Senior SOC Analyst

Posted 1 day ago by identifi Global Resources

Apply

£65 Per hour

Outside

Onsite

Preston, England, United Kingdom

Apply

Cyber Incident Response IT Service Management Management Security Information And Event Management (SIEM) ServiceNow Stakeholder Management Workflows

Summary: The Senior SOC Analyst will lead the establishment and operation of a Security Operations Centre (SOC) within a highly regulated environment, focusing on incident management and SOC capability maturity. This role involves close coordination with a third-party SOC provider and acting as the senior escalation point for security incidents. The successful candidate will ensure SOC services meet quality standards and support the integration of ITSM tooling. Strong leadership and experience in SOC operations are essential for this position.

Key Responsibilities:

Act as the senior escalation point for all security incidents
Report incidents and SOC performance metrics to SOC Leadership
Coordinate and direct incident response activities in liaison with the Abacus SOC
Define, specify, and agree SIEM detection content and use-case development
Liaise with 3rd party provider on configuration changes, enhancements, and operational alignment
Support the establishment and scaling of the SOC and dependent security services
Maintain and assure SOC capabilities against defined quality and compliance criteria
Support the deployment and integration of ITSM tooling (e.g. ServiceNow)
Ensure incident workflows, escalation paths, and operational procedures are robust and auditable

Key Skills:

Strong experience in SOC operations within government, defence, or critical national infrastructure
Proven leadership in incident response and security operations escalation
Deep understanding of SIEM platforms, detection engineering, and alert lifecycle management
Experience working with third-party or managed SOC providers
Familiarity with ITSM tooling, ideally ServiceNow
Strong stakeholder management and reporting capability
Understanding of regulated environments (MOD, HMG, Defence primes, or similar)
Desirable experience standing up or transforming SOC capabilities
Exposure to large-scale programmes (e.g. major defence or aerospace programmes)
DV clearance or eligibility

Salary (Rate): £65.00/hr

City: Preston

Country: United Kingdom

Working Arrangements: on-site

IR35 Status: outside IR35

Seniority Level: Senior

Industry: IT

Detailed Description From Employer:

Location: UK (North West) - Onsite
Clearance: Active SC required (DV desirable)
Contract Type: Contract (outside IR35)
Rate: £500p/d Neg

Role Overview
We are seeking an experienced SOC Lead / Senior SOC Analyst to play a pivotal role in the establishment, operation, and continuous improvement of a critical Security Operations Centre (SOC) supporting a major programme. This role carries operational leadership responsibility across incident management, SOC capability maturity, and close coordination with a third-party SOC provider. You will act as the senior escalation point for security incidents, oversee detection capability, and ensure SOC services meet agreed quality and assurance standards within a highly regulated environment.

Key Responsibilities

Act as the senior escalation point for all security incidents
Report incidents and SOC performance metrics to SOC Leadership
Coordinate and direct incident response activities in liaison with the Abacus SOC
Define, specify, and agree SIEM detection content and use-case development
Liaise with 3rd party provider on configuration changes, enhancements, and operational alignment
Support the establishment and scaling of the SOC and dependent security services
Maintain and assure SOC capabilities against defined quality and compliance criteria
Support the deployment and integration of ITSM tooling (e.g. ServiceNow)
Ensure incident workflows, escalation paths, and operational procedures are robust and auditable

Required Skills & Experience

Strong experience in SOC operations within government, defence, or critical national infrastructure
Proven leadership in incident response and security operations escalation
Deep understanding of SIEM platforms, detection engineering, and alert lifecycle management
Experience working with third-party or managed SOC providers
Familiarity with ITSM tooling, ideally ServiceNow
Strong stakeholder management and reporting capability
Understanding of regulated environments (MOD, HMG, Defence primes, or similar)

Desirable

Experience standing up or transforming SOC capabilities
Exposure to large-scale programmes (e.g. major defence or aerospace programmes)
DV clearance or eligibility

Apply

Inside IR35

Outside IR35

Permanent Employee

IR35

Umbrella Companies

Limited Companies

First Time Contractors

What Is IR35?

InsideIR35

Outside IR35

The Cost of IR35

IR35 Assessments

IR35 Rules

IR35 Compliance

Expenses

Foreign Companies

Overseas Contractors

Limited Companies

Sole Traders

What Is An Umbrella Company?

Choosing an Umbrella Company

Tax and Pay

Tax Avoidance

Fees (Margin)

National Insurance

Holiday Pay

Expenses

Pensions

Maternity Pay

Sick Pay

What Is A Limited Company?

Limited Company vs Sole Trader

Incorporation

Taxes

Filing Responsibilities

Bookkeeping

Insurance

Expenses

Buying a Car or Van

Capital Allowances

Benefits In Kind

Pensions

Employing A Spouse

Managing Excess Money

Dormant Companies

Closing Your Company

Withdrawing Money

Business Asset Disposal Relief

How To Become A Contractor

Inside IR35 Checklist

Outside IR35 Checklist

Self-Assessment Tax Returns

Mortgages

Pensions

Working Multiple Contracts

What is the £100k Abatement?

Inside IR35

Outside IR35

Permanent Employee

IR35

Umbrella Companies

Limited Companies

First Time Contractors

What Is IR35?

InsideIR35

Outside IR35

The Cost of IR35

IR35 Assessments

IR35 Rules

IR35 Compliance

Expenses

Foreign Companies

Overseas Contractors

Limited Companies

Sole Traders

What Is An Umbrella Company?

Choosing an Umbrella Company

Tax and Pay

Tax Avoidance

Fees (Margin)