SOC Engineer

🔒 Confidential Employer
Posted 7 May 2026
LOCATION
Doncaster
TYPE
Full-time
LEVEL
Mid-Senior level
SALARY
£50,000 / year
CATEGORY
Cyber Security
This employer holds a UK Home Office sponsor license — sponsorship for this specific role is at the employer’s discretion

SKILLS

Security monitoring Incident response Microsoft Sentinel Microsoft Defender Vulnerability management Threat hunting Malware analysis Detection rule development

FULL DESCRIPTION

SOC Engineer

Location: Doncaster, South Yorkshire | Salary: Up to £50,000 per annum + Shift allowance | Work Type: Hybrid (2 days/week in office) | Job Type: Permanent

My client is seeking a SOC Engineer professional to support the monitoring and protection of client environments. The role involves investigating security alerts, responding to potential threats, and contributing to the continuous improvement of detection and response capabilities using modern security technologies.

Key Responsibilities

  • Perform continuous security monitoring using enterprise security platforms to detect and respond to potential threats.
  • Investigate alerts, analyse incidents, and produce clear and accurate incident reports.
  • Provide guidance and support to clients who may be impacted by cyber incidents or suspicious activity.
  • Assist with the onboarding of new environments, including deployment and configuration of SIEM, EDR, and vulnerability management tools.
  • Support threat hunting activities, malware analysis, and identification of indicators of compromise (IOCs).
  • Correlate security events across multiple systems to identify patterns of malicious behaviour.
  • Develop and refine detection rules, automation workflows, and operational documentation.
  • Act as a technical escalation point where required and provide support to junior SOC analysts.
  • Contribute to internal and client-facing reports, as well as occasional technical demonstrations and engagement scoping.

Skills & Experience

The successful candidate will demonstrate:

  • Strong communication skills and confidence in client-facing environments.
  • A genuine interest in cyber security and awareness of current industry threats and trends.
  • The ability to remain composed and communicate effectively during high-pressure security incidents.
  • Adaptability and the ability to work collaboratively within a fast-paced SOC team.
  • Relevant certifications such as Microsoft SC-200, AZ-500, or SC-100 would be advantageous.
  • Experience with technologies such as Microsoft Sentinel, Microsoft Defender, USM Anywhere, SentinelOne, or Tenable.io would be beneficial.

Working Pattern

Hybrid working model: typically 2 days per week in the office for collaboration. On-call rotation: 1 week on-call followed by 2 weeks off within the support schedule.

Apply Online

Apply via the online application form on the page. Please note: Due to the high volume of exceptional CVs we receive, we may not be able to respond to each candidate individually. However, we'll carefully review your CV to see if it aligns with our current job openings. If your skills are a perfect match, a recruiter will be in touch to discuss the opportunity further.

Sign up free — access 45,000+ UK sponsor-licensed jobs