Cyber Incident Response Analyst - SC Cleared

This job has now expired please search on the home page to find live IT Jobs.

We're looking for an experienced Principal Cyber Incident Response Analyst specialising in incident management, digital investigations, host forensics, network forensics and/or malware analysis to lead the Cyber Incident Response Team.

Your key responsibility areas will include:

*Leading the professional delivery of all Cyber Incident Response and Digital Investigation services

*Managing a small team of technical specialists and supporting their professional development through coaching, training, and performance reviews

*Acting as the subject matter specialist in cyber incident response and related disciplines to the wider business

*Advising clients on how to best respond to any given incident, from boardroom to boots-on-the-ground, with excellent technical leadership to promote confidence based on your skills and experience

*Advising clients on how to best implement mitigation measures which might prevent or limit future incidents, working with customer and internal teams to create effective response strategies

*Authoring and reviewing customer Cyber Incident Response Plans

*Providing specialist cyber knowledge, insight, and training to clients and to internal teams on an ad-hoc basis and through the delivery of formal training courses

*Leading threat hunting programmes across available security devices and through operating system native or custom tooling

*Developing threat intelligence capabilities and strategies in conjunction with other operational teams and customers

Skills, Qualifications & Knowledge Required

We're looking for somebody that has:

*Excellent knowledge of the inner workings of Windows Operating Systems

*Excellent knowledge of how malware works and some experience in tearing it apart

*Good knowledge of the fundamentals of Unix systems including MacOS and Linux distributions

*Excellent knowledge of host-based investigations including digital forensic principles and practices

*Excellent report writing and reviewing skills

*Good knowledge of Cyber Threat Intelligence capabilities and strategy implementation

*Excellent knowledge of common networking and routing protocols (e.g. TCP/IP), services (e.g. TLS, DNS, SMTP) and how they interact to provide network communications

*Good experience in packet-level analysis, firewall and hypervisor administration, network appliance log analysis, and management of network intrusion detection and prevention systems

*Excellent knowledge of Cyber Security Incident Response processes and procedures with real-world application

*Proven experience in winning commercial bids and leading the delivery of technical consulting services

*Some practical programming knowledge or experience in writing scripts in languages such as Python, PowerShell and Bash

Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks.

LA International Computer Consultants Ltd is an HMG Approved Consultancy and operates as an IT & Engineering Consultancy or as an Employment Business & Agency, depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, we welcome applications from all sections of the community and from people with diverse experience and backgrounds.

Award Winning LA International Computer Consultants Ltd (Recruiter Awards for Excellence - Best IT, Best Public Sector & Gold Awards) and the most prestigious award that any business can receive The Queens Award for Enterprise: International Trade 2015.