SOC Analyst

<p>Job Description</p><br>Do not pass up this chance, apply quickly if your experience and skills match what is in the following description.<br><p>We’re expanding our Security Operations Centre in Farnborough and looking for sharp, collaborative L2 SOC Analysts to protect enterprise-scale environments across the Defence sector. You’ll investigate real threats, tune detections, and make measurable impact—using Microsoft Sentinel, Splunk, and MISP.</p><p>Your work fuels national security. Your growth fuels our mission.</p><p>Role based on site in our Farnborough office and is shift work. 2 x 6am to 6pm, 2 x 6pm to 6am, 4 days off.</p><p>You do need to be eligible for DV Clearance for this role, and cannot start until your clearance is through.</p><p>What you'll be doing:</p><ul><li>Monitor, analyse security alerts and events, conduct initial investigations, and determine the appropriate response.</li><li>Raise complex incidents to Senior Analysts.</li><li>Manage SOC Incident queues.</li><li>Support the maintenance of monitored asset baselines of the customer environments.</li><li>Prepare reports for managed clients to both technical and non-technical audiences,</li><li>Collaborate on improving detection rules and use cases aligned with Mitre Att&ck and threat-informed defense.</li><li>Participate in a team effort to guarantee that corporate data and technology platform components are shielded from known threats.</li><li>Collaborate with team members to maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies.</li><li>Aid the development and use of threat intelligence throughout the service.</li><li>Ability to work shifts from our office in Farnborough.</li></ul><p>What you’ll bring:</p><ul><li>Experience demonstrated in Security Operations Centre.</li><li>Experience using Microsoft Sentinel and Splunk.</li><li>Knowledge and experience with Mitre Att&ck Framework.</li><li>Basic knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise AntiVirus products.</li><li>Understanding of networking principles including TCP/IP, WANs, LANs and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP.</li><li>Entry level cyber security certification (e.g. CompTIA Security+, CEH, CPSA).</li><li>CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications.</li><li>Completed an academic module in cyber security or a related subject</li></ul><p>It would be great if you had:</p><ul><li>Programming and scripting such as Python, Perl, Bash, PowerShell, C++.</li><li>CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications.</li><li>Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar.</li></ul><p>If you are interested in this role but not sure if your skills and experience are exactly what we’re looking for, please do apply, we’d love to hear from you!</p><p>Employment Type: Permanent</p><p>Location: Office based in Farnborough</p><p>Security Clearance Level: Eligible for DV Clearance</p><p>Internal Recruiter: Jane</p><p>Salary: To £58K Depending on experience, plus on shift allowance.</p><p>Benefits: 25 days annual leave with the choice to buy additional days, health cash plan, life assurance, pension.</p><p>Loved reading about this job and want to know more about us?</p><p>Sopra Steria’s Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client’s goal of National Security, and we operate in a unique and privileged environment.</p><p>We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. xwzovoh We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK’s most complex safety- and security-critical markets.</p>