Are you experienced working in a Security Operations Centre and looking for an exciting new challenge?
We are currently recruiting a number of SOC Analysts to join a growing team in Sopra Steria's Aerospace Defence and Security sector. This is an incredible opportunity for experienced Analysts looking for their next step in the industry and interested in joining a growing team supporting enterprise scale clients. This role will require you to have proven experience working in a busy SOC with a tech-first mindset. The team that you will be joining is on the cusp of continued growth, so we are looking for enthusiastic individuals who can lead from the front. From a technical perspective we are using Microsoft Sentinel, Splunk and MISP Threat sharing so any knowledge of these technologies would be a massive benefit.
This role is based out of our head office in Hemel Hempstead and will work on a shift pattern with 12 hour shifts (Nights and Days).
We can offer great career progression opportunities, benefits which you can flex to meet your needs and training and development opportunities.
What you'll be doing:
1. Monitor, triage, and investigate security incidents on critical client infrastructure
2. Perform in-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerabilities
3. Maintain and, where appropriate, improve and develop team knowledge of SOC tools, security operations and triage.
4. Prepare reports for managed clients to both technical and non-technical audiences and continuously improve their content and presentation.
5. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies.
What you’ll bring:
6. Proven experience in Security Operations Centre
7. Demonstrable experience of Managing Microsoft Sentinel and Splunk implementations
8. Knowledge and experience with Mitre Att&ck Framework
9. Deep technical knowledge in the analysis of log data and intrusion detection systems
10. Strong understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP
It would be great if you had:
11. Understanding of static malware analysis and reverse engineering
12. CREST Practitioner Intrusion Analyst
13. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar appreciated.
If you are interested in this role but not sure if your skills and experience are exactly what we’re looking for, please do apply, we’d love to hear from you!
Employment Type: Full-time, Permanent
Location: Hemel Hempstead
Security Clearance Level: SC
Internal Recruiter: Olly Walker
Salary: Up to £49,000
Benefits: 25 days annual leave with the choice to buy additional days, health cash plan, life assurance, pension, and generous flexible benefits fund
Although this role is advertised as full-time, we believe that flexibility at work can promote work/life balance, increase your motivation, reduce stress and improves performance and productivity. We support different ways of working and can offer a range of flexible working arrangements.