Security Operations Centre Analyst in Liverpool

Security Operations Centre Analyst – Permanent – Liverpool, United Kingdom – Hybrid – Finance

Princes Group has over 7,000 employees with offices and production sites in the UK, Netherlands, Italy, Poland, France and Mauritius. Princes manufactures 350 different food and drink products responsibly sourced and enjoyed by consumers every day. None of this would be possible without striving to be an employer of choice, where our colleagues are proud to represent our business.

Job Purpose

Provide operational support within the SOC framework, ensuring cyber security events, alerts and incidents are investigated efficiently and acted upon within operational agreements.

Role Description

• Identify – assets recorded and tracked within asset management solutions.
• Protect – assets protected using defined tools and processes.
• Detect – monitoring for threats and vulnerabilities detected via defined tools and processes.
• Respond – responding to threats following defined processes.
• Recover – recovering from threats following defined processes.

To monitor, investigate, and respond to security incidents escalated from the Service Desk and automated monitoring systems, ensuring the confidentiality, integrity, and availability of IT systems across the organization.

To provide out-of-hours support for critical security events, ensuring swift containment and resolution of threats that could impact business operations, particularly those affecting supply chain and production systems.

To offer guidance and support to Service Desk Support Analysts on security-related issues, transferring knowledge and promoting best practices to improve awareness of potential threats and overall security awareness within the team.

To take a lead role in the transition of new security tools and services from IT project teams into operational use, ensuring comprehensive documentation and effective knowledge transfer to the Service Desk and SOC teams.

Working alongside the Security Operations Centre Team Lead and other IT leadership, ensure the highest standards of security monitoring and incident response are maintained, fostering a proactive and customer-focused culture within the support teams.

To liaise with internal stakeholders and third-party security service providers to ensure timely resolution of security incidents and continuous improvement of security operations.

Dimensions

Internal contacts will include members of the organisation at all levels, given the support element of the role.

External contacts will include representatives from our managed security partners who provide managed security monitoring. These contacts will liaise with SOC for the resolution of any perceivable threat, security concerns and escalations in relation to security incidents requiring further support.

Key Responsibilities

The key elements of this role are as follows.

• Support of Princes Security Monitoring and Vulnerability Management.
• Provide frontline support within the Security Operations Centre for monitoring security events and managing vulnerabilities across Princes\' IT estate. This includes reviewing alerts, assisting in threat detection and response, and ensuring vulnerabilities are identified, tracked, and remediated in line with security policies and operational priorities.
• Monitor and respond to security incidents escalated from the Service Desk and automated systems.
• Perform daily, weekly, and monthly security checks across infrastructure and applications.
• Conduct security auditing of privileged access, user activity, and system changes.
• Provide out-of-hours support for critical security events to ensure business continuity.
• Support and guide Service Desk Support Analysts on security-related issues and incident handling.
• Transfer knowledge and documentation for new security services from IT project teams into operational support.
• Collaborate with the Security Operations Centre Team Lead to maintain high service standards and a security-focused culture.
• Liaise with internal teams and third-party security providers to coordinate incident response and threat intelligence.
• Maintain and update SOC documentation, including runbooks, escalation procedures, and asset inventories.
• Stay current with emerging threats, vulnerabilities, and compliance requirements to enhance security operations.
• Support the continuous improvement of the SOC function and assist other IT functions within the product lifecycle with a security first approach.

Service Transition and Knowledge Transfer

• Collaborate with the PMO, IT Security, and Business Analysts to ensure seamless transition of new or updated security services into live SOC operations, in alignment with the Transition policy.
• Lead the evaluation, recommendation, and onboarding of new security tools or monitoring capabilities that fall outside formal project scopes, ensuring they meet operational and threat detection requirements.
• Provide the Service Desk team with actionable cyber threat intelligence and awareness guidance, ensuring they are equipped to recognize and respond appropriately to common threat indicators, reporting phishing attempts, and other security-related queries. This includes sharing relevant documentation, briefings, and updates on emerging threats and best practices to users where applicable.
• Identify gaps in SOC processes, playbooks, and analyst knowledge, and develop targeted training and documentation to improve detection accuracy, response times, and reduce escalations.
• Ensure all transitioned services are integrated into SOC workflows, including dashboards, alerting mechanisms, and incident response procedures.

Technical Requirements

Role Requirements

Excellent knowledge of Microsoft Technologies

• Windows 11
• Server OS
• Microsoft 365
• Azure Services
• SCCM / Intune
• Microsoft Sentinel / Defender

VMware vSphere & Virtual Desktop Environments

Firewall Technologies

Email filtering solutions (Mimecast / Proofpoint etc)

Knowledge of the Cyber Security Industry, concepts & related technologies

• Vulnerability Management
• Security Monitoring
• Threat Detection
• Incident Response
• Vulnerability Management
• Access Control
• Risk Management
• Security Awareness

Good understanding of ITIL framework

Desirable

• Hands‑on experience with firewalls (creating rules / troubleshooting issues via logs etc.)

Key Behavioural Indicators

• Excellent customer service skills.
• Excellent written and verbal communication skills.
• Strong organisational skills with a logical, methodical and structured approach.
• Strong problem solving and analytical skills.
• Flexible and adaptable approach.
• Capable of working well under pressure.
• Appetite for continuous improvement and an attention to detail.
• Ability to work cross‑functionally dealing with all levels of business employees from senior executives and shop floor operations.

Full UK Driving Licence – Occasional travel to Princes UK sites will be required as part of this role.

Benefits

• 25 Days Annual Leave plus Birthday off
• 14.5% Pension – 5% employee opt in / 9.5% employer
• Hybrid & Flexible Working – 4 Days in Office / 1 Day WFH
• Flexible Holiday Option – Buy 5 Additional Days
• Enhanced Family Friendly & Carers Policies
• Life Assurance Cover
• Private Medical Insurance
• Critical Illness Cover
• Learning & Development Opportunities

Referrals increase your chances of interviewing at Princes Group by 2x.