SOC Analyst - Logrhythm | SIEM

> Sheffield, Hatfield, Glasgow, Belfast

> £50,000 - £65,000 + Up to 20% Bonus

> 10% Pension + 10x Life Assurance + Excellent Benefits

> Hybrid Working (3 Days On-site, 2 Remote)

** The business will support the application for security clearance. Due to the nature of work, the individual has to be a UK national or have lived and worked in the UK for the past 5 consecutive years. **

The Role in a Nutshell

An experienced SIEM LogRhythm specialist with relevant operational experience in a Security Operations Centre (SOC) that can provide specialist technical support on complex network security and cyber security deployments.

About the Business

Security is one of the fastest-growing parts of this global organisation. They protect their networks from more than 6,500 cyber-attacks each day, investing over £40m in research each year and employ more than 3,000 people in the cyber security business alone - which makes them the largest private cyber security employer in the UK. With incredible opportunities to learn, develop and grow your skills, they will invest in you, nurture your potential and shape your future whatever your background or experience.

About this Role

This role exists to provide specialist technical support on complex network security and cyber security deployments for any and all of the business's UK contracts. Supporting and administrating various SIEM and EDR platforms including creating content, playbooks and processes. A good knowledge of IT, operating systems, firewalls and networking will be required alongside excellent cyber security knowledge and experience. Experience with LogRhythm is a mandatory requirement.

Skills & Experience Required

Strong knowledge and experience in supporting LogRhythm (mandatory)

Relevant operational experience in a Security Operations Centre SOC

Good knowledge and understanding of the following key technologies/products supported in order to perform in-depth troubleshooting and cyber security investigations:

Linux/Unix OS

Windows OS

Firewalls and NGFW

Network devices

Good knowledge of Cyber Security

A deep interest or passion for threat intelligence. Utilising threat intelligence to make informed decisions to minimise harm to the business and customers.

Relevant experience in analysis & interpretation of data into useable and actionable information/intelligence

Good knowledge of concepts such as security posture, defence in depth, zero trust, Mitre att@ck

Relevant operational knowledge and experience in risk and incident management

Knowledge of Security management, information security and threat intelligence - experience in the following is desirable: SIEM technologies, network security, malware defence and remediation

Understanding of threats, offences, incident detection & response

ITIL4 Foundation - Desirable but not necessary

The successful candidate must have the ability to gain National Security Vetting clearance to SC level and Non-Police Personnel Vetting + customer-specific extensions

You'll have the following Responsibilities

Deliver aspects of a Security procedure, and/or process that supports the security strategy and policy and takes into account risks and appropriate legal and regulatory constraints

An Incident Management decision maker within a defined scope, responsible for ensuring that mitigation controls and incident response are appropriate and delivered in a professional manner and against relevant SLA/timescales

Providing security advice and consultancy to lines of business and external customers

Support security compliance relationships with national Government or industry bodies

Produce and support policies, functions and configuration builds to allow implementation of customer projects

Complete and own integration testing on new services, producing all relevant supporting documentation

Attend meetings on behalf of the team leader and line manager

Ensure full awareness of the need to safeguard sensitive customer information at all times, so that customers perceive the business to be a trustworthy organisation

Support and maintenance of SIEM infrastructure both at application and operating system levels

Benefits

Up to 20% Bonus

10% Pension

10x Life assurance cover

Free annual shares

25 days' annual leave, plus bank holidays, and additional days for length of service

You'll enjoy access to 100s of instant discounts for restaurants, shops, and the cinema. These include money off your weekly shop and discounts on gift/shopping vouchers.

World-class training and development

keywords: 32175, LogRhythm, SIEM, EDR, SOC, Cyber Security, Cyber Threat Intelligence, Log Management, Network Security, Firewalls