SOC Analyst

As a key part of the IT Operations team and sitting within the wider DDaT function, your new team delivers, provides, manages, and supports critical IT services across the organisation and owns and defines the employee experience across all technology for both internal and external stakeholders' use, to enable greater productivity throughout the organisation. You'll be joining a team of collaborators and knowledge sharers working in an agile, fast-paced environment.

As a SOC Analyst, you'll be responsible for working with colleagues in DDaT, Departmental Security and Resilience Team, other departments and third-party suppliers as part of a small team of internal SOC analysts. You'll collaborate with cross-functional teams to detect, analyse, and respond to potential security incidents, ensuring the protection of data and information systems. Your expertise in cybersecurity, team skills and deep technical knowledge will be essential in identifying emerging threats, supporting the implementation of effective security measures, and maintaining the highest standard of cybersecurity within the organisation.

You'll help build and implement the SOC within IT operations, conduct daily operations of the internal SOC including incident monitoring, analysis, and response, implement SOC procedures and best practice to ensure efficient and effective incident response, and support major incident response efforts and lead on incident response efforts including containment, investigation, analysis, and reporting of security incidents.

Your profile

1. Experience as a SOC Analyst in an enterprise scale organisation; managing security operations incidents and events
2. Hands-on knowledge and experience of security operations and incident response planning; Cellebrite, Magnet Domain Tools
3. Knowledge of cybersecurity principles and frameworks; ISO27001, NIST, GDPR etc.
4. Knowledge and experience with MS Sentinel, Cisco Meraki, MS Defender, Endpoint protection
5. Knowledge and experience with SIEM, IDS/IPS, firewalls, endpoint protection systems, and vulnerability management
6. Knowledge and experience analysing and interpreting security logs, event data, and alerts to identify potential threats
7. Knowledge and experience of network protocols, traffic analysis, and cyber-attack methodologies
8. Knowledge and experience of threat intelligence, risk management, vulnerability management, and penetration testing

Please note sponsorship is not available for this position, and you must be able to obtain a Security Clearance.

Your new employer is looking for candidates who want to further their career, alongside delivering great services for all end users. As an employer of choice, you will be offered an extensive benefits package including:

1. Competitive salary package between £46,000- £57,000 dependent on experience
2. 25 days' annual leave entitlement plus bank holidays
3. Great pension scheme with substantial employer contribution
4. Hybrid working- 2 days onsite in central London
5. Season ticket loans, cycle to work schemes, employee assistance programmes
6. Leave for professional and academic studies, and excellent opportunities for continued development
7. A healthy work-life balance for all employees with a strong flexible working culture