SOC Analyst

OneStream • Full-time • Manchester, United Kingdom • 1w ago

Why This Job is Featured on The SaaS Jobs

Security operations roles are becoming increasingly central in SaaS as more product delivery, customer data, and internal tooling move into cloud-native stacks. This SOC Analyst position sits in that reality, with day-to-day work spanning SIEM-driven monitoring, EDR signals, vulnerability scanning, and Azure-oriented environments. The remit also includes helping mature the SOC discipline, which signals a function that is still being systematised rather than simply maintained.

For a long-term SaaS security career, the mix of detection engineering, incident response support, and operational documentation builds durable, cross-company skills. Experience tuning alerting, coordinating with vendor partners, and translating technical findings into clear escalation paths maps well to SaaS organisations that need repeatable security operations as they grow usage and complexity. Exposure to frameworks like SOC 2 and ISO 27001 further aligns with common SaaS customer expectations around assurance.

This role tends to suit early-career to developing security practitioners who prefer structured investigation work, pattern recognition, and steady improvement of operational processes. It will appeal to those who like collaborating across support partners and internal teams, and who want hands-on time with cloud security telemetry and modern tooling rather than purely policy-focused work.

The section above is editorial commentary from The SaaS Jobs, provided to help SaaS professionals understand the role in a broader industry context.

Job Description

SOC Analyst

Location: Hybrid, Manchester, UK
Employment Type: Full-Time
Gross Annual Base Salary: GBP 42,000 – 54,500
Additional variable compensation and benefits may apply. Total compensation is based on experience, skills, and location using objective, job-related criteria.

Summary

We are looking for a SOC Analyst to join our Information Security team to detect, analyze, and limit intrusions and security events. The SOC Analyst will work collaboratively to detect and respond to information security incidents, maintain and follow procedures for security event alerting, and participate in security investigations. This role will also perform tasks such as monitoring, research, classification, and analysis of security events that occur within the environment. The ideal candidate will have a strong understanding of the security industry, including current and emerging vulnerabilities and threats, as well as an ongoing understanding of key business and technological processes. Success in this role requires strong analytical skills, attention to detail, and the ability to adapt in an evolving threat landscape.

Primary Duties and Responsibilities

Assist in maturing and optimizing the OneStream Security Operations Center (SOC) discipline to support managed security services focused on vulnerability management and security information and event management engagements.
Work closely with support partners to continually tune and enhance security alerting and remediation efforts across the organization.
Monitor and analyze security alerts and Security Information and Event Management (SIEM) tools to identify and remediate security issues.
Monitor and analyze alerts and notifications from multiple security solutions, including EDR, Azure, vulnerability scanning tools, and other platforms.
Collaborate with and serve as a liaison between key security vendor solution partners.
Recognize potential, successful, and unsuccessful intrusion attempts and compromises through the review and analysis of relevant event details and summary information.
Communicate, escalate, and/or mitigate alerts regarding intrusions and compromises impacting network infrastructure, applications, and operating systems.
Conduct operations related to cybersecurity incident response technologies, including network logging and forensics, SIEM tools, security analytics platforms, log search technologies, and host-based forensics, as needed.
Perform scanning and monitoring activities to provide in-depth visibility into known and unknown vulnerabilities and threats that may pose risks to the environment.
Document actions within cases to effectively communicate information to internal and external stakeholders.
Assist Security Engineers, as needed, in strengthening the organization’s overall security posture.

Required Education and Experience

BS/BA degree in Computer Science, Engineering, Information Technology, or a related field, or equivalent industry experience.
1+ year of Infrastructure and Information Security experience, preferably within an enterprise environment.

Preferred Education and Experience

Experience working within cloud environments, with Microsoft Azure preferred.
Industry certifications such as ITIL, Microsoft Certified Systems Engineer (MCSE), CompTIA Security+, CCNA, CISSP, OSCP, GCIA, GPEN, GWAPT, GSEC, GCIH, and/or GMON are preferred.

Knowledge, Skills, and Abilities

Working knowledge of SIEM products, with Microsoft Sentinel highly desired.
Working knowledge of incident response, threat modeling, and mitigation practices.
Hands-on experience with scripting languages such as PowerShell and/or Python.
Basic understanding of computer operating systems and networking concepts.
Working knowledge of common information security management frameworks such as SOC 2 and ISO 27001.
Demonstrated passion and discipline for uncovering system vulnerabilities and identifying threat actors.
Ability to communicate complex technical issues related to cyber threats across all areas of the company.
Experience supporting Windows and Linux-based servers.
Experience with the ServiceNow ticketing platform.
Strong problem-solving skills and the ability to work effectively under pressure.
Excellent written, verbal, and interpersonal communication skills.

Who We Are

OneStream is how today’s Finance teams can go beyond just reporting on the past and Take Finance Further™ by steering the business to the future. It’s the only enterprise finance platform that unifies financial and operational data, embeds AI for better decisions and productivity, and empowers the CFO to become a critical driver of business strategy and execution. Our vision is to be the operating system for modern finance, digitizing core financial functions and empowering the CFO to become a critical driver of business strategy. To learn more visit www.onestream.com.

Why Join The OneStream Team