As a Principal Security Analyst, you will be at the forefront of safeguarding our digital assets and data. With a deep understanding of the complexities of cyber security, you will be a key part of our cyber team and inspirational line manager, guiding your team through the ever-evolving threat landscape.
The role is critical in monitoring, detecting, analysing, and responding to security incidents and threats with precision. Your expertise in security technologies and incident response procedures will be pivotal in protecting our critical systems and data.
Leveraging Azure cyber security tools, especially Azure Sentinel, you will ensure vigilant incident and event monitoring. Managing a dedicated team of two cyber analysts, you will collaborate closely with our Security Engineer and Threat Intelligence Team to maintain and enhance our security posture.
Key Responsibilities
1. Incident Response and Management – lead and participate in complex incident investigations, utilising advanced techniques to identify the root cause, scope, and impact of security incidents.
2. Analyse and interpret security data from multiple sources, including logs, network traffic, and endpoint data, to identify emerging threats and attack patterns.
3. Threat Hunting and Analysis – proactively hunt for advanced threats and vulnerabilities within the environment using various threat intelligence sources and security tools.
4. Azure Sentinel Expertise: You will configure, manage, and fine-tune Microsoft Azure Sentinel. Additionally, you’ll design and implement custom log queries and alerts within Azure Sentinel to enhance threat detection and incident response capabilities.
5. Collaboration and Communication – communicate effectively with external vendors, technical and non-technical stakeholders, translating complex technical concepts into understandable terms.
6. Participate in the development and enhancement of SOC processes, workflows, and procedures to improve incident response efficiency and effectiveness.
#J-18808-Ljbffr