Job Title: SOC Analyst
Duration - 6 months
Location - Havant or Reading (2-3 days in a week onsite)
Description:
(2nd Line - Contractor, SC Cleared)
Provide hands-on 2nd line SOC operational support, including investigation and management of escalated incidents from the 1st line SOCValidate and assure quality and effectiveness of Sentinel alerts and detectionsSupport onboarding of log sources and priority use cases into Microsoft Sentinel in line with CAF, T3, and ECS Keystone requirementsDevelop and utilise KQL queries to enable effective triage, investigation, and validation of security eventsProvide operational support and guidance to L1 SOC, improving consistency in alert handling and escalationContribute to clearing operational backlog, including rule validation, clean-up activity, and onboarding deliveryPerform basic tuning of analytic rules to improve signal...