Cloud People
Senior SOC Analyst

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Senior SOC Analyst
💰 Up to £80,000
📍 London, 4 days per week on site with the end client
Company & Role
This role sits with a global IT and cyber security solutions provider supporting a major enterprise customer through a significant Security Operations transformation. The programme is focused on globalising detection capability, bringing regional detection rules into a single, consistent Global SOC and lifting the maturity of how alerts are triaged, investigated and escalated.
You will be the detection authority on the EMEA side of that programme. The work is part engineering, part operational design. You will take existing detection content, validate it properly, map it to recognised threat frameworks, and build the SOPs that allow Tier 1 and Tier 2 analysts in the Global SOC to action it consistently.
Why This Role Stands Out
- Genuine transformation work rather than BAU monitoring and alert triage
- You will own EMEA detection content end to end as it moves into the Global SOC
- Direct exposure across detection engineering, regional SOC teams and global stakeholders
- Opportunity to shape how a major enterprise actually runs its detection and response operation
- Long term scope with real influence over detection content and analyst workflows
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Key Responsibilities
- Lead the onboarding of EMEA detection rules into the Global SOC, ensuring completeness and operational readiness
- Review and validate detection logic, thresholds and expected alert behaviour
- Map detection use cases to recognised threat frameworks such as MITRE ATT&CK
- Identify gaps, duplication and tuning opportunities across existing detection content
- Build clear, practical SOPs for Tier 1 and Tier 2 analysts covering triage, investigation, enrichment and decision points
- Define escalation criteria and handover conditions between regional and global teams
- Perform QA on detections and analyst handling to ensure consistent triage outcomes
- Act as the bridge between EMEA knowledge and the Global SOC, supporting walkthroughs and knowledge transfer
- Maintain strong documentation and traceability between detection logic, threat mapping and operational procedures


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Ideal Experience
- Minimum four years in a SOC environment at Tier 2 or equivalent, with strong incident investigation and threat analysis experience
- Proven track record reviewing and tuning detection rules within a SIEM or monitoring platform such as Sentinel, Splunk or similar
- Hands on experience designing or documenting SOPs and analyst playbooks
- Strong understanding of attacker TTPs and mapping detections to frameworks such as MITRE ATT&CK
- Experience working across regional and global teams on standardisation or transformation initiatives
- Comfortable writing and interpreting queries for detection validation and simulation
- Financial services or other regulated environment background is desirable but not essential
- Strong communicator able to work across detection engineering, SOC operations and senior stakeholders
If you have built your career in detection and want to step out of pure alert triage into shaping how a Global SOC actually operates, this is a strong move.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location