Security Analyst - Level 2

Company Description

Telefónica Tech (part of the Telefónica Group) is a leading NextGen Tech solutions provider with a highly diversified team of over 6,000 exceptionally skilled employees and +60 nationalities.

We serve more than 5.5m customers every day in over 175 countries, with a global ecosystem of market-leading partners. Global strategic hubs: Spain, Brazil, the UK, Germany.

The Telefónica Tech UK&I hub has an end- to-end portfolio of market leading services and develops integrated technology solutions to accelerate digital transformation through: Cloud, Data & AI (Adatis), Enterprise Applications (Incremental), Workplace Services and Cyber Security & Networking.

Values: Open, Trusted and Bold

Trusted Partners:

• Microsoft: Top 3 Service Providers, Azure Expert Status, Fastrack & Inner Circle Partner
• HPE: Platinum Partner – FY23 UK&I Solution Provider of the Year
• Palo Alto & Crowdstrike: part of our NextDefense Cyber Security Portfolio
• Fortinet: Elite VIP Program – one of only 2 in the UK
• AWS: Advanced Solution & Managed Service Provider Program

Job Description

This is an ideal role for those with an extensive knowledge within the security field and yield those skills to help or rapidly increasing security business. You’ll be working and protecting well-known customers in their respected field using state of the art tools, whilst having the ability to do research and put the knowledge into our services. To be a successful SOC analyst you will have to have a good understanding of Network Security and an ability to provide relevant and timely analysis. You will also need to be good at report writing and have strong communication skills as you will be dealing with customers.

You will also leverage emerging threat intelligence (IOCs, updated rules, etc.) to identify affected systems and the scope of the attack. Reviews and collects asset data (configs, running processes, etc.) on these systems for further investigation. Determines and directs remediation and recovery efforts.

Key Responsibilities

• Manage security tools such as intrusion detection and prevention systems • Assist Team Leads with reporting, projects, administrative work as needed • Monthly SOC Reports
• Provide Incident Response (IR) support from Level 1, escalating to Level 3 when needed.
• Provide threat and vulnerability analysis as well as security advisory services
• Analyse and respond to previously undisclosed software and hardware vulnerabilities • Developing security policies and strategy
• Design and create workflow/playbooks for incidents
• Analyse and report on anomalous behaviour • Investigate alerts using SIEM, data visualisation, pattern analysis and automation

Skills and Experience

• Solid cyber security skills including SIEM (Essential – Qradar), Vulnerability Scanning (Nessus & Greenbone), Penetration Testing Toolsets (Metasploit, Nikto, Burpsuite), IPS/IDS, SOAR (Siemplify) and other security solutions.
• Previous experience as a Level 1.
• Have the drive to dive deep into issues.
• Ability to identify security threats, trends and anomalies.
• Open minded to new security technologies and solutions. 
• Strong Infrastructure and Network experience, both for OnPremise and Cloud environments.
• Logical thinker and creative problem solver.
• Have both a red team and blue team methodology