At a Glance
- Tasks: Monitor and respond to cybersecurity incidents in a dynamic Security Operations Centre.
- Company: Join MTI, an award-winning tech company with a global reach and innovative culture.
- Benefits: Enjoy competitive salary, hybrid work options, and opportunities for professional growth.
- Other info: Be part of a supportive team that values learning and collaboration.
- Why this job: Make a real impact in cybersecurity while working with cutting-edge technologies.
- Qualifications: 2+ years in a SOC environment and experience with Microsoft Sentinel and Defender.
The predicted salary is between 40000 - 50000 £ per year.
MTI provides award-winning, end-to-end technology solutions and services in cyber security and data centre for over 35 years. MTI has 250+ staff, with offices across the UK, France and Germany. MTI was acquired by Ricoh in 2020 as part of their transformation into a global digital services company. As part of the Ricoh family, MTI benefits from access to a much broader set of specialist IT services and significant technical resources available on a global scale.
As a Level 2 SOC Analyst, you will play a key role in the detection and response lifecycle within our Security Operations Centre. You will be responsible for triaging, investigating, and responding to cybersecurity incidents across customer environments using tools such as Microsoft Sentinel and Defender XDR. The role requires strong analytical skills, attention to detail, and the ability to execute response actions such as endpoint isolation, IOC blocking, malware scans, and user containment.
Key Responsibilities
- Threat Monitoring and Detection:
- Monitor security alerts and events from SIEM platforms, EDR solutions, and other security tools.
- Analyse logs, network traffic, and endpoint data to identify potential security incidents.
- Tune and optimize detection rules to reduce false positives and improve threat detection accuracy.
- Threat Intelligence and Hunting:
- Leverage threat intelligence feeds and platforms to stay informed about emerging threats and attack techniques.
- Proactively hunt for threats and anomalies within client environments using advanced tools and techniques.
- Develop and share actionable threat intelligence with clients and internal teams.
- SOAR and Automation:
- Create/update SOAR workflows for common incidents.
- Recommend automation improvements.
- Platform Administration:
- Maintain and fine-tune Sentinel and Defender components.
- Ensure consistent log ingestion and rule coverage.
Required Skills and Qualifications
- Hands-on experience with Microsoft Sentinel, Defender for Endpoint, and other XDR platforms.
- Strong proficiency in KQL for threat hunting and detection tuning.
- Solid understanding of the MITRE ATT&CK framework and common threat actor behaviours.
- Preferred - Microsoft Certified: Security Operations Analyst Associate (SC-200)
- Preferred - CompTIA Security+, CySA+
Required Experience
- Minimum of 2 years of experience in a SOC environment.
- Experience working in an MSSP/MSP setting supporting multiple clients.
Required Soft Skills
- Strong communicator and collaborator.
- Comfortable working in fast-paced, dynamic environments.
- Desire to learn and grow in the cybersecurity field.
SOC Analyst in London employer: MTI
MTI is an exceptional employer, offering a dynamic work culture that fosters collaboration and innovation in the field of cybersecurity. With access to extensive technical resources as part of the Ricoh family, employees benefit from continuous learning opportunities and the chance to work on diverse projects that make a real impact. Located in Staines, the hybrid working model promotes a healthy work-life balance, making MTI an attractive choice for those seeking meaningful and rewarding employment.
StudySmarter Expert Advice🤫
We think this is how you could land SOC Analyst in London
✨Tip Number 1
Network like a pro! Attend cybersecurity meetups, webinars, or local events. It's a great way to meet industry folks and get your name out there. Plus, you never know who might have a lead on that SOC Analyst role!
✨Tip Number 2
Show off your skills! Create a personal project or contribute to open-source initiatives related to cybersecurity. This not only boosts your portfolio but also demonstrates your passion and expertise in the field.
✨Tip Number 3
Prepare for interviews by brushing up on common SOC scenarios and tools like Microsoft Sentinel and Defender. Practise articulating your thought process during incident response – it’s all about showing how you think on your feet!
✨Tip Number 4
Don’t forget to apply through our website! We’re always on the lookout for talented SOC Analysts. Keep an eye on our careers page for openings and make sure your application stands out!
We think you need these skills to ace SOC Analyst in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the SOC Analyst role. Highlight your experience with Microsoft Sentinel and Defender, and don’t forget to mention any MSSP/MSP experience you've got. We want to see how your skills match up with what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how your background makes you a great fit for our team. Keep it concise but engaging – we love a good story!
Show Off Your Skills:When filling out your application, be sure to showcase your analytical skills and attention to detail. Mention specific tools and techniques you’ve used in past roles, especially around threat detection and incident response. We’re keen to see what you can bring to the table!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us you’re serious about joining our awesome team at MTI!
How to prepare for a job interview at MTI
✨Know Your Tools Inside Out
Make sure you’re familiar with Microsoft Sentinel, Defender for Endpoint, and any other XDR platforms mentioned in the job description. Brush up on your KQL skills too, as you'll likely be asked to demonstrate your ability to analyse logs and tune detection rules.
✨Understand the MITRE ATT&CK Framework
Since a solid understanding of common threat actor behaviours is crucial, take some time to study the MITRE ATT&CK framework. Be prepared to discuss how you’ve applied this knowledge in past roles or how you would use it in the SOC Analyst position.
✨Show Off Your Communication Skills
As a SOC Analyst, you’ll need to collaborate with various teams. Practice articulating your thoughts clearly and concisely. Think of examples where you’ve effectively communicated complex technical information to non-technical stakeholders.
✨Prepare for Scenario-Based Questions
Expect to face scenario-based questions that test your analytical skills and decision-making process. Prepare by thinking through potential cybersecurity incidents and how you would triage, investigate, and respond to them. This will show your practical understanding of the role.
