Threat response Analyst

Role: Threat response Analyst

Location: London, UK (3 days onsite)

Types of employment: Contract Inside IR35

Note: Should eligible for Security Clearance.

• The SOC Threat Response Analyst role is part of the Client SOC team.
• Candidates in this role will be responsible for conducting incident response operations according to documented procedures and industry best practices.
• Candidates in this role must have excellent communication skills and be able to interact with executive levels throughout the company.
• Must have extensive experience in multiple security areas such as SIEM, IDS, APT, and WAF.
• Candidates will be required to participate in multiple intelligence communities and be able to disseminate pertinent information throughout the SOC team.
• Ideal candidates should have extensive experience in Linux and Windows operating systems as well as having a deep knowledge of networking and attack methods.
• Must display enthusiasm and interest in Information Security.

Technical Competencies

• Strong Analytical and Problem-Solving Skills
• Knowledge of network security zones, Firewall configurations, IDS policies
• Knowledge of systems communications from Layer 1 to 7
• Experience with Systems Administration, Middleware, and Application Administration
• Experience with Network and Network Security tools administration
• Knowledge of log formats and ability to aggregate and parse log data for syslog, http logs, DB logs for investigation purposes
• In-depth experience with log search tools such as Splunk, usage of regular expressions and natural language queries
• In-depth knowledge of packet capture and analysis
• Experience with Security Assessment tools (NMAP, Nessus, Metasploit, Netcat etc.)
• Experience with EDR tool to carry out incident detection and response.
• Ability to create a containment strategy and execute