Your Role:
You will play a critical role in responding to high-severity cyber incidents, performing advanced threat hunting, and developing response strategies to protect our network systems and customer data. This is a key position within our clients Information Systems directorate, and offers blended working, 3 days in office, 2 days remote.
Responsibilities:
Advanced Threat Hunting: Identify new threats using industry tools and hunt for 'hidden' threats in the environment.
Policy Development: Develop SOC policies and procedures based on industry best practices.
Log Management: Ensure all log sources are onboarded into the SIEM solution and create use cases to identify suspicious activity.
Incident Response: Lead escalated incident responses, oversee remediation, and report on high-severity incidents.
Security Automation: Develop and automate workflows using SOAR tools to enhance operational playbooks and streamline responses.
Digital Forensics: Conduct forensic analysis of serious incidents and implement containment strategies.
Cyber Crisis Testing: Participate in cyber-attack simulations to test and improve organisational resilience.
Reporting & Metrics: Enhance security operations reporting and develop performance metrics dashboards.
Audit & Compliance: Support security audits and ensure compliance with relevant regulations and standards.
Essential Experience:
Significant experience in a SOC Level 2 or 3 role, with a strong track record in advanced threat hunting and incident response.
Qualifications in Cybersecurity or IT (Bachelor’s degree or equivalent), ideally with industry-recognized certifications such as CISSP, GIAC, CEH, or CompTIA CASP+.
Deep knowledge of security technologies (SIEM, SOAR, EDR, IDS/IPS, DLP, etc.), adversarial tactics (e.g., MITRE ATT&CK), and experience with incident response and security architecture.
Hands-on experience with security tools, including FortiSIEM, McAfee, Darktrace, Microsoft Sentinel, and more.
Understanding of compliance frameworks such as NCSC CAF, ISO 27001/27002, GDPR, and NIST.
Benefits:
Personal Pension Plan up to 10%
Tenancy Loan Deposit Scheme
Cycle to Work Scheme
Season Ticket Loan
Occupational Health Support
Employee Discount Scheme with hundreds of retailers
Discounted access to sports and social clubs
Employee Assistance Programme
Next Steps:
To arrange a call to discuss this position in more detail please apply or email your CV to .Our client are looking to arrange a MS Teams call as soon as possible for suitable candidates as this role is vital to their long term business aims
The latest news, articles, and resources, sent to your inbox weekly.
Microsoft Sentinel Engineer/L3 SOC AnalystAkkodis are currently working in partnership with a leading service provider to recruit an experienced Microsoft Sentinel Engineer with expertise of Microsoft Sentinel and QRadar to join their growing security team during an exciting period of change.Please note this is a fully remote role and you...
City of London
TWX have partnered with a Cyber Security technology and service provider headquartered in Gloucestershire. They are looking to add a SOC Analyst to their current team of 11, with the primary aim being to undertake and support the response to a cybersecurity event or incident as well as support other...
Cirencester
Security Operations (SOC) AnalystRemote, UK37.5 hours per week, 24/7 coverage in an 8-hour rotating shift patternUp to £35kOur client, a Microsoft Security Partner and leader in security solutions, delivers outsourced security event monitoring and incident response services to a diverse client base using a Microsoft-centric technology stack. They’re looking for...
Cambridge
Your Role:You will play a critical role in responding to high-severity cyber incidents, performing advanced threat hunting, and developing response strategies to protect our network systems and customer data. This is a key position within our clients Information Systems directorate, and offers blended working, 3 days in office, 2 days...
Three Bridges
SOC AnalystBased in Preston/Filton/Frimley (Hybrid working)£35,000 - £42,000 per annumMust be eligible for SC ClearanceWhat you'll be doing:Working as part of a team safeguarding against cyber threats by developing and enhancing the Technical Operations capability across People, Process, and Technology, ensuring an efficient approach to all Cyber OperationsContinuously working toward...
Preston
I am working with a leading IT and cybersecurity provider, who require a Cybersecurity Analyst to join due to growth across the business. This position supports the Security Operations Center (SOC) on a hybrid schedule from Tuesday to Saturday, 1pm to 9pm BST, based in the Belfast office. Responsibilities: Monitor...
Ocho Belfast
