Security Operations Analyst
Role details
Job location
Tech stack
Job description
A growing technology business is looking for a Senior Security Operations Analyst to join its Managed Security Services team.
This is a hands-on role within a smaller, growing security function, so it would suit someone who enjoys variety, ownership and customer interaction rather than being one person in a large corporate SOC. You'll be involved in monitoring, investigating and responding to security activity across multiple customer environments, while also helping improve processes, playbooks and detection capability.
What you'll be doing
- Monitoring, triaging and investigating security alerts across customer environments
- Supporting incident response activity through to resolution
- Carrying out root cause analysis and recommending remediation actions
- Working with SIEM platforms such as Microsoft Sentinel, Splunk or similar
- Improving alerting, detection rules, playbooks and SOC processes
- Supporting threat hunting and vulnerability management activity
- Working with Microsoft security tooling such as Defender / Defender XDR
- Producing clear documentation and communicating findings to customers
- Helping onboard new managed security customers
- Contributing to the growth and maturity of the security service
Requirements
- Experience in a SOC, Security Operations or Cyber Security Analyst role
- Hands-on experience with SIEM tools such as Microsoft Sentinel, Splunk, QRadar or similar
- Good understanding of incident response, alert triage and security investigations
- Exposure to Microsoft security tooling, such as Defender, M365 Security or Azure security
- Strong communication skills and confidence working with customers
- Ability to prioritise incidents and take ownership of security issues
- A proactive mindset and interest in improving processes and detection capability
Experience in an MSP, MSSP or managed security environment would be highly beneficial, but it is not essential.
Benefits & conditions
- Senior, hands-on security operations role
- Opportunity to work across varied customer environments
- Smaller team environment with genuine ownership and influence
- Exposure to SIEM, incident response, threat hunting and Microsoft security tooling
- Scope to help shape and improve the security service
- Progression opportunity as the team continues to grow
- Salary up to £65,000 depending on experience
This role would suit someone who enjoys security operations, wants to stay hands-on, and is looking for more ownership, variety and customer involvement than a traditional large SOC environment.