SOC Analyst, Cyber Risk

In a world of disruption and increasingly complex business challenges, our professionals bring truth into focus with the Kroll Lens. Our sharp analytical skills, paired with the latest technology, allow us to give our clients clarity—not just answers—in all areas of business.

We embrace diverse backgrounds and global perspectives, and we cultivate diversity by respecting, including, and valuing one another. As part of One team, One Kroll, you’ll contribute to a supportive and collaborative work environment that empowers you to excel. 

Kroll’s Cyber Risk team works on over 2,000 cases a year, including some of the most complex and highest profile matters in the world. With experts based around the world, supported by ground-breaking technology, we help protect our client’s data, people, operations and reputation with innovative assessments, investigations and intelligence. We are the only company in the world with the expertise and resources to deliver global, end-to-end cyber risk management, supporting organizations through every step of their journey toward cyber resilience. 

Clients count on us for quick and expert support in the event of and in preparation against a cyber incident; from incident response to risk assessments, and complex forensics to breach notification and ID theft remediation we help clients – of all sizes – respond with confidence.

Duties and Responsibilities

• To be a key member of the SOC and provide real time threat analysis and detection. 
• Carry out in-depth investigation on security events, raise incidents and support the Incident Management process.
• Conduct remote incident handling activities and provide security advice to support customers during and immediately after security incidents.
• Respond to system generated alerts, analyse logs and traffic patterns.
• Supporting multiple customer environments concurrently.
• Provide analysis and trending of security log data and network traffic.
• Generate customer facing security reports.
• Integrate and share information with other analysts and other teams.
• Tune and whitelist false positives from our detection rules.
• Support investigations in Major Incidents.
• Other duties as assigned.

Essential

• Has a passion for security and enjoys solving problems.
• Knowledge of the security threat landscape
• Good knowledge of Cyber Security Incident Response processes & procedures.
• Excellent knowledge on the fundamentals of Windows and Unix systems.
• Good knowledge of the security threat landscape.
• Knowledge of various security methodologies and processes, and technical security solutions.
• Knowledge of TCP/IP Protocols, network analysis, and network/security applications.
• Knowledge of investigation techniques to determine security incidents.
• Ability to multi-task, prioritize, and manage time effectively.
• Strong attention to detail.
• Excellent interpersonal skills and professional demeanour.
• Excellent verbal and written communication skills.
• Excellent customer service skills.
• Ability to work a shift rota.
• 1-3+ years’ experience as a Cyber Security Analyst or equivalent.
• Industry recognised security and networking certifications (CCNA, CompTIA Network+, CompTIA Security+, CompTIA CySa+, CREST, GIAC)

Desirable

• Bachelor’s degree in a related field or equivalent experience and knowledge
• Experience of working in an MSSP/MDR SOC environment.

In order to be considered for a position, you must formally apply via careers.kroll.com.

Kroll is committed to creating an inclusive work environment. We are proud to be an equal opportunity employer and will consider all qualified applicants regardless of gender, gender identity, race, religion, color, nationality, ethnic origin, sexual orientation, marital status, veteran status, age or disability.

#LI-TM1

#LI-Remote