Charterhouse Group is a UK based, PE backed, value-added reseller providing a wide range of technology solutions across the Unified Communications, Cyber Security, LAN and Microsoft Teams spaces. The Group operates under two brands, Charterhouse Integrated Solutions and Symity Pentesec.
Symity Pentesec is a market leader in delivering innovative network and cyber security solutions. We pride ourselves on creating secure, scalable, and robust systems that empower businesses to thrive in an increasingly digital world. Our people-focused approach and industry expertise have made us a trusted partner for organisations of all sizes.
Role Purpose
The purpose of the Level 3 Security Analyst role within Symity Pentesec's SOC is to elevate our commitment to technical excellence and innovation in network and cyber security to new heights. This role is fundamental in not only maintaining but also advancing the high standards of service that our clients expect and rely on. The Level 3 Security Analyst is entrusted with leading complex security analyses, overseeing critical security incidents, and providing strategic insights to pre-empt potential threats, all while aligning with our stringent service level agreements (SLAs).
Their leadership and expertise are crucial for both enhancing the internal efficacy of our operations and bolstering the confidence our customers have in our capabilities. By conducting advanced threat analyses and spearheading comprehensive vulnerability assessments, the Level 3 Security Analyst ensures robust protection of our clients' digital assets. This position demands an exceptional level of technical proficiency, strategic foresight in addressing security challenges, and an unwavering commitment to excellence. The analyst's role in refining incident response protocols, engaging in high-level continuous professional development, and driving forward-thinking service enhancements is vital in strengthening our status as an industry beacon.
The Level 3 Security Analyst is also responsible for mentoring and transferring knowledge to the SOC Level 2 and Level 1 team members. This involves guiding them in best practices, enhancing their technical skills, and ensuring they are equipped to handle security incidents effectively. By fostering a culture of continuous learning and professional growth, the Level 3 Security Analyst helps build a stronger, more capable team.
Technical Skills
1. Network Security – Understanding of network architecture, firewalls, VPNs, IDS/IPS, and other network security measures.
2. Incident Response – Proficiency in detecting, analysing, and responding to security incidents.
3. Threat Analysis – Ability to identify and assess cyber threats and vulnerabilities.
4. In-depth Experience building analytic queries using Kusto Query Language (KQL) or similar.
5. Vulnerability Management – Experience with vulnerability management and reporting solutions, assessing customer vulnerabilities, creating regular reporting packs, devising mitigation strategies and working with customers to support their implementation of these plans.
6. Security Information and Event Management (SIEM) – In-depth experience with SIEM tools for monitoring and analysing security events.
7. Security Orchestration, Automation & Response (SOAR) – Experience using SOAR platforms to integrate automated processes across a SOC service. Ability to work alongside engineering to test and implement such automations.
8. Malware Analysis – Skills in identifying, dissecting and mitigating malware threats.
9. Forensic Analysis – Knowledge of digital forensics to investigate and remediate security breaches.
10. Threat Hunting – Experience running threat hunts across large datasets, identifying behavioural anomalies and other indicators of compromise (IOCs).
11. Threat intelligence – Experience integrating threat intelligence data into SOC services and processes, enriching alert data with relevant intelligence.
12. User and Entity Behaviour Analytics (UEBA) – experience using and integrating UEBA tools within a SOC setting.
13. Encryption Techniques – Familiarity with encryption standards and methods to protect sensitive data.
14. Endpoint Security – Expertise in securing endpoints such as computers, mobile devices, and servers.
Analytical Skills
1. Problem-Solving – Strong ability to diagnose and resolve security issues efficiently.
2. Attention to Detail – Keen eye for identifying subtle anomalies and potential security threats.
3. Data Analysis – Proficiency in interpreting and correlating data from various sources to identify patterns and trends.
4. Risk Assessment – Ability to evaluate and prioritise risks to develop effective mitigation strategies.
Communication Skills
1. Report Writing – Capability to document security incidents, analyse results, and make recommendations clearly and concisely.
2. Team Collaboration – Strong interpersonal skills to work effectively with internal teams and third-party vendors.
3. Team Mentoring – Ability to mentor junior team members, providing technical guidance as needed to support them in their duties as well as creating and delivering training content.
4. Client Communication – Ability to explain technical concepts and security measures to non-technical clients.
5. Presentation Skills – Experience in delivering findings and recommendations to stakeholders in an engaging manner.
Soft Skills
1. Adaptability – Willingness to stay updated with the latest security trends and technologies.
2. Diligence – Excellent attention to detail this includes ensuring high quality notes and updates on incidents, and clear suitable language to clients.
3. Time Management – Efficiently managing time and prioritising tasks in a fast-paced environment, delivering against client SLAs and internal deadlines.
4. Integrity – Upholding ethical standards and maintaining confidentiality of sensitive information.
5. Continuous Learning – Commitment to ongoing education and certification in the field of cybersecurity.
Desired Knowledge, Skills and Experience
Candidates who can demonstrate the following desired knowledge, skills, and experience, in addition to the required skills listed above, will be considered favourably.
Technical Skills
1. Microsoft Defender XDR / Purview
2. Microsoft Sentinel SIEM
3. Rapid 7 SIEM (IDR) and vulnerability management (IVM) tooling
4. SentinelOne EDR experience
5. Exposure to Azure / AWS / GCP
Certifications (Preferred)
1. Certified Information Systems Security Professional (CISSP)
2. Certified Ethical Hacker (CEH)
3. CompTIA Security+
4. Certified Incident Handler (GCIH)
5. Certified Information Security Manager (CISM)
6. SC-200 - Microsoft Certified: Security Operations Analyst Associate
Join us, and your benefits and perks will include private healthcare, Medicash cashback, life assurance, workplace pension, cycle to work scheme, access to our employee assistance programme, a volunteering day, 20% EE discount that extends to your family and friends, a birthday gift voucher and day off, plus more.
Charterhouse is where careers happen. We offer a supportive, innovative, stimulating and fast-paced environment where development, reward and recognition are available to everyone, and anything is possible.
#J-18808-Ljbffr