At a Glance
- Tasks: Lead cyber defence efforts, manage security tools, and respond to incidents.
- Company: Join a high-performing Cyber Security Operations Centre focused on national security.
- Benefits: Competitive daily rate, inside IR35, and opportunities for professional growth.
- Other info: Dynamic role with continuous improvement and career advancement opportunities.
- Why this job: Make a real impact in protecting critical environments with cutting-edge technology.
- Qualifications: Must have current DV clearance and strong experience with SIEM/SOAR platforms.
We are seeking an experienced Senior SOC Analyst to join a high-performing Cyber Security Operations Centre supporting critical national security environments. This is an opportunity to work at the forefront of cyber defence, leading threat detection, incident response, vulnerability management, and continuous improvement of security monitoring capabilities.
As a Senior SOC Analyst, you will play a key role in protecting complex enterprise environments through the management and optimisation of security tooling, threat detection, incident response, and forensic investigations. You will work closely with internal and external stakeholders to enhance SOC capabilities, improve security visibility, and strengthen cyber resilience.
Key Responsibilities
- Maintain and optimise SOC Protect, Detect and Respond tooling.
- Configure, implement and support new security monitoring technologies.
- Develop detection rules, correlation logic, automation scripts and response playbooks.
- Manage vulnerability scanning platforms and contribute to wider SOC strategy.
- Integrate and onboard standard and non-standard log sources into SIEM platforms.
- Monitor, investigate and respond to security incidents and emerging threats.
- Conduct forensic investigations and malware analysis, producing actionable intelligence and Indicators of Compromise (IoCs).
- Tune and enhance SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies.
- Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK.
- Produce dashboards, reports and recommendations to improve security posture.
- Ensure adherence to operational processes, SLAs, KPIs and security policies.
- Drive continuous improvement across SOC processes, tooling and service delivery.
Essential Skills & Experience
- Current Developed Vetting (DV) Clearance.
- Strong experience administering and tuning SIEM and SOAR platforms.
- Hands‑on experience with technologies such as Elastic, Trend Micro, Tripwire, Tanium, Clearswift and SolarWinds.
- Experience in threat hunting, incident response, digital forensics and malware analysis.
- Strong understanding of Windows and Linux environments.
- Experience writing and tuning detection signatures, correlation rules and monitoring use cases.
- Knowledge of log collection, aggregation and analysis technologies including ELK Stack, Syslog and Windows Event Forwarding.
- Experience with scripting and automation using Python, PowerShell, Bash, Perl or similar.
- Understanding of network forensics, threat intelligence and cyber threat detection methodologies.
- Knowledge of ISO 27001:2022, MITRE ATT&CK, and IT Service Management principles.
Senior SOC Analyst - DV Cleared in Portsmouth employer: CBSbutler
Join a leading Cyber Security Operations Centre in Corsham or Portsmouth, where you will be at the forefront of national security, protecting critical environments. We offer a dynamic work culture that fosters collaboration and innovation, alongside competitive daily rates and opportunities for professional growth in a high-stakes field. With a focus on continuous improvement and cutting-edge technology, this role provides a unique chance to enhance your skills while making a significant impact on cyber resilience.