Security Operation Center (SOC) Analyst

Job Description

The role supports the SOC Manager to oversee the cybersecurity operations of the business and innovative technology to deliver key business objectives in a secure manner which protects FSCS reputation, organisational and customer data, in line with the risk appetite of the business.

The key disciplines within the role are:

• Security Monitoring and Analysis - Monitor security alerts and events to identify potential threats.
• Incident Response -Execute incident response procedures to contain, eradicate, and recover from security incidents.
• Threat Intelligence -Stay informed about the latest cybersecurity threats, vulnerabilities, and attack vectors.
• Vulnerability Management - Identify and assess vulnerabilities in the organisation's systems and networks.

My Priorities- What I will Deliver.

• Utilise Microsoft Sentinel to monitor, investigate, and respond to security alerts and incidents.
• Conduct thorough analysis of security events, identifying patterns, and assessing the scope and impact of incidents.
• Collaborate with cross-functional teams to implement and optimize security measures using Microsoft Sentinel.
• Develop and maintain custom queries, dashboards, and automation scripts within Microsoft Sentinel for proactive threat detection.
• Participate in the configuration, tuning, and optimization of Microsoft Sentinel rules and playbooks.
• Work closely with IT and other teams to ensure effective incident response and containment strategies.
• Provide expertise in the continuous improvement of SOC processes and workflows related to Microsoft Sentinel.
• Stay updated on the latest features, updates, and best practices related to Microsoft Sentinel.
• Working out of hours maybe required from time to time

My Knowledge- What I need to Know

• Proven experience as a SOC Analyst with a strong focus on using Microsoft Sentinel.
• In-depth understanding of cybersecurity principles, protocols, and best practices.
• Proficiency in writing custom queries and creating dashboards within Microsoft Sentinel.
• Experience with incident response, threat intelligence, and vulnerability management.
• Familiarity with other security tools and technologies complementing Microsoft Sentinel.
• Strong analytical and problem-solving skills.

Experience

• Relevant certifications such as Microsoft Certified: Sentinel, CompTIA Security+, or equivalent.
• Experience with writing and socialising policies, standards, and procedures
• Strong understanding of information security concepts such as security architecture and design, Information security standards and information security risk assessment.
• Proven understanding of business continuity and compliance and audit frameworks