A global leader in the Aerospace & Defence sector is seeking the expertise of a technically astute SOC Analyst to help support the day to day operations and incremental improvement of a dedicated Security Operations Centre (SOC) for a major UK CNI organisation based in Leeds.
The successful candidate for the SOC Analyst role will be required to undergo governmental clearance.
Responsibilities:
* Prepare and deliver shift handover briefs.
* Monitor, triage, analyse, and investigate alerts, log data, and network traffic using the Protective Monitoring platform and Internet resources to identify cyber-attacks/security incidents.
* Write up high-quality security incident tickets using a combination of existing knowledge resources and independent research.
* Understand Threat Intelligence and its use in an operational environment.
* Produce new workflows for automation into SOAR tools for common attack types.
* Continually improve the service and review use cases, proposing changes and enhancements in line with the changing threat landscape.
* Basic Python and/or scripting skills, Windows, OS X, and Linux.
* Experience using Splunk and Sentinel.
* Work with a range of security tooling/technology.
* Strong understanding of security architecture, particularly networking.
* Detailed understanding of threat intelligence and threat actors, TTPs, and operationalising threat intelligence.
* Experience in investigating complex network intrusions (by state-sponsored groups or targeted ransomware attacks).
* Understand TCP/IP component layers to identify normal and abnormal traffic.
* Understanding of AWS &/or Azure cloud services.
* Experience of Splunk (with ES) &/or Sentinel, content development experience desirable.
If you are interested in discussing this long-term contract opportunity, please email a copy of your CV and contact number to arrange a call.
Please note that if you are NOT a passport holder of the country for the vacancy you might need a work permit.
Bank or payment details should not be provided when applying for a job. Eurojobs.com is not responsible for any external website content. All applications should be made via the 'Apply now' button.
Created on 22/01/2025 by TN United Kingdom
#J-18808-Ljbffr