Security Operations Center Analyst

Our client is looking for a SOC Analyst to strengthen and mature security across the Group IT Infrastructure function. You will lead the evolution of security monitoring, controls and operational processes, working closely with infrastructure, service desk and data protection stakeholders. This role is focused on improving security capability, driving change in a long-established environment, and giving the business clearer visibility of risk and response.

Responsibilities

• Own and develop the organisation’s security monitoring and alerting capability across infrastructure, systems and digital assets.
• Lead the review and improvement of the current SIEM platform, including the evolution of SolarWinds Event Manager and the definition of a clearer long-term approach.
• Drive secure configuration standards and ensure security controls are applied consistently across network, server and storage environments.
• Build strong working relationships with the DPO, infrastructure teams and service desk to embed stronger security practices into day-to-day operations.
• Monitor, analyse and respond to security events from SIEM, network and other security tools, ensuring issues are assessed and escalated appropriately.
• Lead security incident response activity, including coordination, communication, remediation follow-up and post-incident review.
• Produce clear and credible reporting for senior leadership and board-level audiences, translating technical risk into business impact.
• Communicate security incidents and wider security messages across the organisation in a measured and effective way.
• Establish and improve documentation, operational procedures and governance around security processes and controls.
• Drive timely ticket resolution and a structured, methodical approach to security change and continuous improvement.