Level 1 SOC Analyst

Company Description

Telefónica Tech (part of the Telefónica Group) is a leading NextGen Tech solutions provider with a highly diversified team of over 6,000 exceptionally skilled employees and +60 nationalities. At Telefónica Tech we believe that technology can do great things: from extracting all the value of data to make the best business decisions, to ensuring the resilience of every organisation to build a more sustainable future. We serve more than 5.5m customers every day in over 175 countries, with a global ecosystem of market-leading partners. We are a global business with local strategic hubs in Spain, Brazil, the UK, and Germany.

In the UK and Ireland, Telefónica Tech UK&I has over 1,000 professionals helping leading brands and organisations across public sector, financial services and insurance, retail and manufacturing and commercial markets to unlock the power of integrated technology for all. We bring together in one place a unique combination of the best people, with the best tech and the best platforms. All in a simplified manner, to make a real difference to every business, every day. The Telefónica Tech UK&I hub has an end- to-end portfolio of market leading services and develops integrated technology solutions to accelerate digital transformation through: Cloud, Data & AI (Adatis), Enterprise Applications (Incremental), Workplace Services and Cyber Security & Networking.

Job Description

Due to expansion, we’re now recruiting for a Cyber Security Analyst – L1 based in Dublin. 

The Security Operation Centre (SOC) Information Security Analyst is the first level of monitoring in the SOC. The position monitors and responds to security events from managed customer security systems as part of a 24 x 7 Operation. This role is based on a core-hours rota (09:00 – 17:30), aligned to one of our large health customers. 

Your background should include exposure to security technologies including SIEMs and EDR/XDR as well as event monitoring and vulnerability management.  

You should have a solid understanding of network security practices. Excellent customer service and demonstrable problem-solving skills are critical. Telefonica Tech is a fast-paced, entrepreneurial environment so to be successful you’ll need to be a pro-active individual, take direction well, communicate succinctly and collaborate effectively. 

Key Responsibilities 

• Monitor and triage alerts in the customer’s environment
• Identify and escalate critical incidents
• Communicate effectively with team members, management and stakeholders
• Recommend enhancements to SOC security process, procedures and policies. 
• Provide further detail on incidents should they arise, this can include, basic level sandboxing, IP reputation or further detailing of IOC’s. 
• Provide base level remediation e.g. blocking user accounts or isolating servers, using EDR/XDR
• Analyse and report on anomalous behaviour. 
• Determine and direct advanced remediation and recovery efforts (with assistance from tooling and/or Level 2)
• Investigate alerts using SIEM, data visualisation, pattern analysis and automation. 

Qualifications

Skills and Experience  

• Solid cyber security skills including SIEM knowledge
• Have the drive to dive deep into issues 
• Ability to identify security threats, trends and anomalies 
• Logical thinker and creative problem solver 

Qualifications

Required: SIEM Certifications, EDR Certifications (Defender or Crowdstrike)

Preferred: Sec+, CND etc