linkedin

Connecting...

SOC Analyst

Job Title: SOC Analyst
Contract Type: Contract
Location: Scotland
Industry:
Salary: £425 - £450 per day + OUTSIDE IR35
Start Date: November 2021
Reference: BBBH28452_1634738451
Contact Name: Zoe Latuszka
Contact Email: zoe.latuszka@talentinternational.com
Job Published: October 20, 2021 15:00

Job Description


IT Security Senior SOC Analyst
6 Months
£450 per day. Outside ir35
Remote for foreseeable. When the risk of COVID infection is further reduced, we envision that some of the team and community activities will take place at our Edinburgh office.
Registers of Scotland require an experienced senior security analyst to support the development of the security monitoring and response function. A number of security monitoring and response technologies have been, and continue to be, delivered by the team's engineering function. Registers of Scotland require an experienced individual who can both operate the technologies, supporting junior analysts in their use of these tools (where appropriate), and who can also assist the IT Security tPM in the creation and definition of all aspects of the surrounding service wrap (processes, KPIs, Reporting, Assurance) to drive maturity into each of the services

Responsibilities:

  • Development of a Security Operations Centre (SOC) capability, utilising existing security technologies such as XDR, NAC, SOAR, CSPM and ITSM tools
  • Assist with defining SLAs / OLAs / KPIs for the different elements of IT Security services
  • Create and contribute to existing processes / playbooks relating to SOC operations
  • Develop a SOC reporting capability, whereby metrics relating to security alerts / incidents / services are consumable for wider business stakeholders


As part of the wider IT Security team:

  • Respond to SOC alerts and triage / investigate to resolution
  • Identify and implement process / playbook improvements and alert tuning opportunities
  • Provide nth-line support and mentoring for more junior analysts
  • Provide support to security engineers with wider IT Security initiatives as required


Essential Skills

  • Extended Detection and Response (preferably Cortex XDR) toolsets
  • Utilising Security Orchestration, Automation and Response (preferably Cortex XSOAR) tools to improve / automate / streamline routine security processes
  • Awareness of Network Access Control solutions (preferably ForeScout)
  • Cloud Security Posture Management (CSPM) solutions (preferably PRISMA Cloud)
  • Creation and operation of Cyber Security Incident Response processes
  • Definition and monitoring of KPIs to support service monitoring and business reporting
  • Secure networking principles
  • Firewall management
  • Vulnerability Management (preferably including use of Tenable/Nessus)
  • More than 5 years experience in a relevant IT Security role, with at least 2 years in a leadership capacity
  • Experience of working within an Agile delivery environment


Desirable Skills

  • Experience of working in a Government department
  • Experience of conducting risk assessments relating to security controls or weaknesses
  • Use of IT Service management tools to record and audit security investigations (preferably ServiceNow)
  • Achievement of industry recognised certifications and / or educational achievements relating to Security Analyst roles, such as (but not limited to): Degree in Cyber Security o CISM o Security+ / CySA+ / GCIH etc