SOC Analyst

Marcus Donald are currently looking to source an experienced SOC Analyst for a large financial organisation in the City of London.

The successful SOC Analyst will be an integral member of the Threat Hunting and Incident Response leadership team for the Security Operation Centre. They will help identify, implement and document appropriate methodologies and provide instruction to more junior members of the SOC team in delivering these areas.

Duties and Responsibilities:

• Assist the SOC Manager in providing Day to Day management of SOC Analysts and associated activity, with emphasis on threat hunting and incident response activity.
• Assist the SOC Manager in maturing Incident Response and Threat Hunting methodologies.
• Support Shift Analysts in delivering real time proactive monitoring and response.
• Provide targeted threat intelligence analysis to better target threat hunting activity.
• Provide remote incident response activities and advice, to support customers during and immediately after security incidents.
• Produce and maintain operational processes and procedures.
• Create and maintain SIEM correlation rules, signature creation for supported NIDS/NIPS and Endpoint Protection products.
• Carry out in-depth investigation on Security events, raise incidents and support the Incident Management process.
• Provide analysis and trending of security log data and network traffic from a large number of monitoring points.
• Integrate and share information with other analysts and other teams.
• Other duties as assigned.

Essential:

• Has a passion for security and enjoys solving problems.
• Experience working with SIEM systems
• In-depth knowledge of the security threat landscape
• Knowledge of various security methodologies and processes, and technical security solutions
• Knowledge of TCP/IP Protocols, network analysis, and network/security applications
• Knowledge of investigation techniques to determine security incidents
• Ability to multi-task, prioritize, and manage time effectively
• Strong attention to detail
• Excellent interpersonal skills and professional demeanour
• Excellent verbal and written communication skills
• Experience in mentoring and training Junior Analysts.
• Industry standard certifications such as: Cisco Cyber Ops, CREST CRT, CREST CCT, OSCP, CHECK, GIAC GCIH, GCIA, GCFA, GNFA
• 3+ years experience as a Cyber Security Analyst or equivalent

Desirable:

• Bachelors degree in a related field or equivalent experience and knowledge
• Programming and scripting experience.