SOC Threat Detection Analyst

Stevenage
2 months ago
Create job alert

World Class Defence Organisation based in Stevenage, Hertfordshire is currently looking to recruit 8x SOC Threat Detection Analyst subcontractors on an initial 6 month contract.  
 
This role can start on an SC Security Clearance basis, however DV Clearance will be required down the line.
 
This role would suit someone from a Cyber Security Analyst, SOC Analyst or Threat Detection Analyst background.
 
Hourly Rate: £45ph - £85 per hour.  There are 8 positions being recruited across the mid-senior level.  Overtime rate of time and a quarter.
 
Contract Duration: 6 Months initially and long-term thereafter.
 
Shift pattern:
 
28 day Cycle
Sat to Tue - Earlies (Apply online only)
Wed to Sun - Off
Mon to Fri - Lates (Apply online only)
Sat to Tue Off
Wed to Sun - Nights (Apply online only)
 
(The type of shift rotates along the pattern through, so the start of the next 28 day cycle they start with lates -> Nights -> earlies then next cycle: Nights -> earlies -> lates)
 
28 days = 4 weeks, 14 days worked per 28 days, 3.5 days worked per week, 3.5 x 8 = 28 hours per week
 
Initially may not be expected to do nights until team grows.
 
SOC Threat Detection Analyst Job Description:
 
An opportunity has arisen in the cyber security operations centre (SOC) within Information Management (IM) for a SOC Threat Detection Analyst. Supporting the Senior SOC analysts in assisting IM meet the challenges and demands of countering the Cyber Threat. The successful applicant will drive a proactive ethos in an ever-changing cyber security environment and provide robust threat detection and analysis within the 24x7 SOC.  
 
Responsibilities:

To support the SOC Manager in assisting Information Management UK meet the challenges and demands of countering the Cyber Threat. Support for the operational functions of the UK SOC. To work with other UK SOC members, including the UK InfoSec Team and the IM Domains (Customer Support and Infrastructure / Information Systems).
It will cover analysis, monitoring, reporting, alerting and investigation activity utilising a wide variety of security platforms including AI/ML and behavioural analytics, SIEM (Security Information Event Management), Network Packet Capture platform, Anti Malicious Code, Threat Detection technologies and platforms across the UK Network Perimeter working with the best standard technologies.
 
The SOC Analyst reports to the SOC Manager. The SOC Analyst conducts a range of analysis and assists the incident response team with investigations that need to be escalated to an embedded member of staff.

The SOC Analyst key responsibilities are:
Effective Tier 1 to 2 alert triage of security events
Monitoring of Cyber Security tools
Monitoring the SOC email notification mailboxes
Assists with the maintenance of Security technologies
Assisting the SOC Solutions Lead with project activity
Assist proactive threat hunting in collaboration with the CTI function
Assist IR in HR and InfoSec related investigations
Ensure the timely triage and remediation of any incident or request tickets raised to the SOC
Participate in the activity of adding/removing URLs from the AcceptList and BlockList
Attend routine security meetings
Conduct activities in line with SOC Maturity and continuous improvement 
Skillset/experience required (Baseline):

A career background in Cyber Security. Security awareness and experience in all areas of IT, primarily Network Security, Infrastructure and the secondary area being Operating Systems & Applications.
Knowledge of IT Security standard methodologies.
Demonstrable understanding of the OSI Reference Model and the network communication protocols, including but not limited to DNS, HTTP/S, SSL, SMTP, FTP/S, LDAP/S.
Demonstrable experience with Security Information Event Monitoring Tools and/or Network Packet Capture tools.
Hands on experience with IDS/IPS technologies and threat hunting activities.
Strong analytical experience and mind-set.
Experience within Defensive Cyber-attack methodologies and frameworks.
Understanding of Malware capabilities, attack vectors, propagation and impact.
Good communication skills liaising with the business and suppliers. 
Desirable Skillset/experience (Senior grade):

Root cause analysis and leading T2 incident investigations
Process / Playbook / Runbook development
Working knowledge of detection engineering, false positive improvements
Capability to tune SIEM rules or create custom detections
Scripted automation experience e.g. Python, SOAR, PowerShell
Threat modelling and Hunting methodologies

Related Jobs

View all jobs

SOC Analyst

Senior SOC Analyst Level 2

Product Manager

SOC Engineer

Security Operations Centre / SOC Team Lead

IT Information Security Analyst - Compliance

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

What Hiring Managers Look for First in Cyber Security Job Applications (UK Guide)

If you want to stand out in the highly competitive world of cyber security job applications, you need to understand what hiring managers look for before they even finish reading a CV. Cyber security hiring managers scan applications quickly and with specific priorities in mind. They assess not just your technical ability, but your judgement, professionalism, clarity, risk awareness and evidence of impact. This guide explains what hiring managers look for first in cyber security applications across roles like Security Analyst, Security Engineer, Penetration Tester, Incident Responder, Security Architect, Governance Risk and Compliance specialists and Cloud Security positions. Use this as a practical, step-by-step checklist to sharpen your CV, LinkedIn profile, cover letter and portfolio before you apply on www.cybersecurityjobs.tech .

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.

Jobs Careers

Cyber Security Jobs for Career Switchers in Their 30s, 40s & 50s (UK Reality Check)

If you’re thinking about switching into cyber security in your 30s, 40s or 50s, you’re in good company. Across the UK, organisations of all sizes are hiring people from diverse backgrounds to protect systems, data & customers. But with hype around “hackers” & quick-win courses, it’s hard to separate reality from fiction. This guide gives you a UK reality check: which roles genuinely exist, what employers actually want, how training really works, what to expect on salary & progression & whether age matters. Whether you come from finance, project management, operations, law, HR or customer service, there is a credible route into cyber security if you approach it strategically.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.