Senior Cyber Security Analyst
Recruiter
Listed on
Location
Salary/Rate
Type
This job has now expired please search on the home page to find live IT Jobs.
SENIOR CYBER SECURITY ANALYST - HOME OFFICE
LIVE SERVICES, OPERATIONS, CYBER, SECURITY, ANALYST, CSOC, SOC, SPLUNK, ELK, SNOW, QUALYS, APT
Permanent role based in Salford - Salary up to £40,380 + shift allowance + up to 22% employer pension contribution and more.
The Home Office have set up a Cyber Security Operating Centre (CSOC) in Manchester which provides security monitoring and response across the Home Office estate. Due to expansion the Head of CSOC requires a Deputy CSOC Manager, and technical lead, to provide leadership and strategic direction to the technical function, and to support the Head of CSOC in the day-to-day running of the team.
About the team
The Home Office are in the process of building a new Cyber Security Operations Centre (CSOC). This function would lead in four main areas:
* Security monitoring and detection of incidents and concerns.
* Analysis of incidents by technical and business specialists including the invocation of mitigating actions by liaising with operational teams.
* Active threat intelligence and vulnerability management through close partnerships with vendors and National Cyber Centre, including information on current malware threats on the wider Internet.
* Forensic analysis and investigation to support any future risk mitigation activities
Essential Criteria
* Have a strong IT technical background and experience working in a SOC environment.
* Functional knowledge of operating protocol analysers and analysing output.
* Functional experience performing monitoring, analysis and recovery procedures.
* Functional experience performing deep-dive incident analysis by correlating data.
Desirable Criteria
* Functional knowledge of TCP/IP protocol suite, LAN/WAN technologies, switching, routing, VoIP and telephony technologies, firewalls and VPN, intrusion prevention systems (IPS), vulnerability assessment and patch management tools.
* Functional knowledge of UNIX, Linux, Apple and Windows technologies.
* Has functional knowledge and experience of using tools for security monitoring (e.g. Splunk, QRadar, Intel McAFee, ArcSight, RSA NetWitness), data analytics (e.g. ELK stack) and security case management (e.g. SNOW).
* Knowledge of or experience in vulnerability management tools (e.g. Qualys, Nmap, Nessus, Nexpose)
* Knowledge of targeted cyber-attack (APT), how to analyse these and respond to and mitigate against the attacks.
If you would like to have a discussion about the role or for some further details, please do not hesitate to contact Nick on or 0161 924 3916.