Job Description
Role: Cyber Security Analyst (SOC Analyst)
Location: Corsham - 100% on-site
Day Rate: Up to £640
Contract Length: Until 26th April 2027, with potential for extension
IR35: In scope
Why this could interest you
* Rare chance to work in a high-impact, mission-critical Defence environment.
* Long-term stability to 2027, with possibility of extension depending on funding.
* Tier 2/3 level work - genuinely complex incidents, not just first-line alert handling.
Key responsibilities
* Tier 2/3 SOC analysis in an enterprise environment.
* Perform triage of security events - determine scope, priority and impact, and recommend rapid remediation actions.
* Conduct real-time management of security incidents from detection through to resolution.
* Work with SIEM technologies and SIEM engineering, including tool configuration (e.g. ArcSight).
* Create and maintain use cases, analytics and playbooks.
* Contribute to security monitoring across on-prem and cloud technologies.
Shift pattern & working conditions
* 13-hour shifts - days and nights, including some weekends.
* 4 on 5 off, then 5 on 4 off - averaging a standard 37-hour week.
* Fully on-site in Corsham.
Essential requirements
* Strongly preffeed to have Active DV Clearance (Developed Vetting) and eligibility for Sensitive Post Check.
* Industry-standard SOC security qualifications (e.g. SANS, ISC2).
* Proven Tier 2/3 SOC Analyst experience (2+ years).
* Hands-on experience with SIEM technologies and engineering (ideally including ArcSight).
* Experience creating SOC use cases, analytics and playbooks.
Desirable
* Degree in a technical, engineering or computing discipline.
* Defence / MOD experience.
* Previous lead-level SOC experience (though an experienced Tier 2 Analyst would also be considered).