1 to 25 of 37 SOC Analyst Jobs in the UK

SOC Analyst Location: Home based/Remote – Must be Based in the United Kingdom Salary: Up to £35,000, shift based role with 24/7 coverage Qualifications: Must be eligible for SC Clearance The company An exciting opportunity has arisen at an award-winning Microsoft Partner for a SOC Analyst. The business is a fast … growing, industry-leading managed service and managed service security provider, delivering in to mid and large enterprise clients. This is a fantastic opportunity for a SOC Analyst to continue their development at an established Microsoft Partner. The business has a keen focus on developing their staff by providing support for training and earning certifications. You will also … role; you must however be based in the UK to be considered. This role will also require eligibility to gain SC Clearance due to government-based customers. About The SOC Analyst Role As a SOC Analyst, you will support the SOC Manager, acting as an escalation point and technical SME for stakeholders within More ❯

SOC Analyst - CISSP, ISC2 SCCP, Palo Alto, Threat Detection, Vulnerability Management, Firewall A global law firm client we work with are currently looking to take on a new SOC Analyst (CISSP, ISC2 SCCP, Palo Alto, Threat Detection, Vulnerability Management, Firewall) on a permanent basis. The firm are currently undergoing a significant transformation and expansion … across the EMEA region and require a new SOC Analyst to help support this growth. The role will be held with a great deal of trust, autonomy and ownership with a very anti-micromanage managerial structure in place. To be considered for this SOC Analyst (CISSP, ISC2 SCCP, Palo Alto, Threat Detection, Vulnerability Management More ❯

Senior SOC Analyst Hemel Hempstead, UK – Onsite | 24/7 Shift Pattern Competitive Salary | DV Clearance Eligible (British Citizens Only) Are you an experienced SOC Analyst ready to play a crucial role in defending the UK's most critical systems? Join a top-tier consultancy that operates at the sharp end of cybersecurity within … defence, aerospace, and national security.We’re looking for an experienced SOC Analyst to join our high-performing Security Operations Centre in Farnborough. This is a unique chance to contribute to real-world cyber defence, on country critical technology, pitting your SCO skills against state of the art attacks.As the SOC Analyst, you will: Monitoring … Contributing to threat intelligence initiatives Staying ahead of the curve on emerging threats, tactics, and techniques To secure this SOC role: Proven experience in a Security Operations Centre (SOC) environment Hands-on knowledge of SIEM tools (Microsoft Sentinel, Splunk, etc.) Familiarity with MITRE ATT&CK and threat detection methodologies Strong analytical mindset with log, endpoint, and network analysis More ❯

SOC Analyst (SC Cleared) - £500/day via Umbrella - 3-month contract -Birmingham, Hybrid 3 days/week onsite - SCC Flex Contract We are seeking an experienced SOC Analyst to join a hybrid team based in Birmingham. This role requires active SC Clearance and hands-on expertise in Microsoft Defender and Sentinel, with a … strong understanding of modern security operations. Your responsibilities as the SOC Analyst: Monitor, investigate, and respond to security incidents within a SOC environment. Utilise Microsoft Defender (MDO/MDI/MDE) and Sentinel for threat detection and response. Conduct access reviews and support Conditional Access policies using Entra ID. Collaborate with internal teams to ensure security … to support incident analysis and threat intelligence. Support vulnerability management activities (eg, Tenable or similar tools). Work within ITSM platforms such as ServiceNow or equivalent. As a successful SOC Analyst, you will have: Active SC Clearance Proven experience working in a Security Operations Centre. Strong working knowledge of Microsoft Defender and Sentinel. Familiarity with Entra ID More ❯

SOC Analyst (L2) – Security Operations Remote (Travel to Reading once per month) Salary: Up to £55,000 per annum + Training & Certifications Areti are delighted to be supporting a rapidly growing cyber services provider in their search for an L2 SOC Analyst to join their expanding UK Security Operations Centre. This organisation partners with … are looking for an experienced analyst with strong technical foundations and a hunger to grow their capability in detection, investigation, and automation. The Role As an L2 SOC Analyst , you’ll be at the forefront of defending enterprise environments, analysing alerts, investigating incidents, and improving detection capabilities across diverse customer estates. Working closely with senior … analysts and incident responders, you’ll play a key role in maintaining an effective, high-performing SOC, while continuously developing your skills through structured training and real-world exposure. You’ll be encouraged to contribute ideas, challenge processes, and help refine the team’s approach to detection and response, making a visible impact on how cyber threats are managed More ❯

L1 SOC Analyst – Kickstart Your Cybersecurity Career 🚀 📍 Location: Fareham – On-site 💰 £28,750 Are you passionate about cybersecurity and ready to take your first step into the world of Security Operations? Our client — a leading Managed Security Service Provider (MSSP) and trusted Fortinet & Microsoft partner — is on the hunt for an L1 SOC Analyst … it’s a launchpad for your cybersecurity career . You’ll gain hands-on experience, professional training, and the opportunity to progress from entry-level to a fully-fledged SOC Analyst through a structured development program. 🔍 What You’ll Be Doing Monitoring and triaging 80–100 security alerts per shift using Fortinet and Microsoft SIEM/EDR … tools . Analysing, prioritising, and escalating potential threats to keep clients secure. Responding rapidly to incidents and maintaining vigilance across multiple environments. Collaborating closely with your SOC teammates to ensure seamless threat detection and incident response. 🧠 What You’ll Bring A genuine passion for cybersecurity and the drive to grow in the field. Relevant certifications such as CompTIA Security+ More ❯

SOC Analyst (L2) (SC Clearance Required … Multiple UK Locations (Shift Work) - £55,000 - £58,000 – Permanent Are you passionate about cybersecurity and ready to make a real impact? We’re expanding our Security Operations Centre (SOC) team and looking for Level 2 SOC Analysts to join us across multiple UK locations.This is a fantastic opportunity to work with enterprise-scale clients in a fast … like Microsoft Sentinel, Splunk, and MISP Threat Sharing to protect critical infrastructure. Key Responsibilities: Monitor and analyse security alerts and events, conduct initial investigations, and escalate complex incidents. Manage SOC incident queues and support asset baseline maintenance. Prepare reports for technical and non-technical audiences. Collaborate on improving detection rules and use cases aligned with MITRE ATT&CK. Contribute More ❯

SOC Analyst (L2) (SC Clearance Required … Multiple UK Locations (Shift Work) - £55,000 - £58,000 – Permanent Are you passionate about cybersecurity and ready to make a real impact? We’re expanding our Security Operations Centre (SOC) team and looking for Level 2 SOC Analysts to join us across multiple UK locations. This is a fantastic opportunity to work with enterprise-scale clients in a … like Microsoft Sentinel, Splunk, and MISP Threat Sharing to protect critical infrastructure. Key Responsibilities: Monitor and analyse security alerts and events, conduct initial investigations, and escalate complex incidents. Manage SOC incident queues and support asset baseline maintenance. Prepare reports for technical and non-technical audiences. Collaborate on improving detection rules and use cases aligned with MITRE ATT&CK. Contribute More ❯

Senior SOC Analyst £40,000 – £55,000 + Benefits + Training Hybrid (Portsmouth, UK) Company & Role This is more than a SOC role, it is a chance to join a fast growing, people first global service provider that is redefining what great cyber defence looks like. With over $1B in global revenue, this organisation delivers end … a powerful mix of Managed Detection and Response (MDR), Threat Hunting, Vulnerability Management, Penetration Testing and Incident Response, supported by a world class Security Advisory function. As a Senior SOC Analyst, you will take a leading role in identifying, investigating and responding to cyber threats across varied client environments. You will mentor junior analysts, lead complex incidents … and help evolve the SOC’s detection and response capabilities. This is an opportunity to make a genuine impact, with the freedom to innovate and the support to grow into roles such as SOC Lead, Threat Hunter, Security Engineer or Incident Responder. Why This Role Stands Out Join a $1B global IT and Cyber Defence provider that invests More ❯

Senior Incident Responder – SOC Analyst (L3) Birmingham or Glasgow | Up to £71,000 + Bonus + Benefits | Hybrid | SC Clearance Required or Eligible Our client – a global technology and services firm – is expanding its Managed Security Operations Centre and seeking a Senior Incident Responder (L3 SOC Analyst) to take the lead on complex security … The Role You’ll take ownership of escalated incidents, conduct detailed investigations, and ensure effective containment and eradication of threats. You’ll act as the escalation point within the SOC, providing technical expertise, mentoring junior analysts, and driving continuous improvement of incident response processes. Key Responsibilities: Lead complex investigations into security incidents and breaches. Perform root cause analysis and … provide actionable recommendations. Conduct static and dynamic malware analysis; reverse engineer to identify IOCs. Monitor, tune, and optimise SIEM tools Develop and refine SOC use cases, runbooks, and playbooks. Integrate emerging threat intelligence into monitoring and detection workflows. Liaise with clients, Service Delivery Managers, and technical teams to manage escalations and coordinate response. Maintain high standards of documentation, including More ❯

Security Operations Centre Analyst (SOC Analyst) Salary: £50,000 to £55,000 (based on candidate experience) Office Location: Portsmouth Hybrid Model: 3-4 days on-site (remaining days remote) Working Hours: Monday-Friday, Standard office hours (potentially some remote 24x7 on-call) Employment Type : Permanent About the Role: Join one of the best work-life … organisations in the IT Sector as part of their newly developing & rapidly expanding Cyber Security division. As a SOC Analyst, you'll be a vital part of a highly skilled Security Operations Centre team, responding to security alerts, investigating incidents, and helping to protect internal security and enterprise environments. 🔐 What You'll Do: Monitor SIEM, IDS/… incidents, escalating when necessary. Conduct threat hunting and forensic analysis. Support rule development and tuning of detection systems. Assist with real-time detection, response, and containment. Maintain and improve SOC documentation and playbooks. Collaborate with team members and other departments to improve overall security posture. Required Skills & Qualifications: 2+ years’ experience in a SOC or similar role (preferably More ❯

Level 3 SOC Analyst Location: Crawley (Hybrid) Salary: Up to £75,000 (DOE) + Bonus Type: Permanent/Full-Time The Opportunity My client, a leading organisation operating within the Critical National Infrastructure (CNI) energy sector, is looking to appoint an experienced Senior/Level 3 SOC Analyst. This is a senior escalation role within a … threat hunting, forensic investigations, and root cause analysis. Develop, test, and optimise detection use cases, rules, and playbooks within Microsoft Sentinel and Defender. Provide mentorship and guidance to junior SOC analysts, enhancing team capability. Collaborate with IT and OT teams to address unique security requirements across CNI environments. Drive improvements in SOC operations, automation, and incident response processes. … energy/utility environments. Proficiency in scripting/automation (KQL, PowerShell, Python). Excellent communication and stakeholder engagement skills. Desirable Certifications Microsoft Certified: Cybersecurity Architect Expert/Security Operations Analyst Associate GIAC (GCIA, GCIH, GCFA, GNFA) CISSP/CISM (advantageous) Experience of OT/ICS security in energy environments. Why Join? Opportunity to work on mission-critical systems More ❯

SOC Analyst Location: Cheltenham Please Note: Due to the nature of client work you will be undertaking, you will need to be willing to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application. Accenture is a leading global professional services company, providing a More ❯

Senior Security Analyst – SOC/Incident Response I’m partnering with a fast-growing Cyber Defence function that’s strengthening its Security Operations Centre and looking for a talented Senior Security Analyst to join the team. You’ll take a leading role in detecting, analysing, and responding to cyber threats across diverse client environments, mentoring … junior analysts, improving detection content, and helping drive SOC maturity. What you’ll do: Lead complex investigations and incident response. Develop SIEM/EDR use cases and correlation rules. Perform proactive threat hunting and support automation initiatives. Produce incident reports and guide remediation activities. Help coach and upskill junior analysts. You should bring: 2–4 years’ experience in a … SOC, CSIRT, or cyber defence environment. Solid knowledge of SIEM and EDR platforms (Sentinel, Splunk, Defender, CrowdStrike, etc.). Understanding of MITRE ATT&CK and network/cloud security principles. Strong analytical and communication skills. Bonus points for: Scripting or automation experience (KQL, PowerShell, Python). Background in threat hunting or vulnerability management. Why apply? Hybrid flexibility, funded certifications More ❯

potential of their IT infrastructure Description We are seeking enthusiastic, dedicated and detail-oriented Level 1 SOC Analyst to join our UK based Security Operations Centre (SOC). The successful candidate will be responsible for the initial analysis and triage of security alerts, monitoring security systems, and supporting the development of security event investigation and analysis … SIEM specific qualifications and exposure are evident. Desirable Certifications (any of): Microsoft AZ-200 ISC2 Certified in Cybersecurity CompTIA Security+ Internal CompTIA CySA+ GIAC Security Essentials EC Council Certified SOC Analyst Cisco Certified Cybersecurity Cisco Certified Network Associate Demonstrable experience using Microsoft Sentinel or Similar SIEM tooling. Familiarity with security tools and technologies such as SIEM, IDS More ❯

Lead SOC Analyst - Cheltenham Please Note: Any offer of employment is subject to satisfactory BPSS and SC security clearance which requires 5 years continuous UK address history (typically including no periods of 30 consecutive days or more spent outside of the UK) and declaration of being a British passport holder with no dual nationalism at the point More ❯

Primary Details Time Type: Full time Worker Type: Employee SOC Principal Analyst Permanent London/Hybrid At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The Opportunity QBE Europe is currently recruiting a SOC Principal Analyst to join … our cyber security team in our London Office. Reporting to regional team leads, the SOC Principal Analyst will be a key member of our rapidly growing Global Security Operations team. Your new role This is an exciting hands-on technical role in which the specialist will use their security skills and knowledge to perform advanced analysis on … response to cyber security-related incidents to prevent QBE from becoming compromised by modern attack methods and techniques. Main responsibilities: Act as point of escalation and mentor to junior SOC analysts. Translates business objectives into security objectives by providing support in design/architecture for new security applications to improve the current security posture globally for QBE. Recommends and More ❯

Client: Investment Bank Location: London, hybrid 3 days Job Title: Senior SOC Analyst Rate: up to £500 (inside IR35) Requirements: 5+ years of experience in a Security Operations Center or similar cybersecurity role. Expert knowledge of Splunk (preferably Splunk Enterprise Security). Strong experience in SPL (Search Processing Language) and log analysis. Deep understanding of security monitoring More ❯

Client: Investment Bank Location: London, hybrid 3 days Job Title: Senior SOC Analyst Rate: up to £500 (inside IR35) Requirements: 5+ years of experience in a Security Operations Center or similar cybersecurity role. Expert knowledge of Splunk (preferably Splunk Enterprise Security). Strong experience in SPL (Search Processing Language) and log analysis. Deep understanding of security monitoring More ❯

We are looking for a highly motivated and experienced Level 3 Security Operations Centre (SOC) Analyst to join our dynamic and growing team. The role holder will bring a mature approach to their work with extensive technical knowledge and hands-on experience in Security Operations. This is a unique opportunity to be a founding key member of More ❯

We are constantly growing our SOC team and new opportunities in our Farnborough site. Come and join us in the Defence sector and support enterprise scale clients. We have opportunities for L1 SOC Analysts to be a part of our success and work with multiple, high profile clients. You should showcase your proficiency in a busy Security Operations … clearance is through. What you'll be doing: Monitor, analyse security alerts and events, conduct initial investigations, and determine the appropriate response. Raise complex incidents to Senior Analysts. Manage SOC Incident queues. Support the maintenance of monitored asset baselines of the customer environments. Prepare reports for managed clients to both technical and non-technical audiences, Collaborate on improving detection … SMTP, HTTP, FTP, POP, LDAP. Entry level cyber security certification (e.g. CompTIA Security+, CEH, CPSA). CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Completed an academic module in cyber security or a related subject It would be great if you had: Programming and scripting such as Python, Perl, Bash, PowerShell More ❯

This role is based five days per week on-site in Corsham. Security Analyst – SOC (Corsham, On-Site) An exciting opportunity to join an established Security Operations Centre, providing cyber expertise to support day-to-day operations. The role involves regular SOC activities, introducing new processes, and embedding best practice across the workplace. This role is … and share knowledge of current cyber issues, vulnerabilities, and exploits through research, technical reports, and briefs. Skills and Experience Experience working as a Security Analyst in a SOC or equivalent security monitoring and response environment. Current SC clearance (essential). Knowledge of data networks. Experience with SIEM toolsets and security management tools. Desirable certifications: CompTIA Security+, CySA+ More ❯

Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst 2-3 Days onsite - Crawley 6-9 Month duration Reporting line: The Analyst will report to the Cyber Security Response Manager and work within the Information Systems directorate, based in the Crawley office. Job purpose: The role of an Incident Response (CSIRT)/SOC … protect network systems and customer data from cyber threats. Dimensions People – Work collaboratively in a team of around 14 cyber security operations staff. Mentor Level 1 and Level 2 SOC Analysts, providing guidance and training. Suppliers – Regular interaction with technical resources from outsourced Managed Security Service Providers (MSSPs) and cyber security tooling vendors. Communication – Communicate technical cybersecurity concepts to … vulnerabilities, and anomalies, then use this intelligence and tooling to uncover and remove hidden threats that may have bypassed existing defences across IT and OT environments. Policy Development: Develop SOC policies, technical standards, and procedure documentation aligned to industry best practice. Log Management: Work with MSSPs and service owners to ensure log sources are onboarded into the SIEM solution. More ❯

Incident Response (CSIRT)/SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you … escalated and high-severity cyber incidents, ensuring rapid containment and recovery. Conduct advanced threat hunting across IT and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration … simulation exercises and continuous improvement initiatives to enhance resilience. Contribute to security audits and compliance efforts (e.g. ISO 27001, NCSC CAF, GDPR). Mentor Level 1 and Level 2 SOC Analysts, helping to build team capability and knowledge. About You You'll bring a combination of technical expertise, analytical acumen, and a collaborative approach to problem-solving. Essential Qualifications More ❯

Security Operations Centre Analyst – London (Hybrid) – Excellent Permanent Package – Financial Services We are looking for a skilled Security Operations Centre Analyst to join our Security Operations team. This role focuses on responding to cyber security incidents while supporting proactive threat intelligence efforts. You will play a key part in detecting, investigating, and mitigating threats, as well … including malware outbreaks, phishing attempts, and insider threats. Lead incident response efforts and conduct digital forensics. Enhance detection and response capabilities through process improvements and automation. Monitor alerts from SOC tools and perform root cause analysis. Collaborate with IT and security teams to remediate vulnerabilities. Gather and analyse threat intelligence to inform detection strategies. Maintain detailed incident records and … tools and cloud platforms. Soft Skills Strong problem-solving and analytical mindset. Ability to work under pressure in fast-paced environments. Collaborative and proactive approach to learning. Security Operations Centre Analyst – London (Hybrid) – Excellent Permanent Package – Financial Services More ❯