Lead SOC Analyst - Glasgow, 12mths, 653 pd Inside- security cleared
Posted 3 days ago by SmartSourcing Ltd
Negotiable
Inside
Undetermined
Glasgow, Scotland, UK
Summary: The Cyber Security Lead SOC Analyst role involves working in a security cleared environment, specifically requiring DV or SC Security Clearance. The position is based in Glasgow and requires participation in a 24/7 shift pattern, including weekends and bank holidays. The analyst will be responsible for monitoring security tools, incident triage, initial incident response, and managing junior team members.
Key Responsibilities:
- Continuous Monitoring: Monitor security tools, including SIEM systems, to detect suspicious activity.
- Incident Triage: Analyze alerts and logs to determine if an event is a genuine security incident or a false positive.
- Initial Incident Response: Perform initial containment actions for confirmed incidents and escalate as necessary.
- Reporting and Documentation: Create detailed tickets and reports for all detected incidents.
- Managing: Provide direction and support to junior members of the shift and handover to the next shift leader.
- Tool Management: Assist in the maintenance and optimization of security tools.
Key Skills:
- Experience of SPLUNK within a Security Operations Centre (SOC).
- A bachelor's degree in computer science, Cyber Security, or relevant experience.
- Foundational understanding of networking concepts (TCP/IP, DNS, etc.) and operating systems (Windows, Linux).
- Knowledge of common cyber-attack techniques.
- Certifications like CompTIA Security+, Cybersecurity Analyst (CySA+), or similar are a significant bonus.
Salary (Rate): £653 per day
City: Glasgow
Country: UK
Working Arrangements: undetermined
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT
Cyber Security Lead SOC Analyst, Splunk, Security Cleared, required by our government services client at their Glasgow base.
Paying 653 per day - Umbrella Company
Working in an DV (Developed Vetting) Security cleared environment. You will hold a current DV or SC Security Clearance, or be eligible to undertake.
The role requires working as part of a 24/7 shift pattern. This pattern will include weekends and bank holidays.
To start in the New Year
Skills and Experience Required:
Experience of SPLUNK with in a Security Operations Centre (SOC).
A bachelor's degree in computer science, Cyber Security or relevant experience
You should have a foundational understanding of networking concepts (TCP/IP, DNS, etc.), operating systems (Windows, Linux), and common cyber-attack techniques.
Certifications like CompTIA Security+, Cybersecurity Analyst (CySA+), or a similar certification are a significant bonus to the role
Key Responsibilities
Continuous Monitoring
You will monitor security tools, including Security Information and Event Management (SIEM) systems, to detect suspicious activity. You will be the first to see potential threats and will need to be efficient and professional response against defined processes.
Incident Triage
You will analyse alerts and logs to determine if an event is a genuine security incident or a false positive. You will need to be methodical and follow established procedures to classify and prioritize incidents.
Initial Incident Response
For confirmed incidents, youll perform initial containment actions, such as isolating affected systems, and escalate the incident to a Level 2 or 3 analyst for deeper investigation.
Reporting and Documentation
You'll create detailed tickets and reports for all detected incidents, documenting your findings and the steps you took. This is crucial for tracking incidents and for future analysis.
Managing
You'll provide direction and support to the junior member of the shift and provide handover to the next shift leader.
Tool Management
You will assist in the maintenance and optimization of security tools, ensuring they are working correctly and effectively.
Please apply on line in the first instance
SmartSourcing are a Disability Confident Employer and we promote, celebrate and value diversity, we are committed to promoting equality and inclusion for all.