Security Operations Center Analyst

Level 1 SOC Analyst

UK based | On-site

12 month contract

We’re hiring a Level 1 SOC Analyst to join a growing cyber security team supporting a major defence programme.

The Opportunity

You’ll act as the first responder to security alerts , working closely with an outsourced SOC provider and internal teams to investigate and escalate potential threats.

This is a hands-on role where you’ll build real incident response experience and gain exposure to enterprise-scale security operations.

Key Responsibilities

• Triage and validate alerts from the SOC provider
• Conduct initial investigations using SIEM tools and log data
• Engage with users and stakeholders to gather context and support containment
• Escalate confirmed incidents with clear documentation
• Maintain accurate case records, timelines, and evidence
• Act as the link between internal security teams and external SOC
• Follow established playbooks and suggest improvements

What You’ll Bring

Essential:

• 2 to 4 years’ experience in SOC, IT operations, or security support
• Understanding of threats such as phishing, malware, and privilege escalation
• Knowledge of networking fundamentals and system logs (Windows or Linux)
• Experience with SIEM tools such as Sentinel, Splunk, Elastic or QRadar
• Strong analytical and communication skills

Desirable:

• Awareness of frameworks such as MITRE ATT&CK, NIST or ISO27001
• Experience working with MSSPs or outsourced SOC models
• Basic scripting skills (PowerShell, Python or Bash)
• Certifications such as Security+ or CySA+

Why Join?

• Work on complex and meaningful cyber security challenges
• Be part of a collaborative and supportive team
• Exposure to modern tools, processes, and threat landscapes

Important Information

Due to the nature of the work, security clearance and nationality restrictions apply.