25 of 25 SOC Analyst Jobs in the UK excluding London

The Role As an Associate SOC Analyst, you bring a strong background in IT or cybersecurity to a transitory role that builds towards full SOC Analyst responsibilities. You use your foundational knowledge to independently triage, investigate, and validate alerts using established playbooks. While you handle basic incident investigations and documentation, you escalate cases requiring … deeper analysis to Shift Leads or Senior SOC Analysts. This role focuses on developing your skills through mentoring, continuous learning, and hands-on experience, with the expectation of advancing to a full SOC Analyst position within 18 months following your successful probationary period. Key Responsibilities Incident Triage & Investigation – You review and prioritise new alerts from security … basic checks to distinguish genuine threats from false positives. You rely on established playbooks and make initial validation decisions while escalating more complex incidents to Shift Leads or Senior SOC Analysts Continuous Improvement – You contribute to the enhancement of detection logic by identifying recurring or redundant alerts. You participate in threat hunting and skills development sessions to help reduce More ❯

The Role As an Associate SOC Analyst, you bring a strong background in IT or cybersecurity to a transitory role that builds towards full SOC Analyst responsibilities. You use your foundational knowledge to independently triage, investigate, and validate alerts using established playbooks. While you handle basic incident investigations and documentation, you escalate cases requiring … deeper analysis to Shift Leads or Senior SOC Analysts. This role focuses on developing your skills through mentoring, continuous learning, and hands-on experience, with the expectation of advancing to a full SOC Analyst position within 18 months following your successful probationary period. Key Responsibilities Incident Triage & Investigation – You review and prioritise new alerts from security … basic checks to distinguish genuine threats from false positives. You rely on established playbooks and make initial validation decisions while escalating more complex incidents to Shift Leads or Senior SOC Analysts Continuous Improvement – You contribute to the enhancement of detection logic by identifying recurring or redundant alerts. You participate in threat hunting and skills development sessions to help reduce More ❯

Cyber Security SOC Analyst – London/Remote Atrium EMEA is looking for an accomplished Cyber Security SOC Analyst to support the Security Incident Response Team. The team is growing, we require a strong individual contributor that will investigate, analyse, and contain security incidents. This is a fully remote role, with the occasional London office … automation (Python, Powershell, Bash, KQL etc) • Financial services sector, a benefit/Shift work NOT required Click Apply now/contact Lianne to be considered for the Cyber Security SOC Analyst – London/Remote role More ❯

Senior Incident Responder – SOC Analyst (L3) Birmingham or Glasgow | Up to £71,000 + Bonus + Benefits | Hybrid | SC Clearance Required or Eligible Our client – a global technology and services firm – is expanding its Managed Security Operations Centre and seeking a Senior Incident Responder (L3 SOC Analyst) to take the lead on complex security … The Role You’ll take ownership of escalated incidents, conduct detailed investigations, and ensure effective containment and eradication of threats. You’ll act as the escalation point within the SOC, providing technical expertise, mentoring junior analysts, and driving continuous improvement of incident response processes. Key Responsibilities: Lead complex investigations into security incidents and breaches. Perform root cause analysis and … provide actionable recommendations. Conduct static and dynamic malware analysis; reverse engineer to identify IOCs. Monitor, tune, and optimise SIEM tools Develop and refine SOC use cases, runbooks, and playbooks. Integrate emerging threat intelligence into monitoring and detection workflows. Liaise with clients, Service Delivery Managers, and technical teams to manage escalations and coordinate response. Maintain high standards of documentation, including More ❯

SOC Analyst - 1st UK Hire! Want to be part of the founding UK team for a $300m Global Cyber group? If you're a driven SOC Analyst who wants more than just "another ops role" and want autonomy to shape a new function with global backing, this could be the role for you! You … growth across Europe, this is a rare opportunity to join early & help shape a new security capability. Why join? You'll play a key role establishing & scaling UK & EU SOC capability. You'll be backed by a $300m global organisation, with proven SOC frameworks & tooling in place. You'll report to the CISO, a recognised industry voice, frequently … are shaped. You'll be positioned for fast progression as the UK cyber practice scales, with forward growth for your role already scoped The Role You'll support US SOC across UK/EU timezones and UK/EU customers with autonomy to shape local processes, tools & culture. Monitor, investigate and respond to security alerts (Tier 2-level responsibility More ❯

L2 SOC Analyst London based (1-3 days office) £40-45k Our client are looking for a Level 2 SOC Engineer. This is a key role in the detection and response lifecycle within our Security Operations Centre. The role You will be responsible for triaging, investigating, and responding to cybersecurity incidents across customer environments using … Threat monitoring and detection Threat intelligence and hunting SOAR and automation Skills MS Sentinel/Defender for Endpoint Understanding Mitre Att&ck framework Required 2+ years exp in a SOC environment Experience from MSSP/MSP supporting multiple clients British Citizen SC Clearance More ❯

SOC Analyst Location: Cheltenham Please Note: Due to the nature of client work you will be undertaking, you will need to be willing to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application. Accenture is a leading global professional services company, providing a More ❯

Role Description: Security Analyst - Network & Endpoint/SOC Security Specialist We are looking for a highly capable and technically … skilled Security Analyst to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The successful candidate will have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Key Responsibilities: Network Detection & Response … incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC team members More ❯

Role Description: Security Analyst - Network & Endpoint/SOC Security Specialist We are looking for a highly capable and technically … skilled Security Analyst to join our cybersecurity team. This role focuses on network and endpoint security operations, threat intelligence, and incident response within a Security Operations Centre (SOC) environment. The successful candidate will have hands-on experience with leading security platforms and demonstrate the ability to operate at a team lead level. Key Responsibilities: Network Detection & Response … incidents based on network telemetry. Endpoint Protection: Deploy and manage CrowdStrike Falcon agents across enterprise endpoints. Maintain and update detection rules, ensuring alignment with threat intelligence. Security Operations Centre (SOC): Act as a Level 2 SOC Analyst and Incident Handler. Triage, investigate, and respond to security alerts and incidents. Collaborate with other SOC team members More ❯

Senior Security Analyst – SOC/Incident Response I’m partnering with a fast-growing Cyber Defence function that’s strengthening its Security Operations Centre and looking for a talented Senior Security Analyst to join the team. You’ll take a leading role in detecting, analysing, and responding to cyber threats across diverse client environments, mentoring … junior analysts, improving detection content, and helping drive SOC maturity. What you’ll do: Lead complex investigations and incident response. Develop SIEM/EDR use cases and correlation rules. Perform proactive threat hunting and support automation initiatives. Produce incident reports and guide remediation activities. Help coach and upskill junior analysts. You should bring: 2–4 years’ experience in a … SOC, CSIRT, or cyber defence environment. Solid knowledge of SIEM and EDR platforms (Sentinel, Splunk, Defender, CrowdStrike, etc.). Understanding of MITRE ATT&CK and network/cloud security principles. Strong analytical and communication skills. Bonus points for: Scripting or automation experience (KQL, PowerShell, Python). Background in threat hunting or vulnerability management. Why apply? Hybrid flexibility, funded certifications More ❯

provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares: We operate an EMI … same. Joining CyPro means becoming an integral part of our mission and joining a team of industry experts embarking on this journey. The Role: This isn’t your typical SOC Analyst role where you’re pigeonholed into one narrow specialism. At CyPro, you’ll have the opportunity to get involved in a wide range of areas including … Review and tag IOCs and TTPs observed in client environments. Participate in proactive threat hunting sprints to identify risks before they escalate. Client Support & Reporting Prepare weekly and monthly SOC reports highlighting activity, incidents and trends. Join governance calls with senior analysts or managers to present SOC insights. Respond to client queries regarding investigations, coverage and data flows. More ❯

provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares: We operate an EMI … same. Joining CyPro means becoming an integral part of our mission and joining a team of industry experts embarking on this journey. The Role: This isn’t your typical SOC Analyst role where you’re pigeonholed into one narrow specialism. At CyPro, you’ll have the opportunity to get involved in a wide range of areas including … Review and tag IOCs and TTPs observed in client environments. Participate in proactive threat hunting sprints to identify risks before they escalate. Client Support & Reporting Prepare weekly and monthly SOC reports highlighting activity, incidents and trends. Join governance calls with senior analysts or managers to present SOC insights. Respond to client queries regarding investigations, coverage and data flows. More ❯

provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares: We operate an EMI … same. Joining CyPro means becoming an integral part of our mission and joining a team of industry experts embarking on this journey. The Role: This isn’t your typical SOC Analyst role where you’re pigeonholed into one narrow specialism. At CyPro, you’ll have the opportunity to get involved in a wide range of areas including … Review and tag IOCs and TTPs observed in client environments. Participate in proactive threat hunting sprints to identify risks before they escalate. Client Support & Reporting Prepare weekly and monthly SOC reports highlighting activity, incidents and trends. Join governance calls with senior analysts or managers to present SOC insights. Respond to client queries regarding investigations, coverage and data flows. More ❯

Primary Details Time Type: Full time Worker Type: Employee SOC Principal Analyst Permanent London/Hybrid At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The Opportunity QBE Europe is currently recruiting a SOC Principal Analyst to join … our cyber security team in our London Office. Reporting to regional team leads, the SOC Principal Analyst will be a key member of our rapidly growing Global Security Operations team. Your new role This is an exciting hands-on technical role in which the specialist will use their security skills and knowledge to perform advanced analysis on … response to cyber security-related incidents to prevent QBE from becoming compromised by modern attack methods and techniques. Main responsibilities: Act as point of escalation and mentor to junior SOC analysts. Translates business objectives into security objectives by providing support in design/architecture for new security applications to improve the current security posture globally for QBE. Recommends and More ❯

Lead SOC Analyst - Cheltenham Please Note: Any offer of employment is subject to satisfactory BPSS and SC security clearance which requires 5 years continuous UK address history (typically including no periods of 30 consecutive days or more spent outside of the UK) and declaration of being a British passport holder with no dual nationalism at the point More ❯

We’re not your typical cyber team. We’re collaborative, curious, and customer-obsessed and we’re looking for a Junior SOC Analyst to join our growing London based Security Operations Centre. You’ll work alongside a passionate team to help deliver critical cyber detection and response services for some of Australia’s most recognised enterprise and … intrusion attempts. Investigate phishing emails, suspicious domains, and IP addresses using OSINT and threat intelligence sources. Proactively monitor, analyse, and escalate security events and incidents in collaboration with other SOC team members. Assist in the configuration, administration and enhancement of security tools and platforms. Support implementation of security projects for internal and customer environments, including troubleshooting and client interaction. … structure, and a hunger to learn plus a great team spirit and a growing passion for cyber security. Ideally, your toolkit includes: 1–2 years of experience in a SOC or related cyber role. Exposure to AI SIEM, XDR or EDR platforms such as Splunk, Microsoft Sentinel or SentinelOne Experience with Microsoft Security platforms and Windows security fundamentals. Familiarity More ❯

We’re not your typical cyber team. We’re collaborative, curious, and customer-obsessed and we’re looking for a Junior SOC Analyst to join our growing London based Security Operations Centre. You’ll work alongside a passionate team to help deliver critical cyber detection and response services for some of Australia’s most recognised enterprise and … intrusion attempts. Investigate phishing emails, suspicious domains, and IP addresses using OSINT and threat intelligence sources. Proactively monitor, analyse, and escalate security events and incidents in collaboration with other SOC team members. Assist in the configuration, administration and enhancement of security tools and platforms. Support implementation of security projects for internal and customer environments, including troubleshooting and client interaction. … structure, and a hunger to learn plus a great team spirit and a growing passion for cyber security. Ideally, your toolkit includes: 1–2 years of experience in a SOC or related cyber role. Exposure to AI SIEM, XDR or EDR platforms such as Splunk, Microsoft Sentinel or SentinelOne Experience with Microsoft Security platforms and Windows security fundamentals. Familiarity More ❯

We’re not your typical cyber team. We’re collaborative, curious, and customer-obsessed and we’re looking for a Junior SOC Analyst to join our growing London based Security Operations Centre. You’ll work alongside a passionate team to help deliver critical cyber detection and response services for some of Australia’s most recognised enterprise and … intrusion attempts. Investigate phishing emails, suspicious domains, and IP addresses using OSINT and threat intelligence sources. Proactively monitor, analyse, and escalate security events and incidents in collaboration with other SOC team members. Assist in the configuration, administration and enhancement of security tools and platforms. Support implementation of security projects for internal and customer environments, including troubleshooting and client interaction. … structure, and a hunger to learn plus a great team spirit and a growing passion for cyber security. Ideally, your toolkit includes: 1–2 years of experience in a SOC or related cyber role. Exposure to AI SIEM, XDR or EDR platforms such as Splunk, Microsoft Sentinel or SentinelOne Experience with Microsoft Security platforms and Windows security fundamentals. Familiarity More ❯

This role is based five days per week on-site in Corsham. Security Analyst – SOC (Corsham, On-Site) An exciting opportunity to join an established Security Operations Centre, providing cyber expertise to support day-to-day operations. The role involves regular SOC activities, introducing new processes, and embedding best practice across the workplace. This role is … and share knowledge of current cyber issues, vulnerabilities, and exploits through research, technical reports, and briefs. Skills and Experience Experience working as a Security Analyst in a SOC or equivalent security monitoring and response environment. Current SC clearance (essential). Knowledge of data networks. Experience with SIEM toolsets and security management tools. Desirable certifications: CompTIA Security+, CySA+ More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning More ❯

Incident Response (CSIRT)/SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you … escalated and high-severity cyber incidents, ensuring rapid containment and recovery. Conduct advanced threat hunting across IT and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration … simulation exercises and continuous improvement initiatives to enhance resilience. Contribute to security audits and compliance efforts (e.g. ISO 27001, NCSC CAF, GDPR). Mentor Level 1 and Level 2 SOC Analysts, helping to build team capability and knowledge. About You You'll bring a combination of technical expertise, analytical acumen, and a collaborative approach to problem-solving. Essential Qualifications More ❯

Incident Response (CSIRT)/SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT)/Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you … escalated and high-severity cyber incidents, ensuring rapid containment and recovery. Conduct advanced threat hunting across IT and OT environments to identify and eliminate hidden threats. Develop and enhance SOC policies, playbooks, and incident response processes to align with industry best practices. Collaborate with the Managed Security Service Provider (MSSP) and internal teams to ensure complete log source integration … simulation exercises and continuous improvement initiatives to enhance resilience. Contribute to security audits and compliance efforts (e.g. ISO 27001, NCSC CAF, GDPR). Mentor Level 1 and Level 2 SOC Analysts, helping to build team capability and knowledge. About You You'll bring a combination of technical expertise, analytical acumen, and a collaborative approach to problem-solving. Essential Qualifications More ❯

Risk & Compliance Analyst - ISO 27001, SOC 2, GDPR Location: Knutsford (Cheshire) | Office-based Salary: £35,000 - £45,000 DOE + benefits About the Role We're supporting a fast-growing technology company that delivers secure, cloud-based platforms to highly regulated enterprise clients. They're looking for a Risk & Compliance Officer/Analyst to play … in maintaining and improving their information-security and compliance frameworks. Working closely with senior leadership, you'll help ensure the business remains compliant with standards such as ISO 27001, SOC 2 Type II, and GDPR, while building a culture of risk awareness and continuous improvement. Key Responsibilities Maintain and develop compliance policies, standards, and frameworks across the organisation. Support … internal and external audits for ISO 27001, SOC 2, and data-protection regulations. Conduct regular risk assessments and contribute to risk treatment plans. Monitor compliance KPIs, prepare monthly status reports, and present findings to senior stakeholders. Review vendor and third-party compliance, ensuring contractual and regulatory obligations are met. Deliver compliance awareness and training across teams. Provide oversight of More ❯

Job Title: Cyber Security Analyst (Contract) Contract Rate: Negotiable (Inside IR35) Shift Pattern (Day/Night) Location: Andover, Hampshire Security Clearance: ** Current valid SC clearance required ** Eligibility: ** UK eyes only ** About the Role: This is a brilliant opportunity to join our growing team at CND. We are looking for an experienced Security Analyst. This role offers a great … to get the best from available tooling. Exposure to building capability and consulting with customers to change their environment. Knowledge of process and procedure/playbook development in a SOC is desirable. Confidence in being the point of escalation for junior staff and taking an event through an investigation into response. Note: Current valid SC clearance is required (UK More ❯