Are you a seasoned L2 SOC Analyst with 3+ years in cybersecurity seeking greater ownership and influence? Our growing, security-led MSP is looking for your strong technical skills across Microsoft Sentinel, Microsoft Defender, Azure, and M365. In this key role, you’ll work closely with the Head of Security, take charge of escalated incidents, and play a vital part in shaping our security posture and client support. This isn’t just a typical SOC role; it’s an opportunity to make a real difference in a company where security is paramount.
Key Responsibilities:
- Incident Response Leadership: Take ownership of escalated security alerts, leveraging Microsoft security tools to thoroughly investigate, effectively contain, and decisively resolve incidents – going beyond mere escalation.
- Proactive Vulnerability Management: Lead the analysis and prioritisation of vulnerabilities, expertly coordinating remediation efforts with both our clients and internal teams to strengthen their security posture.
- Strategic Security Development: Collaborate closely with the Head of Security to refine our security methodologies and develop actionable playbooks that provide clear guidance for our team and clients.
- Dynamic Client-Focused Operations: Thrive in our fast-paced MSP environment, applying your deep technical expertise while communicating clearly and making sound judgments in all client interactions.
- Working with Intersys’ wider Security Stack, which is outlined at Cyber Security as a Service | CSaaS Pricing | Intersys
Role Requirements:
- A solid foundation of 3+ years of experience as a SOC Analyst, ideally gained within a Managed Security Service Provider (MSSP) setting.
- Proven hands-on experience of Microsoft Sentinel (Or Splunk), Microsoft Defender (and/or other EDR tools), Azure, and M365 security technologies.
- A strong grasp of day-to-day security fundamentals, including but not limited to DNS, HTTP(S), TCP/IP, OSI model, authentication protocols (e.g. Kerberos, NTLM), and common Windows/Linux command-line tools.
- Hands-on experience analysing and interpreting SPF, DKIM, and DMARC records
- Demonstrated expertise in leading and resolving complex security incidents effectively.
- Exceptional communication and interpersonal abilities, with a confident approach to engaging with clients and senior stakeholders.
- Good understanding of security frameworks, including NIST, ISO 27001, Cyber Essentials
What’s on Offer:
- Enjoy a flexible work environment with options for remote work, office presence, and client site visits to suit your needs.
- Celebrate your special day with an extra day of paid time off – it’s on us!
- Invest in your future with certification bonuses and dedicated learning support to help you grow your skills.
- Be recognised for your commitment with our long-service awards and become part of our positive and supportive team culture.
- Benefit from our flexible and family-friendly policies designed to help you balance your professional and personal life.
