MDR Analyst
Permanent - Full TimeJob Overview
At Solis you will be joining a group of technical experts who tackle cyber threats day-in-day-out, at scale, for a myriad of clients ranging from small businesses with minimal in-house capabilities, right through to large complex corporations with a full stack. You will never be bored, you will always be learning, and you will have fun doing it.
As if that wasn’t enough, you will also be working for a recognised world class employer as defined by the Best Companies to Work For (2021), as well as one of the UK’s Best 100 employers for the last three consecutive years, and Top UK Insurance Workplace 2020 to boot.
Employee benefits include lots of training opportunities, 25 days holiday, private medical insurance (+ dental & optical cashback), employee assistance programme, pension plan, life insurance, income protection, subsidised gym membership, 4 paid volunteer days annually, season ticket loan, and a shiny Solis laptop.
About CFC Response | Solis
Solis is the cybersecurity arm of CFC Underwriting, a specialised cyber insurance provider with a portfolio of 70k+ insureds and a track record of disrupting markets and developing proprietary technology to deliver high-quality products and services faster than the competition.
With 100+ employees across our offices spanning the UK (London HQ), US (Austin), and Australia (Gold Coast); Solis serves businesses in 80+ countries. We’re privately owned and growing faster than any of our competitors in the market.
Our culture isn’t overly corporate, and we never take ourselves too seriously. We invest in the learning, development and growth of
As if that wasn’t enough, you will also be working for a recognised world class employer as defined by the Best Companies to Work For (2021), as well as one of the UK’s Best 100 employers for the last three consecutive years, and Top UK Insurance Workplace 2020 to boot.
Employee benefits include lots of training opportunities, 25 days holiday, private medical insurance (+ dental & optical cashback), employee assistance programme, pension plan, life insurance, income protection, subsidised gym membership, 4 paid volunteer days annually, season ticket loan, and a shiny Solis laptop.
About CFC Response | Solis
Solis is the cybersecurity arm of CFC Underwriting, a specialised cyber insurance provider with a portfolio of 70k+ insureds and a track record of disrupting markets and developing proprietary technology to deliver high-quality products and services faster than the competition.
With 100+ employees across our offices spanning the UK (London HQ), US (Austin), and Australia (Gold Coast); Solis serves businesses in 80+ countries. We’re privately owned and growing faster than any of our competitors in the market.
Our culture isn’t overly corporate, and we never take ourselves too seriously. We invest in the learning, development and growth of
About the role
This is an exciting opportunity for an analyst to play a key role in operating an innovative managed detection and response (MDR) service. The individual will be responsible for investigating and remediating detections from our security tooling across a growing UK customer base, as well as supporting customers with queries and engaging in proactive threat hunting.
The role is technically hands-on, requiring proven investigation and log analysis skills, with training and support provided to help the candidate to develop further in these areas. The candidate will also support the ongoing improvement of the service across people, process, and technology.
The role is technically hands-on, requiring proven investigation and log analysis skills, with training and support provided to help the candidate to develop further in these areas. The candidate will also support the ongoing improvement of the service across people, process, and technology.
About you
Service Delivery
• Triage and analyse detections from security tooling deployed within our customers' environments to determine which are false positives and which are true positives requiring remediation
• Perform remediation of malicious files, persistence mechanisms and other artefacts and threats, both through our security tools' built-in capabilities and remotely using PowerShell
• Identify opportunities for allow/block listing to improve service efficiency
Service Development
• Provide ongoing feedback on processes and technologies, and support the development of documentation and training material
• Develop new technical material to automate/enhance our service (e.g. PowerShell scripts for automatic identification and remediation of common threats) and improve efficiency
• Excellent communication skills in written and spoken English and attention to detail
• Triage and analyse detections from security tooling deployed within our customers' environments to determine which are false positives and which are true positives requiring remediation
• Perform remediation of malicious files, persistence mechanisms and other artefacts and threats, both through our security tools' built-in capabilities and remotely using PowerShell
• Identify opportunities for allow/block listing to improve service efficiency
Service Development
• Provide ongoing feedback on processes and technologies, and support the development of documentation and training material
• Develop new technical material to automate/enhance our service (e.g. PowerShell scripts for automatic identification and remediation of common threats) and improve efficiency
• Excellent communication skills in written and spoken English and attention to detail