At a Glance
- Tasks: Investigate and respond to real security incidents while supporting clients directly.
- Company: Join SecurityHQ, a global leader in cybersecurity solutions.
- Benefits: Gain hands-on experience, work in a dynamic environment, and enjoy career growth.
- Other info: Work 3 days a week from our Blackfriars office in a collaborative team.
- Why this job: Make a genuine impact in cybersecurity while developing your technical skills.
- Qualifications: 3-5 years in SOC or Incident Response with strong analytical skills.
The predicted salary is between 40000 - 50000 £ per year.
About the role: This is an integral growth role within our Security Operations team, ideal for someone looking to deepen their expertise in incident response and client-facing security operations. You’ll be working hands-on with real security incidents in a fast-paced environment, building your technical capability while making a genuine impact. You’ll play a key role in supporting our clients day-to-day, acting as an extension of their security teams. The role is focused on investigation and response, ensuring incidents are managed effectively from start to finish, while also contributing to improving how we detect and respond to threats over time. This role is based 3 days a week from our Blackfriars office.
About SecurityHQ: SecurityHQ is a global cybersecurity company. Our specialist teams design, engineer and manage solutions that do three things: Promote clarity and trust in a complex world. Build momentum around improving security posture. And increase the value of cybersecurity investment within organizations. Free from limitations, and inclusive of all requirements, we focus on defending today, while mitigating the risks of tomorrow. And into the future. Our solutions are tailored to our customers and their unique context. Around the clock, 365 days per year, our customers are never alone. SecurityHQ – We’re focused on engineering cybersecurity, by design.
Responsibilities:
- Investigate and respond to security incidents across SIEM, EDR, email, cloud, identity and network platforms
- Take full ownership of incidents, from initial alert through to resolution
- Work directly with clients, providing clear updates and guiding them through incidents
- Analyze logs, alerts and activity to understand what happened and why
- Carry out proactive threat hunting using threat intelligence and IOCs
- Review and improve detection rules, use cases and alert quality
- Support major incidents, escalations and post-incident reviews
- Maintain clear and accurate documentation, including incident reports and root cause analysis
- Coordinate with SOC, engineering and wider security teams to resolve incidents effectively
- Support process improvements and contribute to strengthening overall security posture
What we’re looking for:
- 3–5 years’ experience in a SOC, MDR or Incident Response role
- Strong hands-on experience investigating threats such as phishing, account compromise, malware and endpoint attacks
- Good understanding of how attacks work (e.g. MITRE ATT&CK)
- Experience working with Microsoft security tools (Defender, Sentinel, etc.)
- Ability to analyze logs, alerts and user activity to build a clear view of incidents
- Comfortable speaking with clients and explaining technical issues clearly
- Able to manage multiple investigations at once
- Experience writing incident reports and root cause analysis
Security Operations Center Analyst in London employer: SecurityHQ
At SecurityHQ, we pride ourselves on being an exceptional employer, offering a dynamic work environment that fosters professional growth and technical expertise in cybersecurity. Our Blackfriars office provides a collaborative atmosphere where employees can thrive, supported by a culture of continuous learning and innovation. With opportunities to engage directly with clients and tackle real-world security challenges, you will not only enhance your skills but also make a meaningful impact in the field of cybersecurity.
