Senior SOC Analyst
Role details
Job location
Tech stack
Job description
We're looking for a Senior Security Operations Centre (SOC) Analyst to join our growing Cyber Security team and play a key role in protecting some of the UK's most critical organisations. This is your opportunity to work at the frontline of cyber defence, investigating real-world threats, shaping detection capabilities, and helping drive the evolution of a mature and high-performing SOC.
You'll be joining a collaborative team of cyber specialists who are passionate about defending organisations from evolving threats. You'll have the opportunity to influence SOC strategy, enhance detection capabilities, develop your expertise, and work with cutting-edge security technologies in a fast-paced operational environment.
Ready to make an impact? Join us and help protect systems that matter. Apply today and take your cyber security career to the next level.
If you're passionate about threat detection, incident response, and staying one step ahead of attackers, we'd love to hear from you.
Office based: Farnborough.
Clearance: You do need to be eligible for SC and DV Clearance.
Shift based: 2 x 6am to 6pm; 2 x 6pm to 61m. 4 days off.
What You'll Be Doing:
- Monitor, triage and investigate security incidents across critical client environments.
- Analyse network traffic, logs and security events to identify threats and vulnerabilities.
- Lead and support incident response activities, providing expert guidance on containment, eradication and recovery.
- Enhance detection rules and use cases using MITRE ATT&CK and threat-informed defence techniques.
- Support threat intelligence activities and contribute to the continuous improvement of SOC operations., We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK's most complex safety- and security-critical markets.
Requirements
- ?Proven experience working within a Security Operations Centre.
- Hands-on experience with Microsoft Sentinel and Splunk.
- Strong understanding of MITRE ATT&CK.
It would be great if you had:
-
Networking protocols and infrastructure (TCP/IP, LAN/WAN, HTTP, SMTP, FTP, LDAP).
-
Firewalls, VPNs, enterprise antivirus and security technologies.
-
Security incident investigation and response.
-
Excellent analytical, communication and stakeholder management skills.
-
Cyber security qualifications such as Security+, BTL1 or equivalent.
-
Malware analysis or reverse engineering experience.
-
Python, PowerShell, Bash, Perl or C++ scripting skills.
-
CySA+, Blue Team Level 2 or other SOC-focused certifications.
-
Experience with QRadar alongside Sentinel and Splunk.