Please check your email .
SOC Analyst - Logrhythm | SIEM
> Sheffield, Hatfield, Glasgow, Belfast
> £50,000 - £65,000 + Up to 20% Bonus
> 10% Pension + 10x Life Assurance + Excellent Benefits
> Hybrid Working (3 Days On-site, 2 Remote)
** The business will support the application for security clearance. Due to the nature of work, the individual has to be a UK national or have lived and worked in the UK for the past 5 consecutive years. **
The Role in a Nutshell
An experienced SIEM LogRhythm specialist with relevant operational experience in a Security Operations Centre (SOC) that can provide specialist technical support on complex network security and cyber security deployments.
About the Business
Security is one of the fastest-growing parts of this global organisation. They protect their networks from more than 6,500 cyber-attacks each day, investing over £40m in research each year and employ more than 3,000 people in the cyber security business alone - which makes them the largest private cyber security employer in the UK. With incredible opportunities to learn, develop and grow your skills, they will invest in you, nurture your potential and shape your future whatever your background or experience.
About this Role
This role exists to provide specialist technical support on complex network security and cyber security deployments for any and all of the business's UK contracts. Supporting and administrating various SIEM and EDR platforms including creating content, playbooks and processes. A good knowledge of IT, operating systems, firewalls and networking will be required alongside excellent cyber security knowledge and experience. Experience with LogRhythm is a mandatory requirement.
Skills & Experience Required
Strong knowledge and experience in supporting LogRhythm (mandatory)
Relevant operational experience in a Security Operations Centre SOC
Good knowledge and understanding of the following key technologies/products supported in order to perform in-depth troubleshooting and cyber security investigations:
Firewalls and NGFW
Good knowledge of Cyber Security
A deep interest or passion for threat intelligence. Utilising threat intelligence to make informed decisions to minimise harm to the business and customers.
Relevant experience in analysis & interpretation of data into useable and actionable information/intelligence
Good knowledge of concepts such as security posture, defence in depth, zero trust, Mitre att@ck
Relevant operational knowledge and experience in risk and incident management
Knowledge of Security management, information security and threat intelligence - experience in the following is desirable: SIEM technologies, network security, malware defence and remediation
Understanding of threats, offences, incident detection & response
ITIL4 Foundation - Desirable but not necessary
The successful candidate must have the ability to gain National Security Vetting clearance to SC level and Non-Police Personnel Vetting + customer-specific extensions
You'll have the following Responsibilities
Deliver aspects of a Security procedure, and/or process that supports the security strategy and policy and takes into account risks and appropriate legal and regulatory constraints
An Incident Management decision maker within a defined scope, responsible for ensuring that mitigation controls and incident response are appropriate and delivered in a professional manner and against relevant SLA/timescales
Providing security advice and consultancy to lines of business and external customers
Support security compliance relationships with national Government or industry bodies
Produce and support policies, functions and configuration builds to allow implementation of customer projects
Complete and own integration testing on new services, producing all relevant supporting documentation
Attend meetings on behalf of the team leader and line manager
Ensure full awareness of the need to safeguard sensitive customer information at all times, so that customers perceive the business to be a trustworthy organisation
Support and maintenance of SIEM infrastructure both at application and operating system levels
Up to 20% Bonus
10x Life assurance cover
Free annual shares
25 days' annual leave, plus bank holidays, and additional days for length of service
You'll enjoy access to 100s of instant discounts for restaurants, shops, and the cinema. These include money off your weekly shop and discounts on gift/shopping vouchers.
World-class training and development
keywords: 32175, LogRhythm, SIEM, EDR, SOC, Cyber Security, Cyber Threat Intelligence, Log Management, Network Security, Firewalls