SOC Analyst

Social network you want to login/join with:

If you have an inquisitive nature and enjoy security technology, research and learning, this role will put you at the forefront of CGI Cyber Security Service. The Security Operations Centre is a fast-paced environment that is flexible and adaptable to the threat landscape we face. The SOC utilises both tried and tested tooling and state-of-the-art technologies and methods to ensure we provide the best level of service and protection to our prestigious list of clients.

CGI was recognized in the Sunday Times Best Places to Work List and has been named one of the ‘World’s Best Employers’ by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching), which makes you a Member Partner, not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent, and inspiring everyone to pursue careers in our sector, including our Armed Forces. We are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go.

Due to the nature of the role, we can accept UK Nationals only, who must hold or be prepared to undergo a security check to SC level and be required to be onsite full-time in our Reading office.

Your future duties and responsibilities:

The successful candidate will be highly motivated, with a good IT background and a desire to work in Cyber Security. A self-starter who works effectively with instruction but under minimal supervision in a highly dynamic environment. It is expected that the successful candidate will have a solid background in IT infrastructure with an understanding of computer networking and server architecture, ready to take the next step in Cyber Security.

This is a fast-paced investigation role, ideal for candidates with a keen eye for security. You will work alongside other cyber professionals focused on enhancing our Cyber capabilities. You will receive hands-on training with a variety of SIEM tools and gain exposure to many different networks, making this perfect for anyone looking to grow their practical experience with diverse tools and networks.

Key Tasks:

1. Detection, monitoring, and analysis of security incidents.
2. Production of monthly service reports.
3. Assist Senior Analysts in performing network/system/application/log intrusion detection analysis.
4. Assist Senior Analysts in ensuring Service Level Agreements are met and in maintaining SOC Documentation.

Required qualifications to be successful in this role:

• Understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, FTP, POP, LDAP.
• Ability to deal with aggressive timelines and associated pressure.
• Ability to quickly learn new technologies (e.g., MASH).

Desirable Skills:

• Experience in security compliance auditing and remediation.
• Knowledge of SIEM Solutions (ArcSight, Splunk, TippingPoint, Huntsman, FortiAnalyzer).
• Knowledge of Firewall & VPN technologies (Checkpoint, Cisco, Juniper).
• Knowledge of IPS vendors (SourceFire, Cisco, IBM, TrendMicro, Fortigate, F5).
• Knowledge of strong authentication methods such as two-factor authentication tokens.