AddressWho We Are
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
The Role
This is an Operational role where responsibilities span the build, deployment and support of SIEM services for Managed Hosting, Private Cloud and Public Cloud solutions for our customers global customer base.
You will have the opportunity to work with key stakeholders to drive continuous improvement in services and resolve complex challenges in customer infrastructure.
In your role as a SOC Analyst, you will :
Monitor and analyze security events and alerts from multiple sources, including security information and event management (SIEM) software, network and host-based intrusion detection systems, firewall logs, and system logs. Separate true threats from false positives using network and log analysis and escalate possible intrusions and attacks. Initiate tickets, document, and escalate as required to Support Teams. Regularly communicate with customer IT teams to inform them of issues, help them remediate, and ensure that they continue to operate business as usual. Perform triage of incoming issues (assess the priority, determine risk) Maintain a strong awareness of the current threat landscape. Raise tuning opportunities as they arise within the environment.
You will feed in to and drive internal service improvement processes and initiatives, providing a level of Security assurance to stakeholders and customers for Security related alerts/events. Advising stakeholders on and driving Security Incidents to resolution as well as proactively analyzing networks in line with industry best practice. You are required to proactively research vulnerabilities in the world, assess their threat/risk within our customer networks and develop detection mechanisms with colleagues.
Key accountabilities and decision ownership:
- Continually review all SIEM detection content to ensure they are implemented in the most appropriate manner and fit for purpose in line with agreed quality SLAs, KPIs and industry best practice.
- Drive operational improvement and embed consistent working practices within the SOC Team.
- Provide coverage for a (24x7) Security Incident Response function across multiple client environments.
- Lead incident resolution matrix teams to restore service in complex cross-technology environments. Determining root cause and providing recommendations/lessons learned.
- Work with and support the product development teams to ensure requirements are clearly communicated and considered for new products and technologies. Review all new releases prior to approval into service delivery.
In joining Kyndryl you will work for a company that invests in your future and join a team culture that amplifies learning and development agility. Kyndryl has a flexible working policy offering several options from reduced hours, or job share, to home working. These ensure a better balance and improved flexibility both inside and outside of work for you. You can discuss our flexible working options with our managers when you apply. And don’t forget to ask about our Summertime Flexible Fridays!
Plus, we offer a Flexible Reward benefits scheme, where you can personalize your benefit rewards. Our excellent employee benefits range from medical and dental, to employer contribution pension, buying vacation days, childcare vouchers and 1000’s of online or high street discounts.
Kyndryl is also unique amongst other technology services companies in the UK, in that it offers Carbon Literacy training to employees as part of its wider commitment to ESG, helping educate employees and empowering them to take action to reduce their carbon footprint both personally and professionally.
Required Professional and Technical Expertise:
Demonstrable experience in supporting large, complex Networks and Hosting Estates using multiple technologies including:
- Managing SIEM’s - QRadar Required (e.g. ArcSight/AlienVault/LogRhythm).
- Experience with Vulnerability Management Technologies (e.g. Qualis, Tenable, Rapid7)
- Experience with MDR Technologies (e.g. TrendMicro, SentinelOne, CrowdStrike)
- Experience of Security Incident Handling & Security Incident Response (minimum of 3 years).
- Experience in ruling and tuning Enterprise level SIEM tools (QRadar preferred).
- Extensive Operations experience (minimum of 5+ years).
- Knowledge of Security including types and methods of cyber-attack and underlying network protocols.
- Extensive experience escalating incidents to, and in driving incident resolution with, technology vendors and stakeholders.
- Degree Level qualification(s) in: Computer Science, Computer Security or Computer Forensics (or equivalent/extensive industry experience).
- Good understanding of ITIL principles and able to apply them.
- This role will require UK security and NPPV3 clearances (you should have resided in the UK for the past 5 years to be eligible.
Desirable Experience:
- Professional Industry Recognized Certifications e.g. SANS, CEH, RHCE, CISSP etc. or equivalent experience.
- Coding and/or Scripting experience desirable (Bash, SQL, regex, Python).
- Familiarity with DevOps principles
Being You
Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryl's can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.
Who You Are
- Professional Industry Recognised Certifications e.g. SANS, CEH, RHCE, CISSP etc. or equivalent experience.
- Coding and/or Scripting experience desirable (Bash, SQL, regex, Python).
- Familiarity with DevOps principles
Being You
Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.
What You Can Expect
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
Get Referred!
If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.
