Principal / Lead SOC Cyber Analyst - Fully Remote - Bristol, United Kingdom - Circle Recruitment

Circle Recruitment

Verified Company

Bristol, United Kingdom

3 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

Principal / Lead SOC security analyst - Fully remote (in the UK Only) daytimes only. £75k + Excellent bonus, hols, pension, training budget.

I'm a security specialist recruiter, looking for a skilled technical and business-savvy SOC senior / Technical Security analyst who MUST be resident and eligible to work in the UK, unsupported by a visa.

This is a really unusual and varied role, that can take you into the inner workings of a large (currently) internally-facing SOC, where opportunity and growth is quite literally unlimited.

The team is responsible for more than just transactional detect andrespond, like you might find in a commercial / 3rd party SOC.

They are embedded with a few of their 'clients' in a deeper capacity, in some cases as the security SME, involved with engineering and automation, as well as assisting with common security 'growingpains' as they mature their operations and infrastructures.

You'll be able to take advantage of excellent pkg and conditions like:

Fully remote work for a technical progressive organisation, with no night/late shifts
Empowerment to learn and specialise in IR, DevSecOps and more, with paid licenses in offensive training to supplement your blue team skills
Absolutely UNHEARD of holiday allowance.
15% bonus
Private Health and pension

This senior position in the team will ideally have upwards of 5 years in a SOC environment, perhaps with some earlier experience in engineering, hands on with common SIEMs, networks, infrastructures and will be capable of acting in a 3rd tier capacity, perhapseven crossing into incident response occasionally.

Looking at these escalated incidents from the team will only occupy around 20/30% of your time, with the rest spent on some strategic and preparatory activity, like smart and thoughtful automation of commonprocesses, cleaning up the quality of logs, talking to stakeholders inside the group about service levels, roadblocks, upcoming changes, new and emerging threats etc, and growing knowledge in the team and guidance of less senior members.

Quick overview of the things we'd love to see on a CV

At least 5 years of Cyber / SOC / Defensive security and hands on.
Maybe SANS, or other Blue Team Certifications
Perhaps a few years of deeply technical hands on around Infrastructure, Linux, System Admin, maybe some time spent in CLOUD borne SIEM
Azure, AWS, scripting and automation skills, KQL, Python, Architecture of feeds /logs, SOAR
Some strong t3 / Incident response experience
Knowledge share / mentoring and guidance for less senior members of the team