SOC Engineer

My client is seeking a SOC engineer professional to support the monitoring and protection of client environments. The role involves investigating security alerts, responding to potential threats, and contributing to the continuous improvement of detection and response capabilities using modern security technologies.

• Perform continuous security monitoring using enterprise security platforms to detect and respond to potential threats.
• Investigate alerts, analyse incidents, and produce clear and accurate incident reports.
• Provide guidance and support to clients who may be impacted by cyber incidents or suspicious activity.
• Assist with the onboarding of new environments, including deployment and configuration of SIEM, EDR, and vulnerability management tools.
• Support threat hunting activities, malware analysis, and identification of indicators of compromise (IOCs).
• Correlate security events across multiple systems to identify patterns of malicious behaviour.
• Develop and refine detection rules, automation workflows, and operational documentation.
• Act as a technical escalation point where required and provide support to junior SOC analysts.
• Contribute to internal and client-facing reports, as well as occasional technical demonstrations and engagement scoping.

The successful candidate will demonstrate:

• Strong communication skills and confidence in client-facing environments.
• A genuine interest in cyber security and awareness of current industry threats and trends.
• The ability to remain composed and communicate effectively during high-pressure security incidents.
• Adaptability and the ability to work collaboratively within a fast-paced SOC team.
• Relevant certifications such as Microsoft SC-200, AZ-500, or SC-100 would be advantageous.
• Experience with technologies such as Microsoft Sentinel, Microsoft Defender, USM Anywhere, SentinelOne, or Tenable.io would be beneficial.

• Hybrid working model: typically 2 days per week in the office for collaboration.
• On-call rotation: 1 week on-call followed by 2 weeks off within the support schedule.