Senior Security Analyst

 Location: UK - Hatfield | Job-ID: 205291 | Contract type: Standard | Business Unit: Information Technology

Life on the team

Placed within our Cyber Security Operation Centre function, we are now looking for Senior Security Analysts to work on days to mentor and technically lead the 24/7 shift analysts. 
As a Senior Security analyst, you will be responsible for supporting the shift with day-to-day operations and leading where incident response is required. As the SOC is part of the CSIRT function this role will work closely with SOC engineers, Cyber Threat Hunters, Cyber Threat Intelligence and Security Incident Management to proactively mitigate threats by enhancing tooling and effectively respond to and remediate incidents.”
 
You will be part of a passionate Cyber Security focused team, having the chance to drive you career in several directions. 

You will have a level of autonomy to develop this position, working closely with several different stakeholders internally. 

We are a company where people matter. We are diverse, flexible, and open. We are family friendly, supportive and offer flexible and home working. We have a can-do attitude, and we aim to support and grow our Computacenter family in whichever direction they choose to go, be that up or to a completely new part of the business.
 

What you’ll do
  

• Operation of multiple toolsets delivering security operations to Computacenter; (SIEM, SOAR, EDR, ITSM etc)
• Triage, investigation, and analysis of cyber alerts triggered on security monitoring tooling in a timely manner.
• Raising security incident tickets.
• Analysis and release of emails quarantined by tooling, if determined safe.
• Support creation, modification & operation of playbook / runbook tasks to ensure investigation and remediation tasks are carried out.
• Support Computacenter SOC Engineers in tuning of use cases and playbooks.
• Support security incident management function in cyber investigations by identifying and collecting relevant information.
• Complete reviews of all security monitoring & analytics applications as per runbook requirements.
•  Ad-hoc reporting as required
• Act as an escalation point for complex incidents.
• Part of the on-call rota for high priority incidents.
• Technical leadership and mentoring to other SOC analysts.
• Representing the SOC in meetings and calls as required.
• Incident response including mitigation and communicating/ coordinating with other teams to achieve remediation.
• Support out of hours management of security incident management queue.
• Logging of out of hours security incident response activities.
• Support to penetration testing activities during assessment to validate positive detections within the SOC.
• Support security incident response function during incident exercise (blue / red teaming).

 
 
What you’ll need
  

• 3-5 years’ Experience working within a busy SOC environment. 
• Experience in handling high priority security incidents including incident response activities and lessons learnt.
• Microsoft SC-200
• Experienced in KQL
• Experienced in using frameworks such as NIST, MITRE ATT&CK, Cyber Kill Chain
• Experienced in operating common SOC technologies (SIEM, SOAR, Sentinel, EDR, Defender etc.)
• Experience in communicating with end users to gather incident details.
• Understanding of Network Topologies, Protocols and Security.
• Understanding of end user operating systems.
• Knowledge of Information Assurance and Cyber Security.
• Experienced in security incident management investigations.
• Experienced in to creating reports detailing the delivery and output of services.
• Experienced in reviewing technical / process documents.
• Ability to interpret technical information and be able to relay this in an understandable manner.

About us

With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology, and helping our customers to source, transform and manage their technology infrastructure in over 70 countries. We deliver digital technology to some of the world’s greatest organisations, driving digital transformation, enabling people and their business.