Morson Talent
Security Operations Analyst
Job Location
West Sussex, United Kingdom
Job Description
Your Role:
You will play a critical role in responding to high-severity cyber incidents, performing advanced threat hunting, and developing response strategies to protect our network systems and customer data. This is a key position within our clients Information Systems directorate, and offers blended working, 3 days in office, 2 days remote.
Responsibilities:
Advanced Threat Hunting: Identify new threats using industry tools and hunt for 'hidden' threats in the environment.
Policy Development: Develop SOC policies and procedures based on industry best practices.
Log Management: Ensure all log sources are onboarded into the SIEM solution and create use cases to identify suspicious activity.
Incident Response: Lead escalated incident responses, oversee remediation, and report on high-severity incidents.
Security Automation: Develop and automate workflows using SOAR tools to enhance operational playbooks and streamline responses.
Digital Forensics: Conduct forensic analysis of serious incidents and implement containment strategies.
Cyber Crisis Testing: Participate in cyber-attack simulations to test and improve organisational resilience.
Reporting & Metrics: Enhance security operations reporting and develop performance metrics dashboards.
Audit & Compliance: Support security audits and ensure compliance with relevant regulations and standards.
Essential Experience:
Significant experience in a SOC Level 2 or 3 role, with a strong track record in advanced threat hunting and incident response.
Qualifications in Cybersecurity or IT (Bachelor’s degree or equivalent), ideally with industry-recognized certifications such as CISSP, GIAC, CEH, or CompTIA CASP+.
Deep knowledge of security technologies (SIEM, SOAR, EDR, IDS/IPS, DLP, etc.), adversarial tactics (e.g., MITRE ATT&CK), and experience with incident response and security architecture.
Hands-on experience with security tools, including FortiSIEM, McAfee, Darktrace, Microsoft Sentinel, and more.
Understanding of compliance frameworks such as NCSC CAF, ISO 27001/27002, GDPR, and NIST.
Benefits:
Personal Pension Plan up to 10%
Tenancy Loan Deposit Scheme
Cycle to Work Scheme
Season Ticket Loan
Occupational Health Support
Employee Discount Scheme with hundreds of retailers
Discounted access to sports and social clubs
Employee Assistance Programme
Next Steps:
To arrange a call to discuss this position in more detail please apply or email your CV to .Our client are looking to arrange a MS Teams call as soon as possible for suitable candidates as this role is vital to their long term business aims
Location: West Sussex, GB
Posted Date: 10/10/2024
You will play a critical role in responding to high-severity cyber incidents, performing advanced threat hunting, and developing response strategies to protect our network systems and customer data. This is a key position within our clients Information Systems directorate, and offers blended working, 3 days in office, 2 days remote.
Responsibilities:
Advanced Threat Hunting: Identify new threats using industry tools and hunt for 'hidden' threats in the environment.
Policy Development: Develop SOC policies and procedures based on industry best practices.
Log Management: Ensure all log sources are onboarded into the SIEM solution and create use cases to identify suspicious activity.
Incident Response: Lead escalated incident responses, oversee remediation, and report on high-severity incidents.
Security Automation: Develop and automate workflows using SOAR tools to enhance operational playbooks and streamline responses.
Digital Forensics: Conduct forensic analysis of serious incidents and implement containment strategies.
Cyber Crisis Testing: Participate in cyber-attack simulations to test and improve organisational resilience.
Reporting & Metrics: Enhance security operations reporting and develop performance metrics dashboards.
Audit & Compliance: Support security audits and ensure compliance with relevant regulations and standards.
Essential Experience:
Significant experience in a SOC Level 2 or 3 role, with a strong track record in advanced threat hunting and incident response.
Qualifications in Cybersecurity or IT (Bachelor’s degree or equivalent), ideally with industry-recognized certifications such as CISSP, GIAC, CEH, or CompTIA CASP+.
Deep knowledge of security technologies (SIEM, SOAR, EDR, IDS/IPS, DLP, etc.), adversarial tactics (e.g., MITRE ATT&CK), and experience with incident response and security architecture.
Hands-on experience with security tools, including FortiSIEM, McAfee, Darktrace, Microsoft Sentinel, and more.
Understanding of compliance frameworks such as NCSC CAF, ISO 27001/27002, GDPR, and NIST.
Benefits:
Personal Pension Plan up to 10%
Tenancy Loan Deposit Scheme
Cycle to Work Scheme
Season Ticket Loan
Occupational Health Support
Employee Discount Scheme with hundreds of retailers
Discounted access to sports and social clubs
Employee Assistance Programme
Next Steps:
To arrange a call to discuss this position in more detail please apply or email your CV to .Our client are looking to arrange a MS Teams call as soon as possible for suitable candidates as this role is vital to their long term business aims
Location: West Sussex, GB
Posted Date: 10/10/2024
Contact Information
| Contact | Human Resources Morson Talent |
|---|