SOC Engineer

The Role Seeking a skilled and dedicated SOC Engineer who will be based onsite in Stoke on Trent The SOC Engineer will be responsible for monitoring, detecting, and responding to security incidents, ensuring the clients' IT infrastructure remains secure. This role requires a deep understanding of cybersecurity threats, network defence, and incident response. Role Responsibilities Security Monitoring and Analysis: Continuously monitor security alerts and events using SIEM (Security Information and Event Management) tools and other monitoring platforms. Analyse and triage security incidents to determine their severity and impact, escalating critical issues as necessary. Perform real-time threat detection and response, identifying and mitigating potential security risks.Incident Response: Investigate and respond to security incidents, including malware infections, DDoS attacks, unauthorised access, and other threats. Coordinate with other IT and security teams to contain and remediate incidents, ensuring minimal disruption to operations. Document incident response activities and create detailed reports for stakeholders.Threat Intelligence and Research: Stay up to date with the latest cyber threats, vulnerabilities, and attack methods. Conduct research to identify new threat vectors and recommend proactive measures to enhance security posture. Contribute to the development and refinement of detection rules and response playbooks.Security Tools and Technologies: Maintain and optimise SOC tools and technologies, including SIEM, IDS/IPS, firewalls, endpoint protection, and vulnerability management systems. Assist in the deployment and configuration of security tools, ensuring they are properly integrated and functioning. Collaborate with vendors and partners to address tool issues and implement updates or improvements.Compliance and Reporting: Ensure all security operations comply with relevant regulations and standards (e.g., GDPR, ISO 27001, NIST). Generate regular reports on security incidents, threat trends, and SOC performance for management and clients. Participate in security audits and assessments, providing evidence of SOC activities and controls.Continuous Improvement: Identify areas for improvement within SOC processes, workflows, and technologies. Provide input on the development and implementation of new security strategies and initiatives. Mentor and train junior SOC team members, sharing knowledge and expertise.Education and Experience Requirements As the SOC Engineer you will have: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. Relevant certifications (e.g., CompTIA Security+, CEH, CISSP, GIAC) are highly desirable. Minimum of 2-4 years of experience in a SOC or similar cybersecurity role. Proven experience with SIEM platforms (e.g., Splunk, QRadar, ArcSight) and security monitoring tools. Hands-on experience in incident response, threat analysis, and vulnerability management. Strong understanding of cybersecurity principles, including network security, endpoint security, and threat intelligence. Proficiency in analysing logs, network packets, and other data sources to identify security threats. Excellent problem-solving skills with the ability to think critically and act decisively in high-pressure situations. Strong communication skills, both written and verbal, with the ability to convey complex technical information to non-technical stakeholders.GCS is acting as an Employment Agency in relation to this vacancy