Event and Alarm Triage & analysis, specifically handling escalated events.
Leading or supporting Security Incidents end to end, as part of incident response activities.
Handling escalated vulnerability, misconfiguration or threat hunting events.
Being responsible for the technical implementation of configuration or development of tools, alarms, and runbooks.
Assisting platform engineering with security best practices, responsible for liaising with appropriate teams and consulting.
Assisting software engineering with secure by design, responsible for liaising with appropriate teams and consulting.
Assisting payments with 3rd party compliance, responsible for liaising with appropriate teams and consulting.
Audit and reporting, responsible for developing and producing reports and metrics.
Oversight of the maintenance of coverage, data freshness, and noise reduction.
Organising and running tabletop, readiness, and war game exercises.
Some 3rd party management

Proven experience of working in a Security Operations Centre (as a Senior SOC Analyst or an experienced Junior).
Strong knowledge of the information security threat landscape, tactics, techniques, attack vectors associated with security threats.
Strong knowledge of Incident response planning and playbook design
Strong knowledge of threat detection rule design/tuning
Good technical knowledge of best practice security for networks, systems, web applications, APIs and databases.
Good knowledge and hands-on experience with common security tools such as SIEM, endpoint protection, scanners, proxies, WAF, IDS/IPS.
Some technical knowledge of AWS and GCP administration, security tooling, cloud security operations and incident response.
Some knowledge of security standards and frameworks (e.g. ISO27001, PCI DSS, MITRE ATT@CK, NIST CSF).
Some Systems forensics and investigation skills (MACOS and Windows).

Senior SecOps Analyst

Key skills