Security Operations Center Analyst

2 months ago

Leeds, United Kingdom TWX Full time

TWX have partnered with a Cyber Security technology and service provider headquartered in Gloucestershire. They are looking to add a SOC Analyst to their current team of 11, with the primary aim being to undertake and support the response to a cybersecurity event or incident as well as support other cyber services within the business.


The goal of the SOC is to minimise and control the damage resulting from cybersecurity incidents, provide practical guidance for the response, coordinate recovery activities, and work to prevent future incidents from reoccurring. Additionally, you will be helping with the monitoring of information security controls within the business by analysing alerts received in line with our information security policies and practices and dealing with any/all security incidents.


WHY?


  • Working within a comprehensive team with decades of experience in Cyber and Incident Response
  • £40K - £60K DOE
  • Additional Training Budget
  • 23 days Annual Leave + Bank Holidays + 3 extra days at Christmas (Can rise to 25 days with length of service)
  • Private Healthcare + Other Benefits
  • Flexible working- The team work remotely out of the North West of England and occasionally get together to meetup.
  • 37.5 hours per week within a UK based rapid growth Cyber Business with a diverse client base + Early finish 1 day per week.
  • Vendor training and internal skills and knowledge transferring



WHAT IS A TYPICAL DAY


  • Reviewing & Triage initial alerts
  • First point of escalation
  • Initial investigation
  • Clarify incident severity
  • Knowledge of security methodologies for investigation
  • Comfortable with RAW output
  • Threat Intel Info - against alerts
  • Threat Hunting



Internal Security and Log Management


On top of the SOC Management you can be working on other services:-


  • Dark Web monitoring service
  • Guiding and Shaping Ideas for Crisis Simulations (often around Threat hunting and what happens following one of the well known cyber threats all the way from insider threat and supply chain compromise to Ransomware.
  • Client Risk Compromise and Supply Chain Risk
  • CIS Based Gap analysis with our customers reviewing key parts of their cyber stack.



ACCOUNTABLITIES AND ACTIVITIES


Analytics


  • Use raw log sources and other security and operational tools to monitor and analyse the security posture of the IT estate and identify anomalous activity and behaviours.
  • Investigates defines and resolves complex issues.
  • Produce incident reports to present activity and outcome of operational security services and activity.
  • Select appropriately from applicable standards, methods, tools and applications.



Incident management


  • Aid with the investigation of security breaches following established procedures and make sure any recommended follow up actions are taken to ensure a reduction in the likelihood of reoccurrence.
  • Co-ordinate and manage all Incident Responses.
  • Make sure that all security incidents have been correctly prioritised and diagnose in according to agreed procedures.
  • Investigate the causes of incidents, document findings and seek resolution.
  • Ensure the escalation of any unresolved incidents has been completed according to agreed procedures.
  • Oversee the facilitation of recovery, following the resolution of incidents.
  • Make sure security incidents have been documented and closed according to agreed procedures.
  • Serve as a backup for security operations emergency response.
  • Facilitate collaboration between stakeholders who share common objectives.



Information security


  • Review, update and, when needed, create IR polices, playbooks and standard operating procedures documentation.
  • Use security tools and, where appropriate, develop scripts of your own tools to assist with the ongoing analysis of a security event or incident.
  • Provide advice and guidance to other teams within the business on good practice and maintain relevant and current industry knowledge.
  • In relation to active incidents, implement effective security controls to protect core business processes and data.
  • Oversee, in relation to active Incidents, the operation and optimisation of security tooling/products, including network security (IDS/IPS/Firewalls), logging and auditing, event and incident management, and privileged access management controls.
  • Act on security incidents, requests and events to ensure that threats, vulnerabilities and breaches are managed to minimise impact to confidentiality, integrity and availability of systems and data.
  • Understand the requirement for and be able to assist in the creation of security risk, vulnerability assessments, and business impact analysis as required.



Security administration


  • Oversee the operation or support the operation of tools that contribute to effective security.
  • Take responsibility to make sure that the onboarding of any enhancements to the security tools, including deployment and on-going management and maintenance is completed.
  • Undertake periodic reviews of relevant information security policies and baseline control standards, by influencing required additional and updated controls based on the content of internal and external audit reports, trends derived from security operations, information from project-based activities and incident resolutions.



QUALIFICATIONS, TRAINING AND EXPERIENCE (E= Essential. D= Desirable, P= Preferred)


  • 3+ years of experience within an enterprise-level SOC or CSIRT function. (E)
  • 1+ year experience with Malware tools and ability to analyse Malware. (E)


You will (ideally) hold, at least, one or more of the following security certificates:-


  • CISM, (D)
  • GIAC, (P)
  • GCFE, (P)
  • GISP, (D)
  • GSEC, (P)
  • CEH. (D)


  • You will have a track record of technical delivery working within a fast-paced environment.


In-depth experience in at least one technology tower out of


  • End-User Computing,
  • Hosting,
  • Networks,
  • Cloud,
  • Development.
  • You will be confident in your technical expertise and can present yourself as a technical authority.
  • Capable of breaching. (E)
  • Can take a pragmatic view of the application of technologies; understanding the business application of them and able to identify a balance between the management of risk and the capability for the business to continue to operate.
  • Communicates fluently, orally and in writing, and can present complex information to both technical and non-technical audiences.
  • Experience of Security Monitoring tools.
  • Experience of Vulnerability Management and Threat Intelligence.
  • Knowledge of perimeter and host security intrusion techniques.
  • Knowledge of commonly accepted information security principles and practices, as well as techniques attackers, use to identify vulnerabilities, gain unauthorised access, escalate privileges and access restricted information.
  • You will be able to rapidly absorbs new information and apply it effectively.


If you like the sound of the above and/or are interested in finding out more, apply today

  • Cyber Security Operations Center Analyst

    2 months ago

    Leeds, Leeds, United Kingdom TWX Full time £40,000 - £60,000

    About the Role TWX, a leading Cyber Security technology and service provider, is seeking a highly skilled Security Operations Center Analyst to join their team. As a key member of the SOC team, you will play a critical role in ensuring the security and integrity of TWX's systems and data.Key ResponsibilitiesIncident ResponseInvestigate and respond to...

  • Cyber Security Operations Center Analyst

    2 months ago

    Leeds, Leeds, United Kingdom TWX Full time £40,000 - £60,000

    About the Role TWX, a leading Cyber Security technology and service provider, is seeking a highly skilled Security Operations Center Analyst to join their team. As a key member of the SOC team, you will play a critical role in ensuring the security and integrity of TWX's systems and data.Key ResponsibilitiesIncident ResponseInvestigate and respond to...

  • Security Operations Center Analyst

    2 months ago

    Leeds, United Kingdom TWX Full time €40,000 - €60,000

    TWX have partnered with a Cyber Security technology and service provider headquartered in Gloucestershire. They are looking to add a SOC Analyst to their current team of 11, with the primary aim being to undertake and support the response to a cybersecurity event or incident as well as support other cyber services within the business. The goal of the SOC...

  • Security Operations Center Analyst

    2 months ago

    Leeds, United Kingdom TWX Full time €40,000 - €60,000

    TWX have partnered with a Cyber Security technology and service provider headquartered in Gloucestershire. They are looking to add a SOC Analyst to their current team of 11, with the primary aim being to undertake and support the response to a cybersecurity event or incident as well as support other cyber services within the business. The goal of the SOC...

  • Security Operations Center Analyst

    2 months ago

    Leeds, United Kingdom TWX Full time

    TWX have partnered with a Cyber Security technology and service provider headquartered in Gloucestershire. They are looking to add a SOC Analyst to their current team of 11, with the primary aim being to undertake and support the response to a cybersecurity event or incident as well as support other cyber services within the business.The goal of the SOC is...

  • Security Operations Center Analyst

    2 months ago

    Leeds, United Kingdom TWX Full time

    TWX have partnered with a Cyber Security technology and service provider headquartered in Gloucestershire. They are looking to add a SOC Analyst to their current team of 11, with the primary aim being to undertake and support the response to a cybersecurity event or incident as well as support other cyber services within the business. The goal of the SOC is...

  • Security Operations Analyst

    2 weeks ago

    Leeds, Leeds, United Kingdom Claranet Full time

    At Claranet, we're seeking a skilled Security Operations Analyst to join our team. As a key member of our Security Operations Centre (SOC), you will be responsible for leading incident response efforts, monitoring security events, and analysing logs and data for threats.The ideal candidate will have a strong background in security operations, with experience...

  • Cybersecurity Operations Center Team Lead

    2 weeks ago

    Leeds, Leeds, United Kingdom BlueVoyant Full time

    Job Title: Cybersecurity Operations Center Team LeadJob Summary:We are seeking a highly skilled Cybersecurity Operations Center Team Lead to join our team at BlueVoyant. As a Team Lead, you will be responsible for supervising and mentoring Security Analysts, providing workflow assistance, quality and performance reviews, and excellent customer service.Key...

  • Security Operation Analyst

    5 days ago

    Leeds, United Kingdom Sure Exec Search Full time €50,000 - €58,000

    SOC Level 3 Analyst / Cyber Security Engineer Our client is seeking a highly skilled and experienced SOC Level 3 Analyst / Cyber Security Engineer to join their team in Leeds city centre. Manage and monitor firewall and network security solutions, including Check Point, Fortinet, and potentially Palo Alto Troubleshoot and resolve security-related...

  • Security Operation Analyst

    6 days ago

    Leeds, United Kingdom Sure Exec Search Full time €50,000 - €58,000

    SOC Level 3 Analyst / Cyber Security Engineer Our client is seeking a highly skilled and experienced SOC Level 3 Analyst / Cyber Security Engineer to join their team in Leeds city centre. Manage and monitor firewall and network security solutions, including Check Point, Fortinet, and potentially Palo Alto Troubleshoot and resolve security-related...

  • Security Operations Analyst

    5 days ago

    Leeds, Leeds, United Kingdom BlueVoyant Full time

    **Job Title:** Cybersecurity Threat AnalystJob Summary:We're seeking a skilled Cybersecurity Threat Analyst to join our team at BlueVoyant. As a Cybersecurity Threat Analyst, you will be responsible for monitoring and analyzing security events and alerts from multiple sources, including security information and event management (SIEM) software, network and...

  • UK SOC Security Analyst

    4 weeks ago

    Leeds, Leeds, United Kingdom BlueVoyant Full time

    Job Title: UK SOC Security AnalystJob Summary:BlueVoyant is seeking a highly skilled UK SOC Security Analyst to join our team. As a key member of our security operations center, you will play a critical role in helping our global customers manage their IT security. You will be part of a fast-paced team that helps customers reduce the impact of security...

  • UK SOC Security Analyst

    4 weeks ago

    Leeds, Leeds, United Kingdom BlueVoyant Full time

    Job Title: UK SOC Security AnalystJob Summary:BlueVoyant is seeking a highly skilled UK SOC Security Analyst to join our team. As a key member of our security operations center, you will play a critical role in helping our global customers manage their IT security. You will be part of a fast-paced team that helps customers reduce the impact of security...

  • UK SOC Security Analyst

    1 month ago

    Leeds, Leeds, United Kingdom BlueVoyant Full time

    Job SummaryBlueVoyant is seeking a highly skilled UK SOC Security Analyst to join our global team. As a key member of our security operations center, you will play a critical role in helping our customers manage their IT security and reduce the impact of security incidents.Key ResponsibilitiesMonitor and analyze security events and alerts from multiple...

  • UK SOC Security Analyst

    1 month ago

    Leeds, Leeds, United Kingdom BlueVoyant Full time

    Job SummaryBlueVoyant is seeking a highly skilled UK SOC Security Analyst to join our global team. As a key member of our security operations center, you will play a critical role in helping our customers manage their IT security and reduce the impact of security incidents.Key ResponsibilitiesMonitor and analyze security events and alerts from multiple...

  • Cybersecurity Operations Center Lead

    2 weeks ago

    Leeds, Leeds, United Kingdom BlueVoyant Full time

    Job Title: SOC Team Lead - Cybersecurity ExpertAbout the Role:We are seeking a highly skilled SOC Team Lead to join our team at BlueVoyant. As a key member of our cybersecurity operations team, you will be responsible for leading a team of security analysts in providing 24/7 coverage and responding to security incidents.Key Responsibilities:- Lead a team of...

  • Security Operation Analyst

    2 months ago

    Leeds, United Kingdom TWX Full time €40,000 - €60,000

    Talentworx have partnered with a Cyber Security technology and service provider headquartered in Gloucestershire. They are looking to add a SOC Analyst to their current team of 11, with the primary aim being to undertake and support the response to a cybersecurity event or incident as well as support other cyber services within the business. Additionally,...

  • Security Operation Analyst

    2 months ago

    Leeds, United Kingdom TWX Full time €40,000 - €60,000

    Talentworx have partnered with a Cyber Security technology and service provider headquartered in Gloucestershire. They are looking to add a SOC Analyst to their current team of 11, with the primary aim being to undertake and support the response to a cybersecurity event or incident as well as support other cyber services within the business. Additionally,...

  • UK SOC Security Analyst I

    3 weeks ago

    Leeds, Leeds, United Kingdom BlueVoyant Full time

    Job Title: UK SOC Security Analyst IAbout the RoleWe are seeking a highly skilled UK SOC Security Analyst I to join our team at BlueVoyant. As a key member of our Security Operations Center, you will play a critical role in helping our global customers manage their IT security.Key ResponsibilitiesMonitor and analyze security events and alerts from multiple...

  • Security Operations Specialist

    4 weeks ago

    Leeds, Leeds, United Kingdom BlueVoyant Full time

    Job Title: Security Operations SpecialistBlueVoyant is seeking a highly skilled Security Operations Specialist to join our team in Leeds, UK. As a key member of our Security Operations Center (SOC), you will play a critical role in helping our global customers manage their IT security and reduce the impact of security incidents.Key Responsibilities:Monitor...