Junior SOC Solutions Engineer - Splunk

NTT Data

  • Birmingham
  • Permanent
  • Full-time
  • 1 month ago
The team you'll be working with:Junior SOC Solutions EngineerWe are currently recruiting for a Junior SOC Solutions Engineer to join our growing Security Operations Centre business.This is a hybrid variable position that can be based in our Birmingham or London officesProfile
  • The Junior SOC Engineer supports the enhancement of security operations capabilities by applying technical expertise in the Splunk SIEM platform. The role involves contributing to playbook development, assisting in the creation of analytical rules, and participating in threat modelling activities. Working under general direction, the engineer helps implement and optimise detection and response processes to improve operational effectiveness.
About Us:NTT Data is a leading Managed Service Provider (MSP) with a global reach empowering local team, undertaking hugely exciting work and is genuinely changing the world.We specialise in delivering cutting-edge IT and cybersecurity solutions to our diverse client base. We provide expert-managed services to help clients protect their data, comply with regulations, and manage evolving cyber threats. We are looking for a skilled Information Security Manager to join our team and be billed out to a key client to enhance their information security posture.What you'll be doing:What you'll be doing;
  • SIEM Engineering & Management
  • Assist in deploying, configuring, and maintaining Splunk SIEM platform.
  • Support onboarding and normalisation of log sources across cloud and on-prem environments.
  • Contribute to the development and tuning of analytical rules for threat and anomaly detection.
  • Playbook Development & Automation
  • Support the creation and implementation of incident response playbooks for common threat scenarios (e.g., phishing, lateral movement).
  • Assist in integrating playbooks with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) to enable automation.
  • Help refine playbooks based on feedback and threat intelligence.
  • Threat Detection & Response
  • Monitor and review security alerts and events to identify potential threats.
  • Participate in investigations and assist with incident response activities.
  • Collaborate with threat intelligence teams to improve detection logic.
  • Threat Modelling & Use Case Development
  • Contribute to threat modelling exercises using frameworks such as MITRE ATT&CK or STRIDE.
  • Assist in translating threat models into detection use cases and SIEM rules.
  • Support prioritisation of detection efforts based on guidance.
  • Reporting & Collaboration
  • Help generate reports and dashboards on security posture and incident trends.
  • Collaborate with IT, DevOps, and compliance teams to support secure system configurations.
  • Share knowledge and collaborate with junior analysts and engineers.
  • Maintain documentation of security procedures and incident response plans.
  • Assist in preparing monthly reporting packs as required.
  • Help document event and incident management processes, runbooks, and playbooks.
  • Other responsibilities:
  • Support scoping and implementation of new solutions for emerging opportunities.
  • Assist the Pre-Sales team with technical input on new opportunities.
  • Participate in demonstrations of SOC tools to clients.
  • Contribute to continual service improvement by identifying and recommending changes.
What experience you'll bring:What you'll bring;
  • Must be able to obtain SC Clearance or already hold SC clearance.
  • SIEM Expertise: Hands-on experience with Splunk.
  • Technical Skills:
  • Strong knowledge of log formats, parsing, and normalization.
  • Experience with KQL, SPL, AQL, or other SIEM query languages.
  • Familiarity with scripting (Python, PowerShell) for automation and enrichment.
  • Security Knowledge:
  • Deep understanding of threat detection, incident response, and cyber kill chain.
  • Familiarity with MITRE ATT&CK, NIST, and CIS frameworks.
  • Strong verbal and written English communication.
  • Strong interpersonal and presentation skills.
  • Strong analytical skills
  • Must have good understanding on network traffic flows and able to understand normal and suspicious activities.
  • Must have good understanding of Vulnerability Scanning and management as well as Ethical Hacking (Penetration Testing)
  • Knowledge of ITIL disciplines such as Incident, Problem and Change Management.
  • Ability to work with minimal levels of supervision.
  • Willingness to work in a job that involves 24/7 on call.
Education Requirements & Experience
  • Minimum of 2 to 4 years of experience in the IT security industry, preferably working in a SOC/NOC environment.
  • Preferably holds Cyber Security Certification e.g. ISC2 CISSP, GIAC, SC-200, Splunk Certified Admin/Power User, IBM QRadar Certified Specialist, Google Chronicle Security Engineer etc Ideally with Splunk.
  • Experience with Service Now Security suite
  • Experience with Cloud platforms (AWS and/or Microsoft Azure)
  • Excellent knowledge of Microsoft Office products, especially Excel and Word
Reports to
  • Security Director – NTT DATA UK Security Practice
  • Client Delivery Director – NTT DATA UK Managed Services
Who we are:We’re a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects.Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women’s Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network.For more information on Diversity, Equity and Inclusion please click here:what we'll offer you:We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.You can find more information about NTT DATA UK & Ireland here:We are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team.

NTT Data