Security Operations Analyst (Tier 1)
Advanced | Operations (Managed Services) | Slough, England
The purpose of this role is monitor and investigate the SIEM security events, respond, triage and contain customer security incidents. The analyst will be responsible for the incident handling life cycle from initial response, analysis, triage, and coordination of remediation activity to closure, which includes any necessary reporting and advice to appropriate customer teams. The analyst will work on a 24 x 7 SOC shift rota (days and nights) and operate within all applicable policies, laws, and regulations.
o 24 x 7 protective security monitoring
o Security Incident & Event Management (SIEM) support
o Incident response, triage, and containment
o Endpoint security management
o Security tools support
o Change management
Desired Core Technical Skills/Knowledge:
o CompTIA Security + Certified or Equivalent
o CompTIA Network + Certified or Equivalent
o Hands on experience with SIEM technologies
o Anti-virus / anti-malware systems (McAfee EPO, Ivanti, Symantec) experience
o Forcepoint web filtering, DLP, email security experience
o Experience of Microsoft technologies – Windows Server and Workstation OS (Server 2012/16, Windows 10 etc), Active Directory, Office 365
o Knowledge of OSI reference model and networking fundamentals
o Cisco Firewall & Firepower (or SourceFire) IPS
o Knowledge of ITIL (foundation level)
o Linux/Unix Skills
o Experience working within complex global hybrid environments.
o Proven experience in security incident handling, response and remediation
o Possess functional knowledge and administrative experience on Windows and Unix/Linux Platforms
o Understanding of ITIL - incident management, change management, and problem management processes.
o Wider Cyber Security exposure, technical and non-technical
o Understanding of malware / anti-malware techniques, exploits, attack vectors and defensive / preventative measures
o Knowledge of how firewalls, web and email gateways and IDS/IPS operate
o Ability to understand and correlate information and events across multiple log types and sources
o Experience analysing computer and network threats, anomalies or APT activity
o Experience analysing and containing phishing email attacks
o An understanding of TCP/IP and networking technologies, packet analysis, routers etc
o Previous security operations centre (SOC) experience is desired, but candidates from other IT backgrounds, with a passion for cyber security will also be considered
Reimagine your Future by Joining the Advanced Team
We hire for potential, and develop at pace.
Advanced are a different sort of employer. Recruiting people with potential, our focus is on what you might be capable of achieving. We look for aspiration and passionately believe that your individual personality and core strengths are what can make you right for us. We want you to learn, to discover, to experiment, to make a difference.
With a £250m turnover, 16,000
customers and 2,200 employees we pride ourselves on delivering focused software
solutions for the public sector, enterprise commercial and health & care
organisations that simplify complex business challenges and deliver immediate
Some of our Key Benefits from day one are:
- Generous Annual Leave - 25 days annual leave plus localised public holidays, with the ability to buy additional days
- Generous commission scheme – able to earn bonuses up to 100% of your base salary
- Stunning office locations across 5 key hubs
- Charity Fundraising - Proud to be a Patron of The Prince's Trust
- Dedicated talent development team to help your Advanced career progress
- Top Achievers Club – our internal award scheme recognising excellence in our Advanced colleagues
- Pension Scheme (up to 5% matched contribution)
- Life insurance - 4 times salary
- Income protection insurance
- Childcare voucher (salary sacrifice)
- Cycle to work scheme (salary sacrifice)
- Employee assistance programme
Why should you apply? Advanced are different – we hire for potential and develop at pace so if you can reimagine your future in a vibrant, growing company we would like to hear from you. We are an equal opportunity employer, committed to removing bias from the hiring process.
If your application is successful, you will initially be required to take an online assessment, undertake a telephone interview with the HR team and attend a final interview. Do not hesitate, apply now and a member of our in-house talent acquisition team will be in touch!