Job ID:
Location:Birmingham : Trinity Park : Bi
Position Category:Technical
Position Type:Employee Regular
LRQA
LRQA is a leading global assurance partner, bringing together decades of unrivalled expertise in assessment, advisory, inspection, and cybersecurity services – underpinned by data-driven insights – to help its clients navigate a new era of risk.
Operating in more than countries with a team of more than, people, LRQA’s award-winning cybersecurity, compliance, supply chain and ESG specialists help more than, clients across almost every sector to anticipate, mitigate, and manage risk wherever they operate.
The Role
Our team is looking for a highly motivated / Senior Security Analyst to join our active Security Operations Centre (SOC) team, focused on monitoring, detection and response to cyber threats.
You will work a four-day operational rota including both day and night shifts. The / SOC analysts work closely with other security analysts, incident response and engineering teams and will perform a variety of tasks to ensure the security of our customer’s network environments. The role includes:
1. Security Monitoring & Incident Detection: Using cutting edge SIEM and security tooling, supported by intelligence and automation, to identify security incidents and anomalies. You will analyse alerts, log and EDR data to determine the severity and impact of potential threats.
2. Response & Analysis: As part of the wider Incident Response capability, you will perform in-depth analysis on various data sources to identify scope, impact and root cause of incidents.
3. Threat Hunting: You will proactively design and execute searches for sophisticated adversaries, potential security weaknesses and other threats across the client network environment.
4. Reporting & Advice: You will create detailed reporting to assist clients, covering detected incidents, response actions and recommendations for containment and remediation. Throughout, you will maintain clear and accurate records of incidents, investigations and other technical activities.
5. Collaboration: You will work with other teams to share information and best practice, without being constrained by silos.
Above all, you will provide first class service to both Internal and External Customers, delivering excellence in all areas of your work and embodying our LRQA Cybersecurity values.
Our goal is to establish LRQA Cybersecurity as a leading global provider of managed security and support services. This position is key to achieving this aim.
Key Responsibilities
As part of the / SOC Shift team:
6. Monitor, triage, and investigate security alerts using protective monitoring platforms to agreed standards and SLAs.
7. Categorise all suspected incidents in line with SOC policy and industry frameworks.
8. Create concise security incident tickets using a combination of existing knowledge resources and independent research.
9. Understand and contextualise Threat Intelligence for use in the SOC, maintaining an up-to-date threat-centric global security awareness, including defensive monitoring technologies and trends.
10. Conduct threat hunting activities to identify sophisticated threats.
11. Support the development, implementation and tuning of SOC detections.
12. Mentor and Coach junior analysts.
13. Deputise for the SOC Leads.
Location
This role can be hybrid or remote. The main office is in Birmingham.
We can support working from across the UK. All applicants will require residence in the UK.
Key Skills & Experience Required:
14. + years of Cybersecurity experience.
15. Degree in Cybersecurity, Digital Forensics, or related field (or equivalent work experience).
16. Cybersecurity certifications such as CompTIA CyberSecurity Analyst+, Certified Ethical Hacker, SANS, Microsoft SC-, CREST.
17. A deep understanding of cybersecurity principles, networking concepts, and various operating systems.
18. Knowledge of common cloud environments – AWS, Azure, GCP.
19. Initmate knowledge of SIEM, EDR/EPP, AV and NetMon tools – ideally Microsoft and Crowdstrike based.
20. In depth knowledge of common security threats, attack vectors, and mitigation strategies.
21. Experience in a customer-facing role, with excellent communication skills (written and verbal) to convey technical information to both technical and non-technical audiences.
22. A strong desire to continually challenge and develop yourself as part of a fast-paced, high-performing team.
What we offer:
We are a people-focused, high-performing, high-trust managed security services team. We pride ourselves on our investment in our people, meaning as we are a fast-evolving team in an exciting working environment, you’ll always have opportunities to solve the latest cybersecurity challenges, with the responsibility and development opportunities to match.
Company benefits:
23. days annual leave plus public holidays
24. Yearly wellness day to be spent in the way that works best for you.
25. Companywide incentive plans
26. Employee assistance programme/virtual GP
27. Generous pension scheme
28. A supportive team enabling you to succeed and grow your career.
An attractive remuneration package will be provided.