Description:
Locke & McCloud are looking for an experienced L2 SOC Analyst to join our client, a leading cybersecurity firm dedicated to protecting their clients’ digital assets and ensuring their safety in an ever-evolving threat landscape. They pride themselves on their innovative solutions and talented team of professionals who work tirelessly to safeguard client data.
Main Responsibilities:
- security alerts and investigate potential security incidents, identifying and escalating threats as necessary.
- in-depth analysis of security events and incidents to determine the root cause and extent of the breach.
- timely and accurate reports on security incidents, including findings, recommendations, and remediation actions.
- with other SOC analysts and stakeholders to develop and implement proactive security measures and threat detection strategies.
- in incident response activities, including containment, eradication, and recovery efforts.
- in the development and maintenance of security policies, procedures, and documentation.
- up to date with the latest cybersecurity trends, threats, and technologies to continuously enhance our security posture.
- guidance and mentorship to junior SOC analysts, assisting in their skill development and knowledge enhancement.
Requirements:
- degree in Computer Science, Information Security, or a related field.
- years Proven experience working in a Security Operations Centre (SOC) environment, preferably in a Level 2 role.
- understanding of cybersecurity principles, best practices, and technologies.
- with SIEM platforms, intrusion detection/prevention systems, and other security tools.
- in analysing and interpreting security event logs, network traffic, and other relevant data sources.
- analytical and problem-solving skills, with the ability to think critically and respond effectively to security incidents.
- communication skills, with the ability to articulate technical concepts to both technical and non-technical audiences.
- certifications such as CompTIA Security+, GIAC Certified Incident Handler (GCIH), or Certified Information Systems Security Professional (CISSP) are desirable but not essential.