Enable job alerts via email!
Senior SOC Analyst
TN United Kingdom
West Yorkshire
On-site
GBP 40,000 - 70,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
An established industry player in the Aerospace & Defence sector is on the lookout for a skilled SOC Analyst to enhance the operations of their Security Operations Centre. This exciting role involves monitoring network traffic, investigating security incidents, and applying threat intelligence to safeguard critical national infrastructure. The ideal candidate will have a solid foundation in security architecture and experience with tools like Splunk and Sentinel. Join this dynamic team to contribute to the continuous improvement of cybersecurity measures and make a significant impact in a high-stakes environment.
Qualifications
- Basic Python and scripting skills required.
- Experience with security tools like Splunk and Sentinel is essential.
Responsibilities
- Monitor and analyze alerts to identify cyber-attacks.
- Create workflows for automation into SOAR tools.
Skills
Tools
Job description
Social network you want to login/join with:
A global leader in the Aerospace & Defence sector is seeking a technically skilled SOC Analyst to support the daily operations and continuous improvement of a dedicated Security Operations Centre (SOC) for a major UK CNI organisation based in Leeds.
The successful candidate will be required to undergo governmental clearance.
- Prepare and deliver shift handover briefs.
- Monitor, triage, analyze, and investigate alerts, log data, and network traffic using the Protective Monitoring platform and internet resources to identify cyber-attacks and security incidents.
- Write high-quality security incident tickets, utilizing existing knowledge resources and independent research.
- Understand and apply Threat Intelligence in an operational environment.
- Create workflows for automation into SOAR tools for common attack types.
- Continuously improve the service, review use cases, and propose changes based on evolving threats.
- Basic Python and/or scripting skills; familiarity with Windows, OS X, and Linux.
- Experience with Splunk and Sentinel.
- Experience working with various security tools and technologies.
- Strong understanding of security architecture, especially networking.
- Detailed knowledge of threat intelligence, threat actors, TTPs, and operationalizing threat intelligence.
- Experience investigating complex network intrusions, including state-sponsored groups and targeted ransomware attacks.
- Understanding of TCP/IP layers to identify normal and abnormal traffic.
- Knowledge of AWS and/or Azure cloud services.
- Content development experience with Splunk (with ES) and/or Sentinel is desirable.
If interested in this long-term contract opportunity, please email your CV and contact number to arrange a call.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
