Security Operations Engineer Analyst - Edinburgh, United Kingdom - Xpertise Recruitment Ltd

Xpertise Recruitment Ltd

Verified Company

Edinburgh, United Kingdom

1 week ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

Security Analyst - IT Security & Identity - Remote working - £400/450 per day outside IR35

6 month contract - possible extension.
Our Government Body client is searching for an experienced SOC Analyst. The purpose of this role is to assist the client in developing the security monitoring and response function systems.

What you'll do:

Work alongside the existing BAU team to deliver the development of a Security Operations Centre (SOC) capability, utilising existing security technologies such as XDR, NAC, SOAR, CSPM and ITSM tools
Assist with defining SLAs / OLAs / KPIs for the different elements of IT Security services
Create and contribute to existing processes / playbooks relating to SOC operations
Develop a SOC reporting capability, whereby metrics relating to security
Demonstrable experience of both using and managing toolsets such as:
Extended Detection and Response (preferably Cortex XDR) toolsets
Utilising Security Orchestration, Automation and Response (preferably Cortex XSOAR) tools to improve / automate / streamline routine security processes
Awareness of Network Access Control solutions (preferably ForeScout)
Cloud Security Posture Management (CSPM) solutions (preferably PRISMA Cloud)
Demonstrable experience in the following areas:
Creation and operation of Cyber Security Incident Response processes
Definition and monitoring of KPIs to support service monitoring and business reporting
Secure networking principles
Firewall management
Vulnerability Management (preferably including use of Tenable/Nessus)
More than 5 years' experience in a relevant IT Security role, with at least 2 years in a senior capacity
Experience of working within an Agile delivery environment

Desirable Skills & Experience:

Experience of working in a Government department
Experience of conducting risk assessments relating to security controls or weaknesses
Use of IT Service management tools to record and audit security investigations (preferably ServiceNow)
Achievement of industry recognised certifications and / or educational achievements relating to Security Analyst roles, such as (but not all required and/or limited to):
Degree in Cyber Security
CISM
Security+ / CySA+ / GCIH etc