Minimum 2 years+ hands on experience in a SOC environment
* Hold an industry recognised information security qualification such as GIAC/GCIA/GCIH, CISSP or CompTIA Advanced Security Practitioner (CASP+) and/or SIEM-specific training and certification.
* Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, related field or equivalent training and/or experience.
* A basic knowledge of compliance and regulatory frameworks such as National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF) and ISO/IEC 27001/27002, GDPR.
* Experience with main security concepts/principles (CIA, threats, vulnerabilities, and exploits)
* Working knowledge of the Cyber Kill Chain and/or Incident Response Phases and adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks (Mitre ATT&CK).
* Experience with the approach a threat actor takes to when attacking a network including phishing, port scanning, web application attacks, DDoS, lateral movement.
* Knowledge of SIEM and SOAR solutions, Identity and Access Management and Data Loss Prevention tools and technologies preferably including FortiSIEM, Q-Radar, McAfee Web Gateway, McAfee ePolicy Orchestrator, Darktrace and Microsoft Defender. Microsoft Sentinel experience also an advantage.
* Working knowledge of security technologies including but not limited to EDR, AV, IDS/IPS, NAC, AD, Web Filtering, Email Filtering, Behavioural Analytics, TCP/IP Protocols, network analysis, and network/security applications.
* Proficient in at least one or more of the following, within a corporate environment:
* Endpoint operating systems (e.g. Microsoft, Linux, and/or OS X)
* Core networking principles (e.g. switches, routers, wireless access points, Internet)
* Infrastructure security devices (e.g. firewalls, proxies, IDS/IPS)
* Support enterprise level services (e.g. AD, DNS, DHCP, IIS, Apache, VPN/DA, Databases)
* Anti-virus, anti-malware, ransomware, data leak protection
* Vulnerability management, endpoint forensics, intrusion analysis activities
* Azure Cloud computing platform
* Open Source Intelligence and security tools