Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Onboard and optimise security technologies while collaborating with teams to enhance detection processes.
- Company: Join Phoenix, a leading IT solution provider focused on innovation and employee development.
- Benefits: Enjoy remote work, competitive salary, and opportunities for professional growth.
- Why this job: Make a real impact in cybersecurity and be part of a supportive culture.
- Qualifications: Experience in SOC operations and strong skills in detection logic and automation.
- Other info: Fully remote role with quarterly office visits and a commitment to diversity.
The predicted salary is between 36000 - 60000 £ per year.
Overview of the role
Phoenix enables digital transformation in the workplace, empowering UK organisations to innovate and transform with cloud and hybrid infrastructures, data, AI, security, and collaboration tools. We are seeking a SOC Engineer who will play a pivotal role in onboarding, deploying, and optimising the technologies and processes that underpin our managed security services.
What will you be doing?
- Lead customer onboarding activities, integrating new environments and configuring detection baselines, automation, playbooks.
- Deploy, tune, and optimise detection rules and correlation logic to reduce false positives and improve alert fidelity.
- Configure and enhance log ingestion pipelines, enrichment workflows, dashboards, and reporting to support SOC operations and customer visibility.
- Develop, maintain, and improve customer SOPs, runbooks, and playbooks to ensure consistent and effective response processes.
- Work closely with Detection Engineering teams to contribute new detections, refine existing analytics, and validate detection logic.
- Support CI/CD processes for detection content, ensuring safe, controlled deployment of rules, scripts, and automation updates.
- Assist in developing and improving SOAR playbooks, validating automated actions, and ensuring operational reliability.
- Maintain structured repositories of detection queries, SOPs, and operational documentation to keep SOC content accurate and up to date.
- Troubleshoot detection and workflow issues, collaborating with internal teams and customers to resolve technical challenges.
- Partner with architects, analysts, and service managers to improve SOC onboarding processes, tooling, and detection standards.
Why you should apply?
At Phoenix, our philosophy is simple – we aim to be the UK’s leading IT solution and managed service provider and that means we recognise that it’s our people who are the heart of everything we do. We do this by providing the encouragement, support and skill development that you need to be the very best you can be at work. We are proud of our culture, so much so that we have developed our Culture Blueprint.
Key Skills
- Strong skills in designing, tuning, and validating detection logic (MITRE ATT&CK aligned).
- Hands‑on experience with SIEM, XDR, SOAR, and log ingestion/detection configuration.
- Background in SOC operations such as analysis, detection engineering, IR, or threat hunting.
- Ability to design and validate automated workflows and SOAR playbooks.
- Experience using CI/CD pipelines and version control (Azure DevOps, GitHub, GitLab).
- Skilled in producing clear SOPs, runbooks, playbooks, and operational documentation.
- Experience supporting customer onboarding and tailoring detections to specific environments.
- Strong communication and collaboration skills across technical and non‑technical teams.
- Proactive, accountable, and able to deliver reliable, high‑quality outcomes.
Practical stuff
- Where is the role based? This role can be fully remote with quarterly visits to the office.
- How many interviews? Following a screen with the Recruitment Team you can expect a two‑stage interview process.
- What about security clearance? SC clearance is required for this role which means you will need to have lived in the UK continuously for at least 5 years and have no criminal record.
- What are the benefits? You can read about the benefits on offer.
- Important BPSS Check: As part of our recruitment process due to the nature of the work we do, all employees are required to undertake a Baseline Personal Security Standard (BPSS) check. While some employees require further security clearance, the BPSS check is a must‑have requirement and all offers of employment are conditional pending the passing of this check.
If you’re still reading, we think there’s a strong chance you might be our kind of person. Here’s the thing, though — research suggests that 60% of women and under‑represented people might have already talked themselves out of applying. Even if you don’t check every box above, we want to encourage you to introduce yourself. We believe a diversity of perspectives and experiences makes a team stronger — and the stronger our team, the more successful we will be.
SOC Engineer employer: Phoenix Software
Contact Detail:
Phoenix Software Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land SOC Engineer
✨Tip Number 1
Get to know the company inside out! Before your interview, dive into Phoenix's culture and values. This will help you connect your skills as a SOC Engineer to what they truly care about, making you stand out.
✨Tip Number 2
Practice makes perfect! Run through common interview questions related to SOC operations and detection engineering. The more comfortable you are with your answers, the more confident you'll feel during the actual interview.
✨Tip Number 3
Show off your collaboration skills! Be ready to share examples of how you've worked with different teams in the past. Highlighting your ability to communicate effectively across technical and non-technical groups can really impress.
✨Tip Number 4
Don’t forget to ask questions! Prepare thoughtful questions about the role and the team dynamics at Phoenix. This shows you're genuinely interested and helps you figure out if it's the right fit for you too.
We think you need these skills to ace SOC Engineer
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience with SOC operations, detection logic, and any relevant tools like SIEM or SOAR. We want to see how your skills align with what we’re looking for!
Show Off Your Communication Skills: Since collaboration is key in this role, don’t forget to showcase your ability to communicate effectively with both technical and non-technical teams. Share examples of how you’ve done this in the past!
Be Proactive and Accountable: We love candidates who take initiative! Highlight instances where you’ve taken charge of a project or solved a problem independently. This shows us you’re ready to deliver high-quality outcomes.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy!
How to prepare for a job interview at Phoenix Software
✨Know Your Tech Inside Out
Make sure you’re well-versed in the technologies mentioned in the job description, like SIEM, XDR, and SOAR. Brush up on your knowledge of detection logic and MITRE ATT&CK framework, as these will likely come up during the interview.
✨Showcase Your Problem-Solving Skills
Prepare to discuss specific examples where you've troubleshot detection and workflow issues. Highlight your collaboration with internal teams and how you resolved technical challenges, as this demonstrates your proactive approach and accountability.
✨Familiarise Yourself with SOPs and Playbooks
Since the role involves developing and maintaining SOPs and playbooks, be ready to talk about your experience in producing clear operational documentation. Bring examples of your work to the interview to showcase your skills in this area.
✨Communicate Effectively
Strong communication is key, especially when working across technical and non-technical teams. Practice explaining complex concepts in simple terms, as this will help you connect with your interviewers and demonstrate your collaborative spirit.
