IT Engineer (SOC)
Position Description
If you have an inquisitive nature and enjoy security technology, research and learning this role will put you at the forefront of CGI Cyber Security Service. The SOC is at the forefront of Technical automation and pushing into a Next-Gen SOC and this role proactively monitors the IT infrastructure for security incidents and participates in security incident investigation and resolution.The Security Operations Centre is a fast-paced environment that is flexible and adaptable to the threat landscape we face. The SOC utilise both tried and tested tooling and state of the art technologies and methods to ensure we provide the best level of service and protection to our prestigious list of clients. Our client base covers a wide range of verticals from Government, MOD and CNI through to companies that are easily recognisable as household names.
CGI was recognised in the Sunday Times Best Places to Work List 2024 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go.
This is a hybrid role with 2 - 3 days per week operating out of our Reading or Bridgend office, with sporadic travel to the alternate location. Due to the nature of the work, we can accept UK National's only for this vacancy. All applicants must hold or be eligible for SC clearance as a minimum requirement.
Your future duties and responsibilities
As a IT Engineer (SOC), you will play a critical role in maintaining and optimising the SOC infrastructure, ensuring its smooth and secure operation. This will include performing routine patching and upgrades, proactively addressing potential security and performance issues, and coordinating with other business units for incident management and patching activities. You will be responsible for responding to JIRA tickets on a weekly rota, sharing these responsibilities with your team.
In addition, you will provide essential support for SIEM-related queries, working closely with the SOC and other services. You will also contribute to successful project transitions, which may include building and configuring SIEM products, advising clients on network and endpoint configurations, and ensuring proper documentation and handover of new infrastructure to the SOC service.
Duties and responsibilities:
• Infrastructure Maintenance: Routine patching, upgrading, and proactive security monitoring.
• Incident Coordination: Collaboration with other business units for incident and patch management.
• Project Involvement: Participation in project design, planning, and client meetings as a subject matter expert (SME).
• SIEM Management: Building, configuring, and troubleshooting SIEM tools while managing on-boarding of endpoint devices.
• Documentation & Handover: Ensuring all project documentation and system handovers are completed thoroughly and accurately.
Required qualifications to be successful in this role
You will possess strong problem-solving, reasoning, and troubleshooting skills, along with the ability to work effectively as part of a team. You'll also have excellent time-management and organisational abilities to handle aggressive timelines and high-pressure situations.
A solid understanding of networking principles, including TCP/ IP, WANs, LANs, and common internet protocols (SMTP, HTTP, FTP, POP, LDAP), is essential. Experience with security compliance auditing and remediation is crucial for ensuring the security posture of the SOC. Finally, familiarity with SIEM solutions such as ArcSight, Splunk, TippingPoint, Huntsman, or FortiAnalyzer is necessary for managing and analysing security incidents effectively.
Skills and Experience Required:
• Team Collaboration: Ability to work effectively within a team environment, handling pressure and managing time efficiently.
• Networking Knowledge: Proficiency in networking principles, including TCP/ IP, WANs, LANs, and common internet protocols.
• Previous experience in Linux and Windows, ideally with some experience of cloud technologies
• SIEM Experience: Hands-on experience with SIEM tools like ArcSight, Splunk, or FortiAnalyzer for security monitoring and analysis.
• Security Compliance: Knowledge and experience in conducting security compliance audits and remediation.
• Communication Skills: Strong communication skills for interacting with peers, management, and clients.
Together, as owners, let's turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because...
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction.
Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
Come join our team-one of the largest IT and business consulting services firms in the world.