SOC Analyst

Bluecube Technology Solutions - An Ekco Company


Date: 3 hours ago
City: Remote
Contract type: Full time
Remote
About Ekco

Founded in 2016 Ekco is now one of the fastest growing cloud solution providers in Europe!

We specialise in enabling companies to progress along the path of cloud maturity, managing transformation and driving better outcomes from our clients’ existing technology investments.

In a few words, we take businesses to the cloud and back!

We have over 1000 highly talented and supportive colleagues (and counting) across a number of regional offices in the UK, Benelux & Ireland.

The role

Reporting to the regional Security Operations Lead, the role of the SOC Analyst is to apply the understanding of investigative techniques and analytical skills, to defend against and respond to cybersecurity events and incidents in our client’s IT environments.

You will support clients by ensuring they remain secure. You will work as part of a team to deliver monitoring and protection in both a reactive and proactive manner. You will also be responsible for rolling out security tools including creating documentation.

SOC Analysts at Ekco are operationally focused; they secure and monitor systems using advanced toolsets, to prevent security breaches and to respond to incidents as they arise.

Day to day your role will involve:

  • Performing accurate and precise real-time analysis and correlation of logs/alerts from a multitude of client systems.
  • Analysing and assessing security incidents and advancing to client resources or collaborating with internal teams for additional assistance
  • Determining if events constitute security incidents e.g.: security events and incidents from SIEM, Firewall (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV), Directory Servers, Network Access Control (NAC) and other client data sources.
  • Assigning and escalating tickets in accordance with defined SLA’s.
  • Recommending tuning for security engineers to develop/adjust SIEM rules and reduce false positives.
  • Raising incidents to appropriate Seniors or Incident Response for major security issues.
  • Recognising potential; successful; and unsuccessful intrusion attempts and compromises thorough reviewing and analysing relevant event detail and summary information
  • Monitor identity and access management, including monitoring for abuse of permissions by authorised system users.
  • Participate in cyber-security exercises and training – Blue-Teaming
  • Deliver best in class customer service, communicating with clients frequently
  • Responding to inbound requests via phone, emails or tickets
  • Documenting actions in cases to effectively communicate information internally and to client.
  • Reporting common and repeat problems (trend analysis) to management and propose process and technical improvements.
  • Providing cover in line with rotating shift patterns. You should be flexible to rotating 12 hour shifts. We provide 24/7 cover to clients and shifts are allocated accordingly.
  • Performing other duties as assigned.

About You

  • A Bachelor’s degree or equivalent in Computer Science, Computer Engineering, Electrical Engineering, Network Security, Information Security, Information Technology, or Mathematics (or equivalent work experience)
  • 2+ years experience working as a SOC Analyst, preferably in a MSSP environment
  • Keen problem solving/ troubleshooting skills
  • Strong analytical skills and a logical approach to resolving issues
  • A can-do attitude
  • Excellent written and verbal communication skills. You should be able to communicate technical details clearly.
  • The ability to adjust and adapt to changing priorities in a dynamic environment
  • A pro-active approach to addressing issues and requests and the ability to multitask
  • The ability to learn new technologies and concepts quickly
  • Great organisational skills and attention to detail
  • Adaptability to do a range of work, including the complex, non-routine, mundane and multi-environment
  • Able to work under direction, use discretion and determine when to escalate issues
  • Effective communication, teamwork and task-time management skills

Desirable:

  • Prior experience working with SIEM and EDR – E.g. SentinelOne, Microsoft security stack (Defender, Sentinel)
  • Industry recognized certifications – E.g. CompTIA Security+, CySA+, Microsoft SC-200, SBT L1/L2 etc.
  • Theoretical or practical knowledge in the following areas:
  • Unix, Linux, Windows, etc. operating systems
  • Mitre ATT&CK framework and adversary Tactics, Techniques and Procedures (TTPs)
  • Intrusion analysis
  • Creation/tuning of detection analytics
  • Exploits, vulnerabilities, network attacks

Benefits/Perks

  • Time off - 25 days leave + public holidays
  • x1 day Birthday leave per year
  • Company Pension Scheme (employer contribution 5%) + flexible salary sacrifice
  • Employee Assistance Programme (EAP) - access to dedicated mental health, emotional wellbeing and general advice
  • EkcOlympics - a global activity for fun!
  • Learning & development - Unlimited access to Pluralsight learning platform
  • A lot of responsibilities & opportunities to grow (also internationally)

Why Ekco

  • ️ Microsoft’s 2023 Rising Star Security Partner of the year
  • VMware & Veeam top partner status
  • Ranked as 4th fastest growing technology company in the Deloitte Fast50 Awards
  • Ekco are committed to cultivating an environment that promotes diversity, equality, inclusion and belonging
  • We recognise the value of internal mobility and encourage opportunities for internal development & progression
  • Flexible working with a family friendly focus are at the core of our company values

How to apply

To apply for this job you need to authorize on our website. If you don't have an account yet, please register.

Post a resume

Similar jobs

Customer Fraud and Risk Advisor – UK

tombola, Remote
2 hours ago
Remote UKHours: 32 Hours Available shift pattern Days Off: Sunday, Monday, Tuesday | Working Hours: Wednesday 4pm - 12am, Thursday 4pm - 12am, Friday 12pm - 8pm, Saturday 12pm - 8pmDo you have an eye for detail and a knack for identifying potential risks? Are you an expert in conducting evaluations, mitigating risks and ensuring companywide compliance?You will play a...

B2B Event Specialist

Canonical, Remote
1 day ago
Canonical is looking for B2B event specialists who will be responsible for developing a long-term event strategy and executing various events across EMEA and Americas. This is a hands-on, multi-disciplinary and dynamic position, requiring close collaboration with the regional Sales Teams, the Partner & Alliances Teams, Product Marketing Teams, Design Teams and other Marketing functions.The ideal candidate is passionate about...

Video Content Creator

Orderly Network, Remote
1 day ago
Work with the BestOrderly Network is a combination of an orderbook-based trading infrastructure and a robust liquidity layer offering spot and perpetual futures orderbooks. Unlike traditional platforms, Orderly doesn't have a front end; instead, it operates at the core of the ecosystem, providing essential services to projects built on top of it.Our DEX white-label solution is carefully crafted to save...