Security Analyst Level 2

Security Analyst Level 2

Hybrid - attached to our Solihull or Hook office
Full Time, Permanent
Salary - up to £40,000 - £50,000 dependent on experience.

Here at Serco, we are seeking an experienced Level 2 SOC Analyst to enhance our Security Operations Center (SOC) team. If you're passionate about real-time threat monitoring, in-depth analysis, and staying ahead of emerging cyber threats, we want to hear from you!

As a Level 2 SOC Analyst, you will be responsible for real-time threat analysis and monitoring, responding to alerts, and leading the detection, triage, handling, and in-depth analysis of security events. You will work closely with our Managed Security Service Provider (MSSP) and internal teams to ensure the integrity of our security systems.

As part of this you'll:

• Collaborate with our MSSP to ensure continuous monitoring of all tools and platforms, with timely investigation and acknowledgment of all alerts.
• Lead investigations and ensure actions are taken following the receipt of alerts, with detailed, high-quality updates logged in tickets.
• Assist the team in maintaining an up-to-date knowledge base, including the creation of response playbooks.
• Conduct hypothesis-led threat hunting to uncover suspicious activity that might otherwise go undetected.
• Stay current on the latest cybersecurity issues and tactics, techniques, and procedures (TTPs) of threat actors.
• Support purple-team activities, including testing and improving defensive measures.
• Monitor for newly identified vulnerabilities and assess whether they affect Serco systems. Provide recommendations for compensating controls or mitigations where necessary.

What you'll need to do the role:

• Previous experience in a SOC environment.
• Working knowledge of security solutions such as SIEM, syslog, EDR, IDS/IPS, and Azure Security Centre.
• Experience in incident response, including containment, eradication, and recovery.
• Strong background in cyber threat hunting.
• Familiarity with common network protocols (e.g., DNS, HTTP(S), TCP, UDP, SSH).
• Experience working with CLIs, including Linux terminal and/or Microsoft PowerShell.
• Relevant cybersecurity qualifications (e.g., CompTIA SEC+, CompTIA CySA+, Blue Team Level 1, or a Cybersecurity degree).
• Knowledge of one or more programming or scripting languages (e.g., Python) is a plus.

• Must be SC cleared or willing to undergo SC clearance.
• Must be willing to be part of an on-call rota and support urgent operational incidents outside of standard office hours when necessary.

Why Serco:

Serco's purpose is to impact a better future - we bring together the right people, the right technology, and the right partners to create innovative solutions that deliver positive impact and address some of the most urgent and complex challenges facing governments globally. Our services are powered by more than 50,000 colleagues working across multiple sectors including defence, space, migration, justice, healthcare, transport, and customer services in four regions: UK & Europe, North America, Asia Pacific, and the Middle East.

In this position, your work is vital to the business, in terms of decisions and growth. You will gain a world of opportunity working for a globally operating business delivering essential services across 5 vital sectors, personal growth, achievement, and development won't be hard to find. You'll also work with great people. You'll find yourself working in a highly motivated, supportive environment where no two days are the same, with experienced colleagues who strive for excellence.

What we offer:

• 25 days annual leave plus bank holidays.
• Annual leave purchase scheme.
• Up to 6% contributory pension scheme
• Flexible working options.
• Free onsite parking.
• Serco discounts which include cinema, merlin entertainment and online shopping discounts, and discounts on mobile phone plans and leisure centre memberships.
• A range of benefits to support the health and wellbeing of you and your family such as Employee Assistance Programme, Health Cash Plans, free flu jabs and more.
• A wealth of career development training to suit your future aspirations. These range from role specific training, leadership coaching, formal study and much more to support you to build your career with Serco.
• A safe and supportive culture.
• A company passionate about diversity and inclusion.

About Serco
At Serco, not only is the nature of the work we do important, everyone has an important role to play, from caring for vulnerable people to managing complex public services. We are a team of 50,000 people responsible for delivering essential public services around the world in areas including defence, transport, justice, immigration, healthcare and citizen services. We are innovators, committed to redesigning and improving public services for the benefit of everyone.

Apply
Please click on the apply button to complete your application. Occasionally we receive a large volume of applications for our roles and when that happens we sometimes bring the closing date forward, so please apply promptly to avoid disappointment.

At Serco, we see people first and foremost for their performance and potential. We are committed to building a diverse and inclusive organisation that supports the needs of all. As such we will make reasonable adjustments at interview through to employment for our candidates and strongly encourage applications from a diverse candidate pool. We are open to discussions around flexibility and flexible working. We operate a hybrid work structure in many of our business areas. We are proudly Disability Confident Leaders and holders of the Gold Inclusive Employer Standard. Disabled applicants who meet the minimum criteria for the job will be given the opportunity to demonstrate their abilities at an interview. For help with your application please contact 0345 010 4000.

At Serco we support fair access to employment for those with unspent criminal convictions through the 'Ban the Box' pledge (some may be exempt due to the nature of the role and the security clearance required). Please contact our recruitment team directly on 0345 010 4000 to discuss.