L2 & L3 SOC / Cyber Security Engineer - Threat Hunter / SIEM Sentinel

Social network you want to login/join with:

InfraView - Specialist Cloud & IT Infrastructure Technology Recruitment

Manchester, United Kingdom

Other

Yes

3

08.05.2025

22.06.2025

L2 & L3 SOC / Cyber Security Engineer - Threat Hunter / SIEM Sentinel – £45-65K + 25% Shift – Home / Office 2x per month

My client is one of the most recognisable names in IT and has some of the best people in the industry working for them.

They’re top partners with all the top Vendors, which means you get to work with the best technology, the best people, the best training, the best certification programmes, and the best environment to grow!

Why?

• Work with some of the best cyber consultants in the country.
• The pathway to do whatever you want in cyber is continuous.
• The latest, cutting-edge technology

You will join a 24/7 SOC team, involved in high-level Incident Response activities, proactive threat hunting, and development of detection and use-case capabilities. You’ll work alongside the engineering team to help find tuning and optimization opportunities.

Candidates MUST have or be eligible to gain SC clearance upon hire.

• 2+ years’ experience working in a SOC environment – ideally MSSP. Experience in a technical security role is also considered.
• Experience with SIEM tools, such as MS Sentinel, AlienVault, or Splunk
• A cybersecurity qualification, certification, or degree e.g., CySA+, CompTIA SEC+, or similar experience. Microsoft SC-200 Certs are desirable.
• A strong knowledge of sophisticated threat actor methodologies, along with experience in incident response and forensic investigations.

This business has a clear vision, the right individuals steering the ship, and exceptional tech talent leading the way. Impressive customers, flexible working, and a company that truly cares.

• Leading escalated Cyber Incident Management, including Major Incidents and 2nd/3rd line analysis for ongoing investigations.
• Carrying out proactive threat hunts, RCAs, creation of detection capabilities.
• Monitor/hunt security alerts from security platforms (SIEM platforms, such as MS Sentinel, AlienVault, or Splunk).
• 4 days on, 4 days off - Days and Nights.
• Act on second-line security alerts, incidents, requests, and events to ensure threats, vulnerabilities, and breaches are managed successfully.
• Document and manage cases to utilize information for customer reports, providing insightful and intelligent recommendations.
• Facilitate recovery following the resolution of incidents.
• Provide subject matter expertise regarding exploits, threat actors, TTPs, etc.
• Maintain high quality across SLAs and KPIs.

Please hit the button to Apply and/or email [emailprotected] or call on 020 3004 8235 for further info.