Cyber Security Analyst

Adecco Public Sector are recruiting for a Sharepoint Consultant on a permanent basis. The role will be fully remote with some requirement to be on site for meetings.

Details below:

Cyber Security Consultant providing technical leadership on Cyber Security matters, being instrumental in the development of the Security Operations Centre (SOC), and supporting and mentoring L1/L2 SOC Analysts.

RESPONSIBILITIES

• Act as the Cyber Security technical lead for the SOC advising internal management and external customers on Cyber Security matters
• Act as the technical escalation point for L1/L2 security operations analysts
• Develop and optimise SOC processes and procedures and train the SOC team on how to follow them efficiently and effectively
• Carry out detailed investigations relating to security incidents and non-compliance using a variety of industry standard tools and techniques
• Carry out threat hunting activities using known IOCs to identify hidden threats
• Carry out detailed audits of policies and configurations to identify security gaps and opportunities for improvement
• Use the MITRE ATT&K cybersecurity knowledge base to enable the necessary steps to take to help predict an adversary's behaviour and next move, and quickly and effectively respond to an attack.
• Develop and optimize automation rules and playbooks in the SIEM (Microsoft Sentinel)
• Analyze Cyber security data to identify trends and outliers, make recommendations for improvement, and develop monthly security assessment reports.
• Work closely with management to develop service improvement plans

EXPERIENCE REQUIRED

• A minimum of 3 years' experience working within a Security Operations Centre (SOC) as a Cyber Security Analyst
• 3 years experience working with at least one SIEM platform (Microsoft Sentinel experience is highly advantageous)
• Hands on skills/experience identifying, investigating, containing and remediating sophisticated security attacks
• Analytical rule automation and playbook development
• Design, implementation, and integration of a SIEM solutions into a customer environment
• Security management tooling such as intrusion detection and prevention, data loss prevention, Firewall, VPN, filtering and traffic inspection, and security reporting
• Strong understanding of Microsoft 365 and Office 365 security products eg Microsoft Defender for Endpoints and Microsoft Defender for Office 365
• Development of runbook procedures and incident management processes (desirable)
• Development of Cyber Security reports and monthly SOC dashboards
• Technical leadership, mentoring and development of SOC analysts
• Logfile analysis
• Threat hunting

Please apply now for immediate consideration