Cyber Security Operations Analyst

26 Mar 2024
10 Apr 2024
Job Type
Cyber Security
Employer Sector
Technology, IT & Telecoms
Contract Type
Full Time

We believe in better. And we make it happen.

Better content. Better products. And better careers.

Working in Tech, Product or Data at Sky is about building the next and the new.

From broadband to broadcast, streaming to mobile, SkyQ to Sky Glass, we never stand still. We optimise and innovate.

We turn big ideas into the products, content and services millions of people love.

And we do it all right here at Sky.

What you'll do
  • Act as escalation for L2 Analysts for a variety of cyber security events.

  • Perform timely and accurate investigations of escalated L2 Analyst cases and Incidents with a view to remediation.

  • Liaise with Security Platform teams and other L3 Analysts to agree any potential automation improvements.

  • Where appropriate, liaise directly with affected staff members in the wider business, or support owners for context, awareness, and potential remediation/closure.

  • Liaise with L2 & L3 Analysts from other territories and where required, co–ordinate high profile incidents spanning multiple regions.

  • Review other potential log sources and internal security systems to provide supplemental information to build the most comprehensive and conclusive cases possible.

  • Where required work with other areas of the business on Cyber related projects and initiatives including new tooling proof of concepts.

  • Participate in an on–call rota for out of hours escalations of high priority incidents.

What you'll bring
  • +5 years' experience within a technical Security Operations role.

  • +5 years' experience of Cyber Security Investigations and Incident Response environments.

  • Good knowledge of Anti–malware, or Endpoint Detection and Response (EDR) systems.

  • Good all–round knowledge of different threat scenarios, investigations, incident response processes and remediation techniques.

  • Good knowledge of cyber security systems and tooling.

  • Reasonable knowledge of Security Information and Event Management (SIEM) systems.

  • Reasonable knowledge of Security Orchestration, Automation and Response (SOAR) systems.

  • Good knowledge of User Behaviour Analytics (UBA) systems.

  • Good knowledge of common operating systems (e.g., Windows, Mac, and Linux).

  • Good knowledge of networking and network equipment.

  • Strong oral and written communication with an ability to clearly articulate a security event.

  • A supportive team player who works well others.