Security Operations Centre Analyst

About Voyage
Voyage Care is a leading provider of care and support for people with learning disabilities, autism, and complex care needs across the UK. Our mission is to deliver exceptional care and support, enabling the individuals we serve to live fulfilling and independent lives. With a wide network of care homes, supported living services, and specialist care facilities, we are dedicated to upholding the highest standards of care and continuously improving our services to meet the evolving needs of our clients.

Our commitment to security and data integrity is paramount, and we are seeking a highly skilled and motivated Security Operations Centre (SOC) Analyst to join our SOC team. The successful candidate will be part of a team responsible for monitoring, analysing, and triaging security events across various platforms, including user endpoints, Windows Servers, Windows Defender, firewalls, IPS/IDS, and cloud systems in Azure. This role is crucial in maintaining the security and integrity of Voyage Care systems and data.

Important information to note
This is a remote role, working alternate weekly shifts of 07:00 – 15:00 and 11:00 – 19:00, Monday to Friday.
The ideal candidate will have around 3+ years of cyber security experience and 5+ years in an IT-based role in order to fulfill the requirements of the position - further qualifications and experience listed below.

Key Responsibilities

• Utilise a Security Information and Event Monitor (SIEM) application (Exabeam) to provide Incident Response services for Voyage Care; investigating potential security incidents, determining their severity, and implementing responses to mitigate threats.
• Monitor security events from user endpoints (Windows 10 and Windows 11), Windows Servers, Windows Defender, networks, firewalls, IPS/IDS, and Azure cloud systems, system logs and other services.
• Analyse and triage security events to identify potential threats and vulnerabilities.
• Actively participate in Root Cause Analysis (RCA) of security incidents and events.
• Collaborate with colleagues to assist with remediation efforts following security incidents.
• Identify security weaknesses to continuously improve Voyage Care’s security posture.
• Report findings and provide recommendations to the Network and Security Team Lead.
• Maintain up-to-date knowledge of emerging threats, vulnerabilities, and security technologies.
• Develop and maintain security documentation, including incident reports and RCA documentation.

Qualifications and Experience

• Degree in Computer Science, Information Security, or related field, or equivalent work experience.
• Proven experience in a security operations or similar role.
• Strong understanding of security principles, cybersecurity technologies, and best practices.
• Experience with a broad set of cyber security monitoring tools and technologies.
• Understanding network protocols, firewalls, VPNs, intrusion detection/prevention systems, authentication and authorisation protocols.
• Develop and write scripts and code to assist and remediate security incidents and threats (Python, PowerShell, etc.).
• Excellent analytical and problem-solving skills.
• Strong communication skills, both written and verbal.
• Ability to work collaboratively in a team environment.
• Current Security qualifications or other relevant certifications are a plus.
• A willingness to continuously learn and understand about new cyber security threats and how they can be mitigated and overcome.