Senior Security Analyst
Forward Role
- Doncaster
- £35,000-50,000 per year
- Permanent
- Full-time
- Provide around the clock protective monitoring through the use of industry leading SIEM, IDS and threat Intelligence Technologies.
- Provide advice and guidance to client targets of cyber attacks and malicious activity to a high standard.
- Provide incident reporting capabilities ensuring that all information is provided in a timely, accurate and effective manner.
- Provide analytical support to other SOC team members during security incidents and Threat Mining engagements. Assistance with onboarding process - deployment of SIEM , EDR and Vulnerability Management tools
- Serve as a technical point of escalation and provide mentoring for L1 Security Operations Centre (SOC) analysts.
- Responsible for investigating incidents, analysing attack methods, researching new defence techniques and tools, developing security policy, and documenting procedures for SOC.
- Prepare reports, summaries, and other forms of communication that may be both internal and client facing.
- Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives
- Malware analysis and other attack analysis to extract indicators of compromise. Perform data security event correlation between various systems.
- Assistance with firewall management.
- Creation of new detection and automation rules.
- Delivery Demos to prospective clients and be involved with scoping engagements
- 2+ years in a similar role/ SOC environment
- Excellent communication skills and comfortable in a client facing role.
- A heightened awareness of current affairs in the cyber security industry.
- Proven ability to effectively communicate when under pressure (high pressure situations may arise during ongoing incidents or attacks).
- Proven ability to adapt to difficult situations (high pressure situations may arise during ongoing incidents or attacks).
- Experience in any of the following technologies would be advantagous - MS Sentinel , MS Defender , USM Anywhere , SentinelOne , Tenable IO
- Ability to commute to the office a few times per month to collaborate with peers.
- Industry certifications would be highly advantageous if the candidate has any of the following (Microsoft SC-200, AZ-500, SC-100)
Forward Role is operating as an employment agency.