Back to Jobs

Tier I SOC Analyst

Remote, USA Full-time Posted 2025-05-22

Overall Purpose The Security Operations team exists to protect the client by proactively detecting and responding to cyber security threats. Our SOC Analysts are our front line of cyber defence: monitoring and assessing cases, correlating observables, mitigating and defending against malicious cyber activity and adapting to an ever-changing threat landscape. Operating as a triage specialist responsible for the monitoring management and configuration of relevant security tools, containing and remediate attacks, as well as preventing intrusion and unauthorized access to critical data and devices. This role requires willingness to work shifts (including unsociable hours and bank holidays where these fall into your shift pattern) as part of a 24x7 team. Principal Duties and Responsibilities <ul> <li>Monitor and identify cyber security threats that pose a risk, or have the potential to pose a risk, to the client.</li> <li>Monitoring SIEM alerts effectively to minimize downtime and restore services.</li> <li>Triage alerts and alarms across a broad range of security controls as they come into the SOC and assess urgency to escalate to Tier 2 as appropriate.</li> <li>Ensure investigation steps are clearly documented and accurately escalated to Tier 2 when needed.</li> <li>Provide Tier 1 case resolution for basic security cases including generating initial reporting, providing follow-ups and requesting information and resolution activity.</li> <li>Responsible for providing communication directly with CyberClans’ customers regarding security incidents and other related topics.</li> <li>Responsible for understanding where threats may appear.</li> <li>Responsible for producing and maintaining documentation relevant to both the SOC and position.</li> <li>Responsible for updating and offering continual improvement to the knowledge base.</li> <li>Work with the CyberClan global team when responding to security incidents.</li> <li>Support the SOC team research global security events, issues and trends to produce security advisories for customers based on findings.</li> <li>Responsible for managing and configuring security monitoring tools.</li> <li>Investigating intrusion attempts and performing in-depth exploit analysis.</li> <li>Conducting cyber threat research and analysis for purposes of improving the strength of network security.</li> </ul> <ul> <li>Assist with defining, testing and operating new ways of working with new technology solutions or processes supplied to the SOC team. </li> </ul> <ul> <li>Provide analytical feedback on client network traffic patterns.</li> <li>Provide analytical feedback related to malware and other network threats. </li> <li>Accept, manage and update service requests and incidents to ensure contracted Service Level Agreements are met.</li> </ul> Generic Duties and Responsibilities <ul> <li>To continuously develop both technical and personal skills required within the role and assist with development of other staff.</li> </ul> <ul> <li>Participate in identification and delivery of Service Improvement Plans.</li> <li>Proactively support business KPIs.</li> </ul> <ul> <li>Understand and comply with all Information Security policies. </li> <li>Understand and comply with all company policies.</li> <li>Interact with strategic incident response and threat intelligence vendors.</li> <li>To undertake other responsibilities, training and tasks as reasonably requested by line management.</li> </ul> <ul> <li>Undertake periodic assurance reviews and produce associated reporting as required.</li> </ul> <ul> <li>Participate in CyberClan internal security awareness initiatives and other training requests </li> <li>The job description may be altered at any time in line with the level of the post to meet changing requirements, but only in full consultation with the post holder.</li> </ul> Personal Specifications: Qualifications: <ul> <li>Educated to GCSE level or equivalent</li> <li>Cyber Security Qualification (COMPTIA or equivalent experience)</li> <li>ITIL Foundation</li> </ul> Skills, Knowledge and Experience: <ul> <li>Knowledge and experience of SOC tooling to identify threats.</li> <li>Experience of collaboration tools</li> <li>Keen analytical mind and approach</li> <li>Previous experience of SOC analysis beneficial</li> <li>Proactively shares own expertise with others</li> <li>Knowledge and experience of IT systems, networking and security threat landscape including: <ul> <li>Network fundamentals for example OSI stack, TCP/IP, DNS. HTTPS, firewall logs</li> <li>Cloud technologies (AWS, Google Cloud, Azure)</li> <li>Active Directory, Group Policies, PowerShell</li> <li>Endpoint protection applications (Antivirus, Web Filtering, ATP, Encryption)</li> <li>IDP/IPS Systems</li> <li>SIEM tools</li> <li>SOAR is an added advantage</li> </ul> </li> <li>Knowledge of malware capabilities, attack vectors and impact.</li> </ul> Personal Qualities: <ul> <li>Excellent interpersonal skills sufficient to develop professional relationships and rapport amongst key stakeholders</li> <li>Strong team player</li> <li>Genuine enthusiasm and drive to work within cyber security.</li> <li>Excellent customer service skills</li> <li>Good written skills to write explanations of systems, regulations and or procedures.</li> <li>Good verbal communication</li> <li>Ability to identify and suggest continual improvement</li> <li>Good analytical and problem-solving skills</li> <li>Ability to adapt to organisational change</li> <li>Proven ability to manage varied workload</li> <li>Ability to work unsupervised and under pressure.</li> </ul>

Apply To This Job

Apply Now

Similar Jobs

IT Security Analyst – Remote, United States

Remote, USA Full-time

AI Cyber Threat Research Intern

Remote, USA Full-time

Walmart – Senior Manager I, Software Engineering – Health and Wellness – iOS – Bentonville, AR

Remote, USA Full-time

Product Manager, Developer Platform - Continuous Integration & Fleet Automation [Remote]

Remote, USA Full-time

Urgent opening:: MS Dynamics 365 Developer:: 100% Remote (Anywhere in USA) :: Only Fulltime

Remote, USA Full-time

Clinical Triage Specialist (RN) MSK - Access Center, Remote Position

Remote, USA Full-time

MOR Compliance/Occupancy Specialist III (Telecommuting/Travel in Nebraska)

Remote, USA Full-time

Analytics Specialist, Data Translator, Storyteller

Remote, USA Full-time

Investment Consultant (Remote)

Remote, USA Full-time

Virtual Chat Assistant-Part Time in Cleveland, OH

Remote, USA Full-time

Interpreter new york

Remote, USA Full-time

Car Wash Attendant

Remote, USA Full-time

Need English Instructor (FT) in Leavenworth, KS

Remote, USA Full-time

Aveanna Healthcare Private Duty Nurse LPN - PRN Nurses in Palm Bay, FL

Remote, USA Full-time

Tier I SOC Analyst

Similar Jobs

IT Security Analyst &#8211; Remote, United States

AI Cyber Threat Research Intern

Walmart – Senior Manager I, Software Engineering – Health and Wellness – iOS – Bentonville, AR

Walmart Jobs In Colorado Springs

Customer Service Account Associate - Springfield Call Center

Customer Service Account Associate

Account Associate Customer Service - Richmond VA

Account Manager, Molecular Diagnostics, QIAstat (WI, IA, MN, ND, SD, NE)

Project Manager – Financial Solutions Lead

Product Manager, Developer Platform - Continuous Integration & Fleet Automation [Remote]

Urgent opening:: MS Dynamics 365 Developer:: 100% Remote (Anywhere in USA) :: Only Fulltime

Clinical Triage Specialist (RN) MSK - Access Center, Remote Position

MOR Compliance/Occupancy Specialist III (Telecommuting/Travel in Nebraska)

Analytics Specialist, Data Translator, Storyteller

Investment Consultant (Remote)

Virtual Chat Assistant-Part Time in Cleveland, OH

Interpreter new york

Car Wash Attendant

Need English Instructor (FT) in Leavenworth, KS

Aveanna Healthcare Private Duty Nurse LPN - PRN Nurses in Palm Bay, FL

IT Security Analyst – Remote, United States