Cyber Operations Incident Responder

Greater Manchester
Full time
Posted
employer logo
Softcat
I.T., digital & online media services
1,001-5,000 employees
54 jobs
Apply on company site

Would you like to kick start your career in a supportive, collaborative and innovative company

Do you enjoy working as part of an enthusiastic, passionate, and collaborative team?

Join our Cyber Operations team

As an Incident Responder you will be part of our 24/7 SOC, reviewing incidents occurring in our customers' environments, alerting them to malicious activities and working with them to investigate and remediate incidents.

Success. The Softcat Way.

Softcat is a £1billion+ technology solutions business and trusted partner to names like Apple, Microsoft, and Adobe. Offering a growing portfolio of services including software licensing, cyber security, and IT infrastructure, we give our technical teams the tools and support to make exciting things happen. This is where to achieve more for your career.

You'll work alongside our engineering team to help identify tuning and optimisation opportunities, and with our wider team to support our customers through major incidents.

Candidates must hold or be able to gain SC clearance upon hire.

As Cyber Operations Incident Responder, you'll be responsible for:

  • Monitoring for security alerts from Security Platforms, primarily MS Sentinel, MS Defender, USM Anywhere
  • Providing second line incident management and analysis to our customers through effective monitoring, reporting, and technical guidance for successful resolution, maintaining high levels of ownership through the incident lifecycle
  • Documenting and managing cases to utilise information for customers reports, providing insight and intelligent recommendations
  • Interfacing with our customers to resolve issues, provide additional information, and answer questions related to incidents and monitoring
  • Maintaining high quality ticket, SLA and KPI adherence
  • Identifying and reporting tuning and automation opportunities

We'd love you to have

  • Experience working in a SOC, especially in an MSSP environment. Candidates who have previously performed a technical security role (but not necessarily in a SOC) will also be considered
  • The ability to dynamically assess risks, threats & threat actors for new and existing customers
  • A Cyber security focused degree, or related qualifications such as CompTIA SEC+, CySA+, or equivalent experience. Microsoft SC-200 and related certs are highly desirable
  • Previous experience with SIEM tools such as MS Sentinel, AlienVault, ELK, QRadar or similar
  • Familiarity with cyber security concepts and their application in different business environments
  • Detail orientated, with excellent communication skills and the ability to take a structured approach to procedures and working instructions

Work in a way that works for you

We recognise that everyone is different and that the way in which people want to work and deliver at their best is different for everyone too. In this role, we can offer the following flexible working patterns:

  • Hybrid working2 days in the office and 3 days working from home
  • Working flexible hours - flexing the times you start and finish during the day
  • Flexibility around school pick up and drop offs

Working with us

Wherever you work, we want you to experience the freedom and autonomy to realise your potential. You will feel supported by a team that celebrates individuality, encourages different perspectives, and embraces every background.

Join us

To become part of the success story, please apply now.

If you have a disability or neurodiversity, we can provide support or adjustments that you may need throughout our recruitment process or any mitigating circumstance you wish for us to consider. Any information you share on your application will be treated in confidence.

You can find out more about life at Softcat and our commitments to diversity and inclusion at jobs.softcat.com/jobs/our-culture/