Are you conscientious, ambitious and passionate about Security? Can you spot weaknesses in Security processes and provide resolutions to these? Do you want to shape your world and change the way the world works? Do you want to collaborate and achieve together with committed people to monitoring, detecting, reporting, auditing and protection of Security? This is your world and your opportunity to transform it for the better.
Our purpose is to make the world more sustainable by building trust in society through innovation. As a SOC ANALYST you will be responsible for leading high-performing, dedicated security teams. Working with multiple teams, you'll provide technical advice and guidance to SOC staff, Third and Second Line, System Architects, Project Managers and other teams.
Your role will involve:
· Change management - Support and participate as required in Change Management Activities updating changes when completed.
· Triage of vulnerabilities aligned with CVSS and working with SMEs to mitigate risk.
· Liaison with Project Team in order to progress project deliverables.
· Training to become an LSO, duties include account and management of SyOps.
· Working with a high-performing, dedicated security operations team, you'll be an integral part of the team providing support for Cyber incidents and alerts. Working with internal security teams to ensure information is safeguarded.
· Developing strong relationships across the organisation, with external strategic support partners and 3rd party vendors who provide tooling support. This ensures the safety of both on-prem data and systems, hosted and supported in other geographical locations.
· Responsibility for the security analysis, incident classification and incident response actions including notification and alerting. Monitoring for possible security incidents, using knowledge of attack types and standard protocol behaviour to classify incidents, comment, and provide advice on mitigation or remedial actions to the customer.
· You will Investigate and report on suspicious activity including, unauthorised account activity, compromised accounts and incidents, privilege creep, loss of data and breaches in security policy. This involves conducting investigations to ascertain the facts surrounding these activities and liaising with other resolver groups and teams to understand the impact and possible risks associated.
· Supporting the engineering of use cases through low level recommendations for tuning.
· Provide a level of security consultancy to other internal teams for matters relating to the SOC.
· Support bid teams with their customer engagement by providing knowledge of the SOC operations.
· Provisioning of user accounts, SharePoint access and customer tooling
Mandatory Skills:
· Knowledge and experience of Cyber Security and using a SIEM tool e.g LogRhythm.
· Vulnerability management and assessment
· knowledge and experience of Operating Systems.
· Knowledge and experience of ITIL v3 onwards
· Proactively monitor various sources for the latest information on vulnerabilities and threats. OSINT
· Identification of incidents and subsequent analysis and investigation to determine their severity and the response required. Ensuring that incidents are correctly reported and documented in accordance with government policy and procedures.
· Be prepared to provide a Technical Escalation Point during security incidents, establishing the extent of an attack, the business impacts, and advising on how best to contain the incident along with advice on systems hardening and mitigation measures to prevent a re-occurrence.
· As required support the customer with the creation of reports and dashboards, manage alarms and usage cases
· Maintain a keen understanding of evolving threats and vulnerabilities to ensure the security of the client network.
· As required update Protective Monitoring/SOC documentation, processes and procedures and ensure currency.
· Provide daily team leadership, management, job training and mentorship to develop junior members of the SOC team.
Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take a minimum 18 weeks. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance.
An award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over multiple years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience.
Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.
