Security Operations Center Analyst
CurrentSecurity Operations Centre (SOC) Analyst May 2021 – Present Essex County Council• Incident Triage: Once a potential incident is detected, SOC Analysts quickly assess its severity, impact, and scope, prioritising responses accordingly.• Containment and Eradication: Take immediate action to isolate affected systems, prevent further damage, and neutralise the threat.• Forensic Investigation: Conduct detailed investigations to determine the root cause of incidents, identify the attackers, and understand the extent of the breach.• Incident Reporting: create detailed reports documenting incidents, including timelines, affected systems, actions taken, and recommendations for improvement.• Metrics and Trend Analysis: Analyze incident data to identify trends, patterns, and recurring vulnerabilities, which help in improving security posture and developing proactive defense strategies.• Security Tools: As a SOC analysis I use many Security Tools such as, Microsoft 365 Defender, Microsoft Azure, SIEM Tools such as QRadar, Any Run Sandbox, Virus Total, Iboss and many more.• Critical Thinking: Ability to analyze complex situations, identify anomalies, and connect the dots to understand potential threats.• Problem-Solving: Proficiency in troubleshooting security issues, developing effective mitigation strategies, and implementing solutions.• Threat Hunting: Proactive approach to searching for potential threats that may have bypassed existing security controls.• Communication: Excellent written and verbal communication skills to effectively convey technical information to both technical and non-technical audiences.• Teamwork: Ability to collaborate effectively with team members and other departments to respond to incidents and improve security posture.• Time Management: Strong time management skills and the ability to prioritise tasks effectively in a high-pressure environment.