The role
The Junior SOC Analyst will be working as part of the Data Loss Prevention Team within Cyber Security Operations. You will be part of an exciting team tasked to protect and detect data loss incidents identified as part of the Cyber threat landscape. To be considered for this role, you will be a strong Cyber Security Incident Response Analyst, have exposure to Data Loss Prevention, and ideally have Financial Services exposure.
Key responsibilities
- Process Data Leakage cases generated by automated tools and self-reported by staff
- Identify and manage DLP incidents where escalations are required and close with appropriate resolution codes
- Identify and promptly escalate data privacy GDPR cases reported in the team workflow tools/emails
- Review the information and identify against a list of required questions any cases that need further investigation
- Liaise with Line Managers and Business Information Risk Officers and support any issues and questions
- Deal with issues arising from the DLP correspondence/phone calls etc
- Update the Data Privacy Officer without unnecessary delay
- Generate emails for potential data leakage prevention (DLP) breaches to stakeholders
- If required, resolve basic queries received into the team email account
- Update and housekeep the database of Incidents and events
- Support technical staff when required with ad-hoc log reports (as skills grow; training will be supplied)
- Support the team’s initiatives to automate/offshore/outsource all manual tasks
- As required, support ad-hoc queries, tasks and projects to support the team manager
Skills and experience
- Extensive and solid understanding of DLP system architecture, policy management, and operational work
- Experienced with review and triage of DLP alerts and escalate accordingly
- Extensive knowledge in incident investigation, root cause analysis, and escalation
- Experienced in providing detailed DLP analysis support for global stakeholders and teams
- Understanding of networking, including topologies, data flow, Firewalls, routing, Wireshark, OSI model & Splunk
- Strong analytical capabilities and problem-solving abilities
- Experienced in writing technical documentation, standard operating procedures, requirement documentation, test plans, strategy, and processes.
- Excellent communication skills, both written and verbal to a wide and diverse audience
- Excellent interpersonal skills and ability to integrate in to a team environment
- Ability to quickly learn new skills and tools
- Accuracy and attention to detail while under pressure
- Ability to be flexible and re-prioritise tasks as the workload dictates
- Good skills using Microsoft Office and Outlook
- Experience of Incident management, problem solving or cyber related issues an advantage