SOC Engineer - Cyber

Location: Birmingham (Hybrid – 3 days onsite) Salary: £45,000 - £50,000 + Excellent Benefits Contract Type: Permanent

The Role – SOC Engineer - Cyber We’re looking for a hands-on SOC Engineer to join a rapidly growing Cyber Security function within a large enterprise technology environment. This is an opportunity to work in one of the most modern and well-equipped SOC environments in the market, supporting enterprise customers across a broad range of managed security services and cloud technologies. This is a genuinely engineering-led role rather than a traditional SOC analyst position. You’ll be heavily involved in infrastructure, cloud security, security tooling, automation, and operational cyber engineering across enterprise-scale environments. Working from a Birmingham-based SOC three days a week, you’ll play a key role in supporting customer environments, improving cyber capabilities, and helping showcase a cutting-edge SOC environment to visiting customers and stakeholders.

What’s in it for you as our Cyber SOC Engineer?

Salary of £45,000 - £50,000

Hybrid working environment

Excellent company benefits package

Flexible benefits scheme

Access to industry-leading SOC technology and tooling

Dedicated training and development time each week

Fully funded learning opportunities and partner-led certifications

Opportunities to attend conferences and industry events

Career progression within a large enterprise technology organisation

Exposure to enterprise-scale cloud and cyber environments

Supportive, collaborative, and highly technical team environment

Duties as SOC Engineer - Cyber As a Cyber SOC Engineer, you will:

Act as a technical escalation point and engineering SME across SOC technologies including SIEM, MDR/XDR, EDR, vulnerability management, and cloud security tooling

Support, maintain, and improve cyber security infrastructure across enterprise customer environments

Work closely with internal teams and customers to onboard, configure, and optimise security technologies and services

Investigate and resolve platform issues, security alerts, log source health problems, and tooling-related incidents

Configure and support technologies such as Microsoft Defender, Sentinel, CrowdStrike, Tenable, and related security platforms

Assist with vulnerability scanning, remediation support, and operational security improvements

Contribute to automation and scripting initiatives using tools such as KQL, PowerShell, Python, or Bash

Produce and maintain technical documentation, operational runbooks, and security playbooks

Support governance and compliance activities aligned to standards such as ISO27001, GDPR, and NCSC guidance

Work collaboratively across infrastructure, cloud, networking, and cyber teams to improve service delivery and operational resilience

Stay up to date with emerging cyber threats, technologies, and security best practice

Contribute to continual improvement initiatives across the SOC function

Who are we looking for as our Cyber SOC Engineer? We’re looking for a technically capable and proactive engineer who enjoys solving problems, learning new technologies, and working collaboratively in a fast-paced environment. This role would suit someone from a SOC Engineering, Cloud Security, Infrastructure Security, or Cyber Engineering background who enjoys hands-on technical work rather than purely monitoring or analyst-based responsibilities. You’ll ideally have experience with:

Microsoft Sentinel and Microsoft Defender

EDR/XDR/MDR technologies

Vulnerability management tools such as Tenable or Qualys

Azure, Microsoft 365, Intune, or AWS environments

Security tooling, infrastructure, and cloud platforms

Linux and Windows operating systems

SIEM technologies and security monitoring

Basic scripting or automation using KQL, PowerShell, Python, or Bash

ITIL environments and structured change control processes

Firewall, endpoint, or cloud security technologies

We’d especially like to hear from candidates who are

Strong communicators who can work confidently with both technical and non-technical stakeholders

Organised, collaborative, and eager to learn

Comfortable working in a customer-facing environment

Self-driven and proactive in solving problems

Able to take ownership while also working well within a team

Interested in developing their cyber engineering and cloud security expertise further

Relevant certifications such as SC-200, SC-900, AZ-500, CISSP, or similar would be advantageous, but practical engineering experience is equally important. Please note: Candidates must be eligible for UK Security Clearance (SC/BPSS), including having the right to work in the UK and meeting residency requirements.

INDHS