Are you conscientious, ambitious and passionate about Security? Can you spot weaknesses in Security processes and provide resolutions to these? Do you want to shape your world and change the way the world works? Do you want to collaborate and achieve together with committed people to monitoring, detecting, reporting, auditing and protection of Security? This is your world and your opportunity to transform it for the better.
Role Overview
As a SOC Analyst you will be responsible for leading high‑performing, dedicated security teams. You will work with multiple stakeholders, providing technical advice and guidance to SOC staff, third and second line teams, system architects, project managers and other groups.
Responsibilities
* Support and participate in change management activities, updating changes when completed.
* Triage vulnerabilities aligned with CVSS and work with SMEs to mitigate risk.
* Liaise with project teams to progress project deliverables.
* Undergo training to become an LSO; duties include account and management of SyOps.
* Work with a high‑performing, dedicated security operations team to provide support for cyber incidents and alerts. Collaborate with internal security teams to ensure information is safeguarded.
* Develop strong relationships across the organisation, with external strategic support partners and third‑party vendors who provide tooling support, ensuring the safety of on‑prem data and systems hosted in other geographical locations.
* Own security analysis, incident classification and incident‑response actions, including notification and alerting.
* Monitor for possible security incidents, using knowledge of attack types and standard protocol behaviour to classify incidents, comment, and provide advice on mitigation or remedial actions to the customer.
* Investigate and report on suspicious activity including unauthorised account activity, compromised accounts and incidents, privilege creep, loss of data and breaches in security policy. Conduct investigations to ascertain facts and liaise with other resolver groups and teams to understand the impact and potential risks.
* Support the engineering of use cases through low‑level recommendations for tuning.
* Provide security consultancy to other internal teams regarding SOC matters.
* Support bid teams with their customer engagement by providing knowledge of SOC operations.
* Provision user accounts, SharePoint access and customer tooling.
Mandatory Skills
* Knowledge and experience of cyber security and using a SIEM tool (e.g., LogRhythm).
* Vulnerability management and assessment.
* Knowledge and experience of operating systems.
* Knowledge and experience of ITIL v3 or later.
* Proactively monitor various sources for the latest information on vulnerabilities and threats (OSINT).
* Identify incidents and conduct subsequent analysis and investigation to determine their severity and the required response, ensuring incidents are correctly reported and documented in accordance with government policy and procedures.
* Serve as a technical escalation point during security incidents, establishing the extent of an attack, business impacts, and advising on containment, systems hardening and mitigation measures to prevent recurrence.
* Support the customer with the creation of reports and dashboards, manage alarms and use cases.
* Maintain a keen understanding of evolving threats and vulnerabilities to ensure the security of the client network.
* Update Protective Monitoring/SOC documentation, processes and procedures, ensuring currency.
* Provide daily team leadership, management, job training and mentorship to develop junior SOC team members.
Security Clearance
Due to the nature and urgency of this post, candidates held or who have held high‑level security clearance in the past are most welcome to apply. Successful applicants will be required to be security cleared prior to appointment, which can take a minimum of 18 weeks.
Equal Opportunity
We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience.
#J-18808-Ljbffr