SOC Shift Analyst

DescriptionJoin our journey to create a new experience for The National Lottery and help us to power change for the greater good.We are Allwyn UK part of the Allwyn Entertainment Group a multi-national lottery operator with a market-leading presence across Europe which includes: Czech Republic Austria Greece Cyprus & Italy. While the main contribution of The National Lottery to society is through the funds to good causes at Allwyn we put our purpose and values at the heart of everything we do. Join us as we embark on a once-in-a-lifetime largescale transformation journey by creating a National Lottery that delivers more money to good causes. Well talk a bit more about us further down the page but for now lets talk about the role and who were looking forA bit about the roleThe SOC Shift Analyst role is a vital part of the Security Operations team reporting to the SOC Manager. This role will be responsible for the proactive security monitoring of the Allwyn estate and the detect and respond phases of cyber security incident response and will be instrumental in supporting and advancing the operational security capabilities of the SOC Team The Security Operations Analyst will have primary responsibility for all technologies managed directly by the SOC team but also need to track check and report on security events discovered by our MSSP.Team Description: Allwyn UK SOC team is pivotal to Allwyns commitment to protect the National Lottery and its players from Cyber Threats. The SOC is part of the Cyber and Information Security function alongside with our Cyber Défense team and the GRC team. The purpose of the SOC team to deliver Allwyn UK security monitoring and incident response capability. The SOC is under a 24x7 fully in-house operational model. We strive to excel in what we do by regularly measuring our key performance indicators and set the path to the next level of maturity. This is a fantastic opportunity for the right candidate to lend from their experience to help advance the capability of this function.What youll be doingContinuously monitor security tools dashboards and systems for potential security incidents. Track security alerts and escalate issues according to the severity and impact. Investigate security incidents or alerts triggered by monitoring tools to determine whether they represent legitimate threats (e.g. malware phishing unauthorised access). Assist in the initial response to low-level security incidents escalate more severe incidents to Lead SOC analysts or security engineers when necessary. Analyse and review logs from various systems and applications (e.g. network devices servers endpoints) to identify potential threats and suspicious activities. Correlate data from different sources to build a complete picture of ongoing security incidents. Perform initial triage to categorize incidents by severity (e.g. false positives low-risk high-risk incidents). Identify the type of attack (e.g. phishing ransomware DDoS) and begin documenting the event for further analysis. Identify opportunities for security improvements and work with relevant infrastructure teams to implement effectively. Assist in the develop of operational metrics and dashboard reporting for operational security posture.What experience were looking forAbility to work independently to delivery against personal and team objectives liaising with relevant teams.Good network knowledge and principles; LAN TCP/IP OSI Model DNS DHCP Wi-Fi Routing VPN Firewalls Load Balancing IPv4 Understanding of key windows domain services such as Active Directory and Windows Server environments. Hands on experience of common security controls such as IDS Web content filters AV SIEM Vulnerability Management and awareness of their purpose in a layered security approach Demonstrable experience of Azure security solutions Experience and understanding of the ITIL approach to service management. In depth knowledge of the Mitre Att&ck framework. Desirable: A qualification or certification in cyber security attack or defence e.g. (BTL1 GCIA GCIH GCFA GREM) Experience with alerts generated in Azure Unified Logs / Exchangeonline / AWS Guardduty / AWS Cloudtrail / Salesforce Shield / Palo Prisma / Entra-ID / Azure PIM / Defender for Cloud / Defender for endpoint / Defender for servers / Azure Information Protection DLP / Insider Threat experience / Purvue and or MacieAbout us: Weve developed ground-breaking technologies built player protection frameworks and have a proven track record of making lotteries better. Innovation - We pride ourselves on it Were constantly looking for new ways to excite our customers bringing new products to enjoy which is all underpinned by our responsible play values and making them accessible to all. Giving back Did you know that playing the lottery generates around 30m a week for charities and good causes in the UK Our aim is to have doubled this number by the end of the first 10 year licence Sustainability Our aim to be net zero by 2030 which would make us the first lottery provider globally to achieve thi Inclusion and accessibility We are making all parts of The National Lottery inclusive whether you play a game in a store or online. If you need any assistance or adjustments to this job description or in the application process please contact a member of the talent team at and well be happy to help. **Being the custodians of the National Lottery license is a big responsibility so all of our roles are subject to extensive background checks** An inclusive reward offering with wellbeing at the centreAt Allwyn weve put together a range of inclusive benefits and policies to support our colleagues at every stage of their lives and careers. Heres a list of some of the fantastic benefits we offerCompany bonus schemeMatched pension contributions up to 8.5%26 days annual leave 2 Life Days (and bank holidays)Complimentary Private MedicalLife Assurance Enhanced Maternity & Paternity leave500 wellness allowanceAccess to nutritional advisor and personal trainersDiscounted Health AssessmentsComplimentary Financial coaching Our benefits and policies reflect our commitment to wellbeing and inclusivity and are enhanced with features that benefit our colleagues (and their families). By offering a variety of benefits that support our colleagues we continue to create a place of work where people feel rewarded and can succeed. A place of belongingWe want to create one of the UKs most inclusive organisations where people can bring the best of themselves to do their best work every day for the benefit of good causes.Allwyn is an Equal Opportunity Employer which prides itself in being diverse and inclusive. We do not tolerate discrimination harassment or victimisation in the workplace. All employment decisions at Allwyn are based on the business needs the job requirements and the individual qualifications. Allwyn encourages applications from individuals regardless of age disability (visible or hidden) sex gender reassignment sexual orientation pregnancy and maternity race religion or belief and marriage and civil partnerships.We are a Disability Confident Leader which means weve taken proactive steps to ensure our workplace is accessible and inclusive for disabled colleagues and candidates. As part of this we offer an interview to disabled applicants who meet the essential requirements of the job.Required Experience:IC Key Skills Quality Analysis,Facility,ISO,Inventory Levels,Root cause Analysis,Shift operations,General Maintenance,Daily Operations,Supervision,Analysis,PLC,Safety Standards,Quality Standards,Time management skills,Troubleshooting Employment Type : Part-Time Experience: years Vacancy: 1