Cyber Operations Lead ensuring coordination of cyber operations between the Security Operations Center and internal business units. Enhancing security through effective incident response and threat management initiatives.
AO
Hybrid Senior SecOps Analyst
Posted last month
About the role
- Security Operations Analyst responsible for developing security processes and incident response. Collaborating with multiple teams for security best practices in a hybrid work environment.
Responsibilities
- Event and Alarm Triage & analysis, specifically handling escalated events.
- Leading or supporting Security Incidents end to end, as part of incident response activities.
- Handling escalated vulnerability, misconfiguration or threat hunting events.
- Being responsible for the technical implementation of configuration or development of tools, alarms, and runbooks.
- Assisting platform engineering with security best practices, responsible for liaising with appropriate teams and consulting.
- Assisting software engineering with secure by design, responsible for liaising with appropriate teams and consulting.
- Assisting payments with 3rd party compliance, responsible for liaising with appropriate teams and consulting.
- Audit and reporting, responsible for developing and producing reports and metrics.
- Oversight of the maintenance of coverage, data freshness, and noise reduction.
- Organising and running tabletop, readiness, and war game exercises.
- Some 3rd party management
Requirements
- Proven experience of working in a Security Operations Centre (as a Senior SOC Analyst or an experienced Junior).
- Strong knowledge of the information security threat landscape, tactics, techniques, attack vectors associated with security threats.
- Strong knowledge of Incident response planning and playbook design
- Strong knowledge of threat detection rule design/tuning
- Good technical knowledge of best practice security for networks, systems, web applications, APIs and databases.
- Good knowledge and hands-on experience with common security tools such as SIEM, endpoint protection, scanners, proxies, WAF, IDS/IPS.
- Some technical knowledge of AWS and GCP administration, security tooling, cloud security operations and incident response.
- Some knowledge of security standards and frameworks (e.g. ISO27001, PCI DSS, MITRE ATT@CK, NIST CSF).
- Some Systems forensics and investigation skills (MACOS and Windows).
Benefits
- Flexible working arrangements
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Solution Sales Manager enhancing revenue in financial services, focusing on ServiceNow IRM and Tanium solutions. Collaborating with teams and engaging C - level executives in Austria and Switzerland.
Senior Internal SOC Analyst leading security triage and investigations for Darktrace, utilizing AI - driven cybersecurity technology. Collaborating on incident response and mentorship within a hybrid work environment.
Security Operations Intern responsible for security monitoring at Paddy Power Betfair. Involves data loss prevention investigations and content filtering analysis with a commitment to improving security posture.
SOC Analyst L2 responsible for managing and analyzing security incidents in digital transformation. Contributing directly to the protection of companies and infrastructures.
SOC Analyst L3 managing and analyzing security events and incidents for Var Group. Responsible for incident management and proactive threat analysis.
Senior Manager leading global IT security operations to protect company data and assets at Keenova. Overseeing incident response, monitoring, and cybersecurity capabilities with strategic oversight.
Security Operations Center leader at Woven by Toyota, managing triage and response to security alerts in Japan. Collaborating with global SOCs to ensure 24/7 operations.
GSOC Analyst responsible for security operations at Paramount Studios. Developing workflows, incident response, and risk monitoring in a dynamic team environment.
Senior Cybersecurity Analyst enhancing detection and response capabilities at Insulet, focusing on threat detection and incident response.