Salary: £58,620 - 58,621 per year Requirements:
* We have experience in SOC operations, security monitoring, incident response, threat hunting, detection engineering, security operations engineering, cyber defence, or vulnerability management.
* We have worked in roles such as Senior SOC Analyst, SOC Analyst, Cyber Security Analyst, Security Analyst, Incident Response Analyst, Threat Detection Analyst, Security Operations Analyst, or Blue Team Analyst.
* We have experience with Microsoft Sentinel, KQL, and the wider Microsoft security ecosystem, which is highly advantageous.
* We have knowledge of security frameworks such as NIST, ISO27001, CIS Controls, and MITRE ATT&CK, which is beneficial.
* We are eligible to undergo UK security screening requirements.
* We have the ability to work 24/7 rotating shift patterns, including 12-hour shifts on a 4 on / 4 off schedule.
* We can work in a hybrid arrangement based in Leeds, including office-based days and home-based nights.
Responsibilities:
* We monitor and investigate security events across endpoint, cloud, identity, and network environments.
* We manage security incidents through the full incident lifecycle from detection through investigation, containment, remediation, and post-incident review.
* We perform detailed investigations and root cause analysis.
* We conduct threat hunting activities and proactive security investigations.
* We query and analyse data within Microsoft Sentinel using KQL.
* We work with Microsoft Defender XDR technologies.
* We validate indicators of compromise and assess business impact.
* We coordinate containment and remediation activities with technical teams.
* We support vulnerability management activities and security posture improvements.
* We contribute to detection engineering and alert tuning initiatives.
* We produce technical documentation, incident reports, and recommendations.
* We support compliance and security governance requirements within a regulated environment.
Technologies:
* Cloud
* Support
* Microsoft Intune
* Network
* Security
* AWS
* Cisco
More:
We are an established international technology and cybersecurity services provider investing heavily in our Security Operations capability. Based in Leeds, our growing 24/7 cyber defence team supports a highly regulated customer estate and offers exposure to modern enterprise security tooling, including Microsoft Sentinel, Microsoft Defender XDR, Defender for Endpoint, Defender for Cloud, Defender for Identity, Defender for Cloud Apps, Microsoft Intune, Qualys, AttackIQ, XM Cyber, threat intelligence platforms, and security automation and detection tools. We offer a people-first culture with genuine career progression, structured learning pathways, protected training time, technical certification support, a modern office environment, hybrid working, home-based night shifts, and a comprehensive benefits package that includes generous annual leave, wellbeing support, pension, private medical cover, and global career prospects.
last updated 22 week of 2026