At a Glance
- Tasks: Manage and investigate security incidents using Microsoft Sentinel and Defender.
- Company: Join a leading tech company focused on cybersecurity and innovation.
- Benefits: Remote work, competitive salary, generous holiday, and paid volunteering day.
- Other info: Inclusive workplace with strong focus on teamwork and personal development.
- Why this job: Make a real impact in protecting data and services while growing your skills.
- Qualifications: Experience in SOC roles and proficiency with Microsoft security tools required.
The predicted salary is between 40000 - 50000 £ per year.
This role sits at Level 2 within the Security Operations Centre (SOC) and is responsible for managing and investigating escalated security incidents. The role focuses on analysing alerts, assessing business impact, applying threat intelligence, and recommending appropriate response and escalation actions. You will work closely with Level 1 analysts, senior incident responders, and resolver teams to ensure incidents are handled effectively and documented clearly. Eligibility for SC clearance required.
Skill Set - SOC Analyst Level 2 (Sentinel SIEM & MDE/XDR)
Qualifications & Experience
- Essential
- Demonstrable experience working in a SOC or equivalent cyber security operations role
- Demonstrable experience using Microsoft Sentinel and Microsoft Defender for Endpoint in a live SOC environment
- Strong understanding of enterprise security concepts, including endpoint security, identity threats, malware behaviour, and lateral movement
- Desirable
- Industry certifications such as: SC 200 (Microsoft Security Operations Analyst), Bsc Computing in Engineering or information systems, CompTIA Security+, CEH or equivalent
- Strong Scripting or automation experience (e.g. KQL, PowerShell, Python) to enhance investigation efficiency
- Experience working in regulated or high security environments (e.g. government, critical national infrastructure)
- Nice to Have
- Exposure to MITRE ATT&CK mapping, detection engineering, or purple team activities
- Experience contributing to SOC reporting, dashboards, or executive summaries
How this role aligns to Capita's values
- Customer First Always - By accurately assessing the business impact of security incidents and recommending proportionate response actions, the SOC Analyst Level 2 helps protect customer services, data, and trust.
- Fearless Innovation - The role actively improves detection and response by tuning Sentinel analytics, leveraging advanced KQL hunting, and applying threat intelligence to stay ahead of emerging cyber threats.
- Achieve Together - Working closely with Level 1 analysts, Level 3 specialists, and resolver teams across infrastructure, cloud, and endpoint services, the role ensures incidents are managed collaboratively and effectively end to end.
- Everyone is Valued - Through clear communication, thorough investigation documentation, and knowledge sharing within the SOC, the role supports an inclusive, learning-focused team where contributions and expertise are recognised.
Benefits
- Remote – work from wherever you're happiest in the UK
- Competitive Salary
- 23 days' holiday, rising to 27 (pro rata) – plus the option to buy more after qualifying period
- Paid volunteering day with a charity of your choice
- Generous family leave policies – including 15 weeks' fully paid maternity, adoption, and shared parental leave
- Cycle2Work scheme, pension, life assurance, and more
Equal Opportunity and Diversity
We are an equal opportunity and Disability Confident employer, recruiting and developing people based on merit and passion. We are committed to providing an inclusive, barrier-free recruitment process and working environment for everyone. We warmly encourage applications from women and individuals from Black, Asian, and other ethnic minority backgrounds.
SOC Analyst Level 2 employer: Capita plc
Capita is an exceptional employer for SOC Analyst Level 2 roles, offering a competitive salary and the flexibility to work from anywhere in the UK. With a strong focus on employee growth, inclusive work culture, and generous benefits such as extended holiday leave and paid volunteering days, Capita fosters an environment where every team member's contributions are valued and recognised, making it an ideal place for those seeking meaningful and rewarding employment in cybersecurity.
StudySmarter Expert Advice🤫
We think this is how you could land SOC Analyst Level 2
✨Tip Number 1
Network like a pro! Reach out to your connections in the cybersecurity field, especially those who work in SOCs. A friendly chat can lead to insider info about job openings or even a referral.
✨Tip Number 2
Get your hands dirty with practical skills! If you haven't already, play around with Microsoft Sentinel and Defender. The more familiar you are with these tools, the better you'll shine in interviews.
✨Tip Number 3
Prepare for those tricky interview questions! Brush up on your knowledge of threat intelligence and incident response. We recommend practising with a friend or using mock interviews to boost your confidence.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets noticed. Plus, we love seeing candidates who are genuinely interested in joining our team at StudySmarter.
We think you need these skills to ace SOC Analyst Level 2
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights your experience with Microsoft Sentinel and Defender. We want to see how you've tackled security incidents in the past, so don’t hold back on those details!
Showcase Your Skills:If you've got any industry certifications or scripting skills, like KQL or PowerShell, make them pop! We love seeing candidates who can bring that extra flair to the table.
Be Clear and Concise:When writing your application, keep it straightforward. We appreciate clarity, especially when it comes to your experience and how it relates to the SOC Analyst role.
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to get your application and ensure you’re considered for this exciting opportunity.
How to prepare for a job interview at Capita plc
✨Know Your Tools Inside Out
Make sure you’re well-versed in Microsoft Sentinel and Microsoft Defender. Brush up on how they work, their features, and any recent updates. Being able to discuss your hands-on experience with these tools will show that you're ready to hit the ground running.
✨Understand the Threat Landscape
Familiarise yourself with current cyber threats and trends, especially those relevant to endpoint security and identity threats. Be prepared to discuss how you would apply threat intelligence in real scenarios, as this will demonstrate your proactive approach to security.
✨Showcase Your Collaboration Skills
This role involves working closely with various teams. Think of examples from your past experiences where you successfully collaborated with others to resolve incidents. Highlighting your teamwork skills will show that you can contribute to a cohesive SOC environment.
✨Prepare for Scenario-Based Questions
Expect questions that put you in hypothetical situations related to incident response. Practice articulating your thought process and decision-making steps clearly. This will help interviewers see how you handle pressure and make informed decisions in real-time.
