NOC & SOC Technician

The HBP Group

Scunthorpe, United Kingdom

2 days ago

Role details

Contract type

Permanent contract

Employment type

Full-time (> 32 hours)

Working hours

Regular working hours

Languages

English

Experience level

Intermediate

Job location

Scunthorpe, United Kingdom

Tech stack

Microsoft Windows

API

Build Automation

Azure

Bash

CompTIA Network+

CompTIA Security+

Computer Security

RAID

Virtual Private Networks (VPN)

JSON

Routing

Powershell

Kusto Query Language

Security Information and Event Management

Systems Integration

Virtual Local Area Networks

Wide Area Networks

Scripting (Bash/Python/Go/Ruby)

Malware

Firewalls (Computer Science)

Templating

Performance Monitor

Microsoft Sentinel

Fortinet

Network Server

Job description

Are you at your best when solving complex technical issues others can't?

Do you enjoy digging into alerts, fixing root causes, and improving systems so problems don't come back?

If you thrive in fast moving MSP environments where automation, performance, and security matter…

If so, this could be the role for you.

The Opportunity

We're looking for a hands on NOC & SOC Technician to operate at the core of our monitoring, automation, and security function across multi-client environments.

This isn't a ticket processing role.

You'll work on complex alerts, resolve issues end-to-end, and contribute to building a modern, automation-first NOC/SOC that delivers real outcomes.

You'll be part of a team that's shifting from reactive support to proactive, engineered operations.

What You'll Own

Complex Incident Diagnosis & Resolution

You'll take ownership of alerts across infrastructure and security platforms, not just triaging, but resolving.

You'll handle:

Server and VM performance issues
Storage (NAS/SAN, RAID, IOPS) alerts
Network issues (SD-WAN, VPN, VLANs, routing)
Firewall, switching, and wireless alerts
Microsoft 365 and Azure signals
Backup failures and DR anomalies

You won't just fix symptoms, you'll identify root causes and prevent recurrence.

Automation Driven Operations

You'll play a key role in shifting automation into the NOC/SOC function.

You will:

Identify repeat issues and convert them into automation opportunities
Contribute to scripts and remediation workflows
Support automation platforms (e.g. Rewst)
Help reduce manual workload across the business

This team owns automation and you'll help build it.

Advanced Scripting & Engineering Contribution

This isn't basic scripting.

You'll be working in environments where automation runs across thousands of endpoints.

You will:

Develop and refine PowerShell scripts
Work with Bash, JSON, and templating logic
Support automation workflows and integrations (APIs)

You don't need to know everything but you need to be serious about developing here.

Security Detection & Response

You'll actively investigate and respond to security events across modern tooling.

You'll work with:

EDR/XDR detections
Huntress alerts
Microsoft Sentinel (KQL-based alerts)
Identity risks (Entra ID / ITDR)

And perform:

Device isolation
Malware remediation
Identity enforcement (MFA / Conditional Access)
Root cause analysis

You'll help improve detection quality and reduce noise over time.

Proactive Monitoring & Signal Quality

You'll help ensure alerts are meaningful, not noise.

You will:

Improve monitoring thresholds
Reduce false positives
Validate patching and system health Contribute to
95% patch compliance

Continuous Improvement & Root Cause Elimination

We don't believe in fixing the same problem twice.

You will:

Analyse recurring issues and propose permanent fixes
Contribute to automation-driven ticket reduction
Feed improvements back into monitoring and tooling
Take part in structured NOC/SOC improvement cycles

You're expected to think beyond the ticket and improve the system.

Customer Experience & Ownership

You'll own issues through to resolution.

You will:

Communicate clearly and confidently during incidents
Minimise handoffs and friction
Deliver a low-effort, high-confidence customer experience

What Makes This Role Different

This role combines:

Operational Execution (Run)

Owning alerts, incidents, and service quality day-to-day

Engineering Contribution (Improve & Automate)

Helping build automation, eliminate root causes, and improve systems

You won't just respond to issues… You'll help engineer them out of existence., We value capability over certificates, but the following are advantageous: