Security Analyst - Managed Security Service Provider (MSSP)

Azure Sentinel / KQL training to be given **

A leading Managed Security Service Provider (MSSP) is seeking several L2 SOC Analysts to join their growing security team on a permanent basis. This business specializing in delivering top-tier Microsoft focused cybersecurity solutions to a diverse range of clientele alongside other services across the Microsoft portfolio (M365, Azure etc.) They pride themselves on staying ahead of evolving threats and providing comprehensive security measures to safeguard their clients' digital assets.

The ideal candidate will play a pivotal role in their Security Operations Centre (SOC), contributing expertise in managing and responding to security incidents while demonstrating a strong understanding of security protocols, policies and exposure to SIEM tools. (training will be given

Key Responsibilities:

Monitor security events and alerts using Azure Sentinel and Microsoft Defender, ensuring timely and effective response to potential threats.
Mentor L1/L2 SOC Analysts whilst acting as their technical escalation point.
Analyze and investigate security incidents, providing detailed reports and recommendations for mitigation.
Implement and manage security controls, configurations, and policies within Azure Sentinel and Microsoft Defender.
Collaborate with cross-functional teams to develop and enhance security strategies, including threat hunting and incident response procedures.
Stay updated with emerging security threats, vulnerabilities, and industry best practices to proactively address potential risks.Requirements:

Proven experience as a Security/SOC Engineer or similar role within an MSP, MSSP or cybersecurity environment.
Knowledge and hands-on experience with SIEM tools
Strong understanding of cybersecurity principles, tools, and technologies.
Excellent analytical and problem-solving skills with the ability to make quick, informed decisions under pressure.
Relevant certifications such as GIAC, or Microsoft certifications would be advantageous.
Knowledge and hands-on experience with Azure Sentinel and Microsoft Defender would be highly desirable, although not required. Sentinel / KQL training to be given (SC-200)**
Any experience with SOC Prime, Carbon Black, and SOAR would be advantageous.

Hybrid based - 2 days per week expected in their Manchester office.

Paying up to 50k, depending on experience.

As this is a 24x7 SOC you will be required to be a part of a shift pattern

Must be eligible for SC clearance