK Security Clearance (SC/BPSS), including having the right to work in the UK and meeting residency requirements.