Senior Security Analyst - XDR

Position Title: Senior XDR Analyst

Location: Manchester

Summary:

Today, it is an unavoidable fact that your business-critical infrastructure and systems are at risk of attack. The key to good security is a clear understanding of what is most critical to the business. Where you do not have enough internal resources, time or skills to monitor and manage your IT environment 24/7, NCC Group can help, freeing up your skilled employees to focus on value-add activity. 

NCC Group provide a range of managed and hosted services delivered from our UK based Security Operations Centre SOC which operates 24/7, 365 days a year. Our team of over 30 accredited security experts are available 24/7, dealing daily with over 200 million log events and providing support for over 5,000 network devices. 

NCC Group’s Cloud XDR Team provide a world class Extended Detection and Response (XDR) services; detecting, responding and mitigating cyber-attacks on our customers networks in our Security Operations Centers using the Microsoft Sentinel ecosystem. 

The Cloud XDR Team are looking for Senior XDR Security Analysts with a passion for security to join the team to help the customers get the most out of our services and to protect their networks. 

This is an opportunity to join a technically advanced and talented team and help NCC Group build and deliver world class services to our customers. 

This role is ideal for a seasoned SOC Analyst with experience in cyber security looking to broaden their scope of cyber skills with a strong focus on detection and response to cyber incidents. 

Responsibilities:

• Monitor global systems looking for potential threats, vulnerabilities and indicators of compromise. 
• Perform in-depth analysis of security alerts utilizing Microsoft XDR suite (Sentinel/Defender etc) 
• Act as incident handlers during high priority incidents 
• Provide Incident remediation and prevention documentation and recommendations to customers based on defined procedures and analyst experience. 
• Document and conform to processes related to security monitoring procedures. 
• Provide customer service that exceeds our customers’ expectations at all times. 
• Initiate escalation procedure to counteract potential threats, vulnerabilities and threat actors. 
• Compilation and review of service focused reporting. 
• Act as an escalation point for more junior members of the team, providing assistance and mentoring where necessary. 
• Providing assistance to XDR Security Analysts on general Triage and Threat Hunting engagements. 
• Contributing to the continuous improvement of SOC procedures and documentation. 
• Actively liase with clients in order to understand specific risk areas and act as a touch point for issues raised 
• Perform other duties as assigned.

What we are looking for in you:

Experience / Skills 

• Minimum 3 years’ experience working in relevant SOC analyst roles 
• Practical knowledge and experience of security and networking toolsets such including Microsofts XDR suite (Sentinel/Defender) 
• Pre-existing, in-depth knowledge of common network protocols and endpoint detection/forensics 
• Pre-existing, in-depth knowledge of Windows and Linux based operating systems. 
• Experience in the extensive analysis of common security incidents. 
• Ability to stay calm in highly sensitive and high pressure incidents. 

 Certifications

The following certifications are desirable, but not a requirement. Successful candidates that do not possess these ccertifications may be tasked with working towards them at the beginning of their employment: 

• Azure based certifications (SC-200,AZ-500,MS-500) 
• GIAC GCIA/GCIH 
• CREST CPSA / CRIA / CMRE / CNIA / CHIA 
• CompTIA Security+ 
• CompTIA Network+ 
• Other relevant certifications. 

Behaviours:

• Focusing on Clients and Customers.  
• Working as One NCC.
• Always Learning.
• Being Inclusive and Respectful. 
• Delivery Brilliantly.  

Why NCC Group?

At NCC Group, our mission is to create a more secure digital future. That mission underpins everything we do, from our work with our incredible clients to groundbreaking research shaping our industry. Our teams' partner with clients across a multitude of industries, delving into, securing new products, and emerging technologies, as well as solving complex security problems. As global leaders in cyber and escrow, NCC Group is a people-powered business seeking the next group of brilliant minds to join our ranks.   

Our colleagues are our greatest asset, and NCC Group is committed to providing an inclusive and supportive work environment that fosters creativity, collaboration, authenticity, and accountability. We want colleagues to put down roots at NCC Group, and we offer a comprehensive benefits package, as well as opportunities for learning and development and career growth. We believe our people are at their brilliant best when they feel bolstered in all aspects of their well-being, and we offer wellness programs and flexible working arrangements to provide that vital support. 

What do we offer in return?  

We have a high-performance culture which is balanced evenly with world-class well-being initiatives and benefits;

⏰Flexible working

💸 Financial & Investment

• Pension
• Life Assurance
• Share Save Scheme
• Maternity & Paternity leave

🙋🏾Community & Volunteering Programmes

⚡ Green Car Scheme

🚴 Cycle Scheme

🏥 Healthcare

🏙️ Office Lifestyle

🧑🏻‍🤝‍🧑🏻 Employee Referral Program

🧘🏻 Lifestyle & Wellness

🎓 Learning & Development

👨🏿‍🦽 Diversity & Inclusion

So, what’s next?

If this sounds like the right opportunity for you, then we would love to hear from you! Click on apply to this job to send us your CV and the relevant member of our global talent team will be in touch with you. Alternatively send your details to global.ta@nccgroup.com .

About your application

We review every application received and will get in touch if your skills and experience match what we’re looking for. If you don’t hear back from us within 10 days, please don’t be too disappointed – we may keep your CV on our database for any future vacancies and we would encourage you to keep an eye on our career opportunities as there may be other suitable roles.

If you do not want us to retain your details, please email global.ta@nccgroup.com. All personal data is held in accordance with the NCC Group Privacy Policy (candidate-privacy-notice-261023.pdf (nccgroupplc.com)). We are committed to diversity and flexibility in the workplace. If you require any reasonable adjustments to support you during the application process, please tell us at any stage.

Please note that this role involves mandatory pre-employment background checks due to the nature of the work NCC Group does. To apply, you must be willing and able to undergo the vetting process. This role being advertised will be subject to BS7858 screening as a mandatory requirement.