SOC Analyst (SIEM) (NH-SOC-1-Air)



£400 - £450/day

Job Location
- United Kingdom -- England -- Greater London -- London

Job Type

Thursday, August 22, 2019

SOC Analyst (SIEM) – 4 month initial contract - UK or France

An exciting opportunity has for an experienced Senior SOC Analyst. This will be on an initial contract basis until the end of the year, with the view of extension. This is an urgent requirement with the successful applicant starting immediately.

Role responsibilities:

  • Develop incident response run books and formalise internal processes.
  • Assisting in the definition of analysis procedures and protocols
  • Training and mentoring of junior members of the SOC team
  • Deploying & configuring SIEM & EDR systems to client environments
  • Investigating client malicious incidents and providing a full report on findings
  • Analysing log data from various sources
  • Write, modify, and fine tune, SIEM rulesets for improved alerting and reduction of false positives.
  • Coordinate with other departments to manage and administer the updating of rules and signatures (eg intrusion detection/protection systems, anti-virus, and content blacklists) for specialised applications.
  • Participate in compliance/vulnerability assessment scanning, and develop mitigation and remediation plans from the assessment findings
  • Document information security operations policies, processes and procedures.

Required knowledge and experience:

  • Extensive experience working in a SOC environment
  • Strong understanding of SIEM systems and other cyber-security technologies: Such as Splunk, ELK, AlienVault, Endpoint Detection & Response tools, Antivirus systems & Firewalls
  • Strong understanding of Unix/Linux and Windows operating systems.
  • An in-depth knowledge of log formats, log transports and log analysis as well as automating log ingestion and normalisation in a SOC environment
  • An understanding of threat analysis, threat hunting and intelligence feeds
  • Programming experience (PowerShell, Bash, Python, JavaScript)
  • Knowledge of TCP/IP Protocols, network analysis, and network/security applications
  • Experience working within AWS or Google Cloud would be highly desirable
  • Conversant with security best practices (including ISO27001) and relevant security legislation

We have interview slots available next week which will consist of a 2-stage telephone interview process.

To discuss this exciting opportunity in more detail, please APPLY NOW for a no obligation chat with your VIQU Consultant. Additionally, you can contact Nicholas Hopkins, by exploring the VIQU IT Recruitment website.

If you know someone who would be ideal for this role, by way of showing our appreciation, VIQU is offering an introduction fee up to £1,000 once your referral has successfully started work with our client (terms apply).

To be the first to hear about other exciting opportunities, alongside technology and recruitment news, please also follow us at ‘VIQU IT Recruitment’ on LinkedIn, viqu_uk on Instagram, VIQU on Facebook, and Twitter: @VIQU_UK

Contact information

Nicholas Hopkins

For further details please download the job description below: