Job Description

DevNull Security are actively seeking an experienced SOC Consultant to complement our team. The ideal candidate will have a strong background in security operations, incident response, and stakeholder management. This role involves leading the SOC team, monitoring and responding to security incidents, developing and refining security processes, and collaborating with cross-functional teams to enhance our security posture.

Key Responsibilities:

Incident Response:

Lead incident response efforts, conduct forensic investigations, and implement remediation actions to minimize impact and prevent recurrence.

Monitoring & Detection:

Oversee the global technology and information estate for new attacks, triage potentially malicious events, and respond to alerts within defined SLAs.

Security Projects:

Lead the design, implementation, and optimisation of Security Operations Centers (SOCs) for clients, ensuring they meet industry standards and client requirements.

Threat Intelligence:

Gather, analyse, and interpret threat intelligence data to support investigations and enhance detection capabilities.

Process Improvement:

Develop and improve response processes and procedures, ensuring consistent, high-quality execution of monitoring and detection.

Technology Management:

Manage and maintain SIEM platforms, focusing on continuous improvement through updates, development, and troubleshooting.

Requirements:

Experience:

Minimum of 5 years in security operations, with roles including Senior Security Engineer, Security Operations Lead, and Security Consultant.

Technical Skills:

Proficiency in SIEM solutions (e.g., Splunk), Linux system administration, incident management, and threat modelling frameworks (e.g., MITRE ATT&CK).

Communication:

Excellent communication and interpersonal skills, with the ability to translate complex technical information into clear, understandable terms for stakeholders.

Leadership:

Experience managing SOC teams, fostering technical excellence, and driving operational security improvements.

Tools & Technologies:

Experience with EDR tools (e.g., MS Defender, CrowdStrike, Carbon Black), and associated tooling (e.g., ServiceNow, Jira).

Frameworks & Standards:

Knowledge of common industry cybersecurity frameworks, standards, and methodologies, including OWASP, ISO27001, PCI DSS, and NIST standards.

Preferred Qualifications:

Certifications:

CompTIA Security+, CASP+, SANS GCFA, and other relevant certifications.

Education:

BSc (Hons) in Cyber Security & Networks, BEng (Hons) in Computer Security and Forensics, or equivalent.

Your Base

Whilst DevNull Security are a remote-first company, our consulting team may be required to travel to a physical site 2-3 times per week (either Edinburgh, Birmingham, Sheffield, Manchester, London or Glasgow) subject to project/customer requirements.

A career in cybersecurity should be accessible for everyone. We encourage all applicants, regardless of race, ethnicity, gender, age, sexual orientation, disability, or neurotype. We want to ensure our hiring experience is inclusive, fair, and accessible but recognize that as a new company, we might sometimes miss something.

Requirements added by the job poster

Commute to this job's location Authorized to work in United Kingdom Working in a hybrid setting
Job Types: Full-time, Permanent

Pay: 70,000.00-80,000.00 per year

Benefits:

Life insurance Private medical insurance Referral programme Work from home
Schedule:

Monday to Friday
Work Location: Hybrid remote in Edinburgh EH12 9DT

Application deadline: 31/07/2025
Reference ID: SCIDS