Soc Analyst

* Permanent - 3 Days per week in the Durham Office - Monday to Friday - Experience in a SOC role required*

The company:

A thriving company in the Durham area is looking to expand its cybersecurity services for their large client base. They are on a journey of service excellence and are looking for proactive team players to join them in their growth. With an aim for technical excellence, this company offers strong progression and training opportunities, alongside the opportunity to work alongside some of the best in the industry.

The role:

As a Security Analyst, where you will play a pivotal role in developing and enhancing the SIEM and Endpoint Detection and Response platforms. You will be supporting the expanding SOC service and will play a pivotal role in defining what cyber excellence looks like.

This role will progress into cyber security engineering and take the technical lead on cyber strategy. It’s a great opportunity for someone working within a SOC environment, who wants to grow a team and leverage their own career. You will be automating as many L1 incidents as possible, and focusing on the more complex an interesting incidents that arise.

Day to Day of the role:

• Assist in customer onboarding to the Security Operations Centre (SOC) and SIEM.
• Create and implement new detection rules for the SIEM.
• Analyse and respond to alerts from SIEM solutions, focusing on identifying unusual and anomalous behaviours within our information systems.
• Conduct proactive threat and vulnerability searches within our information systems.
• Collaborate with Incident Response team members to contain and resolve security incidents.
• Continuously enhance the security posture for both our organisation and our clients.

Required Skills & Qualifications:

• Prior experience working in a Security Operations Centre.
• Demonstrable expertise with SIEM, EDR, and Vulnerability Scanning tools, preferably Microsoft Sentinel and Defender.
• Proficiency in developing SOC triage runbooks.
• Ability to set up data connectors and integrate with third-party APIs and applications.
• Experience in creating and implementing use cases for analytics and threat hunting.
• Skill in fine-tuning SIEM platforms to reduce false positives and enhance automation.
• Relevant certifications in the field of cybersecurity.
• Strong analytical abilities and effective problem-solving skills.
• Resilience under pressure and adeptness in prioritising workloads.

Benefits:

• 27 Days Annual Leave
• Your birthday off
• 7% matched pension contribution
• Hybrid and flexible working options
• Annual pay reviews
• Enhanced sick pay benefit
• Car lease scheme
• Training programmes
• Progression plans
• Perk box membership
• 4 months full pay maternity leave
• And more!

Next Steps? If you would like to know anything more about this role or even just want to hear what other Infrastructure, Cloud and Security positions I have that may also be a good match for you then please apply to this advert / or catch me on LinkedIn "Hayley Bee

You must be fully eligible to work in the UK to apply to this position and be able to travel into office on occasion