At a Glance
- Tasks: Join our SOC team to build and optimise security tools and automation.
- Company: Dynamic cyber security firm with a focus on innovation and growth.
- Benefits: Competitive salary, bonus, on-call support, and security clearance sponsorship.
- Other info: Hybrid working with opportunities for career advancement in a supportive environment.
- Why this job: Make a real impact in cyber security while working with cutting-edge technologies.
- Qualifications: Experience with SIEM platforms and strong scripting skills required.
The predicted salary is between 55000 - 55000 £ per year.
- 11620CA3 £55k per year + On call + Bonus
- SC Clearance Sponsorship Available
- SOC Engineer
- Milton Keynes – Hybrid working
We’re seeking a hands‑on SOC Engineer to join a growing Cyber Security Operations Centre supporting a diverse portfolio of customers across multiple sectors
This is a specialist SOC Engineering position focused on building, maintaining, and optimising the tools, telemetry, detections, and automation that enable SOC Analysts to identify and respond to threats effectively.
This is not a generalist cyber security role.
Key Responsibilities
- Administer and optimise Microsoft Sentinel (or equivalent SIEM), including log ingestion, parsing, normalisation, and retention.
- Develop and maintain SOAR workflows and automation using Azure Logic Apps, Python, Power Shell, Bash, and KQL.
- Onboard and manage security telemetry from a range of data sources.
- Design, implement, and tune detection rules to improve alert quality and reduce false positives.
- Conduct proactive threat hunting using SIEM, EDR, and threat intelligence sources.
- Support incident investigations, containment, and response activities.
- Monitor and maintain the health of SOC tooling, sensors, agents, and log pipelines.
- Produce documentation, runbooks, and operational procedures.
Skills & Experience
- Experience engineering and supporting SIEM platforms, ideally Microsoft Sentinel.
- Strong scripting and automation skills (Python, Power Shell, Bash, KQL).
- Experience with SOAR technologies and security automation.
- Knowledge of detection engineering and threat hunting.
- Strong understanding of Windows and Linux logging.
- Good networking knowledge including TCP/IP, DNS, firewalls, and proxies.
- Experience within a SOC, NOC, or 24/7 operational environment.
- Familiarity with MITRE ATT&CK, CVEs, and vulnerability management.
- Exposure to cloud security monitoring across Azure, AWS, or Microsoft 365.
Desirable Certifications
- Microsoft SC-200
- Comp TIA Security+ / Cy SA+
- ISC2 CC or CISSP
- GIAC GCIA
- CEH
- Cisco Cyber Ops or Fortinet certifications
What’s on Offer?
- Opportunity to work within a mature and growing SOC environment.
- Exposure to a wide range of customer environments and technologies.
- Security Clearance sponsorship available for eligible candidates.
- Clear opportunities to contribute to automation, detection engineering, and SOC improvement initiatives.
Location: Milton Keynes (full-time onsite) Working Pattern: Shift rota including evenings, weekends, bank holidays on‑call support.
Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation.
#J-18808-Ljbffr
Contact Details:
Proactive.IT Appointments Limited Recruitment Team