Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security operations and enhance incident response processes in a dynamic tech environment.
- Company: Join Motorway, the UK's fastest-growing used car marketplace, transforming how people sell cars.
- Benefits: Enjoy competitive salary, health insurance, hybrid working, and enhanced parental leave.
- Other info: Be part of a diverse team committed to continuous learning and technical excellence.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technology.
- Qualifications: Experience in SOC operations, threat hunting, and cloud security is essential.
The predicted salary is between 60000 - 80000 £ per year.
Motorway is the UK's fastest-growing used car marketplace - our award winning, online-only platform connects private car sellers with over 7,500 verified dealers nationwide, who compete to offer the best price. Founded in 2017, our technology makes the process refreshingly easy, earning us an 'Excellent' Trustpilot rating with over 70,000 reviews. We're not just building a platform; we're changing how people sell cars. Backed by leading investors like Index Ventures and ICONIQ Growth, and following a successful $190 million funding round, we're on a mission to transform the used car market.
We're looking for an experienced Senior SOC Analyst to assist in the development, enhancement and execution of our Security Operations capability. The successful candidate will develop SOC processes, procedures and workflows for systems security monitoring and security incident response. This role will work collaboratively with other business technical and non-technical teams.
The role will involve:
- Triage & Analysis: The focus here should be on MTTD (Mean Time to Detect).
- End-to-End IR: Leading incidents requires not just technical skill, but 'Incident Commander'.
- Vulnerability & Threat Hunting: This is proactive. Instead of waiting for an alarm, the lead should be searching for 'indicators of compromise' (IoCs) based on recent threat intelligence.
- Runbook Development: If a process is done more than twice, it should be in a runbook. In 2026, these are often 'Executable Runbooks' (Python/Bash) rather than just PDFs.
- Tooling & Alarms: This involves the maintenance of your SIEM/SOAR.
- Coverage & Noise Reduction: A lead must ruthlessly tune out 'false positives' so the team only sees high-fidelity alerts.
- Platform & Software Engineering: This is the 'Shift Left' approach.
- Platform: Ensuring Kubernetes/Cloud environments are hardened.
- Software: Implementing Secure by Design (e.g., automated SAST/DAST in the CI/CD pipeline).
- Tabletops & War Games: Regular exercises are the NCSC-recommended way to build 'muscle memory.'
- Audit & Metrics: Developing dashboards that show MTTR (Mean Time to Respond) and Vulnerability Burn-down rates for the Head of Sec.
Requirements:
- Secure by Design: Act as a security champion for Software and Platform Engineering teams to ensure 'Security-as-Code' is integrated into CI/CD pipelines.
- Advanced Threat Hunting: Proven ability to proactively hunt for threats using the MITRE ATT&CK framework.
- Cloud Security Operations: Hands‐on experience securing AWS and GCP environments.
- Forensics & Investigation: Mastery of deep‐diving systems forensics on both Windows and macOS.
- Automation & Scripting: Proficiency in Python or Go for automating SOC workflows (+ SOAR).
- Modern Observability: Experience with developer‐centric observability tools (e.g., Logfire, OpenTelemetry).
- Audit & Reporting: Ability to develop and maintain automated dashboards for MTTR and MTTD for executive reporting.
- Incident Commander: Ability to lead high‐severity incidents end‐to‐end.
- Detection Engineering: Expertise in tuning SIEM/EDR to reduce noise and maintain 'data freshness.'
- Playbook Development: Proven experience designing and implementing executable runbooks.
- Infrastructure Knowledge: Strong understanding of network protocols, API security, and container security.
- Readiness Exercises: Experience organising and running Tabletop Exercises and 'War Games.'
- Mentorship: A commitment to up‐skilling junior analysts.
- Standards: Good working knowledge of ISO27001, NIST CSF, and PCI DSS v4.0.
Benefits:
- A competitive salary
- BUPA health insurance
- Discounted gym membership through BUPA
- OnHand volunteering membership and one paid volunteering day per year
- Hybrid working
- Pension scheme
- Motorway car leasing scheme
- Enhanced parental leave
- Workplace nursery scheme
- Regular social events
- Cycle to work scheme
We are committed to equality of opportunity for all employees. We work to provide a supportive and inclusive environment where people can maximise their full potential. We believe our workforce should reflect a variety of backgrounds, talents, perspectives and experiences.
Senior SOC Analyst in London employer: Motorway Online Ltd
Contact Detail:
Motorway Online Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior SOC Analyst in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for interviews by practising common questions and scenarios related to SOC roles. Think about how you'd handle incidents or vulnerabilities, and be ready to showcase your problem-solving skills.
✨Tip Number 3
Show off your skills! Create a portfolio or GitHub repository where you can demonstrate your projects, scripts, or any relevant work. This gives potential employers a tangible look at what you can do.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen. Plus, we love seeing candidates who are proactive and take the initiative to reach out directly.
We think you need these skills to ace Senior SOC Analyst in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Senior SOC Analyst role. Highlight your experience with security operations, incident response, and any relevant tools you've used. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about the role and how your background makes you a perfect fit. Don't forget to mention any specific projects or achievements that showcase your expertise.
Show Off Your Technical Skills: In your application, be sure to highlight your technical skills, especially in areas like threat hunting, cloud security, and automation. We love seeing candidates who can demonstrate their hands-on experience with tools and frameworks relevant to the role.
Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you'll be able to keep track of your application status. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at Motorway Online Ltd
✨Know Your Stuff
Make sure you brush up on your technical skills, especially around SOC processes and incident response. Familiarise yourself with the MITRE ATT&CK framework and be ready to discuss how you've used it in past roles.
✨Show Your Proactivity
Highlight your experience in threat hunting and vulnerability management. Be prepared to share specific examples of how you've proactively identified and mitigated threats in previous positions.
✨Communicate Clearly
As an Incident Commander, you'll need to convey complex information to non-technical stakeholders. Practice explaining technical concepts in simple terms, so you're ready to demonstrate this skill during the interview.
✨Prepare for Scenario Questions
Expect to face scenario-based questions that test your problem-solving abilities. Think about past incidents you've managed and how you would handle hypothetical situations, focusing on your decision-making process and outcomes.