At a Glance
- Tasks: Provide hands-on support for SOC operations and manage escalated incidents.
- Company: Join a leading tech firm with a focus on cybersecurity.
- Benefits: Competitive day rate, hybrid work options, and a dynamic team environment.
- Other info: Opportunity to enhance your career in a growing field with excellent support.
- Why this job: Make a real difference in security while developing your skills in a fast-paced setting.
- Qualifications: Experience in SOC operations and familiarity with KQL queries.
The predicted salary is between 54000 - 60000 £ per year.
Harvey Nash's Client have a requirement for a SOC Analyst, you will support the team in:
- Provide hands-on 2nd line SOC operational support, including investigation and management of escalated incidents from the 1st line SOC.
- Validate and assure quality and effectiveness of Sentinel alerts and detections.
- Support onboarding of log sources and priority use cases into Microsoft Sentinel in line with CAF, T3, and ECS Keystone requirements.
- Develop and utilise KQL queries to enable effective triage, investigation, and validation of security events.
- Provide operational support and guidance to L1 SOC, improving consistency in alert handling and escalation.
- Contribute to clearing operational backlog, including rule validation, clean-up activity, and onboarding delivery.
- Perform basic tuning of analytic rules to improve signal quality and reduce alert noise.
SOC Analyst in Reading employer: Harvey Nash
As a SOC Analyst with us, you'll be part of a dynamic team in Havant/Reading, where we prioritise employee growth and development through hands-on experience and continuous learning opportunities. Our collaborative work culture fosters innovation and encourages you to take ownership of your role, while our competitive day rate and hybrid working model provide the flexibility and support you need to thrive in your career.
We think you need these skills to ace SOC Analyst in Reading
2nd Line SOC Operational Support
Incident Investigation
Microsoft Sentinel
KQL Queries
Alert Management
Operational Backlog Clearance
Rule Validation