Responsibilities:-Proactively implement IT security practices and solutions using industry standard methods and tools to ensure the confidentiality, integrity and availability of the data residing on or transmitted to and from or through University workstations, servers, handheld devices and other systems, in databases and other data repositories.-Working daily with our SIEM / SOAR solution to ensure that security incidents are detected and investigated in a timely manner, ensuring the appropriate response processes are initiated by the team (identifying opportunities for automation where possible) to best protect the organisation from negative impact from cyber-attacks.-Leading on the security response for complex incident response and hunting for threats within our environment.-Lead the SOC on the running and maturing of the vulnerability management process to ensure that services and assets are regularly evaluated for vulnerabilities and working with technical leads to ensure remediation in-line with the set policy.-Contribute to the completion of penetration tests and security audits to assess the effectiveness of IT security controls in accordance with security policies and system risk management.

Responsibilities:- Respond to and investigate alerts raised by the array of SOC tools including the SIEM (LogRhythm), EDR (CarbonBlack), IDS/IPS (SourceFire), Azure Sentinel and Packet Analyzers (Moloch, WireShark).- Present a professional, detailed analysis of incident investigations. - Efficiently producing incident reports to summarise activity in order to assist Senior analysts and clients.- Undertook various threat hunting investigations involving the research of new attack methodologies and vulnerabilities to help develop the security posture of our clients.- Assisted in enhancing rule detection logic to help reduce false positives within the SIEM.