SOC Solution Engineer

Overview

SOC Solutions Engineer
Level: Experienced / Senior — £70,000 - £85,000

Location: UK-wide | Hybrid (London or Birmingham) | SOC based in Birmingham

Function: Security Operations | SIEM Engineering | Threat Detection & Response

Industry: Cyber Security | Managed Services | Public & Private Sector

Join a leading global security services provider that combines advanced threat intelligence, SIEM expertise, and automation to protect clients  client delivers cutting-edge security solutions across sectors and is now seeking an experienced SOC Solutions Engineer to strengthen their SOC capabilities and shape detection and response strategies.

About the Role

As a SOC Solutions Engineer, you’ll enhance and optimise security operations across IBM QRadar platforms. You will deploy and manage SIEM environments, develop analytical rules, design automated incident response playbooks, and translate threat intelligence into actionable detection use cases. Collaboration is key — you’ll work closely with threat intelligence, IT, Dev Ops, and compliance teams, while mentoring junior analysts and contributing to continuous improvement initiatives.

• Deploying, configuring, and maintaining IBM QRadar across cloud and on-prem environments
• Onboarding and normalising log sources from diverse systems
• Developing and optimising analytical rules for threat detection, anomaly detection, and behavioural analysis
• Designing and implementing incident response playbooks integrated with SOAR platforms
• Conducting threat modelling using MITRE ATT&CK, STRIDE, or Kill Chain frameworks
• Performing investigations, coordinating incident response, and collaborating with threat intelligence teams
• Generating reports and dashboards to communicate security posture and incident trends
• Mentoring junior analysts and contributing to service improvement initiatives

• 3–5 years of SOC or IT security experience, preferably in SOC/NOC environments
• Deep expertise in IBM QRadar and SIEM query languages (KQL, SPL, AQL)
• Experience scripting for automation and enrichment (Python, Power Shell)
• Strong understanding of threat detection, incident response, network traffic, vulnerability management, and ethical hacking
• Knowledge of MITRE ATT&CK, NIST, CIS frameworks, and ITIL disciplines
• SC clearance required or ability to obtain
• Cybersecurity certifications desirable (CISSP, GIAC, SC-200, IBM QRadar Specialist, Splunk Admin/Power User, Google Chronicle Security Engineer)
• Excellent communication, analytical, and interpersonal skills

• Salary:
  Up to £85,000
• 25 days annual leave + UK public holidays
• Contributory pension scheme
• Private healthcare, dental, and wellbeing support options
• Critical illness and life assurance cover
• Flexible benefits including hybrid working and SOC-based projects
• Opportunity to work on national and international client engagements
• Career growth and professional development in a high-performance security practice

This is a role for experienced SOC professionals who want to lead, mentor, and innovate within security operations. If you are passionate about SIEM, threat detection, and automation, and thrive in a hybrid, fast-paced environment — we want to hear from you.