Senior Security Operations Analyst

We are recruiting for a Senior Security Operations Analyst to join the Information Security team to support our continued growth. You will help maintain and protect our key business assets from threats and risks by monitoring, detecting, analysing, and responding to security incidents.

Requirements

KEY RESPONSIBILITIES:

• Oversee the day to day running of our SIEM solution (Splunk) working closely with Infrastructure, Networks, DevOps and our outsourced Security Operations Centre (SOC) team.
• Define and facilitate the creation of new rules or fine-tuning existing rules within SIEM.
• Investigate SIEM alerts and other security incidents through to completion.
• Work within the Information Security Team to provide a dynamic monitoring and incident response capability.
• Monitor and analyse security events identifying trends, attacks, and potential threats.
• Identify and raise problems. Communicate & escalate these via the appropriate channels and track through to remediation.
• Monitoring and gathering Threat intelligence and coordinating subsequent Threat Hunting.
• Assess security threats from multiple sources and plan mitigation/remediation.
• Assist in the design, management, and documentation of security policies, solutions, standards, and processes.
• Designing effective test methods for logical security controls.
• Day to day management of Endpoint Detection and Response (EDR).

• Gather relevant data, analyse and respond to cyber security incidents.
• Research and stay current on the latest trends, best practices, and technology developments for all things cyber.

SKILLS & EXPERIENCE REQUIRED:

• A good understanding of technical and network security requirements.
• Ability to proactively identify control weakness and vulnerabilities.
• Knowledge and use of SIEM tooling i.e., Splunk and event log data.
• Experience in understanding Firewalls and IDS/IPS and Windows Security Event Logs.
• Strong verbal and written communication skills with the ability to articulate complex ideas in easy to comprehend business terms.
• Comfortable taking ownership for own work, identifying the need for action whilst working effectively within a team.
• Ability to quickly understand existing infrastructure, network security principles, data flow and security architectures.
• Knowledge of the fundamentals of cloud infrastructure as well as traditional technologies.
• Degree in IT / Cyber preferred or industry recognised qualification

PERSONAL ATTRIBUTES:

STRAIGHT TALKING | MOVING WITH SPEED | OWNING THE OUTCOME

• Clear communicator
• Strong team player
• Analytical thinker
• Demonstrated passion and drive for cyber security
• Decisive and take ownership of outcomes
• Not afraid to challenge and be open to challenges

Benefits

• Private Healthcare Plan
• Pension Plans
• Life Assurance
• Work From Home
• Training & Development
• Employee Assistance Programme - Counseling
• Childcare Voucher Scheme
• Stock Option Plan