At Quorum Cyber we help good people win. Founded in Edinburgh in 2016, our expert team of security analysts, incident responders, forensic specialists, and threat hunters leverage the best Microsoft security technologies to defend organisations worldwide against cyber security breaches and attacks. As a Microsoft-only house we provide a unified security ecosystem, offering a collection of simple, innovative Professional and Managed Security Services, delivered through our own platform Clarity. Our key Managed Security Services include: - Azure Sentinel Security Operations Centre (SOC) and Managed Detection and Response (MDR) - Managed Microsoft Defender - CREST Vulnerability Management - Phishing Protection & Simulation Our Professional Security Services provide a wide range of advisory, risk assessment and compliance solutions, with the aim to help you manage your exposure to cyber risk over time, increase resilience to business disruption, and achieve measurable returns on investment. Let us take the weight and pressure of managing security posture, internal IT security skillset and challenges faced with the increase in sophisticated cyber threats. With us by your side as your trusted security partner, discover how our approach focusses on minimising business risk through addressing your security challenges and needs. Our commitment to quality can be evidenced by the growing collection of certifications and accreditations we’ve secured over the years, including Microsoft Gold Partner status, Microsoft Intelligent Security Association (MISA) and CREST Accreditation: Vulnerability Assessments, Penetration Testing and Cyber Security Incident Response. We are proud winners of the Scottish Cyber Awards and Digital Technology Awards for our innovate, in-house built services

what i do is:

• Identify and respond to cyber security threats and incidents:
  • Proactively monitor, triage, and analyse security alerts, events of interest, and other “trigger” events
  • Actively work with security technologies.
  • Work with data to understand and analyse security incidents
  • Participate in incident response activity, taking active actions to help contain threats
• Maintain and communicate technical data to stakeholders, in particular with regards to triage, analysis and containment of cyber security incidents.
• Collaborate on product and process improvements, including:
  • Creating and improving analytics, workbooks, playbooks, threat hunts, etc.
  • Maintaining and contributing to our knowledge base
  • Provide feedback and collaborate with Engineering and Development teams to improve our products, services, technologies, integrations, etc.
• Work with threat intelligence and threat-hunting teams
• Research emerging threats and vulnerabilities
• Receive updated training and certification support

the skills and attributes i need are:

• Technical Expertise
• Customer Centricity
• Thinking Clearly Under Pressure
• Analytical Skills / Problem-solving

• Focussed on Detail
• Great Communication Skills
• Curious and innovative
• Great team player

i know i have done a great job if:

• I get great feedback from colleagues and customers for the quality and timeliness of my work.
• I have correctly triaged potential incidents.
• I have analysed security incidents in depth, effectively and efficiently understood the scope and impact of an incident.
• I have been effective and efficient at supporting the incident response process.
• I have correctly followed investigation methodologies, combining both established processes with creative autonomy, to better achieve my objectives
• I have maintained great quality documentation that provide auditable records of what was done, when and why.