SOC Analyst Senior

Date: Jul 1, 2022

Location: London, GB

Company: Capital Group

Req ID: 49803 

Location: London

Other location(s):  


“I can be myself at work.”


You define yourself by more than just a job title, and we want you to feel comfortable bringing your true self to work. We value your talents, your traditions and your take on the world  ̶  everything that makes you unique. We’re working hard to advance diversity, equity and inclusion in our organization and our communities because we know that what makes us different makes us better.


We want you to feel a strong sense of belonging. We value and welcome your experiences, ideas and identity. Over 40 employee resource groups unite our people and help to develop our collective empathy through unfiltered conversations about race, ethnicity, gender, gender identity, sexual orientation, faith, disabilities, mental health and so much more.


“I can influence my income.”


You want to feel recognized at work. Your performance will be reviewed annually, and your compensation will be designed to motivate and reward the value that you provide. You’ll receive a competitive salary, bonuses and benefits. Your company-funded retirement contribution will be the equivalent of 15% of your annual pay (including bonuses).


“I can lead a full life.”


You bring unique goals and interests to your job and your life. Whether you’re raising a family, you’re passionate about where you volunteer, or you want to explore different career paths, we’ll give you the resources that can set you up for success.

  • Enjoy generous time-away and health benefits from day one, with the opportunity for flexible work options
  • Receive 2-for-1 matching gifts for your charitable contributions and the opportunity to secure annual grants for the organizations you love
  • Access on-demand professional development resources that allow you to hone existing skills and learn new ones


COVID-19 HIRING: Our recruiting and onboarding activities are virtual during the pandemic and we’ve transitioned to a work-from-home environment until further notice. We are offering generous work-from-home benefits to improve our associate’s ability to work remotely.



Capital Group is looking for a detection engineer to join our Security Intelligence Response Team (SIRT) to help protect and drive the Capital Group mission. Capital Groups SIRT is a global team responsible for providing threat intelligence, event monitoring, incident response, detection engineering and threat hunting for all business areas of Capital Group in a highly collaborative, fast paced environment.  Information drives our business and we must protect Capital Group’s sensitive information and critical infrastructure.

As a member of the Threat Detection Team, the ideal candidate is highly motivated and innovative to drive the maturity of our threat detection program.  A candidate can be expected to utilize his/her technical expertise to create detection logic to identify prioritized threats using logs and security telemetry.  The ideal candidate can dissect an adversary TTP and identify the logs and technologies required to identify that behavior in Capital Groups environment.  In addition, this candidate will focus on supporting, automating, and enhancing the threat detection engineering lifecycle to advance the in-house detection and response capabilities as well as having a working understanding of security operations, cyber security tools, incident response process, intrusion detection, and secured networks both on-prem and in the cloud.


Key Responsibilities:

  • Work closely with the security response and engineering teams to improve and build new tailored security detections.
  • Analyze SOC alert statistics and workflows to reduce false positives and properly focus engineering efforts.
  • Provide design support in ways to improve detection and response capabilities.
  • Provide back-up support to the incident response team when necessary.
  • Keep up-to-date on modern attack techniques to continually integrate knowledge into new detections.
  • Operate and help mature detection framework, SOC playbooks, workflow automation, and use cases to protect Capital Group people, missions, and assets. 
  • Participate in purple team initiatives.



  • Minimum 3 years working in cyber defense with experience in Incident Response, Incident Handling, Security Operations Center (SOC), threat detection engineering, threat intelligence, threat hunting, or similar functions.
  • Bachelor’s degree in Cyber Security, Computer Science or in an equivalent IT related field or work experience.
  • Experience with scripting languages (Python/PowerShell), software development lifecycle (SDLC) and agile methodology.
  • Experience automating security operations and incident response processes.
  • Ability to identify threats and adversaries by applying logic to logs and security telemetry.
  • Advanced knowledge in network, systems (Windows/Linux), cloud, containers, and web application attacks and mitigations.
  • Experience with modern security information and event management (SIEM) systems such as Splunk and/or ELK.
  • Experience in applying detection and response concepts to On-Premise and Cloud environments (AWS, Azure).
  • Experience crafting logic that detects anomalous in user, network, host, or cloud activity in a high-fidelity manner.
  • Knowledge of industry recognized security and analysis frameworks, e.g., MITRE ATT&CK, Kill Chain, NIST Incident Response, CIS.
  • Knowledge of reverse engineering and malware analysis.
  • Knowledge of vulnerability research and penetration testing.
  • Strong communication and documentation skills.
  • Prior offensive security experience, e.g., Red Team, Pen Testing, is desirable.
  • Willingness to provide support during nontraditional working hours or work in an on-call fashion.


Capital Group are committed to be an equal opportunity employer. In Europe, we endeavour to make reasonable adjustments at any point along the recruitment process for candidates in need. Reach out to the recruiter in the first instance to discuss your needs. Any information you share will be treated sensitively, confidentially and in line with our data privacy policy available on our website.



“I can apply in less than 4 minutes.”


You’ve reviewed this job posting and you’re ready to start the candidate journey with us. Apply now to move to the next step in our recruiting process. If this role isn’t what you’re looking for, check out our other opportunities and join our talent community.


“I can learn more about Capital Group.” 


At Capital Group, the success of the people who invest with us depends on the people in whom we invest. That’s why we offer a culture, compensation and opportunities that empower our associates to build successful and prosperous careers. Through nine decades, our goal has been to improve people’s lives through successful investing. We know that our history is a testament to the strength of the people we hire. More than 7,800 associates in 30+ offices around the world help our clients and each other grow and thrive every day. Find us on LinkedIn, Glassdoor, FairyGodBoss, DiversityJobs and Instagram.


We are an equal opportunity employer, which means we comply with all federal, state and local laws that prohibit discrimination when making all decisions about employment. As equal opportunity employers, our policies prohibit unlawful discrimination on the basis of race, religion, color, national origin, ancestry, sex (including gender and gender identity), pregnancy, childbirth and related medical conditions, age, physical or mental disability, medical condition, genetic information, marital status, sexual orientation, citizenship status, AIDS/HIV status, political activities or affiliations, military or veteran status, status as a victim of domestic violence, assault or stalking or any other characteristic protected by federal, state or local law. 

Job Segment: Cloud, Testing, Computer Science, Linux, Technology, Research