We are looking for a Security Operations Centre (SOC) Analyst to join our team

We will ask you to:

Conduct proactive monitoring, investigation, and escalation of security incidents.
Recognize any potential, successful, and unsuccessful intrusion attempts and compromises through correlation analysis of relevant event details and summary information.
Investigate malicious phishing emails, domains and IPs using open source and sector intelligence.
Provide mitigation guidance and support in response to identified threats.
Continuously build and evolve high confidence and high fidelity detection rules leveraging anomalous or suspicious events, in collaboration with other SOC team members, including SOC Security Specialists and Operations.
Actively contribute to the continuing development of the SOC architecture, processes, procedures, standards and methodologies.
Be a power user of the Security Orchestration, Automation and Response (SOAR) platform for case management and enrichment/response playbooks.

Education and Experience

Minimum one year in a SOC environment.
Experience documenting cybersecurity processes, procedures, and playbooks.
(ISC)2, CompTIA, GIAC, or other relevant cybersecurity certifications are desirable.

Skills

Understanding of cybersecurity risks to the academic sector.
Ability to identify, analyze, document, and report relevant threats and incidents.
Experience in identifying and containing security incidents.
Experience automating investigations and processes using basic scripting and tooling.
Practical understanding of patch and vulnerability management.
Demonstrated ability to gain trust and credibility from internal and external stakeholders.