Senior SOC Analyst

Hertfordshire  ‐ Onsite
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Keywords

Computer Security Stakeholder Management Safety Principles Splunk Corrective and Preventive Action (CAPA) Communications Protocols Content Management Linux Domain Name System (DNS) Incident Response OSI Models Lightweight Directory Access Protocols (LDAP) Pcap Log Analysis Simple Mail Transfer Protocols Phishing Web Applications Symantec Scripting Transport Layer Security File Transfer Protocol (FTP) Fireeye Candidate Experience Ddos

Description

Senior Soc Analyst
On site Stevenage
Inside IR35

Due to timescale of the project the ideal candidate will hold Active Security Clearance

24/7 Desk 12 hour shifts days 7am-7pm days or 7pm-7am nights


The Candidate
  • Experience with LogRhythm/Splunk, Darktrace (Threat Visualizer) and FireEye (EX, NX, HX, CMS) is required.
  • Demonstrable understanding of the OSI Reference Model and the network communication protocols, including but not limited to DNS, HTTP/S, SSL, SMTP, FTP/S, LDAP/S.
  • Knowledge or experience with any of the following is a plus: Observe IT, Symantec MessageLabs, IronPort, Splunk Phantom and Recorded Future.
  • Experience or demonstrable knowledge in Incident response, log analysis and PCAP analysis
  • Good level of understanding in the approach threat actors take to attacking a network; phishing, port scanning, web application attacks, DDoS, lateral movement.
  • Knowledge in Windows and/or Linux operating systems, how to investigate them for signs of compromise.
  • Ability to demonstrate the right approach to investigating alerts and/or indicators and document your findings in a manner that both peer and executive level colleagues can understand.
  • Ability to track complex remedial activities from multiple sources and provide updates to the customer in a user centric way.
  • Ability to clearly articulate cyber security risks against business outcomes and provide advice on the remedial actions that should be undertaken.
  • Used to managing and collaborating with multiple team members and reporting progress to stakeholders.
  • Experience in managing security incidents on behalf of stakeholders.
  • Experience within Defensive Cyber-attack methodologies and frameworks.
  • Foundational level of Scripting knowledge is desirable.
  • 3+ years' experience working within Security Operations Centres (SOCs) or as a security analyst to resolve security incidents across a range of tools as listed above.
  • Excellent verbal and written communications
Start date
ASAP
From
Jumar Solutions Ltd
Published at
16.05.2024
Project ID:
2751585
Contract type
Freelance
To apply to this project you must log in.
Register