X Security Analyst

Location:

LRQA Nettitude, Birmingham

Position Category:
Information Technology

Position Type:
Employee Regular

This role reports to SOC Team Lead. As the SOC Analyst, you will be accountable for the effective delivery of your tasks, ensuring expected performance standards while continuously developing your skills as part of a high trust, high performing security service.

You will leverage your experience in security operations to enable the smooth delivery of our award‑winning defensive monitoring service, supporting proactive detection and response for clients across the globe.

You will be expected to contribute hands on, technically where and when needed, including deep‑dive investigations, supporting incident response, threat hunting, tuning detections, and when/if required delivering technical training to new starters.

As a SOC Analyst, you must proactively initiate actions and work independently to quickly mitigate threats, set an example, maintain operational continuity, make informed decisions, and ensure efficient delivery of your tasks under pressure.

The roles and responsibilities of the SOC Analyst are reviewed annually to ensure alignment with current organisational needs, emerging threats, and industry best practice.

As SOC Analyst, you will be working closely with Threat Intelligence, Engineering and Incident Response teams as this is essential to strengthen the SOC's ability to detect, investigate, and respond to emerging threats. This collaboration ensures timely sharing of actionable intelligence, refinement of detection rules, suggesting improvement of security tools, and alignment of operational processes, ultimately enhancing overall organisational security posture.

This role drives continuous improvement within the SOC by identifying gaps in processes, detection capabilities, and team performance, and supporting implementation of solutions to enhance operational efficiency.

The SOC Analyst works on alerts to refine triage and response workflows, ensuring lessons learned are translated into updated playbooks and best practices.

• Perform day‑to‑day activities of the SOC analysts across all shifts.
• Ensure all alarms/cases are reviewed and responded to within the predefined SLA.
• Maintain and keep documentation up to date (including design specifications, diagrams and process documentation).
• Complete all HALO case files on time and with accurate and timely data/results.
• Aim to ensure high‑quality incident triage and investigation following predefined and agreed SOC processes.
• Coordinate with other shifts to maintain operational continuity and consistent processes.

• Key Performance Indicators (KPIs) are goals that must be achieved to demonstrate satisfactory or above performance for this job role.
• KPIs will be monitored on an ongoing basis throughout each year and will be explored in further depth as part of the performance management process.
• Service KPIs/SLAs and deliverables are tracked, adhered to and any deviations remediated through root cause analysis and non‑conformance.

The analyst continuously monitors security alerts and logs across all customer environments using SIEM, EDR and other security and monitoring tools used by LRQA/Nettitude SOC Team.

Key responsibilities include:

• Review real‑time alerts and telemetry to identify suspicious activity or breaches.
• Analyse logs, network flows and endpoint data to validate alerts and understand threat context.
• Maintain and tune SIEM/SOAR correlation rules and endpoint detection signatures to reduce false positives and improve coverage.
• Triage and investigate unusual events to confirm incidents or dismiss benign anomalies.

Proactively search for hidden threats and improve detection.

Responsibilities include:

• Perform hypothesis‑driven threat hunts across multiple client networks using telemetry, threat intelligence and the MITRE ATT&CK framework.
• Identify weak spots or blind spots in monitoring coverage and recommend new rules, queries or sensors to close them.
• Analyse…