SOC Analyst - L2

SOC Analyst - L2

Start: ASAP
Location: Hybrid, 3 days per week in Reading
Rate: Inside IR35, paying up to £460 /day

We are seeking an experienced SOC L2 Analyst to join a high-performing Security Operations Center (SOC) team, focused on detecting, investigating, and responding to advanced cyber threats. This role is ideal for professionals with strong technical knowledge in incident response, threat hunting, and security operations, using tools such as Splunk, Microsoft Sentinel, Defender, and CrowdStrike.

• Investigate and lead response efforts for complex cyber threats, including APTs, malware, and data breaches
• Handle escalations from Tier 1 analysts and provide technical guidance
• Proactively hunt threats using behavioral analysis and threat intelligence
• Perform in-depth forensic analysis of logs, networks, endpoints, and malware
• Create detailed incident reports with technical analysis and remediation guidance
• Collaborate with internal teams (IT, DevOps, Network Security) to enhance security posture
• Maintain compliance with standards such as NIST, ISO 27001, and GDPR
• Contribute to development of detection playbooks and response procedures
• Participate in post-incident reviews and continuous improvement initiatives
• Stay updated on the latest threats, vulnerabilities, and security tools

• 6–8+ years of cybersecurity experience, particularly in SOC, IR, threat hunting, or forensics
• Hands-on experience with SIEM tools (e.g., Splunk, Sentinel) and EDR platforms (e.g., CrowdStrike, Defender)
• Strong knowledge of Windows, Linux, and cloud environments
• Experience in malware analysis, memory forensics, and incident containment
• Proficiency in scripting languages (Python, PowerShell) preferred
• Relevant certifications are a strong plus: CISSP, GCIH, GCFA, GCIA, CFCE
• Excellent communication and reporting skills for technical and non-technical stakeholders
• Ability to work under pressure, including after-hours and on-call support as needed