SOC Analyst

Security Analyst - Managed Security Service Provider (MSSP)

A leading Managed Security Service Provider (MSSP) is seeking several L2 SOC Analysts to join their growing security team on a permanent basis. This business specializes in delivering top-tier Microsoft-focused cybersecurity solutions to a diverse range of clientele alongside other services across the Microsoft portfolio (M365, Azure, etc.). They pride themselves on staying ahead of evolving threats and providing comprehensive security measures to safeguard their clients' digital assets.

The ideal candidate will play a pivotal role in their Security Operations Center (SOC), contributing expertise in managing and responding to security incidents while demonstrating a strong understanding of security protocols, policies, and exposure to SIEM tools.

Key Responsibilities:

1. Monitor security events and alerts using Azure Sentinel and Microsoft Defender, ensuring timely and effective response to potential threats.
2. Mentor L1/L2 SOC Analysts whilst acting as their technical escalation point.
3. Analyze and investigate security incidents, providing detailed reports and recommendations for mitigation.
4. Implement and manage security controls, configurations, and policies within Azure Sentinel and Microsoft Defender.
5. Collaborate with cross-functional teams to develop and enhance security strategies, including threat hunting and incident response procedures.
6. Stay updated with emerging security threats, vulnerabilities, and industry best practices to proactively address potential risks.

Requirements:

1. Proven experience as a Security/SOC Engineer or similar role within an MSP, MSSP, or cybersecurity environment.
2. Knowledge and hands-on experience with SIEM tools.
3. Strong understanding of cybersecurity principles, tools, and technologies.
4. Excellent analytical and problem-solving skills with the ability to make quick, informed decisions under pressure.
5. Relevant certifications such as GIAC or Microsoft certifications would be advantageous.
6. Knowledge and hands-on experience with Azure Sentinel and Microsoft Defender.
7. Any experience with SOC Prime, Carbon Black, and SOAR would be advantageous.

Remote based.

Paying up to 50k, depending on experience.

As this is a 24x7 SOC, you will be required to be a part of a shift pattern.

Must be eligible for SC clearance.