NOC/SOC Analyst - London, United Kingdom - INTEC SELECT LIMITED

Description

NOC/SOC Analyst Our trusted partner who operates on a global scale is seeking a NOC/SOC Analyst who has recent experience in troubleshooting, deployments, and surveying L2 access of a global company's network. The chosen candidate must possess capabilities in SIEM, Sentinel, Defender Endpoint and Azure/365 security to be considered for this position. This is an exciting opportunity for a candidate who has a real interest in cybersecurity as our client matures their security function.Our client is looking to pay a basic salary between GBP45,000 to GBP55,000 bonus + on–call allowance to start ASAP based in London 1 to 2 days PW in the office. Core responsibilities:

• Monitor logging of events in the SIEM and take appropriate actions.
• Review/action incidents to assess their urgency and escalate incidents if necessary.
• Identify incident's root cause and develop a plan to prevent future attacks.
• Documenting incidents and analysing data to help prevent future attacks.
• Assess the scope of an attack and affected systems and collecting data for further analysis.
• Contain and resolve cybersecurity incidents.
• Providing guidance and technical expertise to IT operational stakeholders.
• Threat modelling to mitigate the most important attack vectors against our infrastructure.
• Identify and develop reporting methods to evaluate the effectiveness of system changes.
• Working with MSSP's to enable efficient Incident Response and Security Operations.
• Monitor endpoint security and endpoint detection and respond appropriately to threats.
• Support SOC / NOC assessments and Compliance/Audit assessments.

• Proven experience within security and networking environments preferably within retail, property or MSP / Consultancy is a must have.
• A background in network security, with demonstrable experience in SIEM and Network technologies using Sentinel is must have.
• Strong understanding in Azure and M356 security is must have.
• Good knowledge with Defender XDR, Defender Endpoint Identity, Defender for Cloud and Cloud Apps is a must have.
• Good understanding of Fortinet products including firewall, NAC, Proxies and SD–WAN is a must have.
• Experienced with either cloud 0r on–prem web proxies including ForcePoint nice to have
• The following certifications are desirable Microsoft SC–100, SC–200, SC–300 and AZ–104.