Position Description:
At CGI, we deliver secure, high-impact technology solutions that help our clients operate with confidence in an evolving threat landscape. As a Senior SOC Analyst, you will play a critical role in protecting vital services within a joint Microsoft and CGI security team supporting the ASH programme. Working in a collaborative, high-trust environment, you will take ownership of security monitoring, incident response, and continuous service improvement while helping strengthen cyber resilience for a critical client. This role offers the opportunity to apply your expertise, contribute innovative thinking to evolving threats, and work alongside experienced specialists who support your professional growth while delivering meaningful outcomes for complex, mission-critical environments.
CGI was recognised in the Sunday Times Best Places to Work List and has been named a UK ‘Best Employer’ by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go.
This is an on-site role based in Chippenham, operating on a 24/7 shift rotation. There may be opportunities for future on-call shifts, which would include an additional salary uplift. We welcome applicants who already hold Security Clearance, particularly those willing to progress to higher levels of clearance.
Your future duties and responsibilities:
In this role, you will play a key part in safeguarding critical services by performing advanced security monitoring, investigation, and incident response activities within a joint Microsoft and CGI Security Operations Centre. You will take ownership of analysing alerts, responding to threats, and strengthening detection capabilities while contributing to the continuous improvement of SOC processes, tooling, and automation.
Working within a collaborative delivery team, you will help ensure services meet strict operational and security standards. You will support the transition of security capabilities into live service environments, apply creative problem-solving to emerging threats, and work closely with colleagues and client stakeholders to maintain resilient and secure operations.
Key responsibilities
Monitor & Respond – Investigate and resolve security alerts and incidents across the SOC environment
Analyse & Protect – Conduct threat analysis and security monitoring using SIEM/SOAR platforms
Develop & Improve – Contribute to detection rule development and SOC tooling enhancements
Automate & Optimise – Support automation and configuration improvements within the SOC
Test & Assure – Assist with security testing, assurance activities, and vulnerability management
Collaborate & Deliver – Work closely with CGI, Microsoft, and client teams to maintain secure service delivery
Support & Transition – Help transition security capabilities from project delivery into operational service
Required qualifications to be successful in this role:
To succeed in this role, you should bring experience in SOC environments with strong analytical and investigative skills, along with a solid understanding of security monitoring, incident response, and secure service delivery. You will be comfortable working in regulated environments and motivated to continuously improve detection capabilities and operational resilience.
Essential qualifications
You should have hands-on experience working within a Security Operations Centre (SOC)
Strong experience in security monitoring, alert investigation, and incident response
Proven experience working with SIEM and/or SOAR platforms including log analysis and event monitoring
Experience with Microsoft server technologies and Azure environments
Familiarity with vulnerability management tools and security testing practices
Understanding of information assurance principles and secure operational processes
Experience working in secure, defence, or highly regulated environments
Strong analytical, troubleshooting, and problem-solving skills
Ability to collaborate effectively within client and consultancy delivery teams
Experience with Huntsman platform or willingness to learn emerging technologies such as MASH (desirable)
#LI-JS2
Skills:
1. Security Operations Center
2. Vulnerability Management(IAVM)
3. Microsoft Project Server
4. Microsoft Project Server