Level 3 SOC Analyst

Posted 2 Days Ago
Be an Early Applicant
GBR
Senior level
Information Technology • Consulting
The Role
As a Level 3 SOC Analyst, you will manage security incidents, perform business impact analyses, and lead a team of L1 and L2 analysts. Your role includes overseeing daily tasks, supporting major incident responses, and improving SOC operations through advanced event analysis and configuration of SIEM platforms.
Summary Generated by Built In

Home based role

Job title:

Level 3 SOC Analyst

Job Description:

Help strengthen our team as our Senior SOC Analyst to work on an exciting Cyber Transformation Project. Home based role.

A great opportunity to join our team as our Senior SOC Analyst to be responsible for handing security incidents received/escalated from the SOC Analyst (Tier 1 or Tier 2) and perform a business impact analysis on the security incident. As well as working on our Cyber Transformation Project.

We are looking for a strong technical background, possibly IT Engineering or Systems Administration (cloud and on-premises), coupled with security experience to bring a multi-faceted set of skills to Capita’s Cyber Security toolsets.

An excellent working knowledge of MS Sentinel is a must from both an operational analyst’s perspective and a technologist, whose responsibilities include build, deploy, run and improvement.

Your expertise and experience will have been developed from core IT skills such as Networking, Compute, Database, Scripting languages and Cloud technology. The role sits across the full end to end process of building, delivering and running Cyber Security Services that leverage Microsoft Security products in addition to market leading security vendors, thus adaptability and enthusiasm to adopt new challenges and technologies on your own initiative is essential.

You will also support the initial implementation of new security related Microsoft technologies, including Microsoft Sentinel, MDE, MDI and Defender for Cloud. As well as undertaking some devops tasks.

What You’ll Be Doing:

  • Oversee completion of day-to-day checklist(s), including log review, management report scheduling & running, alert analysis, and escalation follow up.
  • Perform advanced event and incident analysis, including baseline establishment and trend analysis.
  • Manage a number of analysts as part of a virtual team of L1 and L2 analysts, including objectives setting, performance management / reviews, training & development, and BAU activities including shift cover etc
  • Support on-call arrangements as part of a Rota, to support L1 Analysts working out of hours.
  • Support Major Incident Response activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat.
  • Identify opportunities for SOC and client SIEM platform configuration improvements, use case development, monitoring rule creation, tuning & optimization.
  • Assist in architectural design to facilitate the onboarding of new information systems, including the assessment, parsing, onboarding of log sources, and use case and rule development.

What we’re looking for:

  • Experience in managing Microsoft Sentinel as an MSSP, including Lighthouse, and management and multi-customer environments using DevOps
  • Level 3 SOC Analyst / Senior Cyber Security and/or security operations experience
  • Experience with SIEM platforms, including IBM QRadar, Microsoft Sentinel and LogRhythm
  • In-depth experience with Microsoft Sentinel, including use case and rule development, workbook / playbook creation, KQL & Logic Apps / SOAR
  • Experience of onboarding, tuning, reporting, and configuring SIEM solutions
  • Experience of threat intelligence
  • Leadership and mentoring experience and skills
  • Understanding of low-level concepts including operating systems and networking
  • Commercial experience in Penetration Testing and / or Security Monitoring
  • Understanding of networking and infrastructure design
  • Knowledge/experience of one or more System administration (Linux, Windows, Mac)
  • Cyber security degree or equivalent experience
  • Always remaining updated on new threats and developing security standards
  • Excellent interpersonal skills with the ability to explain technical problems to non-technical business stakeholders at all levels.
  • Strong written and oral communication skills
  • Active or ability to obtain SC clearance

Preferred Qualification:

  • SANS Certification
  • Experience with NIST assurance/EDR
  • IT Certifications, including Network+, Security+, AZ-500
  • Protective Monitoring / SOC Certifications, including CySA+
  • Cyber Security Certifications, including CISMP, CISSP
  • Experience with various Microsoft Technologies, including Microsoft Defender for Endpoint, Identity and Cloud

About Capita Technology and Software Solutions (TSS) and CISO
Capita Technology and Software Solutions (TSS) is a newly formed global shared service, responsible for delivering innovation and digital transformation for Capita’s businesses and clients. We work collaboratively with Capita’s divisions to shape the right digital technology solutions to help clients work differently, engage differently, sell differently and to be resilient to whatever next comes their way.

Within Policy, Governance and CISO our key capabilities are to define, implement and maintain pan-Capita Cyber, Information Security and IT Policies. Defining and implementing security strategy and providing appropriate governance, assurance, asset management, risk management, privacy and health safety, to maintain compliance requirements for TSS and the wider group.

What’s in it for you?

  • Opportunity to progress your career.
  • 23 days’ holiday (rising to 27 days with length of service) with the opportunity to buy extra leave.
  • The opportunity to take a paid day out of the office, volunteering for our charity partners or a cause of your choice.
  • Access to our Employee Network Groups, which represent every strand of diversity and allow colleagues to connect and learn from each other on an open, inclusive platform.
  • Company matched pension, a cycle2work scheme, 15 weeks’ fully paid maternity, adoption, and shared parental leave and plenty more.

You’ll get the chance to follow your chosen career path anywhere in Capita. You’ll be joining a network of experienced, innovative, and dedicated individuals across multiple disciplines and sectors. There are countless opportunities to learn new skills and develop in your career, and we’ll provide the support you need to do just that.

What we hope you’ll do next:

Choose ‘Apply now’ to fill out our short application, so that we can find out more about you.

To view our Covid-19 and process adjustments information, please visit the Capita Careers site.

We’re an equal opportunity employer, which means we’ll consider all suitably qualified applicants regardless of gender identity or expression, ethnic origin, nationality, religion or beliefs, age, sexual orientation, disability status or any other protected characteristic.

Location:

Home-Based - GBR

,

United Kingdom

Time Type:

Full time

Contract Type:

Permanent

Top Skills

DevOps
Kql
Microsoft Sentinel
The Company
London
24,265 Employees
On-site Workplace
Year Founded: 1984

What We Do

Capita is a leading provider of business process services, driven by data, technology and people. We are a purpose-led, responsible organisation¬. Every day our 50,000 colleagues help millions of people, by delivering innovative, digitally enabled solutions to transform and simplify the connections between government and citizens, businesses and customers. We partner with our clients and provide the insight and technologies that give time back, allowing them to focus on what they do best and making people’s lives easier and simpler. We operate across three divisions – Capita Public Service, Capita Experience and Capita Portfolio – in the UK, Europe, India and South Africa. Capita is quoted on the London Stock Exchange (CPI.L). Further information can be found at: http://www.capita.com

Jobs at Similar Companies

CrowdStrike Logo CrowdStrike

Enterprise Change Manager (Remote)

Cloud • Information Technology • Sales • Security • Cybersecurity
Remote
United States
10000 Employees

UL Solutions Logo UL Solutions

Field Evaluations Engineer - New York Tri-State Area

Automotive • Professional Services • Software • Consulting • Energy • Chemical • Renewable Energy
Remote
Hybrid
Philadelphia, PA, USA
15000 Employees

HRL Laboratories Logo HRL Laboratories

Electrical Systems Engineer

Computer Vision • Hardware • Machine Learning • Software • Semiconductor
Hybrid
Calabasas, CA, USA
850 Employees

NBCUniversal Logo NBCUniversal

Project Manager, Studio Production Tech

AdTech • Cloud • Digital Media • Information Technology • News + Entertainment • App development
Los Angeles, CA, USA
68000 Employees

Similar Companies Hiring

Celonis Thumbnail
Software • Productivity • Database • Consulting • Business Intelligence • Big Data • Analytics
New York, NY
3000 Employees
SAP LeanIX Thumbnail
Software • Sales • Information Technology • Cloud
Amsterdam, NL
700 Employees
Motorola Solutions Thumbnail
Software • Security • Information Technology • Hardware • Cybersecurity • Big Data Analytics • Artificial Intelligence
Chicago, IL
21000 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account