Security Operations (SecOps) Analyst

The SecOps Analyst will be responsible for monitoring, analysing, and responding to security events and incidents, ensuring the protection of our clients' digital assets. This role involves working within the Security Operations Centre (SOC) team, communicating with customers, and collaborating with other departments, to ensure the effective operation of security controls and systems. This is a Tier 2 Analyst role that includes some elements of development, engineering and threat hunting when required. We are looking for a dedicated and enthusiastic colleague who is eager to get involved with the wider security projects and SOC development, as well as maintaining high standards around incident response. Reporting to the SOC Manager, you will work towards implementing Brightsolid's cybersecurity strategy internally and for customers., This role is primarily remote, with flexibility to work from home. While we welcome candidates from across the UK, it is ideal for the successful candidate to be based in Northern England for ease of access to our Manchester office, which serves as a central hub for our security team. In-person collaboration at the Manchester office is expected once or twice per month, with additional time on-site available if preferred or as needed for team initiatives. Occasional travel to our Dundee office (once or twice a year) may also be required., 1. Security Monitoring and Threat Detection:

• Monitor security events and alerts generated by various security controls and systems
• Analyse potential threats and suspicious activities to identify security incidents
• Tune security monitoring tools, SIEM platforms, and threat detection technologies to enhance detection capabilities
2. Incident Response and Mitigation:
• Maintain high standards of operation within the incident response process, including containment, mitigation, and remediation of security incidents
• Develop and follow incident response playbooks to ensure consistent and effective handling of security alerts and incidents
• Conduct post-incident reviews and contribute to the improvement of response procedures
• Join the On-Call rota to react and respond to incidents out of hours
3. Reporting and Documentation:
• Document security incidents, investigations, and remediation efforts accurately
• Generate regular reports on incident trends, security posture, and other critical metrics for the SOC Manager
4. Collaboration and Communication:
• Coordinate with other teams within the organisation to ensure effective collaboration and communication
• Engage with senior SOC colleagues and other stakeholders to discuss security-related matters when required
5. Wider Security Functions
• Stay abreast of the latest cybersecurity trends, threat landscapes, and technologies
• Be a part of the Managed Vulnerability Scanning (MVS) service to ensure scans are performed regularly and results are identified, assessed, and ticketed to the patch management and remediation process of the customer
• Assist with development projects led by the SecOps Engineering team
  
  Proven/demonstrable experience in cybersecurity, particularly in security operations and incident response within an MSSP setting
• Familiarity with security monitoring tools, SIEM platforms, and threat detection technologies
• Working experience of Microsoft/Azure/Defender security tooling, especially Microsoft Sentinel
• Strong analytical and problem-solving skills
• Effective communication and interpersonal skills
• A Bachelor's degree in Computer Science, Information Security, or a related field is preferred, but equivalent work experience will also be considered
2. Behaviours:
• Demonstrates commitment to the Brightsolid values
• Has a strong customer focus with a proactive, "can-do" attitude
• Adapts communication style to suit the needs and understanding of the audience and situation
• Respects the views and actions of others, appropriately challenging as required
• Develops good working relationships with colleagues
• Shows commitment to their team-fostering a supportive, helpful and approachable presence among colleagues
• Monitors progress against objectives, taking appropriate action to deliver results
• Consistently meets deadlines and delivers against commitments
• Draws on experience and knowledge to solve problems
• Offers constructive ideas to help resolve problems and deliver solutions
• Seeks guidance to help inform and support decision-making
• Takes ownership of personal and career development, actively developing technical competence
• Approaches challenges with a prepared and resilient mindset
  
  Brightsolid (part of DC Thomson) is an expert in colocation, cloud and cybersecurity solutions. We bring together brilliantly bright ideas with seriously solid solutions to meet not only our customers' business needs, but also their ambitions. From custom-built colocation to hybrid cloud expertise and the latest in cybersecurity technology, Brightsolid solutions are future-proofed with industry-leading performance, agility, and reliability - all at great value for money. At Brightsolid, our focus is not just on what we do, but how we do it and it's this approach that ensures we're there to help our customers make the right decisions every step of the way., Brightsolid is a leading cloud solutions company, committed to providing enterprise class technology, processes and talent for the public and private sector in Scotland and beyond.
  
  This is a full-time, permanent position, working 35 hours per week from Brightsolid's Manchester office (preferred location). We offer a generous package including 34 days holiday, health cash plan, excellent pension, a competitive salary, and many more staff discounts and benefits.