Job Description
Who we're looking for
The Security Analyst will be required to work a 4x4 shift pattern which is 4 days on and 4 days off and will include weekend work. Within the role you will be responsible for performing the day-to-day maintenance of the Security Operations Centre. These responsibilities will include proactive monitoring of customer’s security posture as well as reactive actions to control a breach should this occur. Typical tasks will include triage and remediation of SIEM (Microsoft Sentinel) incidents and alerts, threat intelligence and research, system hardening, and documenting customer’s infrastructure and assets. Technical product and process knowledge needs to be accompanied by excellent customer service skills, and meticulous attention to detail.
What you'll be delivering
- Perform forensic analysis, triage security incidents, and apply proactive remediation.
- Proactive monitoring and threat hunting.
- Proactive threat intelligence and research.
- Vulnerability assessment and management.
- Provide technical support and guidance for 1st Line SOC Security Analysts and Security Service Delivery Manager.
- Ownership ofsecurity incidents and breaches, as well as escalated issues from 1st Line SOC Analysts through to resolution.
- Documenting and articulating issues ready for escalation to the 3rd Line Security Analysts.
- Work closely with the Service Desk team for security related escalations.
- Provide feedback and be part of the continuous improvement program.
- Ensure excellent customer satisfaction is achieved.
- Manage customer complaints through to resolution.
- Assist the Security Service Delivery Manager with creation and delivery of customer facing reports.
- Assist in maturing SOC processes.
- Be accountable for the timely response and progression of incoming requests.
We think you'll be successful in this role if you have some of the following
- Previous SOC experience preferred.
- Knowledge and experience with Azure Active Directory, DNS, Microsoft Defender for Cloud, Microsoft Defender, Microsoft Defender for Endpoint, Microsoft Sentinel, and Intune.
- Knowledge and experience with Microsoft Windows Server and Client operating systems. Linux experience is a bonus.
- Knowledge and experience in networking products and frameworks, such as firewalls, switches, wireless infrastructure, WAF, application gateways and the OSI 7-layer model.
- Knowledge of Kusto Query Language and PowerShell scripting languages required.
- Excellent technical document writing experience (network and traffic flow diagrams, playbook documentation).
- Relevant industry certifications.
- Self-motivated, and organised.
- Ability to cope under pressure and prioritise work accordingly.
- Ability to work to customer and internal deadlines.
What we'll offer in return
In addition to a competitive salary, there are a number of benefits and perks we offer to say thank you for being a part of our journey:
- To work at a 3* World Class Best Company
- Flexibility over where you work with our Winning from Anywhere approach
- 25 days holiday
- Home working allowance paid monthly
- Winning from Anywhere allowance to help your set up at home
- 24/7 GP at hand
- Immediate 24/7 access to an Employee Assistance Programme
- We’ll support you when you’re not well with our Company sick pay scheme
- Private health insurance after a successful year’s service
- Enhanced parental pay and leave, supporting you with those precious life moments
- Access to the Perkbox platform to help make your money go further
- Cyclescheme