- Leading the delivery of security event triage performed by Tier 1&2 SOC analysts.
- Leading the delivery of the technical response on information security incidents.
- Incident Response to upper-level Tier 2 and Tier 3
- Deliver comprehensive and stakeholder focused reporting on incidents and events.
- Guide, Coach, Mentor and Support Tier 1&2 SOC analysts.
- Actively support SOC capability development and continuous improvement.
- Contributes to the improvement of SOC processes, detection mechanisms, tooling, data ingestion and analysis.
- Perform Threat Hunting supported by the Cyber Threat Intelligence function.
- Contributes to the SOC strategy and evolution.
- Provides recommendations to improve the security posture of the organization.
- Promote information security best practices and engagement across IT Services and the broader business functions.
- Support the enterprise IT Security functions.
- Proven experience with commercial SIEM platforms; Elastic Security SOC, preferred, or Splunk
- Incident response software: Thrive Incident Response & Remediation
- Anti Virus: Microsoft Defender
- Cyber Triage
- Practical experience in the Microsoft ecosystem (on-premises, cloud).
-
Senior SOC Analyst
5 days ago
Nexere Consulting Surrey, United KingdomJob Description · Senior SOC Analyst (Tier 2/3) required to become an integral part of the Cyber Security Operations Centre for a global consultancy. · This role will be in the global group that monitors the infrastructure to detect, triage and respond to cyber security incidents ...
-
Senior Bureau Analyst
6 days ago
Nexere Consulting Surrey, United KingdomSenior SOC Analyst (Tier 2/3) required to become an integral part of the Cyber Security Operations Centre for a global consultancy.This role will be in the global group that monitors the infrastructure to detect, triage and respond to cyber security incidents.They are looking for ...
Senior SOC Analyst - Surrey, United Kingdom - Nexere Consulting
Description
Senior SOC Analyst (Tier 2/3) required to become an integral part of the Cyber Security Operations Centre for a global consultancy.
This role will be in the global group that monitors the infrastructure to detect, triage and respond to cyber security incidents.
They are looking for a curious and passionate person with breadth of knowledge in Incident Response and problem-solving abilities across Information Security as well as in Enterprise IT to contribute to all levels of incident response.
Primary Duties:
Technical:
Remote (monthly office visits to Surrey-based SOC)