Tier 2 SOC Analyst

🔒 Confidential Employer
Posted 16 February 2025
LOCATION
London
TYPE
Full-time
LEVEL
Mid-Senior level
CATEGORY
Cyber Security
This employer holds a UK Home Office sponsor license — sponsorship for this specific role is at the employer’s discretion

SKILLS

Tier 2 case resolution Incident handling SIEM administration Threat intelligence Incident response procedures Security monitoring tools Malware analysis Service Level Agreements Mentoring

FULL DESCRIPTION

Tier 2 SOC Analyst

Apply Now

UK

Job Type

Full Time

Workspace

London

About the Role

The Security Operations team exists to protect the client by proactively detecting and responding to cyber security threats. Working as a member of a growing team, you will provide defence against cyber-attacks and play a vital role in the monitoring, analysis and management of security events / incidents emanating from client networks and systems. This is a hands-on operational role where you will be deeply involved in day-to-day incidents using your broad experience to combat threats and resolve incidents in a timely manner. This role requires willingness to work shifts (including unsociable hours and bank holidays where these fall into your shift pattern) as part of a 24x7 team.

Principal Duties and Responsibilities

  • Responsible for providing Tier 2 case resolution, resolving complex security cases including generating initial reporting, providing follow-ups and requesting information and resolution activity.
  • Day to day incident tirage and escalation using contextual and threat intelligence
  • Responsible for providing security expertise to escalated incidents
  • Act as the incident handler for P1/P2 incidents
  • Provide and support In-depth SIEM and Incident notification toolset administration and configuration
  • Fully utilize threat intelligence capabilities for proactive threat hunting
  • Responsible for providing communication directly with customers regarding security incidents and other related topics.
  • Aid in the development of incident response procedures and playbooks
  • Contribute to the design and development of defence and response strategies, knowledge base and playbooks.
  • Monitoring SIEM alerts effectively to minimize downtime and restore services.
  • Ensure investigation steps are clearly documented and accurately escalated when needed.
  • Responsible for producing and maintaining documentation relevant to both the SOC and position.
  • Responsible for updating and offering continual improvement to the knowledge base.
  • Support the SOC team research global security events, issues and trends to produce security advisories for customers based on findings.
  • Responsible for managing and configuring security monitoring tools.
  • Investigating intrusion attempts and performing in-depth exploit analysis.
  • Provide analytical feedback on client network traffic patterns.
  • Provide analytical feedback related to malware and other network threats.
  • Accept, manage and update service requests and incidents to ensure contracted Service Level Agreements are met.
  • Guiding, coaching and mentoring analysts who are providing the core SOC functions, including but not limited to, alert triage, incident escalation, content creation etc.

Generic Duties and Responsibilities

To continuously develop both technical and personal skills required

Sign up free — access 45,000+ UK sponsor-licensed jobs