SOC Analyst Senior
Capital Group
London, GB
6d ago

You define yourself by more than just a job title, and we want you to feel comfortable bringing your true self to work. We value your talents, your traditions and your take on the world ̶ everything that makes you unique.

We’re working hard to advance diversity, equity and inclusion in our organization and our communities because we know that what makes us different makes us better.

We want you to feel a strong sense of belonging. We value and welcome your experiences, ideas and identity. Over 40 employee resource groups unite our people and help to develop our collective empathy through unfiltered conversations about race, ethnicity, gender, gender identity, sexual orientation, faith, disabilities, mental health and so much more.

I can influence my income.

You want to feel recognized at work. Your performance will be reviewed annually, and your compensation will be designed to motivate and reward the value that you provide.

You’ll receive a competitive salary, bonuses and benefits. Your company-funded retirement contribution will be the equivalent of 15% of your annual pay (including bonuses).

I can lead a full life.

You bring unique goals and interests to your job and your life. Whether you’re raising a family, you’re passionate about where you volunteer, or you want to explore different career paths, we’ll give you the resources that can set you up for success.

  • Enjoy generous time-away and health benefits from day one, with the opportunity for flexible work options
  • Receive 2-for-1 matching gifts for your charitable contributions and the opportunity to secure annual grants for the organizations you love
  • Access on-demand professional development resources that allow you to hone existing skills and learn new ones
  • COVID-19 HIRING : Our recruiting and onboarding activities are virtual during the pandemic and we’ve transitioned to a work-from-home environment until further notice.

    We are offering generous work-from-home benefits to improve our associate’s ability to work remotely.

    Capital Group is looking for a detection engineer to join our Security Intelligence Response Team (SIRT) to help protect and drive the Capital Group mission.

    Capital Groups SIRT is a global team responsible for providing threat intelligence, event monitoring, incident response, detection engineering and threat hunting for all business areas of Capital Group in a highly collaborative, fast paced environment.

    Information drives our business and we must protect Capital Group’s sensitive information and critical infrastructure.

    As a member of the Threat Detection Team, the ideal candidate is highly motivated and innovative to drive the maturity of our threat detection program.

    A candidate can be expected to utilize his / her technical expertise to create detection logic to identify prioritized threats using logs and security telemetry.

    The ideal candidate can dissect an adversary TTP and identify the logs and technologies required to identify that behavior in Capital Groups environment.

    In addition, this candidate will focus on supporting, automating, and enhancing the threat detection engineering lifecycle to advance the in-house detection and response capabilities as well as having a working understanding of security operations, cyber security tools, incident response process, intrusion detection, and secured networks both on-prem and in the cloud.

    Key Responsibilities :

  • Work closely with the security response and engineering teams to improve and build new tailored security detections.
  • Analyze SOC alert statistics and workflows to reduce false positives and properly focus engineering efforts.
  • Provide design support in ways to improve detection and response capabilities.
  • Provide back-up support to the incident response team when necessary.
  • Keep up-to-date on modern attack techniques to continually integrate knowledge into new detections.
  • Operate and help mature detection framework, SOC playbooks, workflow automation, and use cases to protect Capital Group people, missions, and assets.
  • Participate in purple team initiatives.
  • Qualifications :

  • Minimum 3 years working in cyber defense with experience in Incident Response, Incident Handling, Security Operations Center (SOC), threat detection engineering, threat intelligence, threat hunting, or similar functions.
  • Bachelor’s degree in Cyber Security, Computer Science or in an equivalent IT related field or work experience.
  • Experience with scripting languages (Python / PowerShell), software development lifecycle (SDLC) and agile methodology.
  • Experience automating security operations and incident response processes.
  • Ability to identify threats and adversaries by applying logic to logs and security telemetry.
  • Advanced knowledge in network, systems (Windows / Linux), cloud, containers, and web application attacks and mitigations.
  • Experience with modern security information and event management (SIEM) systems such as Splunk and / or ELK.
  • Experience in applying detection and response concepts to On-Premise and Cloud environments (AWS, Azure).
  • Experience crafting logic that detects anomalous in user, network, host, or cloud activity in a high-fidelity manner.
  • Knowledge of industry recognized security and analysis frameworks, e.g., MITRE ATT&CK, Kill Chain, NIST Incident Response, CIS.
  • Knowledge of reverse engineering and malware analysis.
  • Knowledge of vulnerability research and penetration testing.
  • Strong communication and documentation skills.
  • Prior offensive security experience, e.g., Red Team, Pen Testing, is desirable.
  • Willingness to provide support during nontraditional working hours or work in an on-call fashion.
  • Capital Group are committed to be an equal opportunity employer. In Europe, we endeavour to make reasonable adjustments at any point along the recruitment process for candidates in need.

    Reach out to the recruiter in the first instance to discuss your needs. Any information you share will be treated sensitively, confidentially and in line with our data privacy policy available on our website.

    Report this job

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form