We have been made aware of a number of scams where fraudsters are claiming to represent our organisation or organisations we work with. Please click here to find out more details and what to do if you are contacted.

close

Saved Jobs

menu

Accessibility tools

Senior Security Analyst

Remote

  1. Full time

Closing date

02/10/2022

About the job

"

This vacancy has now expired. Please see similar roles below...

"

Job Description 

The Security Operations Centre (SOC) is part of the Admiral Group’s Security Operations function. The SOC is looking for an experienced analyst. As a Senior Security Analyst, you will be responsible for responding to and investigating security events within Admiral’s environment and proactive threat hunting when not on monitoring duty. Responsibilities will also include the creation of new detection logic when needed, as well as the review and improvement of existing logic. The security analyst team is a key part of the SOC (along with the Threat Hunting function, which is also part of the SOC). It works closely with other security operations functions, such as Incident Response and Threat Intelligence, as well as various technology and business units. 

Responsibilities:

  • Triage cyber security alerts/alarms escalated from MSSP. 
  • Investigate incidents and work with the other teams to contain and remediate cyber security incidents. 
  • Develop new detection rules for deployment to the security tooling to increase detection coverage and effectiveness. 
  • Contribute to the security monitoring, response and threat hunting strategy. 
  • Work with the managed security services provider (MSSP) to review and maintain efficiency. 
  • Perform threat hunting tasks to detect threats within our environment proactively. 
  • Assist the incident response team with technical analysis and provide timely updates during an incident response investigation when needed. Ensure all security events are investigated and documented to completion. 
  • Contribute to process creation, maintenance, documentation and automation as needed. 
  • Analyse and suggest improvements on rules and playbooks on SIEM/SOAR and EDR platforms. 
  • Stay up to date on the changing threat landscape. 
  • Support and mentor junior members of the team. 

Key Interactions:

  • Engage with the overall SOC team. 
  • Engage with the Cyber Threat Intelligence (CTI) team. 
  • Engage with the Incident Response team when needed. 
  • Engage with various stakeholders within Security Operations as and when needed.

Knowledge and Experience Required:

  • 5 years of experience in any of the following: security operations, incident response, and digital forensics. 
  • Understanding frameworks such as Cyber Kill Chain, MITRE ATT&CK. Understanding of enterprise-grade technical security controls and in-depth defence practices.

Desirable Skills:

  • Proficiency with any SIEM (Security Information and Event Management) platforms. 
  • Experience with a SOAR (Security Orchestration, Automation & Response) platform would be highly advantageous but not mandatory. 
  • Familiarity with public cloud platforms such as Azure, GCP and AWS and security practices on those platforms. 
  • Working proficiency in a programming or scripting language such as Python / PowerShell / Go / C# would be beneficial but not essential. 
  • GIAC Certifications such as the following would be desirable but not mandatory: GCIH, GCFE, GCIA, GDAT, GCDA, GISP.

Our Commitment to You

At Admiral, we are committed to being a diverse and inclusive workplace. Admiral is proud to be an equal opportunities employer and does not discriminate on the basis of race, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), national origin, gender, gender identity, sexual orientation, disability, age, or any other legally protected status.

All qualified applicants will receive equal consideration for employment.

Salary, Benefits and Work-Life Balance

We do not have a set salary for this position, as it will be dependent on the successful candidate’s experience. We are happy to see CVs from all candidates who meet the requirements and will be happy to discuss the remuneration package.

At Admiral, we are proud to be a diverse business where we put our people and customers first. We have great benefits to ensure employees have a great work-life balance; it's one of the reasons we’re consistently voted one of the Sunday Times Best Big Companies to Work For in the UK. We want you to have an element of freedom to define a working lifestyle that supports this, so accommodate flexible hours wherever possible.

All colleagues will receive 33 days holiday (including banks holidays) when they join us, and this will increase with length of service, up to a maximum of 38 days (including banks holidays). You also have the option to buy or sell up to five days of annual leave in addition to your allocation.

You can also view some of our other key benefits here.

#LI-NT1

jobs

Related jobs

We are sorry but do not currently have any roles in this area. View all jobs
posts

Related posts

Photo of Tom Rowan in Admiral office
Finding fulfilment in my InfoSec career through volunteering

Teaser

General

Content Type

Blog

Publish date

30 Nov 2023

Summary

What does a successful career mean to you? For some, it could mean building up experience and strengthening your knowledge and skills. For others, it might involve doing something that has a

Teaser

Read on
Ben Moriarty

by

Ben Moriarty

Ben Moriarty

by

Ben Moriarty

Our Benefits

As one of our four pillars to our culture, Reward and Recognition is extremely important. We believe that happy staff make happy customers, so we have a huge range of great benefits to make sure everybody has something to smile about! Here are a few of our more popular ones.

Share
Schemes

Flexible
Working

Local
Discounts  

Travel Season
Ticket loans

Groups
& Societies 

Development 
Opportunities

View more benefits