Demo
Salary Resume Critique Job Openings

Cyber Defence SOC Analyst

Ascot Group
New York, NY Full Time
POSTED ON 2/12/2025
AVAILABLE BEFORE 4/28/2025

Job Description

This is an opportunity to join Ascot Group - one of the world's preeminent specialty risk underwriting organizations.

Designed as a modern-era company operating through an ecosystem of interconnected global operating platforms, we're bound by a common mission and purpose : One Ascot. Our greatest strength is a talented team who flourish in a collaborative, inclusive, and entrepreneurial culture, steeped in underwriting excellence, integrity, and a passion to find a better way, The Ascot Way .

The Ascot Way guides our people and our organization. Our underwriting platforms collaborate to find creative ways to deploy our capital in a true cross-product and cross-platform approach. These platforms work as one, deploying our capital creatively through our unique Fusion Model : Client Centric, Risk Centric, Technology Centric.

Built to be resilient, Ascot maximizes client financial security while delivering bespoke products and world class service - both pre- and post-claims. Ascot exists to solve for our clients' brightest tomorrow, through agility, collaboration, resilience, and discipline.

About the role :

As part of our 24x7 Cyber Defense function, an L1 / L2 analyst will be the first responder to cyber security events. The analyst will work within an expanding cybersecurity team, collaborating with cybersecurity managers, Senior Security Analysts, and cybersecurity engineers.

The L1 / L2 cyber defence analyst must be detail-oriented and diligent, capable of monitoring multiple aspects simultaneously. The analyst will be responsible for overseeing the protected assets and responding to threats and events according to required outcomes. Additionally, the analyst will be required to work in scheduled shifts, which may vary depending on operational needs.

Responsibilities :

  • Monitor our SIEM (Security Information and Event Management) tool to respond to suspicious events and abnormal activities.
  • Monitor other security tools and triage incoming threat intelligence news sources.
  • Triage events through validating suspicious activities, and appropriately categorize and prioritize incidents based on severity.
  • Assist in the escalation process of cybersecurity incidents, ensuring thorough documentation, collection of artefacts and communication with stakeholders.
  • Develop and refine standard operating procedures in the form of run books and playbooks for incident response and threat detection.
  • Conduct technical analysis, log reviews, and assessments of cybersecurity incidents throughout the incident management lifecycle.
  • Escalate incidents with effective reporting to Level 3 Cyber Defense Analysts or Senior Stakeholders.
  • Collaborate with team members in other Ascot geographies and time zones to troubleshoot and analyse logs from various log sources, and systems.
  • Communicate findings and recommendations clearly and concisely to technical and non-technical stakeholders.
  • Have an ability to implement detection use cases within our SIEM for our expanding estate and key stakeholders using appropriate scripting languages.
  • Provide incident management through effective monitoring, reporting, and technical guidance for successful resolution.
  • Work with end users where appropriate on security related incident and request workflow.
  • Document and manage incident cases to utilise information for stakeholder engagement to provide insight, intelligent recommendations, risk reporting and lesson learnt.
  • Create and make improvements to existing and new procedures and playbooks.
  • Work in scheduled shift patterns when required.
  • Conduct in-depth security investigations, analysing logs, network traffic, and other data sources to identify root causes, assess impact, and gather evidence for response and mitigation actions.

Requirements :

  • Cybersecurity related Bachelor's degree or related field.
  • Minimum of 2 years of experience in a security operations role.
  • Preference will be given to candidates who also have additional technical and cyber-risk certifications covering both defensive and offensive security such as CompTIA Security , Certified SOC Analyst (CSA), Certified Ethical Hacker (CEH), CySA , CISSP, GSEC, GCIH, CCSP, Microsoft SC-200, CISSP-ISSMP, CTIA, OSCP.
  • Possesses a growth mindset and is willing to learn how to resolve technical security issues.
  • Demonstrates a working and genuine interest and talent in Cyber Security
  • Demonstrates detail orientated and can take a structured approach to procedures and working instructions.
  • Works and maintains a calm structured mindset even when under pressure.
  • Possesses an aptitude for understanding and analysing data when troubleshooting.
  • Possesses strong written communication, critical thinking, and analysis skills, including the ability to present potential risks and actual findings to a wide audience. Ability to communicate complex problems to a non-technical audience.
  • Possesses a working understanding of key security concepts and attack types such as phishing, malware, vulnerabilities, Cyber Kill Chain, and attack stages.
  • Possesses an analytical mindset, capable of digesting a wide range of information and makes practical judgements based on available data and context.
  • Experience with security tools and technologies, including SIEM, intrusion detection systems, EDR, XDR, log analysis, and malware analysis.
  • Knowledge of typical enterprise technologies. On-premise and cloud base Windows and Linux operating systems (OS), Microsoft Azure, M365 and the ability to detect signs of compromise in these systems.
  • Understanding how adversaries compromise networks, the different stages of an attack and how they can be detected.
  • Maintains a desire to keep learning, with a curious and creative growth mindset.
  • This position may be filled at a different level, depending on experience

    • Compensation

    Actual base pay could vary and may be above or below the listed range based on factors including but not limited to experience, subject matter expertise, and skills. The base pay is just one component of Ascot's total compensation package for employees. Other rewards may include an annual cash bonus and other forms of discretionary compensation awarded by the Company.

    The annualized base pay range for this role is :

  • 80,000 - $95,000 - New York

    • Company Benefits

    The Company provides a competitive benefits package that includes the following (eligibility requirements apply) :

    Health and Welfare Benefits : Medical (including prescription coverage), Dental, Vision, Health Savings Account, Commuter Account, Health Care and Dependent Care Flexible Spending Accounts, Life Insurance, AD&D, Work / Life Resources (including Employee Assistance Program), and more

    Leave Benefits : Paid holidays, annual Paid Time Off (includes paid state / local paid leave where required), Short-term Disability, Long-term Disability, Other leaves (e.g., Bereavement, FMLA, Adoption, Maternity, Military, Primary & Non-Primary Caregiver)

    Retirement Benefits : Contributory Savings Plan (401k)

    LI-Hybrid

    Salary : $80,000 - $95,000

    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Cyber Defence SOC Analyst?

    Sign up to receive alerts about other jobs on the Cyber Defence SOC Analyst career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $111,725 - $147,313
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $99,793 - $130,112
    Income Estimation: 
    $125,027 - $157,872
    Income Estimation: 
    $125,027 - $157,872
    Income Estimation: 
    $149,432 - $188,965
    Income Estimation: 
    $149,432 - $188,965
    Income Estimation: 
    $179,455 - $227,077
    Income Estimation: 
    $163,631 - $209,073
    Income Estimation: 
    $192,911 - $256,346
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Job openings at Ascot Group

    Operations Technical Specialist - Financial Lines
    Ascot Group
    Hired Organization Address New York, NY Full Time
    Job Description Ascot Group Limited is a Bermuda domiciled global specialist in insurance and reinsurance. Built on a fo...
    Operations Technical Specialist, Environmental
    Ascot Group
    Hired Organization Address Houston, TX Full Time
    Job Description This is an opportunity to join Ascot Group - one of the world's preeminent specialty risk underwriting o...
    Technical Product Manager
    Ascot Group
    Hired Organization Address Hartford, CT Full Time
    This is an opportunity to join Ascot Group - one of the world’s preeminent specialty risk underwriting organizations. De...
    Underwriting Assistant, Professional Liability
    Ascot Group
    Hired Organization Address Atlanta, GA Full Time
    Job Description This is an opportunity to join Ascot Group - one of the world’s preeminent specialty risk underwriting o...
    View More Jobs at Ascot Group

    Not the job you're looking for? Here are some other Cyber Defence SOC Analyst jobs in the New York, NY area that may be a better fit.

    Cyber Defense SOC Analyst

    Ascot Group, New York, NY

    SOC Analyst, Cyber Risk

    Kroll, New York, NY

    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!