Respond to system generated alerts, analyse logs and traffic patterns and carry out in-depth investigation on security events supporting our 24/7 SOC.
Respond to security incidents by following predefined procedures, including containment, eradication, and recovery.
Provide remote incident response and forensic activities during security incidents using DFIR methodologies.
Produce reports to customers.
Provide expert level advice to customers.
Assist in tuning and configuring systems to improve detection capabilities and reduce false positives.
Use a variety of security tools and technologies, such as endpoint detection and response (EDR), network traffic analysis (NTA), and threat intelligence platforms.
Requirements
Knowledge of Windows and Linux host based forensic artefacts and techniques.
Experience with EDR and SIEM technologies.
Proficiency in monitoring security events, analysing alerts, and managing security incidents, including incident prioritization and escalation.
Excellent interpersonal skills with the ability to explain technical problems to non-technical business stakeholders at all levels.
Understanding of networking and infrastructure design.
Knowledge of malware capabilities, attack vectors and impact.
Knowledge of the MITRE ATT&CK framework to understand threat actors and how to mitigate them.
Work-Life Balance Benefits
Flexible, supportive environment.
Benefits
Opportunity to work remotely.
People-first organization.
Potential for significant impact in the cyber security field.
👉 Please mention that you found this job on CalmJobs, thanks!
Full Details of Job Post
About the Company:
Our client is at the forefront of cybersecurity in the UK, providing exceptional services and innovative solutions tailored to our clients' needs. As part of our ambitious growth plans, we are seeking an experienced SOC Analyst to enhance our dynamic team.
Job Role:
You possess strong analytical skills with experience monitoring and triaging security incidents utilising a strong foundation in networking principles. You excel in client-facing roles with the ability to adjust communication styles for different audiences. Your proactive attitude towards learning and flexibility in work approach, coupled with your passion for security with an enjoyment in solving problems make you a perfect candidate for this role.
Roles and Responsibilities:
Respond to system generated alerts, analyse logs and traffic patterns and carry out in-depth investigation on security events supporting our 24/7 SOC.
Respond to security incidents by following predefined procedures, including containment, eradication, and recovery.
Provide remote incident response and forensic activities during security incidents using DFIR methodologies.
Produce reports to customers
Provide expert level advice to customers
Assist in tuning and configuring systems to improve detection capabilities and reduce false positives.
Use a variety of security tools and technologies, such as endpoint detection and response (EDR), network traffic analysis (NTA), and threat intelligence platforms.
About you:
Knowledge of Windows and Linux host based forensic artefacts and techniques
Experience with EDR and SIEM technologies
Proficiency in monitoring security events, analysing alerts, and managing security incidents, including incident prioritization and escalation.
Excellent interpersonal skills with the ability to explain technical problems to non-technical business stakeholders at all levels.
Understanding of networking and infrastructure design
Knowledge of malware capabilities, attack vectors and impact.
Knowledge of the MITRE ATT&CK framework to understand threat actors and how to mitigate them.
Certifications (very advantageous):
Blue Team Level 1
CompTIA Security+
CompTIA Network+
Preferred Certifications
SANS GCIH (GIAC Certified Incident Handler)
SANS GCIA (GIAC Certified Intrusion Analyst)
SANS GCFA (GIAC Certified Forensic Analyst)
SANS GCFE (GIAC Certified Forensic Examiner)
SANS GNFA (GIAC Network Forensic Analyst)
Alignment with Our Values
Our core values—Consistently Dependable, Beyond Excellence, Paving New Pathways, and Charismatic Engagement—shape our culture and our actions. We are looking for someone who embodies these principles, bringing not only skill and expertise but also a commitment to reliability, the pursuit of excellence, innovation in cybersecurity, and engaging with charisma in every interaction.
We are proud to be a people-first organisation. We offer a flexible, supportive environment and are keen to hear from talented individuals ready to join our journey. If you are looking to make a significant impact in the cyber security field, apply today to become part of our team!