Security Incident Response Analyst
Asda House
Job Title
Security Incident Response Analyst
Location
Asda House
Employment Type
Full time
Contract Type
Permanent
Hours Per Week
37.5
Salary
Competitive salary plus benefits.
Category
Cyber Security
Closing Date
17 October 2024
Your responsibility
As a cyber security analyst in the IR team, you will be the escalation point for incidents after the initial triage by our Security Operation Centre (SOC). You will primarily focus on investigating and resolution of escalated security incidents by applying your experience, security knowledge and technical skills. Furthermore, you will contribute to the maturity of our IR function and the SOC through proposing new detections rules and creations of Runbooks and Guides. You will also conduct threat hunts to identify latest threats and consider ways to mitigate them by taking advantage of available tools and leveraging open-source Intelligence (OSINT). This is a fantastic opportunity to build your security portfolio, to expand and build upon your skills and knowledge.
What you will need
- Good analytical and technical skills.
- Ability to prioritise tasks with attention to details.
- Experience in triaging security alerts with a methodical approach for investigating and remediating security incidents.
- Experience with SIEM tools and their role in investigating security alerts, preferably Microsoft Sentinel.
- Ability to follow Runbooks and Guides while responding to an incident.
- Contribute to and propose improvements to Runbooks, Guides and other security related documentation.
- Perform daily tasks, when not responding to active incidents, such as wring reports and updating documentations.
- Broad knowledge of key security concepts and principles with an understanding of the threat landscape.
- Exposure to and familiarity with cloud-based environment such as Microsoft Azure.
- Ability to engage with both technical and non-technical stakeholders.
- Strong professional communication skills.
- Experience in writing security policies and process documentation
- Having a learning mindset, we value learning and development
Desirable skills
- Experience in use of Microsoft Defender suite and their use in investigating alerts and remediating incidents.
- Experience in KQL or use of Hunting query in Defender.
- Ability to propose, modify and improve detection rules in Sentinel.
Work Where it Works
Our hybrid way of working gives you the choice to work where it works. This enables you to chose where you’ll be the most effective. It offers a mix of working from home and in an office environment that works best for you and your team.
You will also get an excellent benefits package including;-
• Discretionary company bonus
• Company pension up to 7% matched
• 10% colleague discount, free parking and many additional rewards.
We want all colleagues to be able to bring their best and true selves to work, every day. Simply put, we want our colleagues to be Proud to be Asda and proud to be themselves
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Azure Cloud Incident response OSINT Sentinel SIEM SOC
Perks/benefits: Career development Competitive pay
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.