Job description

Senior SOC Analyst/Incident Commander - Global Risk Management Leader - Competitive Salary + Package - Perm - Hybrid working with base of London (City) or other UK locations

Gerrard White are working with a global risk management and insurance broking organisation with a huge presence in the UK, who are currently looking for a Senior SOC Analyst to join their growing SOC Function.

This is an exciting time to join a market leading, highly acquisitional organisation in a role that will provide good quality, varied work within a complex IT environment. You will be working closely with stakeholders at all levels, engaging with like-minded individuals across the organisation.

Main Responsibilities:

As a Senior SOC Analyst, you will also hold the Incident Commander title, where you will be responsible for leading all regionally based security incidents. Actively partnering with a number of regional governance teams and supporting the incident response plan for major security incidents on a global scale.

We are looking for somebody who is very much proactive in their approach to detecting and containing cyber-related threats, providing an in-depth threat detection analysis in real-time and handling all incidents.

The successful Senior SOC Analyst/Incident Commander will -

• Act as escalation point for IT team members in the resolution of complex problems
• Act as a single point of contact for phone calls, emails and self-service tickets from internal staff on IT security issues, queries and requests
• Proactive system security maintenance and help prepare for major incidents
• Publish support documentation to assist IT colleagues in following defined IT processes
• Support the IT Operations and Engineering teams in delivering all aspects of support inclusive of priority one operational outages
• Drive major incidents to resolution and provide direct incident response
• Provide direction to an off-site security operations team, ensuring appropriate hours of coverage for global operations, inclusive of incident hand over
• Build management Information Reports and coordinate actions
• Ensure regular and clear updates are provided to the global security operational teams
• Investigate security events, both automated (e.g. system alerts) and manual (e.g. Service Desk tickets)
• Collaborate with system owners to identify remediation plans for security issues found and tracks to completion
• Assist in the coordination of regular security assessments including penetration tests and application vulnerability evaluation
• Work to strict change control governance

The successful Senior SOC Analyst/Incident Commander -

• Good knowledge of offensive and defensive Attack Methods, threat hunting, detection and monitoring technologies, MITRE attack framework and industry kill chains, attacker methods in complex, globally enabled programs
• Good application of network analysis technologies, and good Endpoint Detection & Response (EDR) skills
• Basic system, network and cloud forensic experience; Basic operating system security (Windows/ Linux)
• Ability to assess the situation, strategize, and make rapid informed decisions on appropriate courses of action
• Has flexibility and able to listen and act on expert feedback, modifying plans and actions dynamically
• Has been involved in major incident response scenarios as an active participant
• Knowledge of security and regulatory practices (e.g. ISO 27001, NIST, Cobit, GDPR)
• Strong written and verbal communications skills, able to present technical risks and issues to technical and non-technical audiences internal and external to the organisation
• Minimum 7 years of professional work experience in the cybersecurity industry, with exposure to senior management; Bachelor's degree/ technical degree or equivalent holder
• CISSP, CISA or GIAC certification preferred; CEH certification would be beneficial
• Knowledge and experience working with an ISMS
• A proven knowledge of security principles and best practices
• Good network and edge protection, firewalls, proxies and cloud brokering

What's on offer for the successful Senior SOC Analyst/Incident Commander -

Competitive base salary depending on experience, coupled with a good benefits package, bonus, and fantastic degree of flexible working. There may be some wider UK and international travel required at times, however, this will be infrequent.