Senior Technical Analyst - SOC Detection L3

Life in the team

• A fantastic opportunity has arisen for a technical role to join Computacenter’s dynamic and rapidly expanding Digital Infrastructure group. Successful applicants will be joining a truly global organisation, delivering services into over 70 countries worldwide, with major offices across Europe, the Americas, Africa and Asia; a recognised leader of the IT services business with a unique vendor-independent, infrastructure-focused perspective on the market.
• You’ll get to work with some of the most talented and passionate people in the business. You’ll have the opportunity to apply your knowledge to some of the highest profile projects and customers in the market from our Computacenter office in Bangalore.
• This role will be primarily focused on delivering a BAU / Project services within a shared service delivery model.
• With open access to thought leaders and major industry players you’ll get exposure to leading edge technologies which will enable you to advance your skills.

What you’ll do

• Perform a range of technical work activities remotely to meet business and customer requirements
• Escalate issues in line with company processes to ensure customer demands are met
• Able to communicate on issues to meet business and customer requirements to avoid escalations
• Provide customer service to internal and external customers to ensure consistent experience
• Ability to adapt quickly to dynamic team environments to maintain consistent effective contribution
• Ensure Department/Contract meets SLA performance targets
• Maintain and improve customer satisfaction levels
• Understand and adhere to policies and procedures
• Keep skills up to date with IT industry standards as appropriate to the role/contract.

What you’ll need

• Strong understanding of Windows and Linux operating systems and command line tools.
• Good knowledge of Windows security logs.
• Basic proficiency in Jupyter notebooks (and MSTICpy) is a plus
• Experience in creating analysis playbooks
• Malware incident analysis - ability to interpret sandbox results, perform basic static and maldoc analysis.
• Experience with Threat Emulation tools is a plus
• Good understanding of network technologies.
• Good understanding of Azure & O365 Cloud and the security technologies around it.
• Ability to wite detection queries in MS-KQL
• Basic Proficiency in Python and Powershell
• • Azure Sentinel • Microsoft KQL • OT NSM platform • Micrososoft E5 security stack: Defender for Endpoint, Defender for Identity, Defender for O365, Defender for CloudApps • Defender for Cloud Analysis Skills:
• Malware incident analysis - ability to interpret sandbox results, perform basic static and maldoc analysis.
• Ability to create detection hypothesis and the queries to confirm it.
• Ability to spot repeat alerts and to suggest rule tunings
• Ability to create analysis playbooks but also to suggest improvements on them.

About us

With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world’s greatest organisations, driving digital transformation, and enabling people and their businesses.

Learning and development

Our people are our strength which is why we offer leadership training, coaching, mentoring, professional development, and international opportunities. Whichever direction you choose to go in – whether it’s a well-trodden path or a completely new part of the business – we’ll support you. Our managers champion their people, powering their personal development and helping them to reach their full potential. 

You belong

We passionately believe in the power of diversity and inclusion. We celebrate our differences because we know a diverse workforce with different experiences and perspectives helps us win together. And to do that, you need to feel comfortable to bring your whole self to work – and you can only do that when you feel supported, valued, and have a sense of belonging which is what we strive to achieve.

Your application is considered on its merits regardless of your age, disability, ethnicity, faith, gender identity or sexual orientation. All that matters to us is that you share our vision and our values, and that you bring the experience and skills we need.

We are proud to be a Disability Confident Employer, we welcome applications from people with a disability – and guarantee to interview applicants who have a disability and meet the essential requirements for the job.