NTT DATA Birmingham, United KingdomOverviewWe are currently recruiting a Senior SOC Analyst L3 Managed Detection and Response to join our growing Security Operations Centre business. This role will be hybrid variable in Birmingham.ResponsibilitiesThe primary function is to manage incidents escalated by the SOC Analyst (L1 & L2) and undertake the detailed investigation of security events. Provide root cause analysis and liaise with the customer and the Service Delivery Manager, ensuring SOC Analysts follow best practice.Security Monitoring and Investigation: monitor SIEM tools, oversee and enhance security monitoring systems, conduct real-time analysis of security events, and escalate as necessary.Support investigations into incidents, determine root cause and impact; document findings and lessons learned to improve incident response procedures.Ensure runbooks are followed and fit for purpose; perform static and dynamic malware analysis to determine behaviour, indicators of compromise (IOCs), and potential impact.Reverse engineer malware samples to understand functionality and develop detection signatures; maintain chain-of-custody during evidence handling and documentation.Lead and coordinate incident response activities to contain, eradicate, and recover from security incidents; manage escalation and coordinate with Forensics and law enforcement teams.Stay abreast of latest cyber threats and vulnerabilities; integrate threat intelligence into monitoring processes and contribute to threat intelligence feeds.Security Tool Management: manage and optimise SIEM tools, develop SOC Use Cases, evaluate new security technologies, and collaborate with IT, legal, and management to address incidents and preventive measures.Documentation: maintain up-to-date security procedures, incident response plans, analysis reports, post-incident reports, and monthly reporting packs.Support the creation of robust event and incident management processes, Runbooks & Playbooks; participate in scoping and standing up new solutions; assist Pre-Sales with requirements; demonstrate SOC tools to clients.Continual Service Improvement: provide recommendations to address incidents or persistent events.What you'll bringMust be able to obtain SC Clearance or already hold SC clearance.Strong incident response knowledge and hands-on experience with Splunk, QRadar, and Microsoft Sentinel (or other SIEM tools).Strong interpersonal and presentation skills; good understanding of network traffic flows and normal vs. suspicious activity.Good understanding of Vulnerability Scanning and management, and Ethical Hacking (Penetration Testing).Strong DFIR (Digital Forensics and Incident Response) principles knowledge; ability to reverse engineer attacks.Knowledge of ITIL disciplines (Incident, Problem, Change Management).Ability to work with minimal supervision; willingness to work in 24/7 operations or on call.Education Requirements & ExperienceMinimum of 3 to 5 years in IT security, preferably in a SOC/NOC environment.Cyber Security Certifications such as ISC2 CISSP, GIAC, SC-200 are preferred.Experience with Cloud platforms (AWS and/or Microsoft Azure).Excellent knowledge of Microsoft Office products, especially Excel and Word.Reports toSecurity Director – NTT DATA UK Security PracticeClient Delivery Director – NTT DATA UK Managed ServicesWe’re a business with a global reach that empowers local teams, and we undertake exciting work that is genuinely changing the world. Our portfolio of consulting, applications, business process, cloud, and infrastructure services enables you to achieve great things by working with brilliant colleagues and clients on exciting projects.Our inclusive work environment prioritises mutual respect, accountability, and continuous learning. We foster collaboration, well-being, growth, and agility, and support diverse networks including Women’s Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network, and Parent Network.For more information on Diversity, Equity and Inclusion please visit: Creating Inclusion Together at NTT DATA UK | NTT DATAWe offer tailored benefits to support your wellbeing and opportunities for continuous growth; flexible work options are available.You can learn more about NTT DATA UK & Ireland here: https://uk.nttdata.com/We are an equal opportunities employer and a Disability Confident Committed Employer; we guarantee an interview to applicants who declare a disability and meet the minimum requirements. Please let us know if you require reasonable adjustments during the recruitment process.Seniority levelMid-Senior levelEmployment typeFull-timeJob functionConsultingIndustries: IT Services and IT ConsultingReferrals increase your chances of interviewing at NTT DATA by 2xInformationWe are not listing further roles here; for other opportunities see the Birmingham/West Midlands area job postings. #J-18808-Ljbffr