Senior Cybersecurity Analyst (SOC) in London

S-RM is a global intelligence and cyber security consultancy. Since 2005, we have helped some of the most demanding clients in the world solve their toughest information security challenges. We invest in our people’s wellbeing, learning, and ideas, creating a culture that balances professional growth with personal balance.

Our Security Operations Centre is a critical component of our Cybersecurity division. As a Senior Analyst (SOC), you will leverage SOC infrastructure and tools to deliver managed detection & response services, primarily for EU region clients. You must be fluent in technical English and German. You will lead analysts or sub-teams, act as a point of escalation, and mentor junior analysts in high-level incident management, process improvement, and reporting.

• Contribute to day-to-day SOC operations, ensuring efficient monitoring, detection, and response across clients’ estates.
• Continuously monitor and analyze alerts from SIEM, SOAR, EDR, and related tools to detect suspicious activities.
• Investigate and respond to security incidents, executing containment, mitigation, and remediation.
• Tune detection rules, automate workflows, and improve incident detection accuracy.
• Perform in-depth log analysis from firewalls and endpoint platforms to investigate complex incidents.
• Document incidents thoroughly, including timelines, analysis, mitigation steps, and lessons learned, and deliver regular reports to stakeholders.
• Act as second-line escalation support for the 24×7 SOC team.
• Support onboarding and service-request activity for EU MDR clients and named SOC points of contact.
• Proactively hunt for indicators of compromise and advanced threats using automated tools and manual analysis.
• Integrate up-to-date threat intelligence into detection and response efforts.

• Provide guidance and mentorship to junior SOC analysts, fostering skill development and ensuring adherence to security best practices.

• Collaborate with the SOC team to develop and implement strategies, improve processes, and introduce new technologies.
• Work with SOC analysts, security engineers, and IT teams to ensure seamless operation of security tools.
• Identify improvements in monitoring and response capabilities, proposing and implementing new solutions.
• Assist with onboarding and configuring SOC services for new MDR customers.
• Collaborate with global teams to integrate SOC operations with broader cybersecurity initiatives.
• Participate in internal technical development initiatives to enhance tools and incident response capabilities.

• A bachelor’s or master’s degree in cybersecurity, computer science, or related field. Industry certifications such as Blue Team, CISSP, Security+ are advantageous.
• 3+ years of experience in a SOC or cybersecurity operations role, with demonstrated team leadership or supervision.
• Strong understanding of EDR and SecOps toolsets, with experience configuring and leveraging these tools for incident detection.
• Experience mentoring junior SOC analysts and effective communication and team-building skills.
• Client-focused mindset, comfortable discussing cybersecurity matters with customers in business language.
• Investigative mindset and curiosity to solve problems with limited information.
• Dependability, as customers rely on us to manage their security.
• Clear and concise communication, with ability to communicate findings to technical and non-technical audiences.
• Demonstrable knowledge of cyber threat actors, tactics, techniques, and interest in cybersecurity matters.

The successful candidate must have permission to work in the United Kingdom by the start of their employment.