About us
The Department for Business and Trade (DBT) has a clear mission - to grow the economy. Our role is to help businesses invest, grow, and export to create jobs and opportunities across the country. We do this by:
* Building a strong, competitive business environment, protecting consumers, and rewarding companies that treat their employees properly.
* Opening international markets and ensuring resilient supply chains through Free Trade Agreements, trade facilitation, and multilateral agreements.
* Partnering with businesses to provide finance and deal-making support for startups, investments, exports, and growth.
The Digital, Data and Technology (DDaT) directorate develops tools and services to support this mission. Our team has been nominated three times for ‘Best Public Sector Employer’ at the Women in Tech awards.
About the role
We are expanding our Cyber Incident Detection and Response team and seek experienced Senior SOC Analysts to strengthen our cyber defenses. You will be key in protecting our systems and data by leading the triage and investigation of security alerts, managing incident response, and developing detection and response processes. You will act as an escalation point for complex incidents and contribute to improving our monitoring and logging coverage. Additionally, you will mentor other analysts, fostering a collaborative team environment. You will report to the Principal Analyst team and help improve SOC operations through focused initiatives during non-operational hours. We support your professional growth with training platforms, dedicated learning time, and opportunities for external training and industry events like SANS.
Main responsibilities include:
1. Leading triage, investigation, and resolution of security alerts and incidents, ensuring prompt and effective responses.
2. Serving as an escalation point for complex or high-priority incidents, providing guidance throughout the incident lifecycle.
3. Supporting the development and refinement of incident response procedures, playbooks, and documentation.
4. Contributing to the enhancement of logging, monitoring, and alerting capabilities for better threat detection.
5. Collaborating with teams to embed and improve security controls and logging practices.
6. Providing leadership and management to SOC Analysts, including setting objectives, supporting performance, and conducting regular check-ins. Mentoring team members to build capability and confidence.
7. Staying informed about emerging threats, vulnerabilities, and trends to update detection and response strategies.
8. Using non-operational time to develop SOC capabilities such as incident response, threat hunting, and detection engineering, supporting strategic goals.
#J-18808-Ljbffr