At a Glance
- Tasks: Support SOC operations by investigating incidents and managing escalated alerts.
- Company: Join a leading tech firm focused on cybersecurity.
- Benefits: Competitive day rate, hybrid work options, and a dynamic team environment.
- Other info: Opportunity for career growth in a fast-paced industry.
- Why this job: Make a real difference in cybersecurity while developing your skills.
- Qualifications: Experience in SOC operations and familiarity with KQL queries.
The predicted salary is between 48000 - 60000 £ per year.
Harvey Nash's Client have a requirement for a SOC Analyst, you will support the team in:
- Provide hands-on 2nd line SOC operational support, including investigation and management of escalated incidents from the 1st line SOC.
- Validate and assure quality and effectiveness of Sentinel alerts and detections.
- Support onboarding of log sources and priority use cases into Microsoft Sentinel in line with CAF, T3, and ECS Keystone requirements.
- Develop and utilise KQL queries to enable effective triage, investigation, and validation of security events.
- Provide operational support and guidance to L1 SOC, improving consistency in alert handling and escalation.
- Contribute to clearing operational backlog, including rule validation, clean-up activity, and onboarding delivery.
- Perform basic tuning of analytic rules to improve signal quality and reduce alert noise.
SOC Analyst employer: Harvey Nash
As a SOC Analyst with us, you'll join a dynamic team in a hybrid work environment located in Havant or Reading, where collaboration and innovation thrive. We prioritise employee growth through continuous training and development opportunities, ensuring you stay at the forefront of cybersecurity advancements. Our supportive work culture fosters open communication and teamwork, making it an excellent place for those seeking meaningful and rewarding employment in the tech industry.
We think you need these skills to ace SOC Analyst
2nd Line SOC Operational Support
Incident Investigation
Management of Escalated Incidents
Microsoft Sentinel
KQL Queries
Triage and Validation of Security Events
Operational Support to L1 SOC