Cyber Security Specialist protecting digital estate from threats at the University of Edinburgh. Focused on identifying and mitigating cyber risks while supporting teaching and research services.
About the role
- SOC / Security Operations Specialist role enhancing security operations of enterprise client. Focus on monitoring, incident response, and SIEM optimization.
Responsibilities
- Assess the current SOC/SIEM environment and propose improvements for monitoring, alerting, and escalation processes.
- Configure, optimise, and evaluate alerts in SIEM (Microsoft Sentinel) and EDR (SentinelOne).
- Develop and maintain Incident Response playbooks, procedures, and escalation workflows.
- Perform ongoing monitoring of security events, triage alerts, manage incident backlog and support escalations.
- Drive improvements in operational security areas: MFA enforcement, AD hardening, MDM/Intune, patching, EDR coverage.
- Analyse logs, identify suspicious activities, and ensure follow-up with IT and security teams.
- Prepare regular SOC and security posture reports for CIO/CISO.
Requirements
- Experience in SOC, SIEM management, Incident Response, or Security Operations.
- Hands-on experience with SOC tooling (Microsoft Sentinel, SentinelOne, Intune, AD).
- Practical understanding of attack vectors, MITRE ATT&CK, threat detection, and IR lifecycle.
- Ability to analyse logs, recognise anomalies, and structure incident handling.
- Strong communication skills for reporting, escalation, and cooperation with leadership teams.
Benefits
- Health insurance
- Flexible work arrangements
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Location requirements
Lead Specialist in Security Operations, enhancing detection engineering and incident response at Pearson. Collaborate with teams and drive process improvements in a high - paced environment.
Cybersecurity Incident Response Analyst detecting and responding to cyber threats at NOV. Collaborating using AI tools to enhance cybersecurity operations across IT, cloud, and OT environments.
Security Engineer II at AvidXchange enhancing security operations and incident response. Collaborating with teams to develop, tune and improve security monitoring and automation capabilities.
Director leading security operations strategy and overseeing investigations at Ford Motor Company. Responsible for global investigations, crisis management, and team leadership.
Cloud Security Engineer at Artemys designing and maintaining secure Azure infrastructures, overseeing security monitoring and incident management.
Lead global Cyber Detect and Respond team at Assa Abloy, ensuring timely incident response and security compliance. Oversee operations while collaborating across IT and business functions for effective threat management.
Lead Cybersecurity Analyst responsible for technical leadership of a 24x7 SOC team at AT&T. Drive operational standards, incident response, and continuous improvement initiatives.
Security Engineer safeguarding AWS environments for Genesys Cloud mission. Handling advanced threats and collaborating with SecDev, PenTest, DevOps, and SRE teams.
Senior Security Operations Center Analyst protecting computer systems and data through investigation and incident response. Collaborating with IT leaders and mentoring junior analysts in security operations.