CrawlJobs Logo

SOC Engineer

United Kingdom, Glasgow or Reading · Job Posted June 29, 2026
Apply Position
Job Link Share

Job Description

We have an exciting opportunity to join our Secure Managed Services team as a Security Operations Centre (SOC) Engineer and help build and evolve our Managed SOC platform. The successful candidate will design and scale security solutions using Microsoft Sentinel, automation and DevOps, working closely with analysts and architects to deliver secure, repeatable, high impact services. This role is perfect for engineers who want to create, innovate and drive real security outcomes.

Job Responsibility

  • Perform alert triage, investigate incidents and manage SOC tickets to maintain operational effectiveness
  • Collaborate with SOC Analysts to identify, design and implement automation and service optimisation improvements
  • Design, deploy and maintain standardised Microsoft Sentinel solutions using Bicep, ARM/JSON templates, PowerShell, infrastructure-as-code and DevOps pipelines
  • Produce and maintain high-quality documentation and actively share knowledge to strengthen SOC service delivery
  • Share knowledge as part of the FSP technical community

Requirements

  • Extensive experience delivering Microsoft security solutions, including Microsoft Sentinel (as code), with relevant certifications (SC‑900, AZ‑900, AWS CCP)
  • Proven ability to deliver repeatable, high‑quality outcomes across development, operations, and security
  • Strong focus on engineering best practices (clean code, version control, reliable deployments)
  • Skilled at simplifying complex requirements into maintainable designs and clearly communicating to technical and non‑technical stakeholders
  • Experienced in 24x7 SOC environments, secure and scalable multi‑tenant DevOps, with strong troubleshooting, investigative skills, and UK security clearance eligibility

Nice to have

  • Experience working within a Managed SOC or MSSP environment
  • Familiarity with security frameworks such as NIST CSF, ISO 27001 or CIS
  • MS SC-200 or AZ-104 accreditations
  • Exposure to AWS cloud services and security operations
  • AWS Certified Security – Specialty (SCS-C02)

What we offer

  • A collaborative and supportive environment in which you can grow and develop your career
  • The tools and opportunity to do work you can be proud of
  • A chance to work alongside some of the best people in the industry, who always seek to share their knowledge and experience
  • Hybrid working
  • Industry leading coaching and mentoring
  • Competitive salary and an excellent benefits package

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

SOC Engineer

8 matching positions

Soc engineer

A great role for a hands-on SOC Engineer with solid SIEM skills (Sentinel or Spl...
Location
Location
United Kingdom , Farnborough; Hemel Hempstead
Salary
Salary:
55000.00 - 63000.00 GBP / Year
thepeoplenetwork.co.uk Logo
Fynity
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong SIEM experience (Sentinel or Splunk)
  • Good understanding of information security fundamentals
  • Familiarity with security monitoring/protective technologies
  • Organised, able to juggle priorities and work with others
  • CompTIA Network+ or equivalent
  • Willing and able to go through a high level of security clearance in the UK
Job Responsibility
Job Responsibility
  • Installing, configuring and supporting SOC tooling
  • Managing SIEM platforms (Sentinel or Splunk)
  • Building SIEM platforms
  • Supporting threat intel, malware and security monitoring platforms
  • Working with teams to assess risks, improve controls and apply changes
  • Keeping up with threats and recommending improvements
  • Fulltime
Read More
Arrow Right

SOC Engineer

This role focuses on enhancing security operations by driving improvements in th...
Location
Location
United States , Columbus
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 7 years' experience in security engineering, detection engineering, or SOC operations
  • Proficient in using security monitoring platforms such as Splunk, Azure Sentinel, and Microsoft Defender
  • Familiarity with Microsoft security technologies, including Defender, Sentinel, and Intune, is advantageous
  • Strong knowledge of event logging, threat detection methodologies, and security architecture
  • Hands-on experience in incident response, threat hunting, and technical risk analysis
  • Understanding of cloud environments, DevSecOps practices, and security automation
  • Excellent analytical, problem-solving, and communication skills
Job Responsibility
Job Responsibility
  • Design and deploy monitoring solutions tailored for hybrid enterprise and cloud environments
  • Develop advanced detection rules and correlation logic to enhance threat visibility and minimize false positives
  • Integrate security tools with ticketing systems, orchestration platforms, and reporting mechanisms to streamline SOC workflows
  • Collaborate with security analysts to refine investigation processes and bolster response capabilities
  • Lead containment, eradication, and recovery efforts during major security incidents
  • Create automation scripts and playbooks to accelerate triage and response activities
  • Conduct root cause analysis and propose long-term preventive measures
  • Work closely with infrastructure, cloud, and application teams to ensure proper logging and monitoring configurations
  • Utilize frameworks like MITRE ATT&CK to enhance detection engineering and threat hunting strategies
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • company 401(k) plan
Read More
Arrow Right

SOC Engineer

Replit is the agentic software creation platform that enables anyone to build ap...
Location
Location
United States , Foster City
Salary
Salary:
180000.00 - 250000.00 USD / Year
replit.com Logo
Replit
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of software engineering fundamentals, including code structure, build systems, dependencies, and package ecosystems
  • Understanding of CI/CD pipelines and DevOps workflows
  • Solid knowledge of cloud architecture, especially Google Cloud Platform (GCP) services used in modern cloud-native deployments
  • Familiarity with SaaS architectures, identity systems, and integration patterns
  • Hands-on experience with SIEM, Cloud Logging, and log-based investigation workflows
  • Ability to perform investigations using log data, behavioral indicators, and threat intelligence
  • General understanding of vulnerability lifecycles, exploitability analysis, and common attack vectors
Job Responsibility
Job Responsibility
  • Continuously monitor emerging threats, including bad actor activity, 0-day vulnerabilities, public exploitation campaigns, bug bounty reports, and customer-reported security issues
  • Quickly assess the applicability of these threats to Replit’s cloud infrastructure, SaaS services, internal tooling, and platform components
  • Conduct targeted investigations to determine whether Replit is already impacted by a newly discovered threat, vulnerability, or exploit
  • Analyze logs, telemetry, and system behaviors using SIEM, metrics, Cloud Logging, and related tools
  • Identify gaps or weaknesses in existing detection or visibility and propose improvements
  • Research potential impact paths and develop mitigation strategies for confirmed or applicable threats
  • Partner closely with Security, SRE, and Engineering teams to coordinate and implement containment, patches, configuration updates, or code-level fixes
  • Document findings, mitigations, and follow-up actions clearly for internal teams
What we offer
What we offer
  • Competitive Salary & Equity
  • 401(k) Program with a 4% match
  • Health, Dental, Vision and Life Insurance
  • Short Term and Long Term Disability
  • Paid Parental, Medical, Caregiver Leave
  • Commuter Benefits
  • Monthly Wellness Stipend
  • Autonomous Work Environment
  • In Office Set-Up Reimbursement
  • Flexible Time Off (FTO) + Holidays
  • Fulltime
Read More
Arrow Right

SOC Engineer - L3

The Information Security Analyst is a seasoned subject matter expert, responsibl...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Excellent communication skills to effectively convey technical information to non-technical stakeholders
  • Excellent analytical thinking and problem-solving skills to prevent hacking on a network
  • Ability to identify and evaluate potential risks and to develop solutions
  • Ability to identify and mitigate network vulnerabilities and explain how to avoid them
  • Seasoned proficiency in understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts
  • Seasoned proficiency in understanding of patch management with the ability to deploy patches in a timely manner whilst understanding business impact
  • Seasoned proficiency with MAC and OS
  • Seasoned familiarity with security frameworks, standards, and regulations (for example, NIST, CIS, GDPR)
  • Seasoned proficiency of understanding in network and system architecture, protocols, and security controls
  • Strong analytical skills to analyze security incidents and assess potential risks
Job Responsibility
Job Responsibility
  • Monitors security alerts and events from various sources, investigates potential threats, and escalates incidents as necessary
  • Assists in the implementation and monitoring of security controls, including firewalls, intrusion detection systems, and access controls
  • Performs regular vulnerability assessments, analyses scan results, and assists in prioritizing and remediating identified vulnerabilities
  • Supports the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts
  • Assists in ensuring compliance with industry standards (for example, GDPR, ISO 27001) by conducting assessments and implementing necessary controls
  • Installs security measures and operates software to protect systems and information infrastructure, including firewalls and data encryption programs
  • Documents security breaches and assess the damage they cause
  • Works with the security team to perform tests and uncover network vulnerabilities
  • Fixes detected vulnerabilities to maintain a high-security standard
  • Develops organizational best practices for IT security
  • Fulltime
Read More
Arrow Right

Senior Staff Product Development Engineer (SOC / Characterization)

Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
amd.com Logo
AMD
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive years of experience into post-silicon validation with strong background on SoC validation and system level testing
  • Technical leadership experience leading a small group of senior engineers
  • Strong understanding of ARM SoC architecture and Memory protocols such as DDR5 and LPDDR5
  • Experienced on bench testing and debug skills with lab instruments usage
  • Proficiency in using test equipment such as oscilloscopes, logic analyzers and protocol analyzers
  • Experienced in Linux environment, data analysis and scripting languages (e.g. Python, Perl) for automation and data processing
  • Strong communication and leadership skills, including data presentation and ability to work well in a group environment that spans across continents
  • Experience with AMD/Xilinx Vivado and FPGA design flow is a plus
  • BS in EE, CS, ECE or related field
  • MS preferred
Job Responsibility
Job Responsibility
  • Gain expertise into the AMD SoC architecture to characterize next generation Memory Subsystem (Controller, PHY and IO) for various supported protocols such as DDR4, LPDDR4, DDR5, LPDDR5, DDR6 and LPDDR6
  • Understand Pattern development nuances and guide the team for bench data collection and debug with lab instruments when necessary
  • Work closely with cross functional teams from design and firmware side to identify key new features, firmware stability and ensure proper test coverage for the same
  • Drive continuous improvement initiatives on automated test scripts and test frameworks for efficient data collection, test-time optimization and data analysis
  • Stay updated with the latest developments in Memory specifications and trends to inform product strategy and direction
  • Statistical data analysis to post process volume results for data correlation across Process corners and outlier analysis
  • Responsible for isolating the issue to a specific area such as test gaps, SW bug, silicon bug, or process deviation using bench setup and instill good debug practices in the team
  • Drive cross-functional discussions to address the issues uncovered from debugs and collaborate for ensuring screens are in-place for gaps identified
What we offer
What we offer
  • Benefits offered are described: AMD benefits at a glance
  • Fulltime
Read More
Arrow Right

Soc Engineer Ii - Secret Clearance

Zachary Piper Solutions is seeking a SOC Engineer II – Secret Clearance for a wo...
Location
Location
United States , Raleigh
Salary
Salary:
105000.00 - 125000.00 USD / Year
pipercompanies.com Logo
Piper Companies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience in a Security Operations Center or cybersecurity role
  • Active Secret clearance is required
  • Hands‑on experience with SIEM platforms such as Splunk
  • Knowledge of incident response, threat detection, and vulnerability management processes
  • Familiarity with networking concepts, operating systems, and common attack vectors
  • Experience working in government, defense, or regulated environments preferred
Job Responsibility
Job Responsibility
  • Monitor security alerts and events using SIEM and security monitoring tools to identify potential threats
  • Investigate, analyze, and respond to security incidents in accordance with established procedures
  • Perform threat hunting and proactive analysis to identify indicators of compromise
  • Collaborate with incident response, engineering, and compliance teams to remediate security issues
  • Maintain documentation related to incidents, response actions, and lessons learned
  • Support continuous improvement of SOC processes, tools, and detection capabilities
What we offer
What we offer
  • Medical
  • Dental
  • Vision
  • 401(k)
  • PTO
  • Sick Leave as required by law
  • Fulltime
Read More
Arrow Right

Junior SOC Engineer

The Junior SOC Engineer role at NTT DATA involves supporting the operation and m...
Location
Location
United Kingdom , Birmingham
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands on experience with SIEM platforms
  • Understanding of log formats, parsing, and data normalisation
  • Working knowledge of SIEM query languages such as SPL, KQL, or AQL
  • Basic scripting ability (Python and/or PowerShell) for automation and enrichment
  • Understanding of network traffic flows and the ability to recognise normal vs suspicious activity
  • Familiarity with vulnerability scanning and vulnerability management concepts
  • Foundational experience with SIEM technologies (e.g. Splunk/QRadar)
  • Understanding of log data, alert workflows, and basic threat detection concepts
  • Awareness of common attack techniques and defensive frameworks (e.g. MITRE ATT&CK)
  • Basic scripting or automation experience (Python, PowerShell – desirable)
Job Responsibility
Job Responsibility
  • Assist with the deployment, configuration, and ongoing maintenance of SIEM platforms and data feeds
  • Support onboarding, parsing, and normalisation of log sources across on premises and cloud environments
  • Contribute to the creation, tuning, and maintenance of SIEM detection rules and correlation searches
  • Perform basic health checks and troubleshooting of SIEM data ingestion issues
  • Assist senior engineers and analysts during investigations and incident response activities
  • Support continuous improvement of detections based on incident findings and threat intelligence
  • Support integration of playbooks with SOAR platforms
  • Help update and refine playbooks based on lessons learned and feedback from incidents
  • Participate in threat modelling activities using frameworks such as MITRE ATT&CK and STRIDE
  • Assist in translating threat models and attack techniques into SIEM detection use cases
What we offer
What we offer
  • A range of tailored benefits that support your physical, emotional, and financial wellbeing
  • Continuous growth and development opportunities
  • Flexible work options
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer (SOC)

We are looking for a Senior SOC Engineer to strengthen our Security Operations c...
Location
Location
Qatar , Doha
Salary
Salary:
Not provided
qic.digital Logo
QIC digital hub
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Information Security as an L2/L3 SOC Analyst/Engineer with strong focus on Incident Response
  • Strong understanding of the incident lifecycle, detection engineering, and response escalation
  • Hands-on experience with SIEM/SOAR platforms (e.g., Splunk, Sentinel, Chronicle, QRadar, Wazuh)
  • Experience conducting security investigations and root cause analysis, as well as documenting those
  • Understanding of common log sources (network, endpoint, identity, application)
  • Experience developing detection rules and playbooks (Sigma, KQL, YAML, etc.)
  • Knowledge of ISO 27001 standards, MITRE ATT&CK and threat intelligence practices
  • Basic scripting or automation skills (Python or Bash)
  • Strong documentation, communication, and cross-team collaboration skills
Job Responsibility
Job Responsibility
  • Define and continuously improve security processes, procedures, and incident response playbooks
  • Optimize security event and log collection based on risk and detection relevance
  • Oversee and improve incident response workflows through post-incident analysis and lessons learned
  • Collaborate with L1-L2 security team members to expand detection coverage and develop new use cases
  • Participate in major security incident investigations, providing technical analysis and remediation guidance
  • Standardize automation and orchestration across SIEM, SOAR, EDR and related tools
  • Ensure alignment of security operations with security policies and frameworks (ISO 27001, NIST, MITRE ATT&CK)
  • Review security architecture for cloud and on-prem environments and recommend improvements
  • Lead investigation and response for high and critical severity incidents
  • Track remediation actions and ensure closure of identified security gaps
What we offer
What we offer
  • Extra paid leave
  • Language classes
  • Meeting with experts
  • Professional development
  • QIC running club
  • Relocation support
  • Remote health insurance
  • Tax consultations
  • Travel discounts
  • USD, EUR, or AED salary payouts
  • Fulltime
Read More
Arrow Right