Senior Security Operations Centre Analyst

Our Cyber team look after some complicated and compelling areas within Aero, Defence and Security. If you can lead from the front, work with a large and complex Defence account and have proven SOC experience. We have a lot to offerOur new position of Lead Senior SOC Analyst will direct a team of SOC Analysts, conduct monitoring and triage of alerts associated with host and network security events for our client's critical infrastructure and support the SOC through both delivery of client work and adding skills and ideas to this already diverse team. Come and make a significant impact on our long-term success.Hybrid role based 1 to 2 days on site in Gosport.Please note you do need to be eligible for DV Clearance for this role.What you'll be doingLead and empower a team of SOC analysts, providing mentoring, performance management, and career progression opportunities.Monitor, triage, and investigate security incidents on critical client infrastructure.Perform in-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities.Provide Incident Response support.Maintain, improve and develop team knowledge of SOC tools, security operations and triage.Prepare reports for managed clients to both technical and non-technical audiences.Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence.Represent the SOC within Stakeholders meetings.Ability to work in a hybrid approach from home and our Gosport office location.What you'll bringExperience in Security Operations Centre.People management experience to help develop Analysts and lead careers.Experience of using Microsoft Sentinel and Splunk.Knowledge and experience with Mitre Att&ck Framework.Solid ability to lead teams while staying hands-on with security operations.Strong influencing skills and ability to persuade others, with a broad understanding of all aspects of SOC services.Solid grasp of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise AntiVirus products.It would be great if you hadStatic malware analysis and reverse engineering.Programming and scripting such as Python, Perl, Bash, PowerShell, C++.CREST Practitioner Intrusion Analyst / Blue Teams Level 1 or other SOC related certifications.Experience with SIEM technologies, namely Sentinel and Splunk.If you are interested in this role but not sure if your skills and experience are exactly what we're looking for, please do apply, we'd love to hear from youEmployment Type : PermanentLocation : Hybrid : Gosport 1 to 2 days per weekSecurity Clearance Level : Eligible for DV ClearanceInternal Recruiter : JaneSalary : £60KBenefits : 25 days annual leave with the choice to buy additional days, health cash plan, life assurance, pension, and generous flexible benefits fundLoved reading about this job and want to know more about us?Sopra Steria's Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients.The work we do makes a real difference to the client's goal of National Security, and we operate in a unique and privileged environment. We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK's most complex safety- and security-critical markets.We embrace difference as a source of creativity, innovation and competitive advantage and are striving to become a more diverse organisation. We welcome applications from people with a diverse variety of backgrounds and identities. We are committed to equality of opportunity for all and do not discriminate on the basis of race, religion, colour, gender, age, disability, sexual orientation or marital status. We have partnered with Vercida , the UK's largest diversity and inclusion focused careers site, where all our vacancies are available in an accessible format.If you require any adjustments to the recruitment process, to enable you to perform to the best of your ability, please let us know when completing your application. We participate in the Disability Confident scheme and are committed to offering an interview to any candidate with a disability, who meets the minimum criteria for the role. If you believe this could apply to you, please let us know when completing your application. #J-18808-Ljbffr