Associate SOC Analyst

Leeds
1 month ago
Applications closed

Related Jobs

View all jobs

Cyber and Information Security Analyst

SOC Analyst - Inside IR35

IT Security Analyst

L3 Security Analyst

SC Cleared Tier 2 Cyber Security Analyst - 24/7 shift allowance

Security Operations Centre Officer

Duties and Responsibilities

As an Associate SOC Analyst, you bring a strong background in IT or cybersecurity to a transitory role that builds towards full SOC Analyst responsibilities. You use your foundational knowledge to independently triage, investigate, and validate alerts using established playbooks. While you handle basic incident investigations and documentation, you escalate cases requiring deeper analysis to Shift Leads or Senior SOC Analysts. This role focuses on developing your skills through mentoring, continuous learning, and hands-on experience, with the expectation of advancing to a full SOC Analyst position within 18 months following your successful probationary period.

Key Responsibilities

  • Incident Triage and Investigation - You review and prioritise new alerts from security monitoring tools (e.g., SIEM, endpoint solutions), performing basic checks to distinguish genuine threats from false positives. You rely on established playbooks and make initial validation decisions while escalating more complex incidents to Shift Leads or Senior SOC Analysts.

  • Continuous Improvement - You contribute to the enhancement of detection logic by identifying recurring or redundant alerts. You participate in threat hunting and skills development sessions to help reduce false positives and accelerate response times.

  • Escalation - You ensure that incidents requiring advanced investigation or containment are properly escalated. Your clear, concise documentation, including detailed ticket notes and supporting evidence, facilitates smooth handovers to Shift Leads, Senior SOC Analysts, or customer teams.

  • Collaboration and Mentorship - You actively participate in knowledge-sharing sessions and seek regular feedback from peers and senior team members. You support your colleagues by sharing insights and learning from collaborative efforts.

    Essential Duties

  • Alert Validation

  • Combine data from SIEM platforms, endpoint solutions, and other security tools to develop a comprehensive view of alerts.

  • Document your findings using clear, evidence-based reasoning to determine if further investigation is warranted.

  • Indicator of Compromise (IOC) Analysis

  • Validate suspected IOCs using documented procedures to identify legitimate threats or false positives.

  • Request guidance from Shift Leads or Senior SOC Analysts when advanced techniques are required.

  • Reporting and Documentation

  • Maintain accurate records in ticketing systems, ensuring each alert has a clear summary and documented conclusion.

  • Contribute data to security reviews by highlighting trends and recurring issues.

  • Continuous Improvement

  • Actively engage in training, self-study, and hands-on exercises to remain updated on emerging cybersecurity threats and best practices.

  • Share newly acquired knowledge and techniques with your team to foster a collaborative learning environment.

    Collaboration with Other Teams

  • Customer Experience and Managed Services - You help keep internal and external stakeholders informed about alert statuses and remediation steps.

  • Engineering - You report sensor or configuration issues identified through repeated alerts via structured change requests, contributing to technical improvements.

  • Security Optimisation - You provide data that supports enhancements to detection rules, improving the SOC’s overall responsiveness and efficiency.

    Position Specifications

    Required Qualifications and Experience

  • You must hold, or be eligible to hold, Security Check (SC) clearance in the UK.

  • A strong foundational background in IT or cybersecurity.

  • Demonstrated ability to perform basic incident triage, analysis, and escalation; extensive hands-on SOC operational experience is not required, as this role serves as a stepping stone to a full SOC Analyst.

  • Willingness to work toward or obtain entry-level cybersecurity certifications (e.g. CompTIA Security+, Security Blue Team BTL1).

  • Familiarity with SIEM platforms, firewalls, endpoint solutions and ticketing systems.

  • A proactive approach to learning and the ability to work both independently and collaboratively.

    Technical Knowledge

  • Basic Operating Systems: Understand fundamental Windows architecture (navigation of Control Panel, basic Active Directory functions, reading Windows Event Logs) and introductory Linux commands (basic shell navigation, file management).

  • Foundational Networking: Know core concepts of TCP/IP, DNS, DHCP, simple router/switch operations, and basic firewall configuration principles.

  • Cybersecurity Essentials: Grasp the CIA triad, common attack methods (phishing, malware, and social engineering), and basic risk assessment and security best practices.

  • Introductory Threat Frameworks: Have a high-level awareness of the MITRE ATT&CK framework and Cyber Kill Chain, understanding these as context for attacker behaviour.

    About Claranet

    Founded at the beginning of the dot com bubble in 1996, our CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP) in the UK to being one of the leading business modernisation experts, who deliver solutions across 11+ countries.

    At Claranet, we’re experienced in implementing progressive technology solutions which help our customers solve their epic business challenges. We’re committed to understanding their problems, delivering answers quickly, and making a lasting impact to their business.

    We are agile, focused and experienced in business modernisation. Our approach helps customers make genuine, significant shifts in their business strategy, to deliver financial savings, boost innovation, and create a resilient business. We continually invest in our people and the latest technologies, so our customers get peace of mind knowing that they have access to the best talent and services.

    In the UK we have over 500 staff working in London, Gloucester, Warrington, Bristol, and Leeds, or as homeworkers

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Contract vs Permanent Cybersecurity Jobs: Which Pays Better in 2025?

Cybersecurity has become one of the fastest-growing and most crucial fields in modern business. With high-profile breaches dominating headlines and the ongoing digital transformation exposing organisations to new threats, companies across the UK are competing to attract skilled cybersecurity professionals. Roles range from penetration testers (pen testers) and SOC (Security Operations Centre) analysts to compliance officers, cloud security architects, threat intelligence analysts, and CISOs (Chief Information Security Officers). As demand continues to surge, cybersecurity salaries have climbed accordingly, and businesses have turned to more flexible hiring practices. Alongside permanent employment, many professionals explore short-term day‑rate contracting or fixed-term contracts (FTCs), searching for the ideal balance of pay, job security, and growth opportunities. Which arrangement truly pays better in 2025—and which best aligns with your ambitions? In this article, we dive into the contract vs. permanent debate with a focus on cybersecurity roles. We will examine the current market, the structure of day‑rate vs. FTC vs. permanent positions, the pros and cons of each, and some hypothetical pay comparisons. By the end, you should have a clearer sense of which career path might suit your situation and goals—whether you are a seasoned specialist aiming for top rates, or an up-and-coming analyst seeking a stable environment to develop in.

Cyber Security Jobs for Non‑Technical Professionals: Where Do You Fit In?

Defence Needs More Than Hackers in Hoodies When headlines warn of ransomware crippling hospitals or deepfakes swaying elections, we picture hoodie‑clad hackers and elite penetration testers. Yet the reality of the UK’s cyber security sector is broader—and desperately short of talent. The Department for Science, Innovation & Technology (DSIT) estimates a shortfall of 11,200 cyber security professionals in 2024, while 43 % of advertised roles require governance, risk or communication skills rather than hands‑on technical exploits. Put plainly: if you can guide policy, manage projects, interpret regulations or inspire behaviour change, cyber security wants you. This guide highlights the fastest‑growing non‑technical roles, the transferable skills you already possess, and a concrete 90‑day plan to land a cyber security job—no packet sniffers required.

BAE Systems Cybersecurity Jobs in 2025: Your Complete UK Guide to Protecting Governments, Businesses and Critical Infrastructure

From securing the Royal Navy’s new Dreadnought submarines to foiling multimillion‑pound fraud rings, BAE Systems Digital Intelligence (DI)—formerly Detica—sits at the sharp end of global cyber defence. Head‑quartered in Guildford with hubs in Gloucester, Leeds and London, the 5,500‑strong DI business delivers threat‑intelligence platforms, secure‑by‑design software and 24/7 SOC services to government and commercial clients worldwide. With escalating ransomware, AI‑driven disinformation and complex supply‑chain threats, BAE plans to expand its UK cyber workforce by 20 % in 2025. Whether you’re a graduate passionate about reverse engineering, a DevSecOps engineer who loves IaC, or an incident‑response pro comfortable in high‑side environments, this guide explains how to land a BAE Systems cybersecurity job in 2025.