L2 & L3 SOC/Cyber Security Engineer - Threat Hunter/SIEM Sentinel

Posted 19 hours 18 minutes ago by InfraView - Specialist Cloud & IT Infrastructure Technology Recruitmen

Permanent
Not Specified
Other
Buckinghamshire, Marlow, United Kingdom, SL7 1
Job Description

L2 & L3 SOC/Cyber Security Engineer - Threat Hunter/SIEM Sentinel - £45-65K + 25% Shift - Home/Office 2x per month

My client is one of the most recognisable names in IT and have some of the best people in the industry working for them.

They're top partners with all the top Vendors, which for you, means you get to work with the best technology, the best people, the best training, the best certification programmes and the best environment to grow!

Why?:

  • Work with some of the best cyber consultants in the country.
  • The Pathway to do whatever you want in cyber is continuous.
  • People first culture
  • The Latest, cutting-edge technology

You will join a 24/7 SOC team, involved in the highest level of Incident Response activities, proactive threat hunting and development of detection and use-case capabilities. You'll be working alongside the engineering team to help find tuning optimisation opportunities.

Candidates MUST have or be eligible to gain SC clearance upon hire.

Key Skills required:

  • 2+ years' experience working in a SOC environment - ideally MSSP.
  • Experience in a technical security role are also considered.
  • Experience with SIEM tools, such as MS Sentinel, Alien Vault or Splunk
  • A cyber security qualifications, certification or degree eg CySA+, CompTIA SEC+, or similar experience. Microsoft SC-200 Certs are desirable.
  • Excellent communication skills
  • A strong knowledge of sophisticated threat actor methodologies, along with experience in incident response and forensic investigations.
  • This business has a clear picture of where they want to be, have the right individuals steering the ship and exceptional tech talent leading the way.
  • Impressive customers, flexible working and a company who truly care.

Responsibilities:

  • Leading escalated Cyber Incident Management, including Major Incidents and 2nd/3rd line analysis for ongoing investigations.
  • Carrying out proactive threat hunts, RCAs, creation of detection capabilities
  • Monitor/hunt security alerts from security platforms (SIEM platforms, such as MS Sentinel, Alien Vault or Splunk
  • Act on Second Line security alerts, incidents, requests, and events to ensure that threats, vulnerabilities, and breaches are managed for successful resolution.
  • Document and manage cases to utilise information for customer reports, to provide insightful and intelligent recommendations.
  • Facilitate recovery, following the resolution of incidents
  • Provide subject matter expertise regarding exploits, threat actors, TTPs, etc
  • Maintain high quality across SLA's and KPI's

Please hit the button to Apply and/or email (see below) or call for further info.