Senior Internal SOC Analyst leading security triage and investigations for Darktrace, utilizing AI - driven cybersecurity technology. Collaborating on incident response and mentorship within a hybrid work environment.
About the role
- Security Operations Engineer supporting monitoring, investigation and response to security threats in IT systems. Join the Information Security team for a 9-month fixed-term contract based in London.
Responsibilities
- Investigate and respond to security alerts across endpoint, network and cloud environments
- Analyse logs and telemetry to identify indicators of compromise and potential threats
- Support incident investigations and coordinate remediation with internal technical teams
- Develop or refine detection rules and monitoring capability
- Support vulnerability management activities and follow up on remediation actions
- Assist with penetration testing coordination and remediation tracking
- Contribute to security monitoring improvements and automation where appropriate
- Support security compliance activities aligned to ISO27001 and Cyber Essentials Plus
Requirements
- Experience working within a security operations or cyber defence environment
- Experience investigating security alerts and conducting incident analysis
- Experience using SIEM platforms and endpoint detection and response tools
- Strong understanding of networking and system behaviour (TCP/IP, DNS, HTTP/S)
- Ability to analyse security data across endpoint, network and cloud environments
- Experience working with security monitoring and threat detection tooling
- Scripting capability in Python, PowerShell or Bash
- Understanding of threat frameworks such as MITRE ATT&CK
- Experience with tools such as Microsoft Sentinel, Splunk, Defender, CrowdStrike, Tenable or Qualys would be beneficial.
Benefits
- **Salary:** Transparent pay framework & promotion opportunities to recognise your contributions and performance.
- **Generous Annual Leave**: Enjoy 25 days plus three days off at Christmas. (pro-rata)
- **Flexible Working:** We're committed to a positive work-life balance, offering a hybrid working policy that prioritises your well-being and flexibility.
- **Comprehensive Wellbeing Support**: Health Cash Plan, Access to Digicare+, Employee Assistance Programme, and more!
- **Professional Subscriptions:** Invest in your growth and development.
- **Inclusive Employer:** Be part of a diverse team with equity, inclusion, and flexibility at the core
Job title
Job type
Experience level
Salary
Degree requirement
No Education Requirement
Tech skills
Location requirements
Security Operations Intern responsible for security monitoring at Paddy Power Betfair. Involves data loss prevention investigations and content filtering analysis with a commitment to improving security posture.
SOC Analyst L2 responsible for managing and analyzing security incidents in digital transformation. Contributing directly to the protection of companies and infrastructures.
SOC Analyst L3 managing and analyzing security events and incidents for Var Group. Responsible for incident management and proactive threat analysis.
Senior Manager leading global IT security operations to protect company data and assets at Keenova. Overseeing incident response, monitoring, and cybersecurity capabilities with strategic oversight.
Security Operations Center leader at Woven by Toyota, managing triage and response to security alerts in Japan. Collaborating with global SOCs to ensure 24/7 operations.
GSOC Analyst responsible for security operations at Paramount Studios. Developing workflows, incident response, and risk monitoring in a dynamic team environment.
Senior Cybersecurity Analyst enhancing detection and response capabilities at Insulet, focusing on threat detection and incident response.
Supervisor for Global Security Operations Center at Enbridge. Leading a dedicated 24/7 team to monitor and protect global facilities and assets.
Security Operations Analyst at Orion Health focusing on monitoring and maintaining security tools while collaborating with teams. Engaging with real - world threats and enhancing operational security processes.