-
View all jobs
Civica develops software for local and national government, education, health and care. Over 5,000 public bodies across the globe use our software to help deliver critical services to over 100 million citizens.
Our aspiration is to be a GovTech champion everywhere we work around the globe, supporting the needs of citizens and those that serve them every day. Building on 21 years of continuous growth and success, we're at a pivotal point on our journey to realise that aspiration.
As a company, we're passionate about what we do and the citizens we help to serve. If you too would like to help champion the use of technology in public services, to improve outcomes for citizens and public sector organisations, then Civica is the right place for you. We will help you unlock the best version of yourself, achieve growth in your career whilst making a real difference to people and communities.
Why will you love this opportunity as Security Operations Centre (SOC) at Civica?
As a vital member of our dynamic Security Operations Centre (SOC) team, comprising Analysts, Engineers, and a SOC Manager, you'll take the lead in monitoring our SIEM and various security systems to safeguard both CIVICA Group and our valued customers. Your keen eye will assess real-time and historical logs across multiple technologies, helping to uncover potential attack patterns, instances of compromise, and security vulnerabilities.
Working closely with your team, you'll swiftly determine the most effective response to security events and incidents, while meticulously documenting every step taken to contain and resolve the issues.
You'll also manage internal customer requests, particularly in relation to phishing, spam, and Anti-virus challenges. Additionally, you'll evaluate risks using a Surface Attack Tool, develop and utilize OSINT tools to gather open-source intelligence from various published sources, and collaborate with different business units to inform, mitigate, or remediate any issues.
In this role, you'll be in charge of supervising Microsoft Sentinel and Microsoft Defender systems, while also managing other technologies as needed, including IPS, Email Gateways, Web Filtering services, and Antivirus solutions. You'll be on the lookout for patterns of misuse or recurring issues, working together with the team to contain, control, and resolve any incidents. Plus, you'll have the chance to identify opportunities for improvement in our personnel, processes, or technology to enhance the team's overall effectiveness.
Requirements
We know that when our people are happy, they will work better and have greater work satisfaction. Here's what you can expect:
Our aspiration is to be a GovTech champion everywhere we work around the globe, supporting the needs of citizens and those that serve them every day. Building on 21 years of continuous growth and success, we're at a pivotal point on our journey to realise that aspiration.
As a company, we're passionate about what we do and the citizens we help to serve. If you too would like to help champion the use of technology in public services, to improve outcomes for citizens and public sector organisations, then Civica is the right place for you. We will help you unlock the best version of yourself, achieve growth in your career whilst making a real difference to people and communities.
Why will you love this opportunity as Security Operations Centre (SOC) at Civica?
As a vital member of our dynamic Security Operations Centre (SOC) team, comprising Analysts, Engineers, and a SOC Manager, you'll take the lead in monitoring our SIEM and various security systems to safeguard both CIVICA Group and our valued customers. Your keen eye will assess real-time and historical logs across multiple technologies, helping to uncover potential attack patterns, instances of compromise, and security vulnerabilities.
Working closely with your team, you'll swiftly determine the most effective response to security events and incidents, while meticulously documenting every step taken to contain and resolve the issues.
You'll also manage internal customer requests, particularly in relation to phishing, spam, and Anti-virus challenges. Additionally, you'll evaluate risks using a Surface Attack Tool, develop and utilize OSINT tools to gather open-source intelligence from various published sources, and collaborate with different business units to inform, mitigate, or remediate any issues.
In this role, you'll be in charge of supervising Microsoft Sentinel and Microsoft Defender systems, while also managing other technologies as needed, including IPS, Email Gateways, Web Filtering services, and Antivirus solutions. You'll be on the lookout for patterns of misuse or recurring issues, working together with the team to contain, control, and resolve any incidents. Plus, you'll have the chance to identify opportunities for improvement in our personnel, processes, or technology to enhance the team's overall effectiveness.
Requirements
- A deep understanding of security principles
- Use of Microsoft Sentinel and/or Defender
- Minimum 3 years' experience working in IT, with at least 1 year in a security-based role.
- Any recognised certifications in security or evidence that you are studying for an exam
- Excellent problem-solving skills and the ability to "think outside the box" under pressure.
- Security Incident Response and Handling techniques
- An expert knowledge of enterprise and cloud security infrastructure and systems,
- Ability to identify Email, IPS and Anti-Virus events and take appropriate action.
- Ability to research and develop new practices for self-development, but also to enhance the teams' capabilities.
- Excellent communication skills
- Knowledge of threat intelligence platforms or scripting (e.g., PowerShell)
- Understanding of Vulnerability management tools and/or Surface Attack Tools.
- Be able to work in rotating shift patterns (changing monthly) to help secure offices in different time zones
We know that when our people are happy, they will work better and have greater work satisfaction. Here's what you can expect:
- We provide an inclusive, safe, and welcoming environment to all staff
- Training - CIVICA offers training to help learn about our changing technical environment and also help you develop new skills.
- Mentoring - Within the wider security team (Blue team, red team strategic security) there are opportunities to learn from others.
- Giving culture - we encourage you to "give back" with benefits such as our Days of Difference leave where you can volunteer for a charity of your choice.
Key Skills
Ranked by relevance
ips
microsoft defender
incident response
cloud security
powershell
cloud
siem
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
DevSecOps Expert
2026-05-28
Contract
Not Applicable
Belgium
IT Services
Other
View Job Details
Related
Full Stack Node React
2026-05-27
Full-time
Not Applicable
India
IT Services
Other
View Job Details
Related
Apply for this Position
2026-05-27
Full-time
Not Applicable
India
IT Services
Other
Login to Apply
- Posted
- Jun 06, 2025
- Type
- Full-time
- Level
- Entry
- Location
- Vadodara
- Company
- Civica
Industries
IT Services
IT Consulting
Categories
Other
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
DevSecOps Expert
2026-05-28
Contract
Not Applicable
Belgium
IT Services
Other
View Job Details
Related
Full Stack Node React
2026-05-27
Full-time
Not Applicable
India
IT Services
Other
View Job Details
Related
Apply for this Position
2026-05-27
Full-time
Not Applicable
India
IT Services
Other