Security Incident Response Analyst

Job Title

Security Incident Response Analyst

Location

Asda House

Employment Type

Full time

Contract Type

Permanent

Hours Per Week

37.5

Salary

Competitive salary plus benefits.

Category

Cyber Security

Closing Date

17 October 2024

 

Your responsibility

As a cyber security analyst in the IR team, you will be the escalation point for incidents after the initial triage by our Security Operation Centre (SOC). You will primarily focus on investigating and resolution of escalated security incidents by applying your experience, security knowledge and technical skills. Furthermore, you will contribute to the maturity of our IR function and the SOC through proposing new detections rules and creations of Runbooks and Guides. You will also conduct threat hunts to identify latest threats and consider ways to mitigate them by taking advantage of available tools and leveraging open-source Intelligence (OSINT). This is a fantastic opportunity to build your security portfolio, to expand and build upon your skills and knowledge.

​What you will need

• Good analytical and technical skills.
• Ability to prioritise tasks with attention to details.
• Experience in triaging security alerts with a methodical approach for investigating and remediating security incidents.
• Experience with SIEM tools and their role in investigating security alerts, preferably Microsoft Sentinel.
• Ability to follow Runbooks and Guides while responding to an incident.
• Contribute to and propose improvements to Runbooks, Guides and other security related documentation.
• Perform daily tasks, when not responding to active incidents, such as wring reports and updating documentations.
• Broad knowledge of key security concepts and principles with an understanding of the threat landscape.
• Exposure to and familiarity with cloud-based environment such as Microsoft Azure.
• Ability to engage with both technical and non-technical stakeholders.
• Strong professional communication skills.
• Experience in writing security policies and process documentation
• Having a learning mindset, we value learning and development

Desirable skills

• Experience in use of Microsoft Defender suite and their use in investigating alerts and remediating incidents.
• Experience in KQL or use of Hunting query in Defender.
• Ability to propose, modify and improve detection rules in Sentinel.

Work Where it Works

Our hybrid way of working gives you the choice to work where it works.  This enables you to chose where you’ll be the most effective.  It offers a mix of working from home and in an office environment that works best for you and your team. 
You will also get an excellent benefits package including;-

•    Discretionary company bonus
•    Company pension up to 7% matched
•    10% colleague discount, free parking and many additional rewards.
 
We want all colleagues to be able to bring their best and true selves to work, every day. Simply put, we want our colleagues to be Proud to be Asda and proud to be themselves