SOC Cyber Security Engineer

SOC Cyber Security Engineer

• Location: Paris (2 days onsite / 3 Days remote)
• Duration: 1+ Year minimum renewable contract
• Start Date: As Soon As Possible
• Languages: English is Mandatory

I am currently assisting a Leading Insurance Group in the search for a SOC Cyber Security Engineer to work with them on a freelance basis.

The mission of the SOC Cyber Security engineer is to drive the implementation of automated workflows for native alert investigation, integrate playbooks into the SOAR platform, collaborate with the purple team to address security weaknesses, lead the onboarding of O365 native alerts, develop procedures for O365 alert triage, and provide training to SOC analysts, ensuring alignment with the SOC Transformation Program's objectives and enhancing detection and response capabilities within the Security Operations Center.

Glocomms have been working with this customer for a number of years and are directly responsible for placing numerous consultants in their ranks.

Key Responsibilities:

• Develop and implement automated workflows for the investigation and initial response to native alerts generated by security tools and technologies within the SOC environment.
• Integrate playbooks and runbooks into the security orchestration, automation, and response (SOAR) platform to enable automated response actions based on predefined security incident Scenarios.
• Collaborate with the SOC Transformation Program Manager and the purple team to analyze the outputs of purple team exercises and develop action plans for addressing identified security weaknesses and enhancing detection and response capabilities within the SOC.
• Lead the onboarding process for O365 native alerts, preparing the SOC for the upcoming 2025 initiative to extend coverage and enhance security monitoring within the Office 365 environment.
• Collaborate with Office 365 administrators and security teams to ensure seamless integration of O365 native alerts with the existing SOC infrastructure and tools.
• Develop and implement procedures for the effective triage, analysis, and response to O365 native alerts within the SOC, including the creation of specific playbooks tailored to O365-related security incidents.
• Provide training and guidance to SOC analysts on handling O365 native alerts and aligning the onboarding process with the overall SOC Transformation Program objectives.

Qualifications and Experience:

• Minimum 5+ Years experience in SOC Security Engineering
• Minimum 5+ Years experience in Microsoft Azure Sentinel
• Minimum 5+ Years experience in SOAR Platform
• Minimum 5+ Years experience in O365 Security
• Related certifications are desirable
• MUST BE ENGLISH SPEAKING