Working within our rapidly expanding Cyber Security Operations Centre you will deliver security focused detection and response services, threat hunting, reporting and analysis across a wide range of clients who have outsourced their SOC function to the company.

Some of your day-to-day duties will include:
Working within a multi-disciplined CSOC team identifying, owning, progressing and resolving security incidents.
Performing the prompt and effective triage and investigation of security events and incidents applying sound problem solving methods to determine scope, urgency, and potential impact.
Providing technical support for the identification and response to events or incidents of a suspicious or malicious nature, and apparent security breaches.
Working with internal and external stakeholders to resolve computer security incidents and vulnerability compliance.
Driving customer satisfaction and continuously seek to improve operational performance
Maintaining a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities

Qualifications & Experience
The right candidate for this role will have:
Experience working with SIEM technology, preferably within a CSOC / SOC environment
Technical knowledge, skills and/or experience in intrusion analysis, and network and security investigation using a variety of security tools (EDR, DLP, AV, Snort, Wireshark, TCPdump etc.).
Working knowledge and experience of core security and infrastructure technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS)
The role will require you to work on some shift patterns which can vary month-to-month. Please note this would require some night-working in the context of a shift rotation pattern.

For a leading IT services and consulting company that delivers cloud, digital, and managed technology solutions to help organisations modernise and grow.