Security Operations Center Analyst

About the role:

This is an integral growth role within our Security Operations team, ideal for someone looking to deepen their expertise in incident response and client-facing security operations. You’ll be working hands-on with real security incidents in a fast-paced environment, building your technical capability while making a genuine impact.

You’ll play a key role in supporting our clients day-to-day, acting as an extension of their security teams. The role is focused on investigation and response, ensuring incidents are managed effectively from start to finish, while also contributing to improving how we detect and respond to threats over time.

This role is based 3 days a week from our Blackfriars office.

About SecurityHQ:

SecurityHQ is a global cybersecurity company. Our specialist teams design, engineer and manage solutions that do three things: Promote clarity and trust in a complex world. Build momentum around improving security posture. And increase the value of cybersecurity investment within organizations. Free from limitations, and inclusive of all requirements, we focus on defending today, while mitigating the risks of tomorrow. And into the future. Our solutions are tailored to our customers and their unique context. Around the clock, 365 days per year, our customers are never alone.

SecurityHQ – We’re focused on engineering cybersecurity, by design.

Responsibilities:

• Investigate and respond to security incidents across SIEM, EDR, email, cloud, identity and network platforms
• Take full ownership of incidents, from initial alert through to resolution
• Work directly with clients, providing clear updates and guiding them through incidents
• Analyze logs, alerts and activity to understand what happened and why
• Carry out proactive threat hunting using threat intelligence and IOCs
• Review and improve detection rules, use cases and alert quality
• Support major incidents, escalations and post-incident reviews
• Maintain clear and accurate documentation, including incident reports and root cause analysis
• Coordinate with SOC, engineering and wider security teams to resolve incidents effectively
• Support process improvements and contribute to strengthening overall security posture

What we’re looking for:

• 3–5 years’ experience in a SOC, MDR or Incident Response role
• Strong hands-on experience investigating threats such as phishing, account compromise, malware and endpoint attacks
• Good understanding of how attacks work (e.g. MITRE ATT&CK)
• Experience working with Microsoft security tools (Defender, Sentinel, etc.)
• Ability to analyze logs, alerts and user activity to build a clear view of incidents
• Comfortable speaking with clients and explaining technical issues clearly
• Able to manage multiple investigations at once
• Experience writing incident reports and root cause analysis