T1 SOC Analyst

T1 SOC Analyst

JOB TITLE: T1 SOC Analyst
DEPARTMENT: Maintel Operations
FUNCTION: Customer Services
LOCATION: Burnley

Job Purpose Statement

  • The mission of the SOC is to provide proactive in life support for security products and services approved in the Maintel portfolio, in so delivering top class managed security services which adhere to all relevant legislative statutory, regulatory, contractual requirements associated with those services.
  • The T1 SOC analyst is required to work as part of a team to reduce cyber-threat exposure to Maintel and our customers through the use of technology and intelligence to perform analysis and correlation determine if events constitute security incidents.
  • The T1 SOC analyst will also perform basic administration and maintenance tasks associated with security products.

Job Accountabilities

  • As an member of the SOC Team
  • Perform daily expert review of customer logs 
  • Provide technical support for multiple customers by analysing and reviewing logs or functional events within our customers’ network systems and reporting on any abnormalities to security or operational customer contacts
  • Escalate high priority technical or security related issues by communicating your analysis to our customers in a timely fashion in accordance with customer specifications
  • Maintain a level of expert knowledge, skills and manufacturer accreditation in line with business and supplier requirements.
  • Update all relevant documentation to reflect all Services and all Changes.
  • Propose and, if duly authorised through Change Control, implement necessary upgrades before service or security is adversely affected.
  • Achieve service KPI’s & SLA’s
  • Complete all tasks to a high standard of quality.
  • Be focused and responsive towards the customers’ needs.
  • Ensure that all working practises adhere to and comply with the ISO27001, PCI and cyber essentials procedures and requirements.
  • Professional, polite, and accurate communication with customers and co-workers.
  • Follow all Health and Safety and working guidelines as updated from time to time ensuring safe working environment at all times.

Key Challenges

  • Working in a thorough and diligent manner while ensuring we achieve objectives in tight deadlines to ensure these deadlines are met without a loss of quality.

Working relationships

SOC

  • The T1 SOC analyst will work collaborate with T2 SOC analysts to ensure the SOC is an effective cohesive team

NOC

  • The T1 SOC analyst will collaborate with the NOC for incidents and other matters requiring specialised skills from this area.
  • The T1 SOC analyst will assist the members of the NOC with any security related matters.

Infrastructure Support Services team

  • The T1 SOC analyst will collaborate with the NOC for incidents and other work requiring specialised skills from this area.
  • The T1 SOC analyst will assist the members of the NOC with any security related matters.

Professional services

  • The T1 SOC analyst will collaborate with the IIS Team in where required for any products hosted in the ICON core.

Maintel security officer

  • The T1 SOC analyst will develop a good working relationship with the Maintel Security Officer to ensure practices are aligned to any compliance requirements and ensure a wider awareness of security matters.

Service Delivery Managers

  • The T1 SOC analyst will assist the SDM’s with any security enquiries and custom report requirements
  • Specific Job Knowledge, Skills and Experience (those considered essential for all aspects of the job to be carried out thoroughly well together with an indication of other desirable factors if appropriate)

Qualifications

  • Bachelor’s degree in Computer Science, Computer Engineering, Network Security, Information Security, Information Technology or equivalent work experience.  1-3 years of work experience in the field.
  • Key Manufacturer / industry accreditations
  • At least one security certification such as SANS, EC-Council, or ISC2

Skills and Aptitudes

  • Be able to demonstrate an analytical and systematic approach to problem solving
  • Is able to communicate fluently both orally and in writing and can present complex technical information.
  • Is able to absorb rapidly new technical information and apply it effectively.
  • Maintains awareness of developing technologies and security threats.
  • Detail oriented individuals that Is eager to learn, dynamic, self-motivated, committed, flexible and service-minded team player who is able to work independently or as part of a team
  • Has the ability to manage time effectively, prioritise and delegate effectively
  • Demonstrate a basic command of Linux systems administration and working with BASH
  • Strong time management skills with the ability to multitask
  • Ability to work a flexible schedule including weekends and evenings, and on call rota

Job knowledge

  • Basic understanding the 6 phases of Incident Handling (Preparation, Identification, Containment, Mitigation, Remediation and Lessons Learned)
  • Basic knowledge of threat vectors against the Windows or Linux platform
  • Basic understanding of Security Information & Event Management (SIEM) concepts and Functionality
  • Basic understanding of the Top 20 Critical Security Controls for Effective Cyber Defence
  • Basic understanding of logging / auditing capabilities
  • Basic understanding of networking including TCP/IP 

Experience

  • Operations Experience (SOC Operations an advantage)
  • Basic experience with vulnerability scanning and reconnaissance methods
  • Basic hands on experience working with Windows infrastructure
  • Basic hands on experience configuring network, firewall and computer system logging
  • Basic experience in one of Linux, Windows or Database administration
  • Basic experience with ticketing systems, to include understanding work flow, ticket routing and resolution documentation
  • Has attended recognised training courses for the products supported
  • Experience using Microsoft Word, Excel, PowerPoint
  • Basic experience with firewalls Checkpoint, Cisco, Fortigate, Palo Alto(beneficial)

Apply

Send your CV to Careers@Maintel.co.uk.