Security Analyst

Social network you want to login/join with:

Location: UK remote with travel as and when required

Shift Pattern: 24/7 shift rota

A leading global technology services company is seeking a Security Analyst to join its dynamic and innovative Cyber Security Operations Centre.

GTT is an international provider of enterprise-grade network, computing, and security services. As the owner and operator of Europe's largest cloud services platform, GTT is uniquely positioned to deliver comprehensive Unified ICT services to enterprise clients, with a strong emphasis on security. For more information on GTT, please visit their website.

The CSOC team at GTT specializes in providing Managed Detection and Response (MDR) services that meet and exceed government and certification body standards. Collaborating closely with our high-value customer base, the team delivers a wide range of security services, including Security Incident & Event Management, ensuring top-notch protection and peace of mind for our clients.

The GTT SIEM platform is essential for identifying customer security incidents. One of the primary tasks of our security analysts is to analyze the outputs of the SIEM environment deeply and guide our customers toward effective remediation actions, successfully mitigating risks to their environments.

1. Providing analysis of SIEM alerts leading to enhanced customer security.
2. Working with customers to enhance security incident response procedures.
3. Enhancing internal investigation processes and identifying additional toolsets required for rapid incident turnaround.
4. Being part of a 24/7 customer support team providing first-level diagnosis for hosting and network customers.
5. Identifying improvements and advising on best practices.
6. Managing third-party vendor support as required.
7. Adhering to team processes and directions.
8. Collaborating with senior analysts/engineers to implement platform optimizations and tuning through structured change processes.
9. Performing upgrades to the SIEM environment, from operating system to application, to ensure the highest level of platform security.

• Proficiency in Security Information and Event Management (SIEM) platforms.
• Experience in analyzing and responding to security incidents.
• Strong understanding of cybersecurity principles and best practices.
• Experience in threat detection, analysis, and mitigation.
• Familiarity with incident response procedures and playbooks.
• Excellent analytical and problem-solving skills.
• Strong communication skills for effective stakeholder and customer collaboration.
• Relevant security qualifications are a plus.

• Varied shift hours; occasional extended hours during critical incidents and platform upgrades. Travel required; SC clearance will be necessary.

• Accuracy and Attention to Detail: Understanding the importance of precision and the ability to complete tasks accurately.
• Managing Multiple Priorities: Effective self-management and prioritization skills.
• Problem Solving: Recognizing, anticipating, and resolving operational or process issues.
• Root Cause Analysis: Using structured approaches to identify underlying causes and prevent recurrences.
• Cybersecurity Practices: Applying security measures to protect assets.
• IP Technologies and Protocols: Basic knowledge of IP technologies.
• Continuous Improvement: Driving transformation initiatives to improve responsiveness and efficiency.
• Customer-Centric Approach: Creating a customer-focused environment and fostering accountability and collaboration.
• Operational Excellence: Ensuring process consistency and scalability, re-engineering systems to maximize customer impact.