Overview
CSOC Analyst Jobs in Manchester, England, UK at Advania UK
Title: CSOC Analyst
Company: Advania UK
Location: Manchester, England, UK
Type: Full Time, Remote/Work from Home
Category: IT/Tech, Security
This role requires eligibility to obtain security clearance (SC) , which requires UK citizenship and at least 5 years residency in the UK. If you have any questions on this requirement please ask the recruitment team during the process.
About Us:
We are the tech company with people Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft’s leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a
proven track record
of success in delivering transformational IT services.
Position Overview:
The CSOC Analyst role is part of the Cyber Security Operations Centre (CSOC) and sits within the Security & Networks area of Advania. The candidate will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of SIEM and security toolsets to meet the requirements of the business and its customers.
This is a
hands-on
role and requires a broad technical knowledge, skills and abilities. Although the focus is on Cyber Security, knowledge and/or experience of
modern
IT systems and infrastructure is advantageous to assist with the development and
continuous improvement
of the security platforms within Advania and its customer’s environments.
Responsibilities:
Work within a multi-disciplined CSOC team identifying, owning, progressing and resolving security incidents.
Perform the prompt and effective triage and investigation of security events and incidents applying soundproblem solvingmethods to determine scope, urgency, and potential impact.
Provide technical support for the identification and response to events or incidents of a suspicious or malicious nature, and apparent security breaches.
Work with internal and external stakeholders to resolve computer security incidents and vulnerability compliance.
Drivecustomer satisfactionand continuously seek to improve operational performance.
Maintain a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities
Qualifications & Experience:
Essential:
Demonstrable experience working with SIEM technology, preferably within a CSOC / SOC environment
Demonstrable technical knowledge, skills and/or experience in intrusion analysis, and network and security investigation using a variety of security tools (EDR, DLP, AV, Snort, Wireshark, TCPdump etc.).
Working knowledge and experience of core security and infrastructure technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS) Strong knowledge of understanding of multiple operating systems.
Desired but not essential:
One or more Microsoft security focused accreditations, SC-200 or AZ-500
Having achieved a BSc or MSc in Cyber Security incorporating Ethical Hacking, Digital Forensics or Information Security
One or more of the following industry certifications: CEH, GCIA, GCIH, GSEC, Security+, GCTI
Experience in secured cloud architectures (Azure, AWS) and engineering solutions
An awareness of cyber security related standards and regulations, for example, NIST, CIS, ISO 27001 and PCI DSS
Shift Pattern
This role has a shift pattern on a 4 day on / 4 day off rota (4 Early Shifts, 4 days off, 4 Late Shifts, 4 days off, 4 Night Shifts, 4 days off)
Early s…
