SOC Engineers

Written By Kayleigh Healy

We are recruiting four SOC Engineers to join a growing Security Operations function. These roles are ideal for individuals who thrive in a fast-paced environment, enjoy investigating threats, and are confident working across multiple customer or internal environments.

You’ll play a key part in monitoring, detecting, and responding to security incidents, contributing to process improvements, and enhancing overall threat visibility.

These are hands-on analytical roles that go beyond basic alert monitoring - requiring curiosity, technical capability, and the ability to work both independently and collaboratively during rotating day and night shifts.

Key Responsibilities:

  • Monitor security alerts, analyse threat activity, and conduct detailed incident investigations.

  • Use SIEM tools to detect suspicious behaviour and identify potential compromises.

  • Onboard new log sources, integrations, and applications into the monitoring environment.

  • Maintain and improve SOC runbooks, playbooks, and standard operating procedures.

  • Contribute to automation, scripting, and detection rule development (KQL, Python, PowerShell, etc.).

  • Work towards strong MTTD and MTTR targets, ensuring threats are quickly identified and contained.

  • Collaborate with senior analysts, engineering teams, and wider security functions to enhance detection coverage.

  • Provide clear, concise incident documentation and reporting.

  • Support continuous improvement of tooling, processes, and security posture.

Qualifications-

Essential:

  • Previous experience in a SOC, incident response, or cyber security analyst role.

  • Strong understanding of security monitoring, threat detection, triage, and investigation workflows.

  • Hands-on experience with SIEM platforms (LogScale/Humio, CrowdStrike, Splunk, Sentinel, etc.).

  • Proficiency in KQL and/or scripting languages such as Python or PowerShell.

  • Strong analytical mindset and ability to interpret complex data.

  • Comfortable working shifts and operating autonomously.

Desirable:

  • Experience building or updating runbooks/playbooks.

  • Exposure to automation, SOAR platforms, or cloud security monitoring.

  • Familiarity with next-generation SIEM solutions.

Why Join Us:

  • Four opportunities to join an expanding SOC during a high-growth phase.

  • Work with modern, industry-leading security technologies.

  • Real influence over processes, tooling, and detection enhancements.

  • Clear progression pathways as the SOC scales.

  • Collaborative, engineering-focused environment with continuous learning encouraged.

Salary:

Competitive salary based on experience, plus shift allowance and additional benefits.


Apply and upload CV
Kayleigh Healy
Next

Account Director