SOC Engineer - Cyber

Salary: £30,000 - 70,000 per year

• We are looking for experience in SOC Engineering, Cloud Security, Infrastructure Security, or Cyber Engineering.
• We ideally want hands on experience with Microsoft Sentinel and Microsoft Defender.
• We value experience with EDR, XDR, and MDR technologies.
• We would like experience with vulnerability management tools such as Tenable or Qualys.
• We expect familiarity with Azure, Microsoft 365, Intune, or AWS environments.
• We need experience supporting security tooling, infrastructure, and cloud platforms.
• We value knowledge of Linux and Windows operating systems.
• We require experience with SIEM technologies and security monitoring.
• We look for basic scripting or automation skills using KQL, PowerShell, Python, or Bash.
• We prefer experience working in ITIL environments and structured change control processes.
• We value familiarity with firewall, endpoint, or cloud security technologies.
• We need strong communication skills with both technical and non technical stakeholders.
• We want someone who is organised, collaborative, proactive, and self driven.
• We require the ability to work in a customer facing environment and take ownership of issues.
• Relevant certifications such as SC-200, SC-900, AZ-500, or CISSP are advantageous.
• Candidates must be eligible for UK Security Clearance, including the right to work in the UK and meeting residency requirements.

• We act as a technical escalation point and engineering SME across SOC technologies including SIEM, MDR/XDR, EDR, vulnerability management, and cloud security tooling.
• We support, maintain, and improve cyber security infrastructure across enterprise customer environments.
• We work with internal teams and customers to onboard, configure, and optimise security technologies and services.
• We investigate and resolve platform issues, security alerts, log source health problems, and tooling related incidents.
• We configure and support technologies such as Microsoft Defender, Sentinel, CrowdStrike, Tenable, and related security platforms.
• We assist with vulnerability scanning, remediation support, and operational security improvements.
• We contribute to automation and scripting initiatives using KQL, PowerShell, Python, or Bash.
• We produce and maintain technical documentation, operational runbooks, and security playbooks.
• We support governance and compliance activities aligned to ISO27001, GDPR, and NCSC guidance.
• We work collaboratively across infrastructure, cloud, networking, and cyber teams to improve service delivery and operational resilience.
• We stay up to date with emerging cyber threats, technologies, and security best practice.
• We contribute to continual improvement initiatives across the SOC function.

• AWS
• Azure
• Bash
• Cloud
• Firewall
• Support
• ITIL
• Linux
• Microsoft 365
• PowerShell
• Python
• Security
• Windows
• Office 365

We are a rapidly growing cyber security function within a large enterprise technology organisation, offering a hands on, engineering led SOC role based in Birmingham with a hybrid working pattern of three days onsite. We provide a salary of £45,000 to £50,000 plus an excellent benefits package, a flexible benefits scheme, access to industry leading SOC technology and tooling, dedicated weekly training and development time, fully funded learning opportunities and partner led certifications, conference and industry event opportunities, and strong career progression. Our team is supportive, collaborative, highly technical, and focused on enterprise scale cloud and cyber environments, with the opportunity to help improve customer security capabilities and showcase a cutting edge SOC to visiting customers and stakeholders.