SOC Analyst

Rimes provides transformative data management, ESG and investment intelligence solutions to the global investment community. Driven by our passion for solving the most complex data problems, we partner with our clients to help them make better investment decisions using accurate information and industry-leading technology. Headquartered in New York and London, Rimes serves its global clients through offices in Europe, Americas and Asia Pacific.

We are currently in the midst of an exciting growth phase, as Rimes extends into new markets and geographies. To support this, we are hiring for roles across Sales, Product, Development, Marketing and other functions. Visit our Careers page to see our complete listings and more information on our competitive benefits package.

The Opportunity

Rimes Technologies is looking for a SOC Analyst to join our technology team. This role will be to enhance our SOC capabilities with the overall objective of preventing cyber attacks and enhancing our cyber incident response capabilities. The candidate will join a small but established Information Security team reporting to the Head of Information Security.

What you will do:

• Monitor, analyse and respond to security issues
• Conduct host forensics, network forensics, and log analysis in support of incident response investigations.
• Effectively investigate to identify root cause, including attack vector, exploitation, and other techniques utilized to bypass security controls
• Develop and enhance response playbooks
• Perform training and knowledge transfers to other technical teams
• Continuous optimisation of tooling coverage and effectiveness
• Continuous optimisation of internal processes
• Vulnerability management/ reporting and processing findings for the technical teams to action
• Interface with security suppliers to drive initiatives and monitor services provided
  
  

Who you are:

• 2 years' experience in IT Infrastructure, Networking or Cybersecurity
• Strong understanding of network principles, such as TCP/IP, DNS, routing and switching
• Understanding and working knowledge of the following security technologies:
• Firewalls (Palo Alto, Meraki, Azure)
• IDS/IPS (Palo Alto, Meraki, Darktrace)
• MS 365 Security Suite (Defender for endpoint, Defender for identity, CAS)
• EDR/XDR (SentinelOne, Defender for endpoint, Darktrace)
• SIEM (Alienvault)
• Vulnerability scanners (Qualys, Spycloud)
• Load Balancers (desirable)
• MS Azure cloud security suite
• Experience in writing playbooks and processes
• Experience in incident management development/ enhancement
• Professional SOC (or related) Security certification (CEH, CSA etc) will be considered a plus
• IT infrastructure accreditation (CCNA, MS Infrastructure/Sysadmin, MS Azure etc) will be considered a plus
• GRC experience (Risk management, Policy creation, Supply chain risk management, Audits etc) will be considered a plus
• Knowledge of kill-chain model, ATT&CK framework, and modern penetration testing techniques will be considered a plus
  
  

Rimes is committed to promote the values of diversity and inclusion throughout the business. Whether it's through recruitment, retention, career progression or training and development, we are committed to improving opportunities for people regardless of their background or circumstances.