Senior Internal SOC Analyst leading security triage and investigations for Darktrace, utilizing AI - driven cybersecurity technology. Collaborating on incident response and mentorship within a hybrid work environment.
About the role
- Senior SOC Analyst specializing in security operations and incident response at PEXA, advancing digital property solutions in the UK. Collaborating with teams to enhance security measures and respond to incidents.
Responsibilities
- Lead investigations into complex security incidents across multiple domains
- Act as a senior escalation point within the SOC
- Manage P1 & P2 incidents, including post-incident reviews and lessons learned
- Perform event triage, analysis, and response to security alerts
- Lead engagements with MSSPs and security vendors
- Validate escalations, challenge assumptions, and ensure high-quality outputs
- Collaborate with infrastructure, engineering, and product teams to drive remediation
- Communicate clearly with stakeholders, including senior leadership
- Develop and deliver a continuous SOC improvement roadmap
- Create and refine playbooks and incident response processes
- Tune detection rules and improve SIEM performance (Splunk)
- Enhance automation to reduce false positives and improve efficiency
- Identify monitoring gaps and align detection with emerging threats
- Support threat hunting and purple team initiatives
- Mentor and support SOC analysts, embedding best practices
- Contribute to capability uplift and skills development across the team
- Act as delegate for the Head of UK Security when required
- Support security awareness initiatives across UK business units
Requirements
- Solid experience in Security Operations or Security Services delivery within a Tech Business (FinTech ideal)
- Proven experience in incident response and investigation
- Experience leading or contributing to SOC improvement initiatives
- Hands-on experience with SIEM platforms (e.g. Splunk)
- Exposure to cloud environments (AWS and/or Azure)
- Strong understanding of incident response lifecycle
- Endpoint security, DLP, and cloud security
- Network fundamentals (TCP/IP, routing, switching)
- System logging and log analysis
- Ability to interpret SIEM data and provide meaningful insights
- Working knowledge of scripting/programming (Python, Shell, SQL)
- Familiarity with frameworks such as MITRE ATT&CK
- Strong analytical and problem-solving skills
- Excellent written and verbal communication, including executive-level engagement
- Ability to work autonomously and manage multiple priorities
- High attention to detail with a proactive, investigative mindset
- Collaborative approach with the confidence to challenge constructively
Benefits
- Wellness programs
- Professional development
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Security Operations Intern responsible for security monitoring at Paddy Power Betfair. Involves data loss prevention investigations and content filtering analysis with a commitment to improving security posture.
SOC Analyst L2 responsible for managing and analyzing security incidents in digital transformation. Contributing directly to the protection of companies and infrastructures.
SOC Analyst L3 managing and analyzing security events and incidents for Var Group. Responsible for incident management and proactive threat analysis.
Senior Manager leading global IT security operations to protect company data and assets at Keenova. Overseeing incident response, monitoring, and cybersecurity capabilities with strategic oversight.
Security Operations Center leader at Woven by Toyota, managing triage and response to security alerts in Japan. Collaborating with global SOCs to ensure 24/7 operations.
GSOC Analyst responsible for security operations at Paramount Studios. Developing workflows, incident response, and risk monitoring in a dynamic team environment.
Senior Cybersecurity Analyst enhancing detection and response capabilities at Insulet, focusing on threat detection and incident response.
Supervisor for Global Security Operations Center at Enbridge. Leading a dedicated 24/7 team to monitor and protect global facilities and assets.
Security Operations Analyst at Orion Health focusing on monitoring and maintaining security tools while collaborating with teams. Engaging with real - world threats and enhancing operational security processes.