Location: Manchester
PLEASE NOTE: THIS ROLE REQUIRES SC CLEARANCE
Job Description
You've got opportunities
As a member of the Cyber Security Operation Centre Monitoring and Response team you will play a vital role in responding to immediate security threats on commercial networks across the globe. Responsible for timely and appropriate action related to reactive or proactive cyber events and incident investigation. So, no more counting down the clock. Your future starts here.
* Location: Manchester (This role offers a 3 together, 2 wherever working model. This means you are required to be at your contractual location 3 days a week with 2 flexible days per week).
* Weekly Hours: 37.5 (24/7 shift role. The shift pattern is 2 day shifts (7am-7pm) and then 2 night shifts (7pm-7am) then 4 days off. For example, Monday and Tuesday would be a day shift, Wednesday and Thursday would be night shifts and then you would be off until Tuesday to start to pattern again).
* Position Type: Full Time
* Contract: Permanent
* Security Clearance: Must be able to obtain and maintain Security Clearance
What you’ll be doing
You will be responsible for monitoring, investigating, analysing, and remediating security incidents using a broad set of tools.
Key Responsibilities:
* Monitor: Monitor security alerts and events across various platforms and tools.
* Investigate: Conduct investigations to identify potential security incidents.
* Analyse: Perform detailed analysis of security incidents to determine their impact and root cause.
* Remediate: Implement immediate remediation actions and provide recommendations for long-term solutions.
* Liaise: Communicate effectively with customers and internal stakeholders to provide updates and gather necessary information.
* Documentation: Write and review process documentation.
* Shift Work: Participate in a 24/7 shift rotation to provide round-the-clock incident response coverage.
* Compliance: Assist in maintaining our ISO27001 certification by adhering to established security policies and procedures.
What you'll need
* Security Clearance: Must be able to achieve and maintain security clearance.
* Qualifications: Recognised formal qualification in Cyber Security. Desirable examples include SSCP, CompTIA S+, CompTIA A+. SC-200, SC-900, Cyber Security related higher education.
* Experience: Worked within a Cyber Security Operations Centre.
* Technical Security Knowledge: An understanding of SIEM and Endpoint detection technologies. Ability to recommend and implement mitigation techniques. Familiarity with various security methodologies and processes. Understanding of threat landscape and emerging threats.
* Communication Skills: Excellent ability to liaise with customers and internal teams. Strong verbal and written communication skills, with the ability to explain technical information in a clear and concise manner to both technical and non-technical stakeholders.
* Self-Motivation: Proactive and self-driven. Enquiring mind with a desire for knowledge and willingness to learn.
* Attention to Detail and Organisational Skills: Strong focus on accuracy. Ability to multi-task, prioritise, and manage time effectively. Comfortable working with changing requirements and using initiative.
* Technical Expertise: Have experience SIEM/SOAR tools with an understanding of cybersecurity methodologies.
* Continual Improvement: Demonstrated experience in continuous improvement or transformation projects.
#J-18808-Ljbffr