Level 1 SOC Analyst

Company Description

Telefónica Tech (part of the Telefónica Group) is a leading NextGen Tech solutions provider with a highly diversified team of over 6,000 exceptionally skilled employees and +60 nationalities. At Telefónica Tech we believe that technology can do great things: from extracting all the value of data to make the best business decisions, to ensuring the resilience of every organisation to build a more sustainable future. We serve more than 5.5m customers every day in over 175 countries, with a global ecosystem of market-leading partners. We are a global business with local strategic hubs in Spain, Brazil, the UK, and Germany.

In the UK and Ireland, Telefónica Tech UK&I has over 1,000 professionals helping leading brands and organisations across public sector, financial services and insurance, retail and manufacturing and commercial markets to unlock the power of integrated technology for all. We bring together in one place a unique combination of the best people, with the best tech and the best platforms. All in a simplified manner, to make a real difference to every business, every day. The Telefónica Tech UK&I hub has an end- to-end portfolio of market leading services and develops integrated technology solutions to accelerate digital transformation through: Cloud, Data & AI (Adatis), Enterprise Applications (Incremental), Workplace Services and Cyber Security & Networking.

Job Description

Due to expansion, we’re now recruiting for a Cyber Security Analyst – L1. 

The Security Operation Centre (SOC) Information Security Analyst is the first level of monitoring in the SOC. The position monitors and responds to security events from managed customer security systems as part of a 24 x 7 Operation. This role will only be operating on a 8x5 rota. 

Your background should include exposure to security technologies including firewalls, IPS/IDS, logging, monitoring and vulnerability management.  

You should understand network security practices. Excellent customer service while solving problems should be a top priority for you. Telefonica Tech is a fast-paced, entrepreneurial environment so to be successful you’ll need to be a pro-active individual, take direction well, communicate succinctly and collaborate effectively. 

Key Responsibilities 

• Manage and configure security tools such as intrusion detection and prevention systems. 

• Recommend enhancements to SOC security process, procedures and policies. 

• Communicate effectively with customers, teammates, and management. 

• Provide further detail on incidents should they arise, this can include, basic level sandboxing, IP reputation or further detailing of IOC’s. 

• Can provide base level remediation (blocking user accounts, isolating servers) to then triage for Level 2 for further investigation. 

• Analyse and report on anomalous behaviour. 

• Determines and directs Advanced remediation and recovery efforts (with assistance from tooling and/or Level 2)

• Investigate alerts using SIEM, data visualisation, pattern analysis and automation. 

Skills and Experience  

• Solid cyber security skills including SIEM 

• Have the drive to dive deep into issues 

• Ability to identify security threats, trends and anomalies 

• Logical thinker and creative problem solver 

Qualifications

CEH, CND, SIEM Certifications (ACSE), OSCP, CCSA