CSOC Analyst

About Us:

We are the tech company with people at heart. At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services.

Position Overview:

The CSOC Analyst role is part of the Cyber Security Operations Centre (CSOC) and sits within the Security & Networks area of Advania. The candidate will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of SIEM and security toolsets to meet the requirements of the business and its customers.

This is a hands-on role and requires a broad technical knowledge, skills and abilities. Although the focus is on Cyber Security, knowledge and/or experience of modern IT systems and infrastructure is advantageous to assist with the development and continuous improvement of the security platforms within Advania and its customer's environments.

Responsibilities:

• Work within a multi-disciplined CSOC team identifying, owning, progressing and resolving security incidents.
• Perform the prompt and effective triage and investigation of security events and incidents applying sound problem solving methods to determine scope, urgency, and potential impact.
• Provide technical support for the identification and response to events or incidents of a suspicious or malicious nature, and apparent security breaches.
• Work with internal and external stakeholders to resolve computer security incidents and vulnerability compliance.
• Drive customer satisfaction and continuously seek to improve operational performance.
• Maintain a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities

Qualifications & Experience:

Essential:

• Demonstrable experience working with SIEM technology, preferably within a CSOC / SOC environment
• Demonstrable technical knowledge, skills and/or experience in intrusion analysis, and network and security investigation using a variety of security tools (EDR, DLP, AV, Snort, Wireshark, TCPdump etc.).
• Working knowledge and experience of core security and infrastructure technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS) Strong knowledge of understanding of multiple operating systems.

Desired but not essential:

• One or more Microsoft security focused accreditations, SC-200 or AZ-500
• Having achieved a BSc or MSc in Cyber Security incorporating Ethical Hacking, Digital Forensics or Information Security
• One or more of the following industry certifications: CEH, GCIA, GCIH, GSEC, Security+, GCTI
• Experience in secured cloud architectures (Azure, AWS) and engineering solutions
• An awareness of cyber security related standards and regulations, for example, NIST, CIS, ISO 27001 and PCI DSS

Shift Pattern

This role has a shift pattern on a 4 day on / 4 day off rota.

• Early shift - 06:00 - 17:00
• Late shift - 10:00 - 21:00
• Night - 20:00 - 07:00 / 21:00 - 08:00

Click here for the list of benefits.

This role requires eligibility to obtain security clearance (SC) , which requires UK citizenship and at least 5 years residency in the UK. If you have any questions on this requirement please ask the recruitment team during the process.

#LI-Hybrid

This is a remote-first hybrid role. See here for details about our hybrid workstyle, although please note that night shifts can be worked from home.

Our Selection Process:

We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law. Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.