SOC Analyst Jobs

The eyes and ears of an organisation's cyber defences. SOC Analysts monitor, detect, and respond to security incidents in real-time.

Open roles
14
Salary range
£30k – £65k
Hiring companies
9

SOC Analysts are the front-line defenders in the world of cyber security. Working in Security Operations Centres (SOCs), they monitor and analyse security events to identify and respond to potential threats. These roles are critical for organisations of all sizes, from scaleups to large enterprises, ensuring that security incidents are detected and mitigated quickly. SOC Analysts often work in shifts, providing 24/7 coverage to maintain a constant watch over the organisation's digital assets.

What the role does

Inside the role of an SOC Analyst

A typical week for a SOC Analyst is a mix of monitoring, incident response, and reporting. They spend a significant amount of time analysing security alerts and collaborating with other teams.

  1. 01
    Monitor security dashboards and alerts for suspicious activity.
  2. 02
    Analyse and triage security incidents to determine their severity.
  3. 03
    Collaborate with incident response teams to mitigate threats.
  4. 04
    Document and report findings to management and other stakeholders.
  5. 05
    Stay updated on the latest security threats and best practices.
  6. 06
    Participate in regular team meetings and training sessions.
Salary on the board

£30k – £65k

Based on advertised midpoints across the 17 priced listings posted in the last 12 months. Base salary only.

By seniority
£k base
Entry
42
58
1 job
Junior
30
36
3 jobs
Mid
30
60
8 jobs
Senior
50
65
5 jobs
Skills & tools

What hiring managers ask for

% of 25 listings posted in the last 12 months that mention each skill, extracted from job descriptions.

SIEM
72%
Incident Response
48%
Microsoft Sentinel
40%
MITRE ATT&CK
36%
Splunk
32%
Threat Hunting
32%
TCP/IP
28%
PowerShell
28%
Firewalls
24%
Microsoft Defender
24%
Python
24%
DNS
20%
Career ladder

From Junior to Principal

A typical UK progression for soc analysts. Years are guidance — strong people move faster, and many senior folks sidestep into research, product or management.

  1. Level 1

    Junior SOC Analyst

    0–2 yrs

    Assists in monitoring security events and performs basic triage under supervision.

  2. Level 2

    SOC Analyst

    2–5 yrs

    Takes primary responsibility for incident detection and response, and contributes to the development of security policies.

  3. Level 3

    Senior SOC Analyst

    5–8 yrs

    Leads incident response efforts, mentors junior analysts, and advises on security strategy.

  4. Level 4

    Principal SOC Analyst

    8+ yrs

    Oversees the SOC's operations, drives strategic initiatives, and ensures compliance with regulatory requirements.

Pathway

How to become a SOC Analyst

There's no single route, but most people follow some version of these steps.

  1. 1

    Entry-Level Analyst

    Start with foundational roles, learning the basics of security monitoring and incident response.

  2. 2

    Specialisation

    Develop expertise in specific areas such as threat hunting, malware analysis, or forensic investigation.

  3. 3

    Advanced Incident Response

    Take on more complex incidents and lead response efforts, often working closely with other security teams.

  4. 4

    Leadership Role

    Move into a leadership position, managing a team of analysts and driving the SOC's strategic direction.

  5. 5

    Strategic Advisor

    Advise senior management on security policies and contribute to the organisation's overall security posture.

Live jobs

14 live roles

See all 14 roles
Experis logo

SOC Analyst

This SOC Analyst role involves real-time monitoring, triage, and incident response within a modern enterprise security environment. The candidate will investigate security events, fine-tune detection rules, and collaborate with internal teams to strengthen security operations. Focus is on proactive threat detection, incident documentation, and continuous improvement of SOC processes using tools like Microsoft Sentinel and Microsoft Defender.

Experis London, City And County Of the City Of London, United Kingdom £400 – £500 pd
Hybrid Contract Clearance Required
Experis logo

SOC Analyst

This role involves continuous protective monitoring, triaging security alerts, and supporting incident response within a 24/7 Security Operations Centre for UK public sector clients. The analyst will work with advanced SIEM and XDR platforms such as IBM QRadar, Microsoft Sentinel, and Palo Alto XSIAM, contributing to national-level cyber defence. Collaboration within a small, high-performing team and adherence to established runbooks are key aspects of the position.

Experis Hursley, Hampshire, United Kingdom £40,000 – £50,000 pa
On-site Permanent Clearance Required

SOC Analyst

This role involves monitoring, triaging, and responding to cybersecurity threats in real time as part of a front-line security operations team. The analyst will investigate alerts, escalate genuine incidents, and contribute to improving threat detection accuracy. The position is fully remote and supports critical network protection with a focus on active threat awareness and incident response.

Randstad Technologies Recruitment Cheltenham, Gloucestershire, United Kingdom £450 – £500 pd
Remote Contract Clearance Required

SOC Analyst

This role involves monitoring and responding to security threats within a Security Operations Centre, conducting incident triage, forensic analysis, and remediation. The analyst will work with SIEM tools, IDS/IPS, and vulnerability scanners, supporting network security and threat detection in a government environment. A strong background in cyber security operations and real-time event analysis is essential.

Summer Browning Associates East Kilbride, Lanarkshire, G74 1LJ, United Kingdom
Hybrid Contract Clearance Required

SOC Analyst

Monitor and investigate security alerts, triage incidents, and support incident response within a Security Operations Center. Work with SIEM and EDR tools to improve detection rules and document responses. Operate in a fast-paced environment with a focus on continuous improvement of SOC processes.

Fynity Lower Hartwell, Buckinghamshire, United Kingdom £40,000 – £45,000 pa
Hybrid Permanent

SOC Analyst

This role involves end-to-end ownership of security incidents, from detection and investigation using Microsoft Defender and Sentinel to containment and remediation coordination with IT and cloud teams. The analyst conducts root-cause analysis, threat hunting, and proactive security operations in a hybrid cloud environment. Responsibilities include tuning detection rules, operating vulnerability and breach simulation tools, and maintaining compliance with strict SLAs in a regulated sector.

Claranet Leeds, West Yorkshire, United Kingdom
Hybrid Permanent

SOC Analyst - Lv2

As a Level 2 SOC Analyst, you will lead the technical response to security incidents, using Microsoft's security platform to validate threats, contain attackers, and coordinate remediation. You will also drive continuous improvement in detection, automation, and analyst capabilities, ensuring the SOC operates at a high standard.

Methods Central London, W3 0BJ, United Kingdom £100 pa
On-site Permanent Clearance Required

Senior SOC Analyst (SIEM Focus)

Senior SOC Analyst (DV Cleared)Contract - 6 Months (up to £750 inside IR35) Location: Corsham (3 days onsite)Sector: Defence & National SecurityWe are working with a leading organisation in the defence and national security sector who are looking to engage...

Infosec Corsham, Wiltshire, SN13 0HB, United Kingdom £650 – £750 pd
Hiring locations

Where this role is hiring

The locations with the most live listings for this role today.

FAQs

Common questions

  • A degree in a relevant field such as computer science or information security is beneficial. Certifications like CompTIA Security+, CEH, or CISSP can also enhance your credentials.

  • SOC Analysts often work in shifts to provide 24/7 coverage, which can include evenings, weekends, and holidays.

  • Gaining experience, specialising in areas like threat hunting or incident response, and obtaining relevant certifications can help you advance to senior and leadership roles.

  • Salaries can vary based on experience, location, and the size of the organisation. For more detailed salary information, refer to the salary section on this page.

Hiring soc analysts?

Post your role in 90 seconds and reach the specialist audience that already reads this page.