Cyber Security (SOC) Analyst - Level 1

Introduction

Fantastic opportunity for a recent grad (or equivalent), with a passion for IT Security. The role involves working as part of the Security Operations Center team, providing information and security assurance (both internally and for external customers).

Important

An active interest in software systems / engineering, secure communications and Information systems or system security architecture

The Job

The analyst role will be responsible for analysing network, application and system log events in order to identify any potentially abnormal system behaviours and raise them as incidents for investigation. These will then be investigated by the analyst to establish if these are expected events or a security threat whereby they will be escalated to appropriate customer or technical resources for remedial action.

Additional Responsibilities:
* Maintain keen understanding of evolving Internet threats to ensure the security of client networks
* Write technical articles for internal knowledge base
* Participate in knowledge sharing with other analysts and develop solutions efficiently
* Coordinate or participate in individual or team projects
* Perform other essential duties as assigned

You will have an active interest in software systems/engineering and/or secure communications and Information systems and/or system security architecture and/or malware. Experience or qualifications in network and systems monitoring would be beneficial and you must be prepared to become SC and DV cleared.

Essential skills:

• A motivated self-starter who is willing to follow procedure and shows attention to detail. An excellent communicator at all levels.
• Experience of analysing and interpreting system, security and application logs in order to diagnose faults and spot abnormal behaviours.
• Understanding of common network device functions, such as routers, switches, hubs, etc.
• Troubleshooting Windows operating system tasks, such as installations, services, sharing, navigation, etc.
• Understanding of TCP/IP functions, such as CIDR blocks, subnets, addressing, communications, etc.
• Must have strong written and verbal communication skills
• Attention to detail and great organizational skills
• Good interpersonal, and organizational skills, as well as phone and customer service skills

Desirable skills:

• Experience of using SIEM tools such as ArcSight, LogLogic, Q1 labs, Symantec Endpoint
• Common security device functions, such as IDS/IPS, Network and Host-based firewalls, etc.
• Knowledge of possible attack activities, such as scans, man in the middle, sniffing, DoS, DDoS, etc and possible abnormal activities, such as worms, Trojans, viruses, etc.
• SIEM terminology, such as threat, vulnerability, risk, asset, exposure, safeguards, etc.
• An understanding of Information Security; relating to the Confidentiality, Integrity and availability of information.
• Significant experience with TCP/IP, Linux, UNIX, Windows, IP Routing

PLEASE NOTE: The Security Analyst will be required to accommodate flexible working hours and shifts over a 247 rotation. The role is currently 9-5 but the client are looking to move to the 247 shift pattern over the next few months. At this stage there will be a salary uplift in line with industry standard.

A perfect position for an aspiring Penetration Tester, CLAS consultant or CHECK / CREST consultant!

To apply for this position, candidates must be eligible to live and work in the UK