Enable job alerts via email!
SOC Analyst
TN United Kingdom
West Yorkshire
On-site
GBP 40,000 - 70,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
A forward-thinking company in the Aerospace & Defence sector is on the lookout for a skilled SOC Analyst to enhance its Security Operations Centre. This role involves monitoring and analyzing potential cyber threats, developing automated workflows, and applying threat intelligence to safeguard critical infrastructure. The ideal candidate will possess a strong foundation in network security and experience with tools like Splunk and Sentinel. Join a dynamic team dedicated to continuous improvement and innovation in cybersecurity, where your expertise will play a crucial role in protecting vital assets.
Qualifications
- Experience in monitoring and investigating cyber threats.
- Familiarity with security tools like Splunk and Sentinel.
Responsibilities
- Monitor and analyze alerts and network traffic for security incidents.
- Develop automation workflows for common attack types.
Skills
Tools
Job description
Social network you want to login/join with:
A global leader in the Aerospace & Defence sector is seeking a technically skilled SOC Analyst to support the daily operations and continuous improvement of a dedicated Security Operations Centre (SOC) for a major UK CNI organisation based in Leeds.
The successful candidate will be required to undergo governmental clearance.
- Prepare and deliver shift handover briefs.
- Monitor, triage, analyze, and investigate alerts, log data, and network traffic using the Protective Monitoring platform and internet resources to identify cyber-attacks and security incidents.
- Write high-quality security incident tickets, utilizing existing knowledge resources and independent research.
- Understand and apply Threat Intelligence in an operational context.
- Develop workflows for automation into SOAR tools for common attack types.
- Continuously improve the service, review use cases, and propose changes in line with evolving threats.
- Possess basic Python and/or scripting skills; familiar with Windows, OS X, and Linux.
- Experience with Splunk and Sentinel.
- Work with a range of security tools and technologies.
- Have a strong understanding of security architecture, particularly networking.
- Have detailed knowledge of threat intelligence, threat actors, TTPs, and operationalizing threat intelligence.
- Experience investigating complex network intrusions, including state-sponsored groups or targeted ransomware attacks.
- Understand TCP/IP components to distinguish normal and abnormal traffic.
- Knowledge of AWS and/or Azure cloud services.
- Experience with Splunk (including ES) and/or Sentinel; content development experience is desirable.
If interested in this long-term contract opportunity, please email your CV and contact number to arrange a call.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Similar jobs
job faster
