[Hiring] Security Analyst @GTT

Role Description

The CSOC team at GTT specializes in providing Managed Detection and Response (MDR) services that meet and exceed government and certification body standards. Collaborating closely with our high-value customer base, the team delivers a wide range of security services, including Security Incident & Event Management, ensuring top-notch protection and peace of mind for our clients.

The GTT SIEM platform is essential for identifying customer security incidents. One of the primary tasks of our security analysts is to deeply analyze the outputs of the SIEM environment and guide our customers toward effective remediation actions, successfully mitigating risks to their corporate and hosted environments.

Duties and Responsibilities:

• Providing analysis of SIEM alerts leading to enhanced customer security.
• Work with customers to enhance security incident response procedures.
• Enhance internal investigation process and identify additional toolsets required for rapid incident turnaround.
• Be part of a 24/7 customer support team providing first level diagnosis for our hosting and network customers.
• Identifying improvements and advising on best practice.
• Manage 3rd party vendor support as required.
• Adhere to team processes and the direction of the team.
• Work with Senior analysts/engineers to implement platform optimizations and tuning through structured change process.
• Perform upgrades to SIEM environment from operating system to application to ensure highest level of platform security.

Qualifications

• Proficiency in Security Information and Event Management (SIEM) platforms, particularly Splunk.
• Demonstrated experience in analysing and responding to security incidents.
• Strong understanding of cybersecurity principles and best practices.
• Experience in threat detection, analysis, and mitigation.
• Familiarity with incident response procedures and playbooks.
• Excellent analytical and problem-solving skills.
• Strong communication skills to collaborate effectively with stakeholders and customers.
• Relevant security qualifications are a plus.

Requirements

• Varied shift hours: Occasional extended hours may be required during critical incidents and platform upgrades.
• SC clearance will be required.

Benefits

• Adaptive Mindset: Meet change head-on to build the capabilities we need now.
• Collective Impact: Treat innovation as a team sport, working powerfully together to create extraordinary impact.
• Customer Ownership: Own our customers’ success, taking full accountability and anticipating their needs.