SOC Analyst Level 2 Homebased (UK) Competitive salary In this role you will be responsible for handing security incidents received/escalated from the CSOC Analyst (Tier 1) and you will need to perform a business impact analysis on the security incident. You’ll be leveraging a deep understanding of information security technologies as well as aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. Eligibility for SC clearance required At Capita, we live by our values: 🤝 Customer First, Always; 🧑‍💻 Fearless Innovation; ✅ Achieve Together; 💙 Everyone is Valued. These guide how we work, collaborate, and deliver exceptional results. Job title: SOC Analyst Level 2 Job Description: Skill Set – SOC Analyst Level 2 (Sentinel SIEM & MDE/XDR) Core SIEM & XDR Technical Skills - Proven hands‑on experience investigating escalated security incidents using Microsoft Sentinel (SIEM), including log correlation, alert analysis, and incident ownership - Strong operational knowledge of Microsoft Defender for Endpoint (MDE) and Microsoft XDR, including device investigation, alert enrichment, containment actions, and evidence gathering - Ability to perform advanced KQL queries across Sentinel and MDE Advanced Hunting to support deep‑dive investigations and threat hunting - Experience analysing telemetry from multiple security data sources (endpoint, identity, network, cloud) to build a complete incident narrative Incident Response & Analysis Skills - Strong capability to own and manage escalated incidents from Level 1 analysts through investigation, containment, escalation, and closure - Ability to perform business impact assessments, determining severity, risk, and appropriate response actions based on organisational impact - Experience participating in major incident and crisis management, supporting Level 3 analysts and incident handlers during high‑severity events - Skilled in documenting investigations and remediation actions within ServiceNow / Remedy, ensuring clear audit trails and SLA compliance Threat Intelligence & Threat Hunting Skills - Ability to operationalise threat intelligence, including IOCs, TTPs, and MITRE ATT\&CK techniques, to support proactive detection and investigation - Experience conducting proactive threat hunting using Sentinel and MDE hunting capabilities to identify suspicious or low‑signal activity - Capability to enrich incidents with contextual intelligence from internal and external threat feeds Detection Engineering & Continuous Improvement - Experience maintaining, tuning, and improving Sentinel analytics rules and MDE detections to reduce false positives and improve detection fidelity - Ability to identify noisy or ineffective alerts and recommend improvements to SOC detection logic and playbooks - Familiarity with detection lifecycle management and alert quality assurance within a production SOC Operational & SOC Process Skills - Strong understanding of SOC workflows, escalation paths, and SLAs, particularly within a hybrid SOC operating model - Ability to work independently under pressure while managing multiple concurrent incidents - Experience collaborating with resolver groups (AD, Infrastructure, EUC, Cloud, Network) during incident remediation Communication & Leadership Skills - Ability to clearly communicate technical findings to technical and non‑technical stakeholders, including customers and service owners - Contributes to SOC knowledge sharing, training, and playbook developments Qualifications & Experience Essential - Demonstrable experience working in a Security Operations Centre (SOC) or equivalent cyber security operations role - Demonstrable experience using Microsoft Sentinel and Microsoft Defender for Endpoint in a live SOC environment - Strong understanding of enterprise security concepts, including endpoint security, identity threats, malware behaviour, and lateral movement Desirable - Industry certifications such as: - SC‑200 (Microsoft Security Operations Analyst) - Bsc Computing in Engineering or information systems - CompTIA Security+ - CEH or equivalent - Strong Scripting or automation experience (e.g. KQL, PowerShell, Python) to enhance investigation efficiency - Experience working in regulated or high‑security environments (e.g. government, critical national infrastructure) Nice to Have - Exposure to MITRE ATT\&CK mapping, detection engineering, or purple‑team activities - Experience contributing to SOC reporting, dashboards, or executive summaries How this role aligns to Capita’s values Customer First Always By accurately assessing the business impact of security incidents and recommending proportionate response actions, the SOC Analyst Level 2 helps protect customer services, data, and trust. Fearless Innovation The role actively improves detection and response by tuning Sentinel analytics, leveraging advanced KQL hunting, and applying threat intelligence to stay ahead of emerging cyber threats. Achieve Together Working closely with Level 1 analysts, Level 3 specialists, and resolver teams across infrastructure, cloud, and endpoint services, the role ensures incidents are managed collaboratively and effectively end‑to‑end. Everyone is Valued Through clear communication, thorough investigation documentation, and knowledge sharing within the SOC, the role supports an inclusive, learning-focused team where contributions and expertise are recognised. Join Capita – Where Innovation Meets Opportunity Capita is a dynamic leader in consulting and digital services, helping some of the UK’s most recognised organisations transform and thrive. We use cutting-edge technology and fearless innovation to create smarter, more efficient solutions that make a real difference. Our work spans diverse sectors—government, healthcare, education, and finance—offering you the chance to contribute to projects that impact millions of lives. At Capita, you’ll be part of a collaborative, forward-thinking team that values creativity, growth, and inclusion. We’re committed to your development and success, providing opportunities to learn, progress, and shape better outcomes for customers and communities. If you’re ready to make an impact and grow your career, Capita is the place for you. Check out our website www.capita.com What’s in it for you? - 💻 Remote – work from wherever you’re happiest in the UK - 💰 Competitive Salary - 🌴 23 days’ holiday, rising to 27 (pro rata) – plus the option to buy more after qualifying period - ❤️ Paid volunteering day with a charity of your choice - 🍼 Generous family leave policies – including 15 weeks’ fully paid maternity, adoption, and shared parental leave - 🚴‍♀️ Cycle2Work scheme, pension, life assurance, and more 🤝 Customer first, always​🧑‍💻 Fearless innovation​✅ Achieve together​💙 Everyone is valued What we hope you’ll do next: Choose ‘Apply now’ to fill out our short application, so that we can find out more about you. We are committed to building a workforce that reflects the diversity of the communities we serve. As part of our strategic goals, we are focused on accelerating gender and ethnic representation in leadership roles. We warmly encourage applications from women and individuals from Black, Asian, and other ethnic minority backgrounds. We’re an equal opportunity and Disability Confident employer, which means we recruit and develop people based on their merit and passion. We’re committed to providing an inclusive, barrier-free recruitment process and working environment for everyone. If you need the job description or application form in an alternative format (such as large print or audio), or if you’d like to discuss other changes or support you might need going forward, please email reasonableadjustments@capita.com and we’ll get back to you. For more information about equal opportunities and process adjustments, please visit the Capita Careers website. Location: Home-Based - GBR, United Kingdom Time Type: Full time Contract Type: Permanent

Job Description Are You Ready to Make It Happen at Mondelēz International? Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours. You work with the information security team as a competent and experienced information security and compliance specialist. How you will contribute You will assess information security risks in line with internal policy and external best practices, and support security of information and IT assets by testing security systems and applying security standards, policies, and procedures. Under the guidance of global information security lead, you will implement cyber security technology and provide day-to-day business support. If relevant to your role, you will manage third-party providers to ensure that any internal or third-party adhere to standards. You will also provide information security training to appropriate teams. What you will bring A desire to drive your future and accelerate your career. You will bring experience and knowledge in: - Information security, compliance and risk management - Security solutions and their applicability to Mondelēz International - Security strategies, awareness campaigns, policies/standards and governance - Communicating effectively with technical specialists, leaders and peers - Analytical and problem-solving abilities - Being a team player by supporting and leading to achieve common goals More about this role What you need to know about this position: What extra ingredients you will bring: Education / Certifications: Job specific requirements: Travel requirements: Work schedule: No Relocation support available Business Unit Summary At Mondelēz International, our purpose is to empower people to snack right by offering the right snack, for the right moment, made the right way. That means delivering a broad range of delicious, high-quality snacks that nourish life's moments, made with sustainable ingredients and packaging that consumers can feel good about. We have a rich portfolio of strong brands globally and locally including many household names such as Oreo, belVita and LU biscuits; Cadbury Dairy Milk, Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum. We are proud to hold the top position globally in biscuits, chocolate and candy and the second top position in gum. Our 80,000 makers and bakers are located in more than 80 countries and we sell our products in over 150 countries around the world. Our people are energized for growth and critical to us living our purpose and values. We are a diverse community that can make things happen-and happen fast. Mondelēz International is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation or preference, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. Job Type Regular Information Security Technology & Digital

Job Description Are You Ready to Make It Happen at Mondelēz International? Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours. You work with the information security team as a competent and experienced information security and compliance specialist. How you will contribute You will assess information security risks in line with internal policy and external best practices, and support security of information and IT assets by testing security systems and applying security standards, policies, and procedures. Under the guidance of global information security lead, you will implement cyber security technology and provide day-to-day business support. If relevant to your role, you will manage third-party providers to ensure that any internal or third-party adhere to standards. You will also provide information security training to appropriate teams. What you will bring A desire to drive your future and accelerate your career. You will bring experience and knowledge in: - Information security, compliance and risk management - Security solutions and their applicability to Mondelēz International - Security strategies, awareness campaigns, policies/standards and governance - Communicating effectively with technical specialists, leaders and peers - Analytical and problem-solving abilities - Being a team player by supporting and leading to achieve common goals More about this role What you need to know about this position: What extra ingredients you will bring: Education / Certifications: Job specific requirements: Travel requirements: Work schedule: No Relocation support available Business Unit Summary At Mondelēz International, our purpose is to empower people to snack right by offering the right snack, for the right moment, made the right way. That means delivering a broad range of delicious, high-quality snacks that nourish life's moments, made with sustainable ingredients and packaging that consumers can feel good about. We have a rich portfolio of strong brands globally and locally including many household names such as Oreo, belVita and LU biscuits; Cadbury Dairy Milk, Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum. We are proud to hold the top position globally in biscuits, chocolate and candy and the second top position in gum. Our 80,000 makers and bakers are located in more than 80 countries and we sell our products in over 150 countries around the world. Our people are energized for growth and critical to us living our purpose and values. We are a diverse community that can make things happen—and happen fast. Mondelēz International is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation or preference, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. Job Type Regular Information Security Technology & Digital

• Analyze technical controls to ensure that security and compliance requirements are met • Verify documented processes, procedures, and standards to validate maintenance of secure configurations • Track enterprise compliance across multiple security frameworks and maintain records of requirements and mitigating controls • Oversee the development, documentation and maintenance of the control framework • Evaluate organization information systems, management procedures, and security controls • Develop performance metrics to track compliance • Perform internal risk assessments • Develop security and privacy awareness training • Manage IT and Information Security projects to ensure that risk issues and security policy are addressed throughout the project life cycle • Serve as a liaison between external auditors and internal support teams • Manage security compliance certification assessments and audits (PCI, SOC 2, HIPAA, HITRUST, ISO 27001)