Key Requirements (must have)Practical working knowledge of a SOC Environment:Log AnalysisThreat huntingIOC DeploymentMitre Attack FrameworkPractical working knowledge of Microsoft Security Technologies:Microsoft SentinelMicrosoft Defender SkillsUnderstanding of Active Directory, Anti-Virus, Firewalls, Web Application Firewalls, Intrusion Protection Systems, SIEM technologies, Office 365 and Azure.Understanding of Cyber Security Operations including developing and implementing procedures, playbooks, and operational improvements.Understanding of Cyber Security frameworks, standards, tools, techniques, and methods.Understanding of analysis and completion of threat & risk related assessments.Understanding of OWASP Top 10 as well as Secure Application Development methods.Understanding of Policies, Standards, Procedures, Runbooks, Assessments, Reviews, Incidents and Reports.Understanding of cloud computing systems and services.Understanding of Microsoft operating systems, technologies, and cloud services.Optional - user access reviewsMicrosoft certification highly regarded any Security Operations related certifications as well. DutiesDaily monitoring, investigation, and response to events & alerts from our Cyber Security ToolsetsOperating and maintaining anti-malware solutions.Operating and maintaining vulnerability management solution.
Ensuring frequent vulnerabilities scanning is being completed across all assets.
Working with teams to address vulnerabilities.Detecting and responding to Cyber Security incidents.Completing regular access controls reviews.Security Awareness for the Group.Monitoring and resolving Cyber Security Service tickets.Assisting with operational, enhancement and project activities as and when required.Staying up to date with new and emerging Cyber Security threats.Automating processes, alerts, and monitoring.Detecting breaches of Group Frameworks, Policies and Standards.Conducting Cyber Security testing and assessment on new and existing systems across the Group, including penetration testing.Evangelising Cyber Security practices across Group Technology Operations and the Cyber Security discipline.Ensuring appropriate Cyber Security policies, playbooks and standards are followed & implemented to ensure adherence to organisations Cyber Security objectives.Further developing your Cyber Security skills and knowledge.