CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Software Development

SOC Analyst

United Kingdom, Birmingham · Job Posted June 14, 2026
Apply Position
Job Link Share

Job Description

The SOC Analyst is a frontline, shift‑based role operating within a 24/7 Security Operations Centre. The role is responsible for monitoring, triaging, analysing, and investigating security alerts and events using SIEM and SOAR platforms to detect potential security incidents and protect monitored environments. Working within defined procedures, runbooks, and escalation paths, the SOC Analyst performs initial investigations, validates alerts, and supports incident response activities. The role requires strong attention to detail, disciplined execution, and the ability to work effectively in a high‑volume, operational environment.

Job Responsibility

  • Continuously monitor security alerts, logs, and event data across customer and internal environments, identifying suspicious or malicious activity
  • Triage and analyze alerts to determine whether they represent potential security or service incidents, and prioritize them
  • Conduct first-line investigations using SIEM, SOAR, and supporting security tools, validating alerts, gathering relevant evidence, and assessing initial impact and severity
  • Recognize successful or unsuccessful attack attempts and escalate appropriately to senior analysts or incident responders
  • Support incident containment and remediation activities by following runbooks and customer guidance
  • Create and maintain incident tickets, record investigation steps and findings, and produce clear incident summaries
  • Contribute to post-incident reviews by sharing findings and identifying opportunities for improvement
  • Apply threat intelligence provided by the SOC to support alert analysis and investigations
  • Follow defined SOC procedures, documentation standards, and shift-handover processes
  • Participate fully in the 24/7 shift rota

Requirements

  • Foundational understanding of cyber security concepts, including TCP/IP networking, common log sources, and basic attack techniques
  • Comfortable working with a SIEM platform such as Splunk, Microsoft Sentinel, or an equivalent tool
  • Basic knowledge of common operating systems including Windows, Linux, and macOS
  • Strong analytical and problem-solving skills
  • Clear written and verbal communication skills
  • Ability to work calmly and effectively in a shift-based operational environment
  • Ability to follow procedures and work with minimal supervision
  • Awareness of scripting, query languages, or rule-based detection is advantageous but not required
  • Experience or strong interest in cyber security or IT operations
  • Entry-level or foundation cyber security certifications desirable (CySA+, SC-200)
  • Experience with cloud platforms such as Microsoft Azure and/or AWS is desirable
  • Proficiency with Microsoft Office tools, particularly Excel and Word
  • Eligibility for, or holding, UK SC Clearance
  • Willingness to work within a 24/7 shift-based SOC environment

Nice to have

  • Entry-level or foundation cyber security certifications desirable (CySA+, SC-200)
  • Experience with cloud platforms such as Microsoft Azure and/or AWS is desirable
  • Awareness of scripting, query languages, or rule-based detection

What we offer

  • Tailored benefits that support physical, emotional, and financial wellbeing
  • Continuous growth and development opportunities
  • Flexible work options
NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

SOC Analyst

8 matching positions

SOC Analyst

As a SOC Analyst, you will support the protection of Vodafone customer environme...
Location
Location
United Kingdom , Farnborough
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience working in a Security Operations Centre or similar operational environment
  • Ability to interpret and analyse logs and alerts from IT, network, and security systems
  • Experience with SIEM technologies such as Huntsman, Securonix, or Splunk
  • Foundational knowledge of IT and network security concepts (e.g. Windows, firewalls, IPS, web proxy, email security)
  • Demonstrated interest in cyber security and the evolving threat landscape, with a willingness to learn and develop
  • Be able to maintain Customer confidentiality and ability to hold Developed Vetting (DV) level security clearance
Job Responsibility
Job Responsibility
  • Monitor Security Information and Event Management (SIEM) platforms and associated security tooling to identify potential security threats and incidents
  • Perform initial triage and investigation of security alerts, assessing severity, credibility, and impact in line with SOC procedures
  • Escalate security incidents accurately and within agreed service levels, ensuring high-quality handovers between shifts and to senior analysts
  • Monitor managed security services including firewalls and intrusion prevention systems, identifying anomalous or suspicious activity
  • Raise and manage incident tickets, liaising professionally with internal teams and external customers, and contribute to security reporting where required
What we offer
What we offer
  • Excellent basic salary plus bonus and Vodafone benefits
  • Up to 28 days off plus bank holidays
  • Paid time for charity work
  • Discounts
  • Vouchers
  • Pension plan
  • Parental leave policies
  • Fulltime
Read More
Arrow Right

Soc Analyst

Location
Location
United Kingdom , Cambridge
Salary
Salary:
Not provided
roku.com Logo
Roku
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of SIEM, EDR, cloud security services (e.g., AWS GuardDuty), and various security technologies
  • Experience in automation and development of automated playbooks and associated processes in security orchestration, automation and response (SOAR) environments
  • Experience in the creation of incident response plans and leading incident response efforts and post incident reporting when required
  • Threat intelligence, knowledge of tactics, techniques, and procedures (TTPs) utilised by threat actors and how to generate and deploy mitigation strategies
  • Vulnerability management, monitoring, reporting and engagement with necessary stakeholders to ensure timely remediation
  • Can demonstrate strong understanding of network security principles and encryption technologies
  • Experience of security change management processes and procedures
  • Demonstrate experience of risk assessment and advisory capabilities on both internal systems and products/solutions from third party vendors (SaaS, AI etc)
  • Experience in contributing to the development, implementation and management of security policies and procedures
  • Strong knowledge of security frameworks and industry best practices – such as ISO 270001, NIST, PCI-DSS and others
Job Responsibility
Job Responsibility
  • Supporting the design and implementation of information security systems and frameworks including threat prevention, detection and mitigation tools
  • Manage, maintain and optimize security information and event management (SIEM) platforms and associated security infrastructure
  • Detect and respond to information security incidents, investigate security incidents, identify attack vectors, and lead containment/eradication/recovery efforts
  • Create detailed incident reports, lead post-incident reviews, document lessons learned, and contribute to compliance reporting
  • Hunt for undetected threats, tune security tools, refine detection rules, and address false positives
  • Vulnerability management, analysis, oversee the vulnerability management lifecycle and reporting, support prioritization and advise relevant stakeholders on vulnerability status and postures
  • Identify risks in new and existing projects and environments and support the implementation of necessary security controls to meet business needs
  • Support the implementation of security orchestration, automation and response (SOAR) playbooks and procedures in order to improve response times and ensure consistent approach to incidents
  • Provide mentorship and support to more junior analysts, act as escalation point for complex issues
  • Support in testing and evaluation of security products and solutions
What we offer
What we offer
  • Global access to mental health and financial wellness support and resources
  • healthcare (medical, dental, and vision)
  • life, accident, disability, commuter, and retirement options (401(k)/pension)
  • Fulltime
Read More
Arrow Right

SOC Analyst

Piper Companies is seeking a SOC Analyst to join a growing cybersecurity organiz...
Location
Location
United States , Raleigh
Salary
Salary:
115000.00 - 135000.00 USD / Year
pipercompanies.com Logo
Piper Companies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active Secret security clearance (required)
  • 3+ years of experience in a Security Operations Center (SOC) or similar security role
  • Heavy hands-on experience with Splunk, including alerting, dashboards, and log analysis
  • Strong understanding of security events, incident response, and threat detection techniques
  • Experience analyzing network, system, and application logs
Job Responsibility
Job Responsibility
  • Monitor, triage, and investigate security alerts using Splunk and other SIEM tools
  • Analyze logs, network traffic, and endpoint data to identify potential threats and vulnerabilities
  • Respond to security incidents, including containment, eradication, and recovery activities
  • Create, tune, and maintain Splunk dashboards, alerts, and correlation searches
  • Document incidents, findings, and response actions in accordance with security policies and procedures
  • Collaborate with security engineers and stakeholders to improve SOC processes and detection capabilities
  • Support continuous improvement of security monitoring and incident response workflows
What we offer
What we offer
  • medical
  • dental
  • vision
  • 401(k)
  • PTO
  • Fulltime
Read More
Arrow Right

Soc Analyst

Zachary Piper Solutions is seeking a skilled SOC Analyst to support a critical i...
Location
Location
United States , Mclean
Salary
Salary:
110000.00 - 170000.00 USD / Year
pipercompanies.com Logo
Piper Companies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI Full Scope Polygraph
  • 3-8+ years of related experience with cyber security, network security, and/or network engineering
  • Must have active IAT II certification (Security+ CE, GIAC Security Essentials Certification (GSEC), CySa+, CEH, CISM, etc.)
  • Working knowledge of current COTS Cybersecurity technologies/ SIEMs (i.e. Splunk, Wireshark, Arcsight)
  • Experience using MITRE ATT&CK and Cyber Kill Chain methodologies
  • Experience with network intrusion detection system/prevention systems (IDS/IPS)
  • Experience with network and host malware detection and prevention (EDR)
  • Familiarity with one of the following programming languages preferred (Python, JavaScript, Yara, Snort)
Job Responsibility
Job Responsibility
  • Detect, identify, and report possible cyber-attacks, intrusions, anomalous activities, and misuse activities
  • Analyze network traffic and system data to identify unusual activity and potential threats
  • Conduct cyber incident triage to determine scope, urgency, and potential impact
  • identify specific vulnerabilities and recommend quick remediation measures
  • Track and document cyber incidents from initial detection to final resolution
  • Assess and analyze damage to data and infrastructure resulting from cyber incidents
  • Perform trend analysis and reporting on cyber incidents
What we offer
What we offer
  • PTO
  • Paid Holidays
  • Sick leave as required by state laws
  • Medical
  • Dental
  • Vision
  • 401k
  • Training & development opportunities
  • certification reimbursement
  • Long term program
  • Fulltime
Read More
Arrow Right

SOC Analyst

Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Should have at least 6+ years of experience in SOC
  • Seasoned experience in SOC Analysis Operations
  • Seasoned experience in SIEM usage for investigations
  • Seasoned experience in Security technologies such as (but not limited to) Firewall, IPS, IDS, Proxy
  • Seasoned experience in dealing with technical support to clients
  • Seasoned experience in handling security incidents end to end
  • Seasoned experience in configuring/managing security controls, such as SIEM, Firewall, IDS/IPS, EDR, NDR, UTM, Proxy, SOAR, Honeypots and other security tools
  • Seasoned experience in Security Analysis or Engineering preferably gained within a global services organization
Job Responsibility
Job Responsibility
  • Works as part of a global Cyber Defense Centre (CDC) team that works 24/7 on rotational shifts
  • Works with client stakeholders and relevant internal teams to tune the MSSP platform and client SIEM to enable more efficient detection, analysis and reporting
  • Monitors security tools to review and analyse security logs from client environments
  • Generates continuous improvement ideas for supported security tools/technologies, to enable improvements to the company services, employee experience and client experience
  • Adheres to SOPs, customer Run Books, and standard processes to ensure a globally consistent delivery whilst also proposing changes and improvements to these standards
  • Utilizes and documents best practices and amends existing documentation as required
  • Identifies opportunities to make automations which will help the clients and security delivery teams
  • Performs security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics
  • Utilizes a broad range of skills in LAN technologies, Windows and Linux O/Ss, and general security infrastructure
  • Ensures usage of knowledge articles in incident diagnosis and resolution and assists with updating as and when required
  • Fulltime
Read More
Arrow Right

SOC Analyst

Join Vodafone Business Security Enhanced and strengthen the cyber security of th...
Location
Location
United Kingdom , Farnborough
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience working in a Security Operations Centre or similar operational environment
  • Ability to interpret and analyse logs and alerts from IT, network, and security systems
  • Experience with SIEM technologies such as Huntsman, Securonix, or Splunk
  • Foundational knowledge of IT and network security concepts (e.g. Windows, firewalls, IPS, web proxy, email security)
  • Demonstrated interest in cyber security and the evolving threat landscape, with a willingness to learn and develop
  • Be able to maintain Customer confidentiality and ability to hold Developed Vetting (DV) level security clearance
Job Responsibility
Job Responsibility
  • Monitor Security Information and Event Management (SIEM) platforms and associated security tooling to identify potential security threats and incidents
  • Perform initial triage and investigation of security alerts, assessing severity, credibility, and impact in line with SOC procedures
  • Escalate security incidents accurately and within agreed service levels, ensuring high-quality handovers between shifts and to senior analysts
  • Monitor managed security services including firewalls and intrusion prevention systems, identifying anomalous or suspicious activity
  • Raise and manage incident tickets, liaising professionally with internal teams and external customers, and contribute to security reporting where required
What we offer
What we offer
  • Great pay, bonuses, up to 28 days off plus bank holidays, and paid time for charity work
  • Discounts, vouchers, a pension plan and loads more
  • Amazing learning tools and top-notch parental leave policies
  • Fulltime
Read More
Arrow Right

SOC Analyst

We have an exciting opportunity for a SOC Analyst to join our growing Secure Man...
Location
Location
United Kingdom , Glasgow or Reading
Salary
Salary:
Not provided
fsp.co Logo
FSP
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum two years’ experience as a SOC analyst, preferably in the Microsoft ecosystem
  • Able to demonstrate skills and knowledge required to deal with a security incident
  • Able to demonstrate and articulate the value of cyber security investment
  • Technical troubleshooting and investigative skills
  • Strong alignment with FSP values and ethos
  • Commitment to teamwork, quality and mutual success
  • Proactivity with an ability to operate with pace and energy
  • Strong communication and interpersonal skills
  • Dedication to excellence and quality
Job Responsibility
Job Responsibility
  • Monitor and respond to incidents and alerts across a variety of environments and customers
  • Bring experience and knowledge of the Microsoft suite of products to automate processes and improve existing automation solutions
  • Demonstrate a working knowledge of KQL to query and analyse security logs and data
  • Apply a strong knowledge of the cyber threats, hazards, risks, controls, and mitigations to protect organisations and people
  • Work directly with customers to understand their environments and ways of working
  • Work with partners to ensure that we continue to bring new and innovative solutions into delivery
  • Play an active role in the team, contributing to shared development and success
  • Stay up to date with the latest technology developments and promote these within projects and delivery
  • Maintain documentation and records to a high standard
  • Share knowledge as part of the FSP technical community
What we offer
What we offer
  • A collaborative and supportive environment in which you can grow and develop your career
  • The tools and opportunity to do work you can be proud of
  • A chance to work alongside some of the best people in the industry
  • Hybrid working
  • Industry leading coaching and mentoring
  • Competitive salary and an excellent benefits package
  • Fulltime
Read More
Arrow Right

SOC Analyst

SOC Analyst – SC Cleared – 12 Month Contract – Hereford
Location
Location
United Kingdom , Hereford
Salary
Salary:
55.00 - 75.00 GBP / Hour
morson.com Logo
Morson Talent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Previous experience in a SOC, IT Operations, or security support role
  • Understanding of key security concepts including malware, phishing, lateral movement and privilege escalation
  • Working knowledge of network fundamentals, windows/Linux system logs and authentication systems
  • Working knowledge of SIEM platforms (e.g. Microsoft sentinel, Splunk, Elastic, QRadar)
  • Awareness of security frameworks and methodologies (NIST CSF, MITRE ATT&CK, ISO27001)
Job Responsibility
Job Responsibility
  • Alert Triage: Review and assess alerts escalated by the outsourced SOC
  • validate their accuracy and determine potential impact
  • Initial Investigation: Perform first-line investigation using available tools (SIEM, Device Logs, firewall logs and SIEM alerts)
  • User Interaction: Engage with affected end users or asset owners to collect additional information, verify events, or guide immediate containment steps (e.g. asset isolation, password reset)
  • Escalation: Escalate confirmed or high severity incidents to the Level 2 SOC (outsourced) or internal incident response teams, ensuring complete and accurate handoff documentation
  • Incident Documentation: Create and maintain detailed case notes, timelines, and evidence within the case management system to support investigations and compliance requirements
  • Collaboration: Serve as the coordination point between the security team and the external SOC partner, maintaining strong communication and situational awareness
  • Playbook Execution: follow established triage and escalation playbooks
  • suggest improvements based on recurring issues or inefficiencies
  • Threat Awareness: Maintain awareness of current cyber threats, attacker techniques (MITRE ATT&CK), and industry trends relevant to the organisations threat landscape
Read More
Arrow Right