Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead advanced incident response and conduct proactive threat hunting in a dynamic SOC environment.
- Company: Join a cutting-edge cybersecurity team dedicated to safeguarding digital assets.
- Benefits: Enjoy hybrid work options, competitive pay, and opportunities for professional growth.
- Why this job: Be at the forefront of cybersecurity, making a real impact while collaborating with talented professionals.
- Qualifications: 6-8 years in cybersecurity, with expertise in incident response and threat hunting required.
- Other info: Fast-paced environment with occasional after-hours work; perfect for those passionate about tech.
The predicted salary is between 43200 - 72000 £ per year.
We are seeking an experienced and highly capable SOC Tier 3 Analyst to serve as a senior member of our Security Operations Center (SOC). You will lead advanced incident response efforts, conduct proactive threat hunting, perform digital forensics, and collaborate cross-functionally to safeguard our digital assets and infrastructure. This is a pivotal role for those passionate about cybersecurity, threat detection, and investigative analysis.
Key Responsibilities
- Advanced Incident Detection & Response
- Lead the investigation and resolution of complex cyber incidents, including APTs, malware outbreaks, and data breaches.
- Take charge of escalated alerts from Tier 1 and 2 analysts and guide them through advanced response protocols.
- Utilize SIEM, EDR, and threat intelligence platforms to perform deep-dive analysis and response.
- Threat Hunting & Analysis
- Proactively identify emerging threats through behavioral analytics and threat intelligence.
- Analyze log data, network activity, and endpoints to uncover hidden anomalies or malicious behavior.
- Partner with security engineering teams to build detection capabilities based on evolving threats.
- Digital Forensics & Investigation
- Conduct detailed forensic investigations to determine incident scope, root cause, and impact.
- Collect and preserve digital evidence in accordance with legal and regulatory standards.
- Deliver comprehensive findings, timelines, and impact reports.
- Remediation & Recovery
- Advise on containment, eradication, and recovery procedures in collaboration with IT and infrastructure teams.
- Ensure proper cleanup and restoration of affected systems.
- Share Indicators of Compromise (IOCs) and support threat blocking strategies.
- Collaboration & Knowledge Sharing
- Mentor junior SOC analysts and share knowledge across incident response workflows.
- Engage with stakeholders across IT, DevOps, and legal to enhance security posture.
- Contribute to post-incident reviews and continuous process improvement.
- Security Research & Intelligence
- Stay ahead of industry developments, vulnerabilities, and attacker methodologies.
- Create detection rules and playbooks to improve SOC capabilities.
- Contribute threat intelligence findings and detection logic to the team knowledge base.
- Documentation & Reporting
- Produce clear, detailed incident reports and present findings to stakeholders or clients.
- Maintain thorough documentation of investigation steps, timelines, and decisions taken.
- Compliance & Risk Mitigation
- Ensure all incident handling aligns with frameworks such as NIST, ISO 27001, and GDPR.
- Work with compliance teams to manage regulatory reporting during security incidents.
Your Profile
- Essential Skills & Experience:
- Bachelor’s degree in Computer Science, Information Security, or a related field.
- 6–8+ years in cybersecurity with a focus on incident response and threat hunting.
- Proven experience investigating APTs, ransomware, and data exfiltration attempts.
- Deep knowledge of SIEM platforms (e.g., Splunk, LogRhythm, ArcSight) and EDR solutions.
- Hands-on experience in network/system forensics and malware analysis.
- Familiarity with operating systems (Windows, Linux) and cloud environments (e.g., AWS, Azure).
- Proficiency in scripting languages like Python or PowerShell for automation and analysis.
- Preferred Certifications:
- CISSP, GCIH, GCFA, GCIA, CFCE, or equivalent recognized certifications.
- Soft Skills & Attributes:
- Strong critical thinking and analytical abilities.
- Excellent communication skills—able to translate technical details for varied audiences.
- Ability to remain calm and effective in high-pressure or time-sensitive situations.
Work Conditions:
- Fast-paced SOC environment.
- Availability for occasional after-hours work or on-call rotation.
If you are interested in being considered for this position and would like to discuss further, please apply with your latest CV or share your CV directly with me at christophe.ramen@focusonsap.org.
SOC Tier 3 Analyst employer: Focus on SAP
Contact Detail:
Focus on SAP Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land SOC Tier 3 Analyst
✨Tip Number 1
Familiarise yourself with the latest trends in cybersecurity, especially around APTs and ransomware. Being able to discuss recent incidents or emerging threats during your interview will demonstrate your passion and knowledge in the field.
✨Tip Number 2
Showcase your hands-on experience with SIEM platforms and EDR solutions. Prepare specific examples of how you've used these tools in past roles to detect and respond to incidents, as this will highlight your practical skills.
✨Tip Number 3
Emphasise your ability to mentor and collaborate with junior analysts. Share instances where you've led a team or contributed to knowledge sharing, as this aligns with the collaborative nature of the SOC role.
✨Tip Number 4
Be ready to discuss your approach to digital forensics and incident response. Prepare to explain your methodology for investigating incidents and how you ensure compliance with legal standards, which is crucial for this position.
We think you need these skills to ace SOC Tier 3 Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cybersecurity, particularly in incident response and threat hunting. Use specific examples that demonstrate your skills in handling complex cyber incidents.
Craft a Strong Cover Letter: Write a cover letter that showcases your passion for cybersecurity and your understanding of the SOC Tier 3 Analyst role. Mention your experience with SIEM platforms and digital forensics, and explain how you can contribute to the team.
Highlight Relevant Certifications: If you have certifications like CISSP, GCIH, or GCFA, make sure to include them prominently in your application. These credentials can set you apart from other candidates.
Showcase Soft Skills: In your application, emphasise your critical thinking, analytical abilities, and communication skills. Provide examples of how you've effectively communicated technical details to non-technical stakeholders in past roles.
How to prepare for a job interview at Focus on SAP
✨Showcase Your Technical Expertise
Be prepared to discuss your experience with SIEM platforms and EDR solutions in detail. Highlight specific incidents you've managed, focusing on your role in the investigation and resolution process.
✨Demonstrate Problem-Solving Skills
Expect scenario-based questions that assess your critical thinking and analytical abilities. Practice articulating your thought process when faced with complex cyber incidents, showcasing how you approach problem-solving.
✨Communicate Clearly
Since you'll need to translate technical details for varied audiences, practice explaining complex concepts in simple terms. This will demonstrate your communication skills and ability to collaborate effectively with non-technical stakeholders.
✨Prepare for Behavioural Questions
Reflect on past experiences where you had to work under pressure or handle high-stakes situations. Be ready to share examples that highlight your calmness and effectiveness in challenging scenarios, as this is crucial for a SOC environment.
