Lead SOC Engineer - Systems Integrator

Ready to defend organisations against evolving cyber threats?

Join a highly regarded cyber security provider known for its 24/7 managed security operations, advanced threat detection, and real-time incident response. The team helps organisations across multiple industries stay resilient, secure networks, endpoints, and cloud environments from ever-changing cyber threats.

They are looking for a Security Operations Engineer to work within a high-performing Security Operations Centre (SOC), detecting, investigating, and responding to cyber threats while supporting clients during active security incidents. Collaborate with experienced SOC and Incident Response teams, applying industry-leading security technologies to safeguard client environments. This role provides the opportunity to develop expertise across a wide range of security technologies, enhance detection and response capabilities.

If you are ready to play a pivotal role in protecting organisations from cyber threats while growing professionally within a collaborative SOC environment, apply now!

Responsibilities:

• Monitor and investigate security alerts using industry-leading SOC technologies
• Provide guidance and support to clients during cyber security incidents
• Produce detailed incident reports and ensure accurate, timely communication
• Support threat hunting and threat mining activities
• Assist with onboarding new clients including deployment of SIEM, EDR, and vulnerability management tools
• Act as a technical escalation point and mentor junior SOC analysts
• Engineer and deploy security tooling and detection capabilities
• Investigate incidents, analyse attack methods, and research new defence techniques
• Develop detection rules, automation, and security procedures
• Conduct malware and attack analysis to identify indicators of compromise
• Correlate security event data across multiple platforms
• Support pre-sales activity including demos and scoping engagements

Skills/Must have:

• Experience working in a Security Operations Centre (SOC) environment
• Strong incident investigation and threat detection experience
• Client-facing communication skills
• Experience with security monitoring and detection tooling
• Ability to work under pressure during active incidents
• Ability to work in a hybrid model with some office presence

Desirable:

• Industry certifications such as Microsoft SC-200, AZ-500, or SC-100
• Experience with tools such as Microsoft Sentinel, Microsoft Defender, USM Anywhere, SentinelOne, or Tenable.io
• Experience with detection engineering, threat hunting, or malware analysis

Benefits:

• Opportunity to work in an established SOC protecting organisations across multiple industries
• Exposure to a wide range of security tools and technologies
• Career development within a collaborative security team
• Hybrid working model

Salary:

• £50,000 - £60,000 base salary per annum