Select how often (in days) to receive an alert: Create Alert
We are seeking a Cyber Security Analyst to join our Security Operations team within an expanding and dynamic Information Security function. The successful candidate will report to the Head of Security Operations and monitor our telemetry systems across networks, servers, and endpoints and respond to security threats.
At LRQA we use an offensive security mindset. This means we focus on what hackers do, how they do it, how we can prevent and protect the business. As a security analyst working for LRQA you will be a part of our growing information security team, who all share a passion for technical security challenges. You will work on a variety of different technical assignments within the security domain. You will work our team which shares affinity and experience for security technology.
NOTE: This role is for the LRQA internal team, not part of the LRQA Nettitude Managed Services Team.
To be successful you will have:
* Experience in operating a Microsoft Defender security tooling stack. Reviewing alerts, vulnerabilities, investigating incidents, and tuning our detection stack for optimal performance.
* Microsoft SC-200 Certified.
* Come from a penetration testing or security operations background and understand common attack techniques against Windows AD/AAD environments.
* A keen eye for detail and making sure that our processes and procedures are documented, appropriate, and practiced.
* Be calm under pressure and operating as the point of contact for security incidents, collaborating on our response and remediation work.
* Not be afraid to learn new tooling or technologies. A growth mindset is key to being successful with us.
* A keen eye for optimising existing security tooling and an aversion to buying unnecessary tools and technologies.
* A great understanding of attacker Tactics, Techniques, and Procedures (TTPs). You don't need to be a threat intelligence expert, but you should have some background in reviewing and understanding threat intelligence reporting.
* Be comfortable being a solo contributor, and being able to thrive working either on your own or across our team.
* Great creativity, imagination, and commitment for reducing security risks.
* Experience Microsoft Sentinel and Zscaler security products.
* Hold Microsoft SC-300, SC-400 and/or SC-900
* Experience and/or certifications in offensive security, such as OSCP or eCPPT, or experience on platforms such as HackTheBox or TryHackMe.
* Strong familiarity with tooling such as EDR, CSPM, PAM, NGFW, vulnerability management, and mail filtering.
Location:
This role is hybrid based within the UK, with a mixture of Home and Office based working for collaboration, team building and workshops. We can support working from across the UK. All applicants will require residence in the UK.
Working Pattern:
This role will require you to work alternating early (7am to 3.30pm)and normal (9am to 5.30pm) shift patterns of no more than contracted 7.5 hours per day.
#J-18808-Ljbffr