This job is no longer available.
You can view related vacancies or set-up an email alert notification when similar jobs are added to the website using the buttons below.

Senior SOC Analyst

JC-071117-1
£45000 - £65000

Blackthorn Trace have partnered with a leading satellite telecommunications company based in Central London to add an Senior SOC Analyst with 4+ years experience to their active 24/7 x 365 SOC. This position will require the new Senior SOC Analyst to be on call during daytime, night time and the weekend. We are looking for an analyst with a good forensics background and experience working with SIEM solutions such as SPLUNK & QRadar (or similar), VA Scanners, IDS/IPS and packet analysis. The new Senior SOC Analyst will work as part of the security operations team focussing on security related tasks to ensure that security requirements are being implemented and operated as per the Group Security program.

 

Key responsibilities of the position

  • A member of the Security Operations team focused on Network, Platform, and Application security issues.
  • Provide Support for the Security Information and Event Management (SIEM) System. Monitor alarm console and assist 1st/2nd level analysts with event triage and escalations.
  • Provide telephone, e-mail and ticket service to Incident Response process stakeholders.
  • Maintain a Compliance/Vulnerability Assessment (VA) Scanning Capability. Follow a documented process for routine scanning of infrastructure and network elements. Conduct routine scanning of infrastructure and network elements. 
  • Maintain an Information Assurance Vulnerability Management (IAVM) and System Patching Process. Assist in maintaining an up to date Software Inventory configuration database. Interface with platform and network element administrators to maintain status of software versions and patching. Interface with platform and network element administrators to determine hardware/software inventories for infrastructure.
  • Monitor threat and vulnerability news services for any relevant information that may impact installed infrastructure. Analyze reports to understand threat campaign(s) techniques, lateral movements and extract indicators of compromise (IOCs).
  • Deliver 2nd/3rd level investigation and remediation activities as a member of the Security Incident Response Team. Lead Security Incident Response Team (SIRT) events: Conduct research and assessments of security events; provide analysis of firewall, IDS, anti-virus and other network sensor produced events; present findings as input to SIRT.
  • Conduct shift change reports on open cases and maintain case data in the Incident Response Management platform.
  • The post will require on-call work to include daytime, night time, and weekend work.

 

Essential Knowledge and Skills:

  • Cyber security professional with solid experience of direct information security operations.
  • University degree level education or equivalent in Computer Science / Data Communication.
  • A Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or equivalent certification would be advantageous.
  • Intermediate knowledge of Information Security fundamentals, technologies, and design principals.
  • Proven experience in securing Windows, Linux, Oracle and VM platforms.
  • Proven experience of QRadar or similar Security Information and Event Management (SIEM) tools for analysing network and security incidents.
  • Proven experience in Tenable Network Security Nessus, BeyondTrust Retina or similar Vulnerability Assessment (VA) scanner operations for identifying network and platform risks and mis-configurations.
  • Willingness to learn new skills and be self-motivated.
  • Ability to work in a team environment, to work under pressure and show flexibility.
  • Excellent verbal and written communication skills in English.

 


This job has now been filled but you may be interested in:

 

Cyber Security Analyst

Are you wanting to work in an incredibly dynamic and flexible environment and be involved in a Cyber Security team that is tasked to help this well known media company grow whilst maintaining current security practices. My client is looking for passionate, Innovative and creative individuals to join their team.

My client is a leading media company based in Central London and is always implementing new technologies across all sectors of the business. This role will offer a vast amount of training and exposure to all things Cyber, you will gain 5 years of experience within 2 in this role!

The Role

  • To take part in various security practises such as Data Loss Prevention, 3rd Party Supplier Risk assessments and Incident response
  • Respond to technical and non-technical Cyber Security enquires
  • Provide technical security expertise to our project teams where required
  • Review projects to ensure security controls are built in from the start
  • Respond to Cyber Security incidents generated from our Security Operations Team
  • Participate in Cyber war gaming and simulations

A little about you

  • Highly analytical and methodical in approach
  • Strong MS Office Excel, Visio, PowerPoint and Word skills
  • Strong technical foundation in infrastructure security or application security controls
  • Ability to pick up new technical concepts and apply security principles
  • Must have documented Cyber Security processes/ policies and procedures for a large enterprise

Additional

  • Some UK based travel will be required to assess vendors and meet with business stakeholders
  • Must be able to work effectively under pressure and work with technical and non-technical personnel at all levels of the organisation
  • Ability to prioritise and respond to Cyber Security Incidents (some of which may continue into out of normal business hours)
  • Degree in Computer Science or technical engineering based subject
  • A GIAC or SANS related Qualification
  • CISSP

This is an incredible opportunity to work for a great company who will sky rocket your career and give you invaluable experience within the Industry. Go ahead and apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Defense Analyst

Are you looking for your next Incident Response position? Our Fintech client based in London are looking to add to their outstanding cyber credentials after creating a multi-million pound cyber fusion centre by bringing on a Cyber Defence Analyst. They pride themselves that Cyber Security is at the beating heart of their culture.

This would be an ideal role if you are incredibly passionate about Cyber Security and want to be a part of a well known company who would value your skill set!

The role:

  • We'll need you to identify Cyber Security threats and confidently perform analysis of anomalies on client's networks.
  • Monitor Cyber Security alerts though the SIEM to triage, mitigate and escalate issues.
  • Coordinate the initial workflow and response for different case types with both internal and external teams.
  • We'll need you to work closely with operational support staff to ensure they are actively engaged in potential security threats and concerns.
  • This role means you'll be providing round-the-clock support for our global security operations centre. Analysts work a 12-hour shift pattern, including holidays and weekends - so commitment is everything here.

Additional skills:

  • Display great problem solving skills - this coupled with the tenacity and resilience to resolve issues.
  • A solid foundational understanding of TCP/IP and networks to include packet analysis, firewalls, routers, and ACLs.
  • Strong working knowledge of malware in its varying forms, common delivery mechanisms, and common mitigation steps.
  • Ability to convey security concepts related Cyber Security events to both technical and non-technical audiences.
  • Experience with IDS/IPS, Endpoint protection, Network Security, WAF, Sandboxing and analysis toolsets.
  • Experience operating and administrating Security Information and Event Management (SIEM) platforms.
  • The ability to communicate and collaborate with other team members in a dynamic workforce
  • Preferred - security operations experience but candidates with Forensics or Penetration Testing background will also be considered.

If you are looking for your next Incident Response role then go ahead and apply now for immediate consideration.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.