BlueVoyant is hiring a
UK SOC Security Analyst in United Kingdom

Summary

BlueVoyant is seeking a UK SOC Security Analyst I to help manage IT security for global customers. The role involves working in a fast-paced team, reducing the impact of security incidents, and ensuring business continuity. The position requires excellent teamwork skills, knowledge of intrusion detection/prevention systems and SIEM software, strong network protocol and system knowledge, and the ability to handle high-pressure situations.

Requirements

• Excellent teamwork skills
• Knowledge of and experience with intrusion detection/prevention systems and SIEM software
• Strong knowledge and understanding of network protocols and devices
• Strong experience with Mac OS, Windows, and Unix systems
• Ability to analyze event logs and recognize signs of cyber intrusions/attacks
• Ability to handle high pressure situations in a productive and professional manner
• Ability to work directly with customers to understand requirements for and feedback on security services
• Strong written and verbal communication skills and the ability to present complex technical topics in clear and easy-to-understand language
• Strong teamwork and interpersonal skills, including the ability to work effectively with a globally distributed team
• Able and willing to work in a 24/7/365 environment, including nights and weekends, on a rotating shift schedule
• Ability to provide tuning recommendations for security tools to tool administrators

Responsibilities

• Monitor and analyze security events and alerts from multiple sources
• Separate true threats from false positives using network and log analysis
• Initiate tickets, document, and escalate to higher-level security analysts
• Serve as the technical escalation point and mentor for lower-level analysts
• Regularly communicate with customer IT teams to inform them of issues, help them remediate, and ensure business continuity
• Perform triage of incoming issues (assess the priority, determine risk)
• Work with customers to deploy hardware and software monitoring systems

Preferred Qualifications

• Familiarity with tools such as Wireshark, TCP Dump, Security Onion, and Splunk
• Knowledge of the following: SIEM, Packet Analysis, SSL Decryption, Malware Detection, HIDS/NIDS, Network Monitoring Tools, Case Management System, Knowledge Base, Web Security Gateway, Email Security, Data Loss Prevention, Anti-Virus
• Experience in network/host vulnerability analysis, intrusion analysis, digital forensics, penetration testing, or related areas
• 2-3 years of hands-on SOC/TOC/NOC experience
• GCIA required. GCIH, GCFE, CISSP, Security +, Network +, CEH, RHCA, RHCE, MCSA, MCP, or MCSE preferred
• Familiarity with tools such as IDA Pro, PEiD, PEview, Procmon, Snort, Bro, Kali Linux, Metasploit, NMAP, and Nessus
• Familiarity with GPO, Landesk, or other IT Infrastructure tools
• Understanding of programming/scripting languages and ability to run basic database queries
• Experience with ServiceNow

Benefits

Work in a globally distributed team