Security Operations Center Analyst

SOC Analyst – Microsoft (Intermediate 5yr +) - 6 Months + 2 x 6 months extension

• Location Dublin 8
• Hybrid working model. 3 days in office (Dublin 8) /2 days working from home.

Role Requirements:

PFH’s Clients Cyber Security Unit are seeking to procure the services of a Microsoft Defender suite expert who will provide support alongside their cyber security team to lead out in a consistent manner helping Local Authorities manage their defender suite environment and related areas with regard to the following areas but not limited to:

Microsoft Defender Suite:

• Defender for Endpoint
• Defender for Office 365
• Defender for Cloud Apps
• Defender for Identity
• Mobile Threat Defence
• Microsoft Security Ecosystem
• Microsoft Intune and Endpoint Manager
• Microsoft 365 Defender portal
• Azure Active Directory (Azure AD)
• Microsoft Sentinel (SIEM)
• Security Operations & Threat Management:
• Incident detection, investigation, and response
• Familiarity with MITRE ATT & CK framework
• Threat hunting and analytics
• Security baselining and compliance monitoring
• Scripting & Automation:
• PowerShell scripting for automation and reporting
• Experience with APIs and automation tools

This resource will engage with Local Government sector entities and will define, produce and update associated technical documentation in terms of:

• Best practice guidance's
• Development of use cases
• Review Local Authority environments and recommend changes to deliver use cases •
• Assist with implementation of agreed use cases at LA level 13

Educational Requirements

It is a mandatory requirement, that all applicants hold the following qualifications or equivalents:

Active certification in Microsoft security and compliance solutions, such as AZ-500, SC-100, SC-200, SC-300, SC-401 and others.

A degree or higher in computer science or IT-related discipline. Note: Evidence (i.e. a copy of the relevant certification)

Key Deliverables

The following non-exhaustive list of key deliverables are applicable to this Role:

• Engage with Local Authorities to define and produce recommended best practice guidance
• Engage with individual Local Authorities to define and produce use cases
• Engage with individual Local Authorities and review their environment and recommend changes to deliver use cases
• Implement agreed use cases at Local Authorities level
• Supporting the Cyber Security unit/Local Authorities
• Provide knowledge transfer to Cyber Security Unit
• Participation at meetings

Key Experience/ Competencies/Skillset

The following Experience/Competencies/Skillsets are applicable to this Role-

1. Demonstrate experience with frameworks such as the Microsoft Cloud Adoption Framework (CAF) and the Well-Architected Framework (WAF), which are essential for developing best practice guidance.
2. Experience with the Microsoft Cybersecurity Reference Architecture (MCRA) for designing secure solutions
3. Demonstrated experience in developing use cases and implementing them in real-world environments, particularly with local authorities or similar organizations.
4. Strong portfolio of previous projects where they have reviewed environments, recommended changes, and successfully implemented those change

PFH Technology, owned by Ricoh – a Japanese based global ICT company, is a premier provider of end-to-end ICT solutions and a managed services portfolio scaling from SMEs to large Enterprise organisations. We have unrivalled vendor relationships. We can procure, design, deploy and support all your ICT needs. Our ISO certified Custodian™ Cloud Services and Custodian™ Managed Services provide the technology and expertise to mitigate risk and reduce your costs immediately. We have a nationwide network of over 750 dedicated professionals, ready to meet your ICT needs, with offices in Dublin, Cork and Galway.