For our Investment Bank Technology division in London, we are looking to hire a:
Your role in the team:
We are seeking an experienced Senior SOC Analyst, who will play a crucial role in our Security Operations Centre (SOC), responsible for managing and mitigating security incidents, performing thorough investigations, and producing detailed reports. This is a pivotal role in enhancing the monitoring and detection capabilities of the bank, ensuring a proactive and resilient security posture. Additionally, the Senior SOC Analyst will provide mentoring and guidance to members of the Security Operations team, fostering a culture of continuous improvement and collaboration. This position requires a proactive, energetic, and enthusiastic individual with extensive security operations experience in incident response and report writing within the financial services industry.
What will you do?
* Incident Response: Lead and coordinate the response to security incidents, ensuring timely and effective mitigation of threats.
* Detection and Identification: Use SIEM tools, Splunk, IDS/IPS, and other security technologies to detect and confirm security incidents.
* Investigation: Conduct thorough investigations to understand the nature, scope, and root cause of incidents, analysing logs and network traffic.
* Containment: Implement measures to contain incidents and prevent further damage, such as isolating affected systems.
* Eradication: Remove threats and address vulnerabilities to prevent future incidents.
* Recovery: Assist in securely restoring systems and services to normal operations.
* Post-Incident Review: Conduct reviews to document incidents, analyse response effectiveness, and recommend improvements.
* Monitoring and Analysis: Continuously monitor security alerts from various sources, including SIEM tools, Splunk, IDS/IPS, firewalls, and other security technologies. Analyse and investigate suspicious activities and anomalies.
* Threat Intelligence: Stay up to date with the latest threat intelligence and security trends. Apply this knowledge to enhance the organisation's security posture and response capabilities.
* Report Writing: Produce comprehensive and detailed incident reports, including the assessment of the incident's impact, actions taken, and recommendations for future improvements. Leverage cyber security experience to create clear and precise technical documentation.
* Collaboration: Work closely with other teams, such as IT, legal, compliance, and risk management, to ensure a coordinated and effective response to security incidents. Collaborate with the broader Information Security (InfoSec) team to enhance overall security measures.
* Training and Mentoring: Provide guidance and mentorship to junior members of the team. Conduct training sessions to enhance the team's knowledge and skills.
* Documentation: Maintain accurate and up-to-date documentation of incident response procedures, playbooks, and security policies.
Who are we looking for?
* Experience: Minimum of 5 years of experience in a SOC role, with a focus on incident response and report writing within the financial services sector.
* Education: Bachelor’s degree in information security, Computer Science, or a related field. Relevant certifications (e.g., CISSP, CISM, CEH) are highly desirable.
* Technical Skills: Proficiency in using SIEM tools, specifically Splunk, IDS/IPS, firewalls, and other security technologies. Strong understanding of network protocols, attack methodologies, and defensive strategies.
* Cloud Services: Experience and understanding of cloud services such as Azure, Google Cloud, and AWS would be beneficial.
* Communication: Excellent written and verbal communication skills. Ability to convey complex technical information to non-technical stakeholders.
* Analytical Thinking: Strong problem-solving skills with a keen eye for detail. Ability to analyse large datasets and identify patterns and trends.
* Team Player: Proven ability to work effectively in a team-oriented environment. Collaborative mindset with a proactive approach to security.
* Experience working with security and network operations teams.
* German Language Proficiency Level – Fluent.
* Hands-on experience in managing cybersecurity incidents and working across various teams.
* Previous experience in a financial services organisation.
* Proactively searching for and mitigating potential threats in the form of threat hunting.
* Experience in identifying and assessing security vulnerabilities.
* Experience conducting digital forensics.
* Strong understanding of network security principles.
* Strong understanding of regulatory requirements and standards in the financial sector.
* Ability to work under pressure and handle multiple priorities.
What we offer you:
* Private pension plan - 10% of base salary contribution by Berenberg.
* Private Health Insurance.
* Enhanced parental leave policies.
* Employee Assistance Programme offering counselling sessions related to mental health, financial wellbeing, and other topics.
Apply online now to join our team – we look forward to receiving your application!
#J-18808-Ljbffr