Cybersecurity Analyst

2 months ago


Bexley, United Kingdom Connect44 Ltd Full time
Job Description:

Connect44 Ltd is seeking a highly skilled Cybersecurity Analyst to join our team in the UK.

Key Responsibilities:

  • Provide Tier 2 case resolution, resolving complex security cases including generating initial reporting, providing follow-ups and requesting information and resolution activity.
  • Day-to-day incident triage and escalation using contextual and threat intelligence.
  • Provide security expertise to escalated incidents.
  • Act as the incident handler for P1/P2 incidents.
  • Provide and support In-depth SIEM and Incident notification toolset administration and configuration.
  • Fully utilize threat intelligence capabilities for proactive threat hunting.
  • Responsible for providing communication directly with customers regarding security incidents and other related topics.
  • Aid in the development of incident response procedures and playbooks.
  • Contribute to the design and development of defence and response strategies, knowledge base and playbooks.
  • Monitoring SIEM alerts effectively to minimize downtime and restore services.
  • Ensure investigation steps are clearly documented and accurately escalated when needed.
  • Responsible for producing and maintaining documentation relevant to both the SOC and position.
  • Responsible for updating and offering continual improvement to the knowledge base.
  • Support the SOC team research global security events, issues and trends to produce security advisories for customers based on findings.
  • Responsible for managing and configuring security monitoring tools.
  • Investigating intrusion attempts and performing in-depth exploit analysis.
  • Provide analytical feedback on client network traffic patterns.
  • Provide analytical feedback related to malware and other network threats.
  • Accept, manage and update service requests and incidents to ensure contracted Service Level Agreements are met.
  • Guiding, coaching and mentoring analysts who are providing the core SOC functions, including but not limited to, alert triage, incident escalation, content creation etc.