SOC Analyst

This is a great opportunity for a SOC Analyst who wants to take the next step in their career in a role that will challenge them, but also offer the career progression into a more senior role.

About you

• Must be self-motivated with a positive can-do attitude
• Must be able to work un-supervised, on own initiative as well as within a team
• Be confident in both spoken and written communications
• An excellent problem solver with strong analytical skills
• Can meet deadlines and maintain high standards even when under pressure
• Must have understanding and appreciation to rigid process adherence
• Must hold full driving licence valid in UK

What You’ll Be Doing

Working as part of the SOC team the role will be focused on the day-to-day monitoring of our SIEM platform and security applications deployed at our customer base, you will be the first line of support providing support functions for network ad infrastructure. You will be working 4 days on, 4 days off then 4 nights on 4 nights off. Some of your duties will include:

• First and second line support for client raised security events and incidents reported by phone and/or email
• On boarding clients to tools such as SIEM, EDR, OT Monitoring
• Perform false positive and false negative analysis
• Escalation of high severity threats to client and/or appropriate technical team
• Supporting 24/7 SOC Team Lead on any requests in area of expertise
• Ensuring time is accurately logged against client work, for billing purposes
• Handling technical incident tickets within contractual SLA and KPIs
• Respond to emergency outages in accordance with business continuity and disaster recovery plans
• Support delivery of projects with chosen technologies

Experience and Skills

• EDR solutions such as Sentinel One, Palo Alto Cortex
• IAM platforms such as Azure AD or Okta
• Azure or AWS
• SIEM/SOAR solutions FortiSIEM / Splunk / LogRythm / AlienVault
• Network environments
• Firewalls
• Active Directory
• Security concepts (CIA/MITRE ATT&CK Framework/Vulnerabilities)
• ITIL
• CompTIA Security+ / CySA+ or similar
• Fortinet Solutions – NSE Certifications
• Scripting – Python, Powershell, Perl desirable