Key Requirements (must have) Practical working knowledge of a SOC Environment:
- Log Analysis
- Threat hunting
- IOC Deployment
- Mitre Attack Framework
Practical working knowledge of Microsoft Security Technologies:
- Microsoft Sentinel
- Microsoft Defender
Skills - Understanding of Active Directory, Anti-Virus, Firewalls, Web Application Firewalls, Intrusion Protection Systems, SIEM technologies, Office 365 and Azure.
- Understanding of Cyber Security Operations including developing and implementing procedures, playbooks, and operational improvements.
- Understanding of Cyber Security frameworks, standards, tools, techniques, and methods.
- Understanding of analysis and completion of threat & risk related assessments.
- Understanding of OWASP Top 10 as well as Secure Application Development methods.
- Understanding of Policies, Standards, Procedures, Runbooks, Assessments, Reviews, Incidents and Reports.
- Understanding of cloud computing systems and services.
- Understanding of Microsoft operating systems, technologies, and cloud services.
- Optional - user access reviews
- Microsoft certification highly regarded any Security Operations related certifications as well.
Duties - Daily monitoring, investigation, and response to events & alerts from our Cyber Security Toolsets
- Operating and maintaining anti-malware solutions.
- Operating and maintaining vulnerability management solution. Ensuring frequent vulnerabilities scanning is being completed across all assets. Working with teams to address vulnerabilities.
- Detecting and responding to Cyber Security incidents.
- Completing regular access controls reviews.
- Security Awareness for the Group.
- Monitoring and resolving Cyber Security Service tickets.
- Assisting with operational, enhancement and project activities as and when required.
- Staying up to date with new and emerging Cyber Security threats.
- Automating processes, alerts, and monitoring.
- Detecting breaches of Group Frameworks, Policies and Standards.
- Conducting Cyber Security testing and assessment on new and existing systems across the Group, including penetration testing.
- Evangelising Cyber Security practices across Group Technology Operations and the Cyber Security discipline.
- Ensuring appropriate Cyber Security policies, playbooks and standards are followed & implemented to ensure adherence to organisations Cyber Security objectives.
- Further developing your Cyber Security skills and knowledge.
