Cyber Security Analyst - Bristol
- Recruiter
- Anonymous
- Location
- Bristol
- Salary
- 500.00 - 550.00 GBP Daily
- Posted
- 05 Apr 2017
- Closes
- 03 May 2017
- Sectors
- Accountancy
- Contract Type
- Contract
- Hours
- Full Time
Senior Cyber Security Analyst
GBP500 - GBP500 per day
Based in Bristol
Job Description
Key Responsibility Areas
* You will be responsible for leading a team of SOC Operations Analyst who will analyse network, application and system log events in order to identify any potentially abnormal system behaviours and raise them as incidents for investigation. You will then investigate to establish if these are expected events or a security threat. You work closely with the Principle Operations Analyst (Incident Handler) and CIRT team members to identify or mitigate threats for our customers.
* As a SOC Senior Operations Analyst you will provide a Technical Escalation Point during security incidents, establishing the extent of an attack, the business impacts, and advising on how best to contain the incident along with advice on systems hardening and mitigation measures to prevent a reoccurrence.
* In addition, as a Senior Operations Analyst you will have the important role of working with external organisations and trusted partners to tune our service by designing advance detection rules to be implemented into our SIEM Solution.
Additional Responsibilities:-
* Maintain keen understanding of evolving Internet threats to ensure the security of client networks
* Write technical articles for internal knowledge base
* Participate in knowledge sharing with other analysts and develop solutions efficiently
* Coordinate or participate inindividual or team projects
* Perform other essential duties as assigned
Skills, Qualifications and Experience
* An active interest in software systems/engineering and/or secure communications and Information systems and/or system security architecture and/or malware.
* Qualifications within the IT Security field desirable though not essential. SANS Certified Intrusion Analyst (GCIA), Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP)
* CREST - CRIA, CCHIA, CCNIA
* Prepared to become SC and DV cleared if not already
* Previous experience of managing and coaching teams
* Experience of using SIEM tools such as ArcSight, LogRhythm, RSA Envision, Splunk etc
* Experience of maintaining a secure network through configuring and managing typical Security Enforcing Devices, such as Firewalls, Proxies, IDS/IPS devices, EPO. Knowledge of SNORT
* In depth experience of other common devices, such as routers, switches, hubs
* Troubleshooting Windows environments
* Strong written and verbal communication skills
* Attention to detail and great organizational skills
* Experience of using SIEM tools and the terminology associated with them.
* Knowledge and understanding of information technology concepts and technologies, as is knowledge of computer systems hardware and software, entity relationship models, design, protocols, attack vectors and methodologies.
* Strong understanding of network monitoring and packet analysis tools
* An understanding of Information Security; relating to the Confidentiality, Integrity and Availability of information
* Significant experience with TCP/IP, Linux, UNIX, Windows, IP Routing
* Experience with ISO27001 standards and ITIL framework
* Exposure to IT service management best practices such as ITIL
* Software engineering, programming or scripting knowledge. I.e. Java
GBP500 - GBP500 per day
Based in Bristol
Job Description
Key Responsibility Areas
* You will be responsible for leading a team of SOC Operations Analyst who will analyse network, application and system log events in order to identify any potentially abnormal system behaviours and raise them as incidents for investigation. You will then investigate to establish if these are expected events or a security threat. You work closely with the Principle Operations Analyst (Incident Handler) and CIRT team members to identify or mitigate threats for our customers.
* As a SOC Senior Operations Analyst you will provide a Technical Escalation Point during security incidents, establishing the extent of an attack, the business impacts, and advising on how best to contain the incident along with advice on systems hardening and mitigation measures to prevent a reoccurrence.
* In addition, as a Senior Operations Analyst you will have the important role of working with external organisations and trusted partners to tune our service by designing advance detection rules to be implemented into our SIEM Solution.
Additional Responsibilities:-
* Maintain keen understanding of evolving Internet threats to ensure the security of client networks
* Write technical articles for internal knowledge base
* Participate in knowledge sharing with other analysts and develop solutions efficiently
* Coordinate or participate inindividual or team projects
* Perform other essential duties as assigned
Skills, Qualifications and Experience
* An active interest in software systems/engineering and/or secure communications and Information systems and/or system security architecture and/or malware.
* Qualifications within the IT Security field desirable though not essential. SANS Certified Intrusion Analyst (GCIA), Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP)
* CREST - CRIA, CCHIA, CCNIA
* Prepared to become SC and DV cleared if not already
* Previous experience of managing and coaching teams
* Experience of using SIEM tools such as ArcSight, LogRhythm, RSA Envision, Splunk etc
* Experience of maintaining a secure network through configuring and managing typical Security Enforcing Devices, such as Firewalls, Proxies, IDS/IPS devices, EPO. Knowledge of SNORT
* In depth experience of other common devices, such as routers, switches, hubs
* Troubleshooting Windows environments
* Strong written and verbal communication skills
* Attention to detail and great organizational skills
* Experience of using SIEM tools and the terminology associated with them.
* Knowledge and understanding of information technology concepts and technologies, as is knowledge of computer systems hardware and software, entity relationship models, design, protocols, attack vectors and methodologies.
* Strong understanding of network monitoring and packet analysis tools
* An understanding of Information Security; relating to the Confidentiality, Integrity and Availability of information
* Significant experience with TCP/IP, Linux, UNIX, Windows, IP Routing
* Experience with ISO27001 standards and ITIL framework
* Exposure to IT service management best practices such as ITIL
* Software engineering, programming or scripting knowledge. I.e. Java