Enable job alerts via email!
L2 Security Analyst - SIEM, EDR, Firewalls, Email Gateways, Incident Response - £38,000 - £40,000
InfraView - Specialist Cloud & IT Infrastructure Technology Recruitmen
England
On-site
GBP 38,000 - 40,000
Full time
Job summary
A leading tech recruitment agency in the UK is seeking an L2 Security Analyst for their SOC team in Hertfordshire. This role involves triaging and investigating security incidents while supporting the organization's security posture. Candidates should have strong skills in cybersecurity fundamentals and experience with security systems. The position offers excellent opportunities for training, collaboration, and professional growth.
Qualifications
- Experience in a Security Operations Center environment.
- Strong understanding of malware, phishing, and network attacks.
- Ability to triage incidents and respond promptly.
Responsibilities
- Monitor and respond to security alerts and incidents.
- Analyse and prioritise incoming security tickets.
- Document incidents and resolutions per internal processes.
Skills
L2 Security Analyst - SIEM, EDR, Firewalls, Email gateways, Incident Response, Triage - Hertfordshire - £38,000 - £40,000
Opportunity to join one of the fastest growing Solution Providers in the UK and they are showing no signs of slowing down. This role is to add to an already busy SOC team working on triaging, investigating, and resolving security tickets, as well as supporting the wider team in maintaining the organisation's security posture.
- Proven experience working in a SOC environment or as a Security Analyst
- Strong understanding of the Microsoft stack especially the Security piece - Sentinel and Defender.
- Strong understanding of cybersecurity fundamentals, including malware, phishing, and network attacks
- Familiarity with endpoint protection, Firewalls, and email security systems
- Knowledge of Scripting or automation (eg, PowerShell, Python)
- Experience with incident response frameworks and ITIL ticketing systems (eg ServiceNow, Jira)
- Any MS365 certifications and CW PSA (nice to have)
- Relevant security certifications such as CompTIA Security+, CySA+, GSEC, or equivalent (nice to have)
Within this role and organisation, there is loads of opportunities for training and development and career growth is of the upmost importance to them. Working in the office 5 days a week giving you're the chance to collaborate and learn from other Senior Analysts to accelerate your personal development.
- Monitor, triage, and respond to security alerts and incidents from various tools
- Knowledge to SIEM, EDR, Firewalls, email gateways
- Analyse and prioritise incoming security tickets
- Perform initial investigation and escalation of suspicious activity or confirmed incidents
- Document incidents, investigation steps, and resolutions in accordance with internal processes
- Support vulnerability management, patching, and threat monitoring activities
- Assist in maintaining and improving SOC runbooks, playbooks, and standard operating procedures
- Collaborate with IT teams and other stakeholders to remediate security issues
- Participate in continuous improvement initiatives to enhance detection and response capabilities
- Contribute to periodic reporting on incident trends and metrics
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
