A skilled SOC Engineer is required to support the design, configuration, and optimisation of a mature security operations capability within a critical public sector environment. The successful candidate will be responsible for the deployment, tuning, and continual improvement of advanced detection and response tooling, with a focus on the Microsoft Security Stack and Azure-native technologies.

This is a hands-on engineering role with cross-functional engagement across detection teams, infrastructure, and threat response.

Key Responsibilities

• Design, build and testing of new and enhanced security detection use cases
• Create additional SOC technical services and capabilities to enhance the SOC’s ability to identify cyber security events.
• Testing and tuning of existing and new analytics rules
• Support in the automation and integration of security services
• Streamline and automate response tasks, leading to efficient handling of security incidents.
• Uplift existing processes and tooling for managing security investigations
• Developing metrics and health check services to monitor, maintain and enhance the security posture and maturity of the SOC operations Team
• Alignment of SOC tooling and process with Personnel and Physical Security services