Senior Elastic SOC Engineer (DV Security Clearance)
Job Description
Position Description
CGI was recognised in the Sunday Times Best Places to Work List 2023 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a member not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go.
The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build, and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client.
SC clearance is required (HLC is preferred), but SC candidates must also be willing to undergo vetting for Higher Level Clearance so single UK National is required. Due to the high level of security clearance this role will be based on site in Chippenham or Gloucester.
Your future duties and responsibilities
Join our team as a SOC Engineer, where you will lead the deployment of Elastic in a private cloud environment based on VMware. Your role will encompass building, configuring, and testing security functions on the platform, integrating Elastic SIEM into the main SOC, and eventually monitoring the system.
Key Responsibilities:
1. Install and Configure: Deploy Elastic SIEM onto the platform.
2. Testing and Compliance: Conduct comprehensive testing and refinement to ensure security compliance.
3. Monitoring and Incident Resolution: Perform monitoring, analysis, and resolve incidents.
4. Continuous Improvement: Enhance SOC configuration and automation.
5. Rule Support: Develop new rules for emerging client scenarios and priorities.
6. Testing and Assurance: Support broader test and assurance activities.
7. Service Delivery: Demonstrate a strong track record in secure service delivery.
8. Collaboration: Work effectively within a mixed client CGI team.
9. Adaptability: Quickly learn and integrate new technologies.
10. SIEM/SOAR Activities: Handle log gathering, event monitoring, and incident alerting.
11. Information Assurance: Apply principles of information assurance.
12. SIEM Configuration: Install and configure SIEM systems.
Required qualifications to be successful in this role:
1. Proven experience transitioning from project to service delivery.
2. Hands-on experience with Elastic SIEM.
3. Proficiency with VMware.
4. Knowledge of vulnerability management tooling.
Skills:
* Security Operations Center
* Vulnerability Management (IAVM)
Reference: 1124863 #J-18808-Ljbffr