SOC Analyst Tier 1

-SOC Analyst (Tier 1)
-Glasgow
-£30,000 - £38,000 per annum
-ASAP Start

Our market-leading global client requires a SOC Analyst (Tier 1) with a breadth of experience across Cyber Security to join the team, throughout an exciting period of Change & Innovation. The role will be working with a global IT & Consultancy company, based in Glasgow, on multiple workstreams of a variety of complexity and scale.

The role plays a critical role in the initial triage, monitoring, and reporting of potential cyber threats within the Cyber Threat Analysis Centre (CTAC). Tier 1 Analysts will use their foundational knowledge of security information and event management (SIEM) solutions, to support the security operations team.

They will also be proficient in using multiple ticketing systems to manage incidents effectively, ensuring service level objectives are adhered to. Experience utilising Kusto Query Language (KQL) for log analysis will also be beneficial.

This is a full-time on-site role, covering a 24x7 shift pattern, which will come with a shift allowance. Candidates will be required to have active SC, moving to DV clearance and must have at least 6 months working experience in SIEM technologies.

Responsibilities:

• Monitor and review security events across various SIEM platforms to detect, triage, and respond to security incidents.
• Act as the first line of response for security incidents by identifying and classifying potential threats, escalating to higher tiers when necessary.
• Perform preliminary analysis on alerts.
• Create and manage incident tickets to track incident status
• Conduct and document formal handover/takeover procedures at the beginning and end of each shift t
• Liaise with Tier 2 and Tier 3 Analysts for complex investigations and updates on service status issues.
• Once comprehensive training has been completed, the L1 Analyst will assume shift lead duties in the absence of an L2 Analyst.
• Hold responsibility for security monitoring, completion of all assigned tasks and ensuring a thorough handover at the end of the shift.

Knowledge and Skills

• Understand and can explain foundational networking concepts, including IP addressing and basic network protocols.
• Basic knowledge of Windows and Linux operating environments.
• Competence in using SIEM for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms is preferred
• Able to demonstrate basic knowledge using Kusto Query Language (KQL) to search and filter logs effectively.
• Able to communicate clearly and efficiently with team members and stakeholders
• Can communicate simple technical issues to non-technical individuals in a clear and understandable way.
• Shows initiative in learning new technologies and techniques
• Able to function efficiently during high-pressure situations

The above is not exhaustive. To discuss this opportunity in more detail, please forward your CV to .