SOC Analyst

The MXDR Team is looking for L2 SOC Analysts with a passion for security to join the team, helping customers get the most out of our services and protect their networks. This is an opportunity to join a technically advanced and talented team and help NCC Group build and deliver world-class services to our customers. This role is ideal for a seasoned SOC Analyst with experience in cybersecurity looking to broaden their scope of cyber skills with a strong focus on detection and response to cyber incidents., * Monitor global systems for potential threats, vulnerabilities, and indicators of compromise.

• Perform in-depth analysis of security alerts utilising both NCC Group's UCP and explore further using the underlying detection platform where necessary.
• Provide incident remediation and prevention documentation and recommendations to customers based on defined procedures and analyst experience.
• Document and adhere to processes related to security monitoring procedures.
• Provide customer service that always exceeds our customers' expectations.
• Initiate escalation procedures to counteract potential threats, vulnerabilities, and threat actors.
• Compile and review service-focused reports.
• Act as an escalation point for junior team members, aiding and mentoring where necessary.
• Contribute to the continuous improvement of SOC procedures and documentation.
• Perform other SOC duties as assigned.

• Practical experience with security and networking tools such as Microsoft XDR (Sentinel, Defender) and Splunk Enterprise/Cloud/Enterprise Security
• Strong understanding of network protocols, endpoint detection, and digital forensics
• In-depth knowledge of Windows and Linux operating systems
• Hands-on experience analysing common security incidents and supporting endpoint security
• Ability to remain calm and effective during high-pressure and sensitive security situations

Desirable Certifications Not mandatory, but a strong advantage if held or equivalent knowledge demonstrated.

• Microsoft: SC-200, AZ-500, AZ-900, MS-500
• Splunk: Certified User, Power User, Advanced Power User, Enterprise Security Administrator
• CrowdStrike: CCFR, CCFH
• CREST: CPSA, CRIA, CMRE, CNIA, CHIA
• CompTIA: Security+, Network+, CySA+
• Cisco: CCNA
• SANS: GCIA, GCIH, GSEC
• Other relevant certifications

• Flexible Working : Balance your work and personal life with our flexible working options.
• Generous Holiday Allowance : Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave differs for SOC shift workers, please speak to your TA partner for more information).
• Medicash & Critical Illness Scheme
• Financial & Investment Benefits : Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme.
• Community & Volunteering Programmes : Make a difference in your community with our volunteering opportunities.
• Green Car Scheme: Drive green and save money with our eco-friendly car scheme.
• Cycle Schem e: Stay fit and healthy with our cycle-to-work scheme.
• Special Time Off : Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet.
• Family Planning : Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.

Today, it is an unavoidable fact that your business-critical infrastructure and systems are at risk of attack. The key to good security is a clear understanding of what is most critical to the business. When you do not have enough internal resources, time, or skills to monitor and manage your IT environment 24/7, NCC Group can help, freeing up your skilled employees to focus on value-add activities. NCC Group provides a range of managed and hosted services delivered from our Global Security Operations Centre (SOC), which operates 24/7, 365 days a year. Our team of over 100 accredited security experts is available around the clock, dealing daily with over 200 million log events and providing support for thousands of network devices. NCC Group's MXDR Team provides world-class Extended Detection and Response (XDR) services, detecting, responding to, and mitigating cyber-attacks on our customers' networks in our Security Operations Centres. We use a plethora of detection tools such as the Microsoft Security Stack, Splunk, EDR, IDS & IPS tools, and many more, all integrated with NCC Group's Unified Cyber Platform (UCP)., About NCC Group We assess, develop and manage cyber threats across our increasingly connected society. We advise global technology, manufacturers, financial institutions, critical national infrastructure providers, retailers and governments on the best way to keep businesses, software and personal data safe. With our knowledge, experience and global footprint, we are best placed to help businesses identify, assess, mitigate & respond to the risks they face. We are passionate about making the Internet safer and revolutionising the way in which organisations think about cyber security. Headquartered in Manchester, UK, with over 35 offices across the world, NCC Group employs more than 2,000 people and is a trusted advisor to 15,000 clients worldwide.