Level 3 Security Analyst Lead

Your day to day:

In this role, you will report to Cyber Security Operations Center Lead and work to identify and mitigate security risks and implement security measures to protect against potential threats. You will collaborate closely with other security teams, including threat hunt, threat intelligence, incident management and forensics, to ensure that all security incidents are handled in a timely and effective manner.
You will work as the technical lead of a cyber security operations team and be responsible for carrying out 24/7 security monitoring operations, performing responsibilities as the technical lead and incident responder for Vodafone Security Operations Center (SOC).

With these activities you will have a great impact on our business:

• Review security cases and incidents, providing analysis and suggesting remediation.

• Handle and support S2, S1, and S0 incidents. Represent the CSOC in Incident calls, providing technical analysis and assisting with investigations.

• Conduct a deep dive into the data sources available to the SOC to collect relevant incident-related information.

• Review and approve content playbooks and investigation guidelines for new detection rules and use cases.

• Create, maintain, and update incident response plans, CSOC processes, procedures, SOPs, knowledge bases, and playbooks.

• Proactively collaborate with the content team to develop new detection capabilities and fine-tune alerts.

• Collaborate with the Hunt Team to identify advanced attacker tactics and techniques. Ensure analysts are briefed on new focused monitoring procedures for ongoing incidents.

With these skills you are a great candidate:

• 8+ years relevant experience in SOC environment, with a focus on using multiple security tools like SIEM, EDR, and Cloud Security platforms like AWS, GCP and Azure.

• Should have experience working in a L3 role or as a senior L2 in a large organisation.

• Strong understanding of security operations and experience in leading security incident response.

• Advanced event analysis leveraging SIEM tools, worked as a incident responder

• Proficient in Incident Management and Response, handling escalations

• Experience in developing and maintaining playbooks, IR plan, procedures, and Standard Operating Procedures (SOPs) in SOC.

• Conduct multi-step breach and investigative analysis to trace the dynamic activities associated with advanced threats

Sounds like the perfect job? We’ve got even more to offer:

• Work from Home – hybrid approach
• Medical and dental services
• Life and hospitalization insurance
• Dedicated employee phone subscription
• Special discounts for gyms and retailers
• Annual Company Bonus
• Ongoing Education – we continuously invest in you to ensure you have everything needed to excel on the job and enhance your skills
• You get to work with tried and trusted web-technology
• Getting in on the ground floor of a technology changing company
• Flexible Vacation – Take time off when you need it, we trust you
• Special Paternal Program - 4 months of paid paternity leave

We recognize and celebrate the importance of diversity and inclusivity in our workplace so that we are as diverse as the customers and communities we serve. We do not tolerate any form of discrimination especially related to but not limited to race, colour, age, veteran status, gender identification, sexual orientation, pregnancy, ethnicity, disability, religion, political affiliation, trade union membership, nationality, indigenous status, medical condition, HIV status, social origin, cultural background, social or marital status.

Worried that you don’t meet all the desired criteria exactly? We are passionate about Inclusion for All and creating a workplace where everyone can thrive, whatever their personal or professional background. So, if you’re excited about this role but your experience doesn’t align exactly with every part of the job advert, we encourage you to apply as you may be just the right candidate for this role or another role, and our recruitment team can help see how your skills fit in.