Social network you want to login/join with:
Job Title: SOC Analyst
A global leader in the Aerospace & Defence sector is seeking a technically skilled SOC Analyst to support the daily operations and continuous improvement of a dedicated Security Operations Centre (SOC) for a major UK CNI organisation based in Leeds.
The successful candidate will be required to undergo governmental clearance.
Responsibilities:
1. Prepare and deliver shift handover briefs.
2. Monitor, triage, analyze, and investigate alerts, log data, and network traffic using the Protective Monitoring platform and internet resources to identify cyber-attacks and security incidents.
3. Write high-quality security incident tickets, utilizing existing knowledge resources and independent research.
4. Understand and apply Threat Intelligence in an operational environment.
5. Create workflows for automation into SOAR tools for common attack types.
6. Continuously improve the service, review use cases, and propose changes based on evolving threats.
Qualifications and Skills:
* Basic Python and/or scripting skills; familiarity with Windows, OS X, and Linux.
* Experience with Splunk and Sentinel.
* Experience working with various security tools and technologies.
* Strong understanding of security architecture, especially networking.
* Detailed knowledge of threat intelligence, threat actors, TTPs, and operationalizing threat intelligence.
* Experience investigating complex network intrusions, including state-sponsored groups and targeted ransomware attacks.
* Understanding of TCP/IP layers to identify normal and abnormal traffic.
* Knowledge of AWS and/or Azure cloud services.
* Content development experience with Splunk (with ES) and/or Sentinel is desirable.
If interested in this long-term contract opportunity, please email your CV and contact number to arrange a call.
#J-18808-Ljbffr