SOC Analyst
Position Description
If you have an inquisitive nature and enjoy security technology, research and learning, this role will put you at the forefront of CGI Cyber Security Service. The Security Operations Centre is a fast-paced environment that is flexible and adaptable to the threat landscape we face. The SOC utilizes both tried and tested tooling and state-of-the-art technologies and methods to ensure we provide the best level of service and protection to our prestigious list of clients. Our client base covers a wide range of verticals from Government, MOD, and CNI through to companies that are easily recognizable as household names.
Alongside a competitive salary, we offer access to our share scheme (3.5%+3.5% matching) making you a CGI Partner, not just an employee. You also have the option to benefit from private medical and dental insurance, flexible retirement options, an active sports and social club, and a cycle to work scheme to name a selection of the benefits available.
The SOC is at the forefront of Technical automation and pushing into a Next-Gen SOC. This role proactively monitors the IT infrastructure for security incidents and participates in security incident investigation and resolution.
This role is based onsite, and office attendance will be required. Due to the nature of the work, we can accept UK Nationals only for this vacancy, and the role involves working on a shift pattern basis.
Your future duties and responsibilities
You will be highly motivated, with a good IT background, and have a desire to work in Cyber Security with some previous experience of working within a SOC environment. A self-starter who works effectively with instruction but under minimal supervision in a highly dynamic environment. It is expected that you will have a solid background in IT infrastructure with an understanding of computer networking and server architecture, ready to take the next step in Cyber Security.
This is a fast-paced investigation type role which is perfect for someone with a keen eye for security and would like to launch their cyber career further in blue team. You will work alongside other cyber professionals who are focused on pushing our Cyber capabilities further. With hands-on training with a variety of SIEM tools and exposure to many different networks, this is perfect for anyone looking to grow their hands-on experience with a variety of tools and networks.
This role involves providing eyes-on-glass monitoring to a variety of clients to ensure that organizations are protected against cyber threats. The role will require someone with an analytical mindset and a keen eye for detail to investigate alerts, piece together information to build a bigger picture, and provide suitable remediation steps for customers.
This role involves:
1. Detection, monitoring, and analysis of security incidents.
2. Production of the monthly service reports.
3. Assist Senior Analysts to perform network/system/application/log intrusion detection analysis.
4. Assist Senior Analysts to ensure that Service Level Agreements are met and assist in the maintenance of SOC Documentation.
Required qualifications to be successful in this role
We're looking for a range of the following skills and experiences:
1. Have an inquisitive nature and enjoy security technology research and learning.
2. Characteristics of a team player, good time-management, organizational, troubleshooting, reasoning, and problem-solving skills.
3. Understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP.
4. Ability to deal with aggressive timelines and the associated pressure.
5. Ability to speak and communicate effectively with peers and management.
6. Previous experience within a SOC focused role.
Desirable skills and experiences
Any of the following would be useful, but not essential:
1. Experience in security compliance auditing and remediation.
2. Knowledge of SIEM Solutions (ArcSight, Splunk, TippingPoint, Huntsman, FortiAnalyzer).
3. Knowledge of Firewall & VPN technologies (Checkpoint, Cisco, Juniper).
4. Knowledge of IPS vendors (SourceFire, Cisco, IBM, TrendMicro, Fortigate, F5).
5. Knowledge of strong authentication such as two-factor authentication tokens, Public Key Infrastructure (PKI), endpoint security tools such as HIPS, personal firewalls, anti-virus, anti-malware, Internet browser and traffic policy enforcement such as URL and web content monitoring and filtering, Database Activity Monitoring (DAM), Data Loss Prevention (DLP), and Web Application Firewalls.
Together, as owners, let's turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect, and belonging. Here, you'll reach your full potential because...
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction.
Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
Come join our team—one of the largest IT and business consulting services firms in the world.
#J-18808-Ljbffr