SOC Analyst vacancy in Stoke on Trent (252DM)
The Role
Our client, an IT services provider working within Defence and Government, is looking for a highly capable SOC Analyst. The SOC Analyst will be responsible for monitoring, detecting, and responding to security incidents, ensuring that our clients’ IT infrastructure remains secure. This role requires a deep understanding of cybersecurity threats, network defence, and incident response.
Note: Candidates require a minimum of SC with candidates being eligible for DV.
Role Responsibilities:
1. Continuously monitor security alerts and events using SIEM (Security Information and Event Management) tools and other monitoring platforms.
2. Analyse and triage security events to determine their severity and impact, escalating critical issues as necessary.
3. Investigate and respond to security incidents, including malware infections, DDoS attacks, unauthorised access, and other threats.
4. Document incident response activities and create detailed reports for stakeholders.
5. Maintain and optimise SOC tools and technologies, including SIEM, SOAR, IDS/IPS, firewalls, endpoint protection, and vulnerability management systems.
6. Ensure all security operations comply with relevant regulations and standards (e.g., GDPR, ISO 27001, NIST).
Education and Experience Requirements:
As the SOC Analyst you will have:
1. Minimum of 2 years of experience in a SOC analyst or similar cybersecurity role.
2. Proven experience with SIEM platforms and security monitoring tools.
3. Direct experience in incident response, threat analysis, and vulnerability management.
4. Strong understanding of cybersecurity principles, including network security, endpoint security, identity and access management and threat intelligence.
5. Proficiency in analysing logs, network packets, and other data sources to identify security threats.
6. Excellent problem-solving skills with the ability to think critically and act decisively in high-pressure situations.
7. Effective communication skills, both written and verbal, with the ability to convey complex technical information to non-technical stakeholders.
8. The ability to work as part of a growing team and use your experience and expertise to mature processes and procedures within the Security Operations team.
#J-18808-Ljbffr