Call Us
Menu-new

Senior SOC Analyst

London – Hybrid Working

Purpose:

Location: Hybrid working (1-2 days Becrypt Head Office in Central London/Home Working)

Responsible to: Head of IT and Service Delivery

 

The Opportunity

As part of the Becrypt Managed Services strategy we are looking to recruit a Senior SOC Analyst to build a new SOC function from the ground up.

The role will initially be very hands on, responsible for monitoring and triaging of events and incidents for our client base, using such tools as Microsoft Sentinel and Manage Engine Log 360.

The role will also involve standing up new SIEM tools to support multiple environments, an in-depth understanding of configuring and tuning tools, as well as monitoring, is a must.

This is a chance for an individual to be involved at the start of the development of the SOC function. This role will play a leading part in the day-to-day activities of the SOC and influence the SOC on an operational, technical and strategic level.

This role requires someone driven, willing to get hands on, has a keen eye for documentation and is passionate about delivering an excellent security service. A great team player is a must.

Job Purpose:

The main purpose of this role is to bring stability and a standard approach to security monitoring across a number of SIEM tools for multiple environments, thus ensuring a strong security posture is maintained

Primarily the role will be concerned with taking on all security monitoring for a handful of small client environments and the corporate environment. The role will also be accountable for ensuring a SIEM platform is embedded as a BAU service for a new Private Cloud solution.

As a Senior SOC Analyst you will play a pivotal role in ensuring the security and resilience of our organisation, and client’s information systems.

The Senior SOC analyst will be the first recruit into the SOC Team and will be expected to work with management to ensure the service is built and grows to suit the requirements of the business.

Principle duties:

Main Duties and Responsibilities:

Security Monitoring: & Investigation:

  • Monitoring multiple SIEM tools to assure high a level of security on solutions Becrypt deliver
  • Oversee and enhance security monitoring systems to detect and analyse potential security incidents.
  • Conduct real-time analysis of security events and incident and escalate as necessary
  • Support other teams on investigations into incidents, determining the root cause and impact.
  • Document findings and lessons learned to improve incident response procedures.
  • Ensure runbooks are followed and are fit for purpose

Incident Response:

  • Lead and coordinate incident response activities to effectively contain, eradicate, and recover from security incidents.
  • Develop and maintain incident response plans, ensuring they align with industry best practices.
  • Escalation management in the event of a security incident
  • Follow major incident process

Threat Intelligence:

  • Stay abreast of the latest cybersecurity threats and vulnerabilities, integrating threat intelligence into security monitoring processes.
  • Contribute to the development of threat intelligence feeds to enhance proactive threat detection.

Security Tool Management:

  • Manage and optimise SIEM tools, ensuring they are properly configured and updated to maximize effectiveness.
  • Evaluate new security technologies and recommend enhancements to the security infrastructure.

Collaboration:

  • Collaborate with cross-functional teams, including IT, legal, and management, to address security incidents and implement preventive measures.
  • Provide expertise and guidance to other analysts.
  • Woking with the Technical Delivery Team to ensure all new and changed services are monitored accordingly

Documentation:

  • Maintain accurate and up-to-date documentation of security procedures, incident response plans, and analysis reports.
  • Create post-incident reports for management and stakeholders.
  • Create monthly reporting packs as per contractual requirements.
  • Create and document robust event and incident management processes
  • Runbooks & Playbooks

Other responsibilities:

  • Involvement in scoping and standing up new solutions for new opportunities
  • Assisting Pre-Sales team with requirements on new opportunities
  • Demonstrations of SOC tools to clients
  • Continual Service Improvement – Recommendations for change to address incidents or persistent events.

Essential Skills:

Essential Skills and Experience:

  • Analytical mindset with the ability to troubleshoot and solve complex security issues.

  • Excellent communication and interpersonal skills for collaborating with diverse teams.

  • Leadership qualities to guide other team member and drive security initiatives.

  • Up-to-date knowledge of cybersecurity trends and threats.

  • Full understanding of SIEM systems –Microsoft Sentinel, Manage Engine Log 360, IBM QRadar, Splunk, Sentinel etc

  • Demonstrable understanding of IT Security Management, Policies, Procedures, Standards and Guidelines

  • Ability to work autonomously

  • Clear understanding of runbooks and playbooks with the ability create these from scratch

  • Understanding of ISO 27001, ISO 9001 & Cyber Essentials would be extremely advantageous

  • Security Operations and Incident Handling

  • Previous experience working within a SOC team

Additional Information:

Role will be subject to an employee screening process and will require SC clearance.

Interested?

If this sounds like you, and you’re looking for your next exciting challenge, we’d love to hear from you. Please get in touch.

Contact us

We're here to help

Please Contact us

general enquiries

+44 (0) 845 8382050

Support

+44 (0) 345 8382070

Close

Menu

Log Out

Join Our Newsletter

Receive our latest blog posts directly in your inbox!

Looking for more information?

Please Contact us

And one of our team will get back to you.