Cyber SecuritySOC Engineer - 11620CA1
Back

SOC Engineer - 11620CA1

  • Proactive.IT Appointments Limited
  • Bristol, Gloucestershire
  • 12/06/2026
Full time Information Technology Telecommunications Python Cisco Cyber Security

Job Description

11620CA1
£55k per year + On call + Bonus

SOC Engineer

Milton Keynes

SC Clearance Sponsorship Available

£65,000 package

We're seeking a hands on SOC Engineer to join a growing Cyber Security Operations Centre supporting a diverse portfolio of customers across multiple sectors.

This is a specialist SOC Engineering position focused on building, maintaining, and optimising the tools, telemetry, detections, and automation that enable SOC Analysts to identify and respond to threats effectively. This is not a generalist cyber security role.

Key Responsibilities
  • Administer and optimise Microsoft Sentinel (or equivalent SIEM), including log ingestion, parsing, normalisation, and retention.
  • Develop and maintain SOAR workflows and automation using Azure Logic Apps, Python, PowerShell, Bash, and KQL.
  • Onboard and manage security telemetry from a range of data sources.
  • Design, implement, and tune detection rules to improve alert quality and reduce false positives.
  • Conduct proactive threat hunting using SIEM, EDR, and threat intelligence sources.
  • Support incident investigations, containment, and response activities.
  • Monitor and maintain the health of SOC tooling, sensors, agents, and log pipelines.
  • Produce documentation, runbooks, and operational procedures.
Skills & Experience
  • Experience engineering and supporting SIEM platforms, ideally Microsoft Sentinel.
  • Strong scripting and automation skills (Python, PowerShell, Bash, KQL).
  • Experience with SOAR technologies and security automation.
  • Knowledge of detection engineering and threat hunting.
  • Strong understanding of Windows and Linux logging.
  • Good networking knowledge including TCP/IP, DNS, firewalls, and proxies.
  • Experience within a SOC, NOC, or 24/7 operational environment.
  • Familiarity with MITRE ATT&CK, CVEs, and vulnerability management.
  • Exposure to cloud security monitoring across Azure, AWS, or Microsoft 365.
Desirable Certifications
  • Microsoft SC-200
  • CompTIA Security+ / CySA+
  • ISC2 CC or CISSP
  • GIAC GCIA
  • CEH
  • Cisco CyberOps or Fortinet certifications
What's on Offer?
  • Opportunity to work within a mature and growing SOC environment.
  • Exposure to a wide range of customer environments and technologies.
  • Security Clearance sponsorship available for eligible candidates.
  • Clear opportunities to contribute to automation, detection engineering, and SOC improvement initiatives.

Location: Milton Keynes (full-time onsite)

Working Pattern: Shift rota including evenings, weekends, bank holidays on call support.

We are an equal opportunities organisation.

About Proactive.IT Appointments Limited
Apply Now