SOC Engineer

Job Title

SOC Engineer

On-site, London moving to hybrid 3 days on-site after 2-week induction

Immediate

31/03/26 further extensions expected

BPSS (must be obtained prior to onboarding)

£400 - £500

Candidates must hold or be eligible for SC clearance

Our client is seeking a SOC Analyst to join a security operations team in London. The role is focused on real-time monitoring, investigation, and incident response across a modern enterprise security environment.

• Monitor, triage, and respond to security alerts across multiple platforms, including Microsoft and endpoint security tools.
• Conduct in-depth investigations of security events, escalating and containing incidents as required.
• Optimise and tune detection rules, policies, and alerting mechanisms to improve SOC efficiency.
• Collaborate with internal teams to support security operations, threat analysis, and incident recovery.
• Produce clear incident documentation, reports, and recommendations for continuous improvement.
• Contribute to maintaining and enhancing SOC processes, runbooks, and operational workflows.

• Sentinel, MDE, and MDI deployments
• Proven experience in a hands‑on SOC Analyst role within an enterprise environment
• Strong understanding of security operations, threat detection, and incident response workflows
• Excellent communication skills and the ability to work effectively within a collaborative SOC team

• Experience with incident documentation and reporting
• Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001)
• Ability to adapt quickly to new tools, threats, and operational priorities
• Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC)