Back to Job SearchThe team you'll be working with:
UK Sovereign SOC
Security Analyst (Level 1)
Role Description
The SOC Analyst is a frontline, shift‑based role operating within a 24/7 Security Operations Centre. The role is responsible for monitoring, triaging, analysing, and investigating security alerts and events using SIEM and SOAR platforms to detect potential security incidents and protect monitored environments.
Working within defined procedures, runbooks, and escalation paths, the SOC Analyst performs initial investigations, validates alerts, and supports incident response activities. The role requires strong attention to detail, disciplined execution, and the ability to work effectively in a high‑volume, operational environment.
What you'll be doing:
You will continuously monitor security alerts, logs, and event data across customer and internal environments, identifying suspicious or malicious activity. You will triage and analyse alerts to determine whether they represent potential security or service incidents, and prioritise them in line with defined security incident management policies.
You will conduct first‑line investigations using SIEM, SOAR, and supporting security tools, validating alerts, gathering relevant evidence, and assessing initial impact and severity. Where indicators of compromise or attack activity are identified, you will recognise successful or unsuccessful attack attempts and escalate appropriately to senior analysts or incident responders with clear and accurate context.
You will support incident containment and remediation activities by following runbooks and customer guidance, ensuring actions are documented and carried out consistently. High‑quality case management is a core responsibility: you will create and maintain incident tickets, record investigation steps and findings, and produce clear incident summaries and investigation notes using internal knowledge bases and research.
You will contribute to post‑incident reviews by sharing findings and identifying opportunities to improve detection, response, or operational processes. You will also apply threat intelligence provided by the SOC to support alert analysis and investigations.
Operational discipline is essential. You will follow defined SOC procedures, documentation standards, and shift‑handover processes, ensuring continuity across shifts. You will participate fully in the 24/7 shift rota, working collaboratively with other analysts to maintain consistent monitoring coverage.
What experience you'll bring:
You will have a foundational understanding of cyber security concepts, including TCP/IP networking, common log sources, and basic attack techniques. You will be comfortable working with a SIEM platform such as Splunk, Microsoft Sentinel, or an equivalent tool, and have basic knowledge of common operating systems including Windows, Linux, and macOS.
You will demonstrate strong analytical and problem‑solving skills, with the ability to assess alerts, follow investigative processes, and make sound decisions within defined procedures. Clear written and verbal communication skills are essential, particularly for accurate ticketing, escalation, and shift handover.
You will be able to work calmly and effectively in a shift‑based operational environment, managing workload and maintaining focus during periods of high alert volume. You will be comfortable following procedures, working with minimal supervision, and continuously learning from feedback and operational experience. Awareness of scripting, query languages, or rule‑based detection is advantageous but not required.
Experience & Qualifications
- Experience or strong interest in cyber security or IT operations
- Entry‑level or foundation cyber security certifications desirable (CySA+, SC‑200)
- Experience with cloud platforms such as Microsoft Azure and/or AWS is desirable
- Proficiency with Microsoft Office tools, particularly Excel and Word
Security & Working Requirements
- Eligibility for, or holding, UK SC Clearance
- Willingness to work within a 24/7 shift‑based SOC environment
Who we are:
At NTT DATA, you have endless opportunities to think big, act bold and take ownership. As a $30+ billion business and technology services, AI and digital infrastructure leader, we co-innovate solutions with clients and partners globally for business and societal impact. Serving 75% of the Fortune Global 100, with experts in over 70 countries, we encourage experimentation and recognize great work. Proudly a Global Top Employer, NTT DATA is part of NTT Group, which invests over $3 billion annually in R&D. Make this the place where you belong, learn, and build your network. Make this the place where you grow.
what we'll offer you:
We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.
You can find more information about NTT DATA UK & Ireland here: https://uk.nttdata.com/
We are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team.
Location
“Upon joining the NTT DATA UK family, you will experience a culturally diverse organisation living our values of Clients First, Teamwork and Foresight as we partner with our customers every day.
At NTT DATA UK, we are proud to support and invest in our people. We offer a variety of rewarding career paths and opportunities to develop professionally - with access to cutting edge innovation.”
Niccolo Spataro, CEO, NTT DATA UK
