Senior SOC Analyst - Technical Lead

4 days ago Be among the first 25 applicants

This range is provided by FluidOne. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

Direct message the job poster from FluidOne

Cyber Security Associates Limited (CSA), established in 2013, provides cyber consultancy and cyber managed services to help detect, protect, and educate against the ever-changing cyber threats. CSA's team comprises UK Government (ex-Military) and commercially experienced specialists, all holding current and relevant cyber certifications. Our core services are based around a 24/7 Security Operations Centre (SOC) in Gloucester.

CSA is backed by FluidOne, a leading connected cloud solutions provider, supporting our growth plans. Our vision is to be the UK's top cyber security managed service provider.

As a Senior SOC Analyst, Technical Lead, you will work with an experienced team, building strong client relationships. Your responsibilities include assisting in daily SOC operations, providing technical security expertise, supporting analysts, and continuously improving clients' security posture.

The ideal candidate has a strong security operations background, excellent customer service, incident response, threat hunting skills, and experience mentoring junior team members. Your role is crucial in driving the growth of our SOC and translating technical info for non-technical clients.

You will work day shifts (09:00 – 17:30) and cover analyst duties during leave or sickness.

• Mentor Security Analysts and support the SOC team.
• Act as a point of contact during security incidents.
• Maintain client relationships through meetings and communication.
• Triage and analyze alerts from SIEMs and platforms (Microsoft Sentinel, Defender, SentinelOne, AppGuard).
• Investigate, mitigate, and remediate security issues.
• Conduct log analysis during investigations.
• Assist in incident response and communicate with clients.
• Produce security reports and run phishing campaigns.
• Serve as a security expert for clients and team.
• Escalate high-priority issues promptly.
• Research new cybersecurity methods.
• Contribute to SOC improvements.

• SC Clearance or eligibility.
• Microsoft SC-200 certification.
• Additional certifications such as AZ-500, SC-100, SC-300, SC-400 are a plus.
• Experience in a similar role.
• Proficiency with Microsoft Sentinel investigations, rules, workbooks, and automation.
• Knowledge of EPP tools like Microsoft Defender for Endpoint, SentinelOne.
• Mentoring and leadership experience.
• Familiarity with MITRE ATT&CK and D3fend frameworks.
• Understanding of networking (TCP/IP) and information security.
• Experience with ticketing systems.
• Strong problem-solving and decision-making skills.
• Attention to detail and quality focus.
• Excellent communication skills, capable of explaining technical info to non-technical audiences.
• Ability to handle sensitive/confidential info.
• Self-motivated and responsible.
• Effective task and time management.
• Passion for cybersecurity.
• Flexibility to cover shift duties when needed.
• Hybrid working model (office and home).
• Benefits include health packages, online training, pension, paid holidays, team events, and career progression.