SOC Analyst - Cyber - Belfast & Derry/L'Derry

SOC Analyst

EY’s Cyber Security practice is one of the fastest growing areas of the business. We help our clients understand, prepare for, detect, respond to and recover from cyber-attacks in line with EY’s overall purpose of shaping the future with confidence.

As part of our managed cybersecurity operations team, you will be providing advisory and technical execution support to help our clients improve their cyber security posture to respond to the dynamic cyber threats. You will provide security domain expertise and utilise your business insight to work closely with our clients to advise, design, build, deploy and test pragmatic security solutions that will give real and tangible benefits and security enhancement.

The opportunity

You will be a core member of our highly skilled and rapidly growing team of technical security specialists. As a member of the team, you will have the opportunity to grow your career in delivering real-world security solutions to leading clients with a significant opportunity for practical industry experience and career progression.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all!

Your key responsibilities

• Participate in a shift rotation to ensure 24x7 coverage of the SOC, including nights, weekends, and holidays as required.
• Provide continuous monitoring of security alerts and notifications from various security tools and systems (e.g., SIEM, IDS/IPS, firewalls) on a 24x7 basis.
• Identify and prioritize potential security incidents based on predefined criteria.
• Perform initial triage of security incidents to determine their severity and potential impact.
• Classify incidents based on established protocols and escalate to higher-level analysts as necessary.
• First level triage and response to alerts/notifications
• Closes out ‘routine’ or low severity incidents
• Follow up on critical incidents
• Issue alerts on critical security vulnerabilities
• Generate daily and weekly reports
• Review, update and build new operational processes and procedures
• Perform administrative tasks per management request (ad-hoc reports / trainings)
• Support the creation and maintenance of a knowledge base
• Support the Service Delivery Manager with reporting SOC KPI metrics

Skills and attributes for success

• In-depth knowledge of TCP/IP protocols
• Experience with Infrastructure and Network Security tools
• Understanding of fundamental cybersecurity concepts, principles, and best practices.
• Familiarity with common threats, vulnerabilities, and attack vectors.
• Ability to analyze and interpret logs from various sources, including servers, applications, and network devices.
• Familiarity with log formats and common log analysis techniques.
• Experience with SOAR (Security Orchestration Automation & Response) and Endpoint Detection & Response (EDR) solutions
• Experience with SIEM (Security Information & Event Management) tools and usage of regular expressions
• Knowledge of common security frameworks (OSINT, SANS, NIST)
• Good knowledge of threat areas and common attack vectors (MITRE ATT&CK)
• Scripting (automation) and familiarity with Cloud (AWS/Azure)
• Ability to interact with staff, peers and customers on a technical and professional level
• Fast and independent learner, with ambition to self-improve

To qualify for the role, you must have

• At least 1 years’ experience of working in a SOC environment
• Strong logical and analytical skills to help in analysis of security events/incidents
• Effective verbal and written communication skills

Ideally, you’ll also have

• One or more industry-recognised certifications for leading security tooling in a modern SOC setting e.g COMPTIA Security +
• Hands-on experience of working with different tools suites in a SOC environment covering hybrid IT estates across traditional on-prem and cloud setups

What working at EY offers

We offer a competitive remuneration package where you’ll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

About EY

As a global leader in assurance, tax, transaction, and advisory services, we’re using the finance products, expertise and systems we’ve developed to shape the future with confidence. That starts with a culture that believes in giving you the training, opportunities, and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, we’ll make our ambition to be the best employer a reality.

Join us in building a better working world. Apply now.