SOC Analyst (L1)
We are currently recruiting for an Associate level Managed Detection and Response SOC Analyst Level 1 to join our growing Security Operations Centre business
**.
This role will be based on-site in Birmingham, we need candidates that are able to work in a job that involves 24/7 operations, this will probably be in shift patterns of 4 days on, 4 days of**
**f.
About**
UsNTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to do great things. We believe that by bringing everyone together, we can solve problems using innovative technology that can create a world that is sustainable and secu
re.This is a great opportunity for you to play a pivotal role in helping to shape our client's transformation journe
**ys.
What you will be do**
* ing;
The primary function of the SOC Analyst (L1) is to analyse any incidents and undertake the detailed investigation of the Security Event.The role is a 'hands-on' shift-based roles, working as part of a 24/7 operation working in a standard rotation shift pattern. They are responsible for utilising the SOC's SIEM and SOAR toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored netw
**orks.
Main**
* Duties
Monitor, triage, analyse and investigate alerts, log data and network traffic using the Protective Monitoring platform and Internet resources to identify cyber-attacks / security inc
- idents.Categorise all suspected incidents in line with the Security Incident
- policyRecognise potential, successful, and unsuccessful intrusion attempts and compromises through reviews and further analysis of relevant event detail and incident summary infor
- mation.Write up high quality security incident tickets using a combination of existing knowledge resources and independent re
- search.Assist with remediation activities (or support customer stakeholders) to inhibit cyber-attacks, clean up IT systems and secure networks against repeat a
- ttacks.Produce security incident review reports to present information about the security incident and provide security improvement recommendations based on the security incident
- review.Understand Threat Intelligence and its use in an operational envi
- ronmentThreat Hunting and the ability to look for attacks that may not have been c
- apturedSupport incident response to national scale incidents in a coaching c
- apacitySupport in the development and implementation of SOC Us
- e CasesWork with other teams within NTT DATA to improve services on the basis of custome
- r needsPreparing disaster recovery
**plans.
What you wil**
l
* bring; This role will be based on-site in Birmingham, we need candidates that are able to work in a job that involves 24/7 operations, this will probably be in shift patterns of 4 days on, 4 d
* ays off.Preferably be able to obtain SC Clearance or already hold SC cl
* earance.Strong verbal and written English commun
* ication.Strong interpersonal and presentation
* skills.Strong analytica
* l skillsMust have expertise on TCP/IP network traffic and event log a
* nalysis.Must have knowledge and hands-on experience of QRadar and/or Splunk or any SI
* EM tool.Must have administrative skills in several operating systems, such as Windows, OS X, a
* nd LinuxMust be proficient in basic shell scripting, creating Snort rules, or other log-searching query languages and
* methods.Must be confident to handle common security incidents indepe
* ndently.Must have good understanding of Vulnerability Scanning and management as well as Ethical Hacking (Penetration
* Testing)Knowledge of ITIL disciplines such as Incident, Problem and Change Man
* agement.Ability to work with minimal levels of supe
* rvision.Willingness to work in a job that involves 24/7 ope
**rations.
Education Requirements & E**
* xperience
Minimum of 2 to 3 years of experience in the IT security industry, preferably working in a SOC/NOC en
- vironment.Preferably holds Cyber Security Certification e.g. IS
- C2 CC, EPQExperience with Cloud platforms (AWS and/or Micros
- oft Azure)Excellent knowledge of Microsoft Office products, especially Exce
l and Word
* Reports to
Security Director – NTT DATA UK Secur
- ity PracticeClient Delivery Director – NTT DATA UK Mana
g
ed Services We're a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciti
ng projects.Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks; Creating Inclusion Together at NTT DATA U
K | NTT DATA
We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible
work options.You can find more information about NTT DATA UK & Ireland here: https://uk
are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and em
powered team.