JOB DESCRIPTION
Our Security Operations Centre is growing, along with our roster of prestigious customers primarily within the Defence sector. Working with multiple clients, we can assure you that there is no boredom in our role.
Supporting enterprise scale clients, we have new opportunities for L2 SOC Analysts to join in our success and grow with the team. You must have validated experience working in a busy SOC with a tech-first approach and be able to lead from the front.
From a technical perspective we are using Microsoft Sentinel, Splunk and MISP Threat sharing so any knowledge of these technologies would be a substantial benefit.
The role is positioned at our head office in Farnborough, however, you are required to be situated in Hemel Hempstead for the first 2 months for training. Shift pattern, 2 x 6am to 6pm, 2 x 6pm to 6am, 4 days off.
You do need to be eligible for DV Clearance.
We can offer great career progression opportunities, benefits which you can flex to meet your needs and training and development opportunities.
What you'll be doing:
* Monitor, triage, and investigate security incidents on critical client infrastructure.
* In-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities.
* Provide Incident Response support.
* Maintain, improve and develop team knowledge of SOC tools, security operations and triage.
* Prepare reports for managed clients to both technical and non-technical audiences and continuously improve their content and presentation.
* Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies.
What you’ll bring:
* Proficiency in Security Operations Control.
* Demonstrable experience of Running Microsoft Sentinel or Splunk implementations.
* Knowledge and experience with Mitre Att&ck Framework.
* Solid grasp of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise AntiVirus products.
* Deep technical knowledge in the analysis of log data and intrusion detection systems.
* Solid grasp of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, FTP, POP, LDAP.
It would be great if you had:
* Understanding of static malware analysis and reverse engineering.
* CREST Practitioner Intrusion Analyst.
* Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar.
If you are interested in this role but not sure if your skills and experience are exactly what we’re looking for, please do apply, we’d love to hear from you!
Employment Type: Permanent
Location: Farnborough. 2 months training in Hemel Hempstead.
Security Clearance Level: Eligible for DV Clearance
Internal Recruiter: Jane
Benefits: 25 days annual leave with the choice to buy extra days, health cash plan, life assurance, pension, and generous flexible benefits fund
Loved reading about this job and want to know more about us?
Sopra Steria’s Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client’s goal of National Security, and we operate in a unique and privileged environment.
We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK’s most complex safety- and security-critical markets.