Rodeo
ResourcesPartnersSign in

NCC Group

Associate SOC Analyst

London
Posted about 23 hours ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

Department: Cyber Services and Capabilities

Location: GBR London

Description

As an Associate Security Analyst, you will be the first line of defence in the Event Monitoring Centre, responsible for the initial triage of security alerts, basic vulnerability analysis and data loss prevention. Your primary role will be to monitor, analyse, and assess incoming alerts, identifying potential security incidents based on established criteria. You will escalate confirmed or suspicious threats to the R2 analysts, senior analysts, or the shift lead for further investigation and response. This role requires strong analytical skills, attention to detail, and the ability to follow escalation protocols to ensure swift and effective incident management. Ideal candidates will have a foundational understanding of cybersecurity principles, experience with SIEM tools, and a commitment to continuous learning in a fast-paced security environment.

Due to being the initial contact for the triaging of alerts your expertise will directly support the analytic development by suggesting customer tuning rules to ensure the efficient running of the SOC. This role requires strong analytical skills, technical proficiency, and a commitment to continuous learning in a dynamic security environment.

Key Responsibilities

Threat Detection and Monitoring:

  • Monitor the ITSM platform for new alerts, schemas and tickets
  • Monitor the SIEM Logs, IDS Logs and Managed Intelligence sources.
  • Identify potential threats, vulnerabilities, and indicators of compromise.
  • Initiate escalation procedures to counteract potential threats and vulnerabilities.

Incident Remediation and Documentation:

  • Escalate to R2 analysts, Team Lead or senior analyst should further clarification or four eyes be required.
  • Provide incident remediation and prevention recommendations to customers using established procedures and analyst experience.
  • Document and adhere to security monitoring processes.
  • Suggest process and procedure improvement based on working requirements to streamline processes.

Customer Service and Escalation:

  • Exceed customer expectations by always delivering exceptional customer service.
  • Be the initial point of contact for alerts and schemas triaged.
  • Contribute to the creation and maintenance of security documentation, including incident response playbooks, standard operating procedures, and knowledge base articles.

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.

Reporting and Continuous Improvement:

  • Compile and review service-focused reports for effective communication.
  • Contribute to the creation and maintenance of security documentation, including incident response playbooks, standard operating procedures, and knowledge base articles.
  • Be susceptible to mentoring from senior analysts

Threat Analysis and Collaboration:

  • Contribute practical insights to the analysis of common security incidents.
  • Maintain working relationships with the Analytic Development and Security Engineering teams.
  • Collaborate with shift partners to provide a high quality of service.

General Duties:

  • Perform additional assigned duties as required.
  • Flexibility to quickly learn and adapt to new security tools, technologies, and processes.
  • Process Data Schema Review data loss prevention alerts
  • Strong analytical and problem-solving skills.
  • Good communication skills, both written and verbal.
  • Ability to work collaboratively as part of a team.
  • Keep up to date with latest emerging threats and APT groups.
  • Ability to be mentored by senior analysts.

Skills, Knowledge & Expertise

Minimum Requirements

Network, Cloud and OS Knowledge:

  • Understanding of common network protocols and tools.
  • Understanding of Linux operating systems.
  • Understanding of Content Delivery Networks
  • Understanding of the CIA triad and how it interacts with security
  • Understanding of cloud technologies – AWS, GCP, OCI

Customer interaction:

  • Experience with documenting both high level and technical customer facing information.
  • Confidence providing critical/sensitive information accurately.
  • Contacting key stakeholders during major incidents

Incident Analysis and Response:

  • Awareness of the MITRE ATT&CK framework
  • Pedigree in performing in-depth analysis of security alerts.
  • Assess customer impact through investigation and work with senior analysts for resolution.
  • Basic understanding of Personal Identifiable Information
  • Initiate escalation procedure for potential threats
  • Ability to interpret threat priority against the cyber kill chain.
  • Provide appropriate mitigation and remediation steps.

Desirable Requirements

Tooling

  • Hands-on experience with Security Information and Event Management (SIEM) platforms preferably Splunk.
  • Knowledge of cloud products and log events such as AWS, OCI, GCP.
  • Knowledge of cloud vulnerability tools such as Wiz

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

Desirable Certifications

  • CompTIA Security+
  • CompTIA Network +
  • Security Blue Team Level One
  • AWS Cloud Practitioner
  • MAD20 Att&ck Fundamentals

Job Benefits

  • Flexible Working: Balance your work and personal life with our flexible working options.
  • Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave.
  • Medicash & Critical Illness Scheme
  • Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme.
  • Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities.
  • Green Car Scheme: Drive green and save money with our eco-friendly car scheme.
  • Cycle Scheme: Stay fit and healthy with our cycle-to-work scheme.
  • Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet.
  • Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.

We review every application received and will get in touch if your skills and experience match what we’re looking for. If you don’t hear back from us within 10 days, please don’t be too disappointed – we may keep your CV on our database for any future vacancies and we would encourage you to keep an eye on our career opportunities as there may be other suitable roles.

If you do not want us to retain your details, you can utilise the Manage Your Data tool provided by Pinpoint or contact us directly at: global.ta@nccgroup.com. All personal data is held in accordance with the NCC Group Privacy Notice.

We are committed to diversity and flexibility in the workplace. If you require any reasonable adjustments to support you during the application process, please tell us at any stage.

Please note that this role involves mandatory pre-employment background checks due to the nature of the work NCC Group does. To apply, you must be willing and able to undergo the vetting process.

Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Analytical Skills
Attention to Detail
Cybersecurity Principles
SIEM Tools
Incident Management
Threat Detection
Incident Remediation
Customer Service
Documentation
Collaboration
Problem-Solving
Communication Skills
Network Knowledge
Cloud Technologies
Incident Analysis
MITRE ATT&CK Framework

Location

London, England, United Kingdom

Sign up to applySee more jobs like this