The DigitalXRAID Security Operations Centre provides around the clock protective monitoring solutions to a client base that spans multiple industry verticals. Utilising industry-leading detection technology, our team of experienced SOC team members work to provide assurance detection and incident response capabilities to organisations of all sizes.
DigitalXRAID are looking for 2 SOC Shift Leads (L2) to join the Security Operations Centre and Incident Response team based in Doncaster, United Kingdom. This role is shift based (4 on, 4 off) with requirements to work in the office two days per week. There is also the potential to be on-call in this role as the Security Operations Centre covers clients 24x7x365.
Key Responsibilities
* Lead shift operations and serve as the primary escalation point during shifts.
* Conduct shift handovers / daily standups, ensuring detailed and accurate briefings to incoming teams
* Maintain and update SOC playbooks, processes and knowledge base articles
* Assist in training new L1 SOC analysts
* Provide performance input to analyst PDR process
* Conduct ticket quality and report reviews
* Assist in creating monthly customer SOC reports
* Deliver monthly customer service reviews
* Provide advice and guidance to client targets of cyber-attacks and malicious activity to a high standard
* Triage customer alerts using certified systems knowledge
* Make informed response decisions that do not require further escalation
* Provide analytical support to other L1 SOC team members during security incidents and Threat Mining engagements
* Lead initial incident response actions and coordinate with L3 analysts
* Organise shift tasks and responsibilities
* Responsible for delivering reports and system status to key internal and external stakeholders.
* Assist with the onboarding process of new SOC customers
* Provide support on customer vulnerability assessments.
* Implement and assist in platform tuning in co-ordination with Engineering.
* Monitor and report on ticket KPIs for their shift in comparison to others. Driving efficiency and contributing to process development.
Key Skills The successful candidate will exhibit the following key skills and/or traits:
* Minimum 1-2 years of experience within a SOC environment
* Excellent communication skills and comfortable in a client facing role.
* A keen interest in cyber security and associated industries.
* A heightened awareness of current affairs in the cyber security industry.
* Proven ability to effectively communicate when under pressure (high pressure situations may arise during ongoing incidents or attacks).
* Proven ability to adapt to difficult situations (high pressure situations may arise during ongoing incidents or attacks).
* Ability to commute to the office a few times per month to collaborate with peers.
* Industry certifications is essential to the role if the candidate has any of the following (Microsoft SC-200, AZ-500, SC-100, BTL1/2)
* Experience in any of the following technologies would be advantageous - MS Sentinel, MS Defender, USM Anywhere, SentinelOne, Tenable IO
#J-18808-Ljbffr