Role Overview
The successful Tier 1 Security analyst will be the first line of defence for our client, responding to alerts and conducting initial triage to determine appropriate actions. With a primary focus on threat detection, incident assessment and vulnerability management the Tier 1 Security analyst will be a critical role in maintaining the cybersecurity for our client.
Overall Role Objectives
- Control and monitor for threats using Microsoft Sentinel & XDR suite.
- First response to incident and alerts providing repeatable incident triage
- To take part in regular Vulnerability Scanning exercises and identify remediation steps
- Identify ways to improve the current security tools and usage to provide demonstrable enhancements to aid security and productivity.
- To provide regular and consistent reporting and documentation on processes, status and incidents
- To work collaboratively with our customer base across the business and project teams as assigned.
Key Behaviours
- Tenacity
- Ethical
- Curious
- Integrity
Tasks/Responsibilities
Operational
Threat Monitoring:
- Continuously monitor security events and alerts within the organization’s network and systems.
- Identify suspicious activities, anomalies, and potential security incidents.
Incident Triage:
- Assess the urgency and severity of incidents.
- Determine whether an incident requires immediate action or further investigation.
- Escalate incidents to higher tiers when necessary.
Vulnerability Scanning:
- Regularly scan systems for vulnerabilities.
- Report and manage vulnerabilities discovered during scans.
Security Tool Management:
- Configure and manage security tools (e.g., SIEM, IDS/IPS, antivirus).
- Ensure proper functioning and timely updates.
Reporting and Documentation:
- Document incidents, actions taken, and findings.
- Prepare incident reports for further analysis.
Collaboration:
- Work closely with other security team members, IT departments, managers, and directors.
- Report to Head of Security.
People
- Communicate in a civil and effective manner.
- Act in a responsible and professional manner at all times.
- Respect other team members and assist when required.
- Inform the management team of any training requirements needed to fulfil your role.
- Be an active team player committed to achieving success.
Operational Excellence
- Continually demonstrate professionalism across all areas of the role, as well as interaction with the business and third parties.
- Ensure that appropriate responses are made in a timely fashion to requests / instructions from management, the business or the SRI Group.
Essential Knowledge, Skills & Experience
Skills
Technical Skills:
- Basic understanding of networking and security principles.
- Familiarity with security tools and technologies (e.g., Sentinel, Defender suite, firewalls, intrusion detection systems).
- Proficiency in log analysis and query languages (e.g., KQL, shell scripting, Snort rules).
Analytical Skills:
- Ability to analyse and interpret security events and alerts.
- Attention to detail and curiosity to investigate anomalies.
Communication Skills:
- Effective communication to report incidents and collaborate with team members.
- Documentation skills for incident reports.
Ethical Mindset:
- Adherence to ethical standards and confidentiality.
- Responsible handling of sensitive information.
Experience/Knowledge
- 2 Years + in a similar role
- Will consider a recent graduate in Cybersecurity or any of the following certifications:
- CompTIA Security+
- Certified Information Systems Security Professional (CISSP)
- Certified Ethical Hacker (CEH)