SOC Analyst

Description

We are looking for an CSOC Analyst to work for a leading organisation. You will either have current SC clearance or be willing to be SC Cleared. Ideally you would have worked as a CSOC Analyst or SOC Analyst in the past.

Principal Accountabilities:

This post is within the Technology directorate. The Technology directorate remit covers the complete system life cycle for a range of IT Systems and services needed to directly provide, or support delivery of services to, our wide range of customers. The role contributes to situational awareness of the cyber threat to the technical infrastructure through deep analysis of system logs, system alerts and threat intelligence, and by guiding the continuous improvement of these capabilities

Responsibilities

• Effective use of Company monitoring systems to hunt for and identify potential issues and escalates those that have significant impacts on the business into incidents and manages resultant incidents through to a successful resolution.
• Effectively manage the Cyber Security Operations Centre support queue and mailbox to ensure calls are dealt with in a timely manner within agreed support SLAs. Ensuring that all daily tasks are actioned in accordance with CSOC guidelines.
• Responds to security incidents or breaches of security policy in accordance with local procedures and investigates the resulting Incidents. Perform within agreed guidelines and progress lessons learnt to reduce similar incidents happening in the future.
• Provide forensic investigations in support of HR and Line Management requirements to a 'civil' level. Ensuring all relevant documentation is completed and all stakeholders are engaged within appropriate timeframes.
• Produce regular Risk and Incident Management metrics for all aspects of the CSOC service and review the effectiveness of related controls and make improvements in accordance with NCSC guidelines, best practice recommendations and company policy.
• Assists in the production and presentation of Cyber awareness training for Company staff. Ensuring that the effectiveness of such training is evaluated through feedback and items like Incident management improvements to ensure the effectiveness of awareness programs.
• Contributes to and reviews IT Security practices and policy to ensure their effectiveness in improving the security posture of the company. In particular gathers feedback from stakeholders across the office to ensure their effectiveness to meet business goals.
• Continuously updates knowledge on general and company specific threats to effectively develop risk assessment mitigations and undertake investigations into reported breaches.

Essential Qualifications, Skills & Abilities

• Proven experience of working in an Information Security role within a large business, or a public sector environment subject to HMG Security Policy Framework compliance.
• Detailed working background in IT systems and Networks with a proven knowledge of the use of monitoring systems to find potential issues and managing the resulting security incidents within a diverse business environment.
• Evidence of strong communication and interpersonal skills with the confidence to provide Information Security advice which informs, engages and influences both technical and business staff.
• A proven track record that clearly demonstrates the ability to assimilate new information and make sound judgements.
• Evidence of ability to work under broad direction establishing own milestones, team objectives and delegates assignments and removing barriers to success
• Strong influencing and negotiating skills demonstrating experience of managing effectively stakeholder and customer engagement.
• SC cleared (day 1) or willingness to undertake SC Clearance (required day 1)

Desirable

• Completed appropriate Information Security related training eg an ISO27001 course, Certified Information Security Manager, Computing Information Security Degree, etc.
• Qualification to CISSP, SSCP level or other relevant/equivalent Information Security qualification
• Experience of working with HMG policy, and or working knowledge of the principles of ISO 27001.
• Qualified GIAC Security Essentials, GIAC Certified Incident Handler or GIAC Certified Intrusion Analyst.

Advise on rates and availability on application

WA Consultants is an Employment Business and an Employment Agency as described within The Conduct of Employment Agencies and Employment Businesses Regulations 2003.