Founded in 2003, LRQA Nettitude is an award-winning global provider of cybersecurity services, bringing innovative thought leadership to the ever-evolving cybersecurity marketplace. Through our research and innovation centres, we provide threat-led services that span technical assurance, consulting and managed detection and response offerings. To learn more, please visit https://www.nettitude.com/ The role: Working as an Apprentice in our Defensive Security Services (DSS) team, you will use your expertise and gain further knowledge to detect and respond to a multitude of threats of differing capability and sophistication. You will use SIEM, EDR, Network Monitoring, bespoke tooling, and Threat Intelligence solutions to triage suspicious events, provide context and an assessment of risk/threat to customers to enable efficient response and continuously monitor customer environments; yet it does not stop there. Not only will you gain experience in assessing threats using all information sources available to you, but you will also get involved in projects that maintain and enhance the capability of our services, and ensure we are providing innovative detection & response services to our clients. This includes threat hunting, supporting the implementation of new cutting-edge technology, malware analysis, recommending detections and getting involved in strategic cross-team projects as part of your wider role within our award-winning Security Operations Centre. We are a high-trust, close-knit team that does not operate under the traditional SOC tiers, so the passion and drive to get involved, make a difference, and use your eye for detail to spot patterns and support both our security mission and that of our customers is essential. Location: This role is hybrid based within the UK, with a mixture of Home and Office based working for collaboration, team building, workshops and clinic days. We can support working from across the UK. All applicants will require residence in the UK. What you’ll be doing: Security Analyst As an apprentice Security Analyst, you will be detecting and responding to a multitude of threats, helping to protect the UKs biggest enterprises in an ever-expanding threat landscape. You will gain experience in using Security Information and Event Management (SIEM) tools, Endpoint Detection and Response, Network Detection and Response, Security Orchestration, Automation and Response (SOAR), alongside Threat Intelligence solutions to triage suspicious events; learning to provide threat assessments to our clients. Managed Vulnerability Scanning Engineer As an apprentice MVS Engineer, you will be helping support LRQA Nettitude’s Managed Vulnerability Scanning Service. You will be working on a range of Tenable products, such as Tenable Vulnerability Management, Tenable Web Application Scanning and Tenable Cloud Security. You will learn how to configure and manage scans in addition to understanding how we present and prioritise discovered vulnerabilities to our clients. Security Engineer The technology that underpins the SOC requires daily administration along with maintenance and upgrades. As an apprentice Security Engineer, you will get exposure to the ‘back end’ of our technology stack; creating and tuning new detections and learning how to remediate common issues in LogRhythm and Sentinel. You will gain a wider understanding of how all our technology fits together to enable the SOC to function. Implementation Engineer You can expect to get involved in the implementation, configuration, and deployment of a multitude of LRQA Nettitude security technologies. You will learn how this role is vital in enabling our SOC Consultants to bring new clients onboard by helping to develop new monitoring use-cases and playbooks in line with the client’s requirements. What we’re looking for: A familiarity with Windows and Linux Ability to document and explain technical concepts to non-technical stakeholders Familiarity with Python and RegEx An understanding of Networking fundamentals Understanding of Incident Management, Problem Management and Incident Handling in a Controlled, Security Operations Environment An understanding of the role SIEM and MDR technologies play within a SOC An interest in Offensive Tools, Techniques, Vulnerabilities, and their Artefacts – For example, Kali, Fileless Malware, ATT&CK, CWE, CVE, OWASP An ardent desire to continually challenge and develop yourself as part of a fast-paced, high-performing team What we offer: We are a people-focused, high-performing, high-trust managed security services team. We pride ourselves on our investment in our people, meaning as we are a fast-evolving team in an exciting working environment, you’ll always have opportunities to solve the latest cybersecurity challenges, with the responsibility and development opportunities to match. Company benefits: Access to our interactive learning platforms via our partners, with encouragement to pursue subsidised external training & certification. Intensive new starter training program, blending theory, hands-on labs, case studies, online and on the job training to help you hit the ground running. Consistently updated training & progression plans with multiple tracks of development, supporting lateral movement or upwards progression Generous annual training, cross-training, and project days The option to join in with company and department socials to relax, get to know your new colleagues and team build Life assurance/Death in service benefit Yearly wellness day to be spent in the way that works best for you Recognition & rewards for individual, team, and department performance Performance-based bonus programme Private medical insurance Income protection Generous pension scheme A supportive team enabling you to succeed and grow your career. An attractive remuneration package will be negotiated with the right candidate. Apply? We don’t expect candidates to tick all the boxes. If you feel your skills, knowledge and experience are a good match for the requirements and you have a desire to learn and develop, we want to hear from you.