Job Title

Location(s): UK, Europe & Africa : UK : London BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work across 10 countries to collect, connect, and analyze complex data, enabling governments, armed forces, and businesses to gain digital advantage in demanding environments. Job Title: SOC Analyst Location: London- We offer hybrid and flexible working arrangements. Please discuss options with your recruiter. Grade: GG10 Referral Bonus: £5000 What You'll Be DoingBAE Systems provides Security Operations services to UK CNI organizations, either through dedicated SOCs or by integrating our staff into existing teams. The networks protected include on-premises, Azure, and AWS cloud platforms, with potential scope for operational technology systems. The SOCs may be staffed by a mix of customer and BAE personnel in multiple locations, with operations conducted both from offices and customer sites within the UK. The role involves shift-based, 24/7 operations, utilizing SIEM tools to detect and investigate security incidents. ResponsibilitiesMonitor, triage, analyze, and investigate alerts and network traffic to identify cyber-attacks and security incidents. Prepare and deliver shift handover briefs. Categorize and escalate suspected incidents according to policy. Recognize intrusion attempts and compromises through event analysis. Create detailed security incident tickets and support remediation activities. Produce security review reports with improvement recommendations. Support SIEM alert enrichment, case management, and process improvements. Develop and refine SOC playbooks. Participate in threat exercises and support threat intelligence application. Mentor junior analysts and act as escalation point. RequirementsTechnicalBasic Python/scripting, Windows, OS X, Linux knowledge. Experience with Splunk, Splunk ES, Sentinel; knowledge of SPL and KQL. Splunk configuration, CIM mapping, API experience. Understanding of threat intelligence, network intrusions, TCP/IP, WAF/firewalls, cloud/hybrid networks. Certifications in Azure Security and Splunk preferred. Non-technicalClient engagement, report writing, mentoring skills. Adaptability to different cultures and working environments. Self-motivated, team player, capable of remote and on-site work. BenefitsCompetitive pension, employee share plan, flexible health and wellbeing benefits, private health plans, shopping discounts, and potential annual incentives. Why BAE Systems?Join an inclusive culture valuing diversity, integrity, and merit. We welcome applicants from diverse backgrounds, including underrepresented communities. We support inclusive recruitment and reasonable adjustments for disabilities. Many roles require security and export control clearances, with some needing higher security vetting. Life at BAE Systems Digital IntelligenceEmbracing hybrid working to enhance flexibility and work-life balance. We promote diversity and inclusion, fostering a collaborative environment where varied perspectives drive excellence. Division overview: GovernmentWe are leaders in cyber defense, protecting critical government and infrastructure networks. As part of our team, you will help defend the connected world and national security.#J-18808-Ljbffr