Senior SOC Analyst

We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities., As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience., * Maintain and optimise SOC Protect, Detect and Respond tooling.

• Configure, implement and support new security monitoring technologies.
• Develop detection rules, correlation logic, automation scripts and response playbooks.
• Manage vulnerability scanning platforms and contribute to wider SOC strategy.
• Integrate and onboard standard and non-standard log sources into SIEM platforms.
• Monitor, investigate and respond to security incidents and emerging threats.
• Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs).
• Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies.
• Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK.
• Produce dashboards, reports and recommendations to improve security posture.
• Ensure adherence to operational processes, SLAs, KPIs and security policies.
• Drive continuous improvement across SOC processes, tooling and service delivery.

• Current Developed Vetting (DV) Clearance.
• Strong experience administering and tuning SIEM and SOAR platforms.
• Hands-on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds.
• Experience in threat hunting, incident response, digital forensics and malware analysis.
• Strong understanding of Windows and Linux environments.
• Experience writing and tuning detection signatures, correlation rules and monitoring use cases.
• Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding.
• Experience with Scripting and automation using Python, PowerShell, Bash, Perl or similar.
• Understanding of network forensics, threat intelligence and cyber threat detection methodologies.
• Knowledge of ISO 27001:2022, MITRE ATT&CK, and IT Service Management principles.