SOC Cyber Security Analyst

CYBER SECURITY ANALYST (SOC ANALYST)

CCL Global are currently recruiting for a Cyber Security Analyst to support a high-security Security Operations Centre (SOC) environment within a critical national infrastructure setting. This role will play a key part in protecting enterprise systems by monitoring, detecting, analysing, and responding to cyber security threats in real time.

Type of Contract: Contract (Inside IR35)

Location: Bath (100% office)

Contract Length: Until April 2027

Key Duties Will Include:

• Monitor, investigate, and triage security events and alerts within a live SOC environment.
• Analyse security incidents to determine scope, impact, and priority, ensuring appropriate escalation and response.
• Manage end-to-end incident response activities from detection through to resolution.
• Support the development and enhancement of SIEM use cases, detection rules, analytics, and playbooks.
• Conduct real-time analysis of logs and security data to identify malicious activity or policy violations.
• Work closely with technical teams to support containment and remediation of security incidents.
• Support continuous improvement of SOC processes, tooling, and detection capability.
• Contribute to security reporting, documentation, and operational procedures.

Requirements:

• Proven experience working as a SOC Analyst (Tier 2/3) within enterprise or critical environments.
• Strong experience with SIEM technologies (e.g. ArcSight or similar), including configuration and engineering support.
• Ability to triage security alerts and accurately assess risk, impact, and priority.
• Experience managing security incidents in real time within a SOC environment.
• Strong understanding of networking, cloud environments, and enterprise IT infrastructure.
• Experience creating and tuning detection use cases, analytics, and playbooks.
• Knowledge of Information Security principles, threat detection, and incident response practices.
• Familiarity with Microsoft technologies, Linux systems, and security tooling.
• Understanding of security frameworks and data protection principles including GDPR and the Data Protection Act 2018.
• Experience working within an ITIL-based service environment.

Desirable:

• Industry-recognised cyber security certifications (e.g. SANS, ISC2).
• Experience within Defence, Government, or high-security environments.
• Degree in Cyber Security, Computing, Engineering, or related discipline.
• Experience in a senior SOC or lead analyst capacity.