Security Operations Center Analyst
Job Title: SOC Analyst
Duration – 6 months
Location – Havant or Reading
Description:
(2nd Line – Contractor, SC Cleared)
- Provide hands-on 2nd line SOC operational support, including investigation and management of escalated incidents from the 1st line SOC
- Validate and assure quality and effectiveness of Sentinel alerts and detections
- Support onboarding of log sources and priority use cases into Microsoft Sentinel in line with CAF, T3, and ECS Keystone requirements
- Develop and utilise KQL queries to enable effective triage, investigation, and validation of security events
- Provide operational support and guidance to L1 SOC, improving consistency in alert handling and escalation
- Contribute to clearing operational backlog, including rule validation, clean-up activity, and onboarding delivery
- Perform basic tuning of analytic rules to improve signal quality and reduce alert noise (non-engineering activity