Job Description
This role is for someone who has a passion for technical analysis, and likes to work alongside a high performing team. It's not a traditional Tier 1 SOC position whereby you escalate a incident and never hear of it again, you will be a part of the investigation through to remediation
Responsibilities
- 24/7 shift pattern - 3 Shift Patterns - 07:00-18:00, 12:00-23:00, 22:00-08:00
- We're a MS house and expect you to be able to triage through Microsoft Sentinel.
- Proactive threat hunting, utilizing KQL.
- Risk remediation and mitigation through technical controls within the Microsoft Security Stack.
- Proactive security assessments - Phishing campaigns, vulnerability assessments etc..
Experience
- Circa 1 year experience in a MSSP SOC using MS tooling
- Broad knowledge and experience in IT Security
- Demonstrable experience in Event and Incident management
- Microsoft 365 & Azure Security management experience
- Ability to analyse data, and excellent problem-solving skills
- Vulnerability Assessment experience
- Experience of deploying, managing, and supporting of endpoint security platforms
- Ability to standardize processes for efficiency and productivity, leveraging automation where applicable/possible
- KQL Experience
Desirable
- MS related certification: SC200, SC900 etc.
- Knowledge of Penetration testing tools and techniques
- Network and firewall alert management, support and deployment of Active Directory and group policy management experience
- Information security & GDPR awareness
- PowerShell scripting
- Penetration testing experience
Extras:
Fully Remote
£30k Base + £5k Shift Allowance