Fixed term role until October

Start date ASAP

100% remote working

• daily meetings with the customer to review actions from the previous day and work with them to establish further actions required.
• that all reports and client-facing documents are of the highest quality.
• in-depth and sophisticated analyses on alarms and events received by our customers.
• customers alternative actions or self-fix problems, based on contract and type of incident.
• threat hunting, threat modelling, and threat intel activities to proactively detect threats.
• Degree in IT, information security or related field or equivalent experience on the job.
• in English (Oral and written). Excellent verbal and written communication skills and ability to communicate to both a technical and non-technical audience.
• understanding of networking fundamentals, TCP/IP, and core protocols.
• experience in log monitoring and SIEM (ideally Splunk and Tenable), log management and an understanding of vulnerability management.
• endpoints, investigate threats/alerts (Ideally SentinelOne).
• management experience (ideally BeyondTrust
• reported emails, manage urls/attachments/quarantine/senders (ideally Mimecast).
• & Linux operating systems knowledge (ideally an understanding of Windows Server Environments both on prem and hosted in Azure cloud).
• experience working with or in IT infrastructure, cyber incident response or SOC teams would be beneficial.
• and working practice of ITIL.
• Sec+ and/or N+
• (SSCP, CISSP, CCSP)
• foundation