L2 Incident Responder/SOC Engineer - MSP - Sentinel - Up To £45-55K - Home/Office 2x per month
My client is one of the most recognisable names in IT and has some of the best people in the industry working for them.
They're top partners with all the top Vendors, which means you get to work with the best technology, the best people, the best training, the best certification programmes, and the best environment to grow!
Why?:
* Work with some of the best cyber consultants in the country.
* The pathway to do whatever you want in cyber is continuous.
* People-first culture.
* The latest cutting-edge technology.
You will join a 24/7 SOC team, where you will be reviewing incidents, notifying them as malicious activities, and working with the customer to investigate and solve the incident. You'll be working alongside the engineering team to help find tuning optimisation opportunities.
Candidates MUST have or be eligible to gain SC clearance upon hire.
Key Skills required:
* 2+ years' experience working in a SOC environment - ideally MSSP. Experience in a technical security role is also considered.
* Experience with SIEM tools, e.g., Sentinel, KQL, ELK, QRadar, AlienVault, or similar.
* A cyber security qualification, certification, or degree, e.g., CySA+, CompTIA SEC+, or similar experience. Microsoft SC-200 Certs are desirable.
* Excellent communication skills.
* Assess risks and threats for new and existing customers.
Responsibilities:
* Monitor security alerts from security platforms (Sentinel, Defender, USM Anywhere).
* Act on second line security alerts, incidents, requests, and events to ensure that threats, vulnerabilities, and breaches are managed for successful resolution.
* Interface with customers to resolve issues, provide additional information, and answer questions related to incidents and monitoring.
* Document and manage cases to utilise information for customer reports, providing insightful and intelligent recommendations.
* Facilitate recovery following the resolution of incidents.
* Maintain high quality across SLAs and KPIs.
* Document and close resolved security incidents according to agreed procedures.
Please hit the button to Apply and/or email (see below) or call for further info.
#J-18808-Ljbffr