This role is to start asap and will pay £35-50k p/a (perm) or £390-£475 per day (Ltd/Umbrella - IR35 status TBC)

Working for a Global Solutions Provider specialising in large scale implementations involving science, engineering and technology, the Cyber Defence Analyst will be able to demonstrate experience from a Cyber Security Operations Centre (CSOC) background or be able to demonstrate sufficient transferable IT Security skills and experience to quickly learn the Cyber Defence Analyst role. To succeed in the role the candidate must be capable of working under pressure, delivering on multiple client accounts and have an appetite to progress and develop their own career. The role will primarily be working within a CSOC, adhering to a matrix managed environment reporting to a Cyber Intelligence Analyst. The Cyber Defence Analyst will be expected to contribute to the growth and development of the CSOC.

You will be expected to collaborate with and support colleagues in the wider UK Information Assurance and Cyber Security Practice.

Essential

• Candidates must have Home Office SC clearance or SC cleared where the clearance can be transferred to the Home Office.
• Candidate must be British and non-dual national.
• Work 12 hour shifts as part of a rota for 24x7 CSOC Support, 4 days on day shift, 4 days off and 4 nights on night shift.

Day to day duties:

• Maintain the integrity and security of Cyber systems and networks.
• Supports Cyber Security initiatives through both predictive and reactive analysis, articulating emerging trends to leadership and staff.
• Uses data collected from cyber defence tools firewalls, IDS, network traffic, Security Orchestration and Automated Response (SOAR) etc. to analyse events that occur within the environments or based on the artefacts.
• Employs network forensics techniques for attack reconstruction.
• Respond to and correlate alerts from various detective and preventative Cyber Security tools such as Security Information Event Monitoring (SIEM), End Point Protection (EPP), End Point Detection and Response (EDR), Web Application Firewall (WAF) and Firewalls.
• Proactively detect suspicious activity, vulnerabilities and security misconfigurations before they can be exploited by bad actors to impact Confidentiality, Integrity and Availability which could lead to a Cyber Security Incident.
• Apply Cyber Security Incident Prioritisation Criteria to classify and rate Cyber Security Incidents.
• Define and coordinate the application of countermeasures to mitigate Threats which can be used in action plans to respond to Cyber Security Incidents
• Ensure confidentiality and discretion is practiced when dealing with multiple clients to demonstrate professionalism and evidence their information is not shared with others.
• Run Vulnerability Assessment tools to measure compliance with security updates and security patches.
• Member of a Team who are responsible for making multiple daily CSOC checks to detect and respond to suspicious activity or alerts.

Technology Experience

• Exposure to working on or within HMG classified systems or programs is a bonus and not a must.
• Already a CSOC Analyst or a Cyber Defence Analyst with experience of investigating Cyber Security incidents and supporting root cause analysis or can demonstrate transferable skills and acumen to learn and excel at it.
• Understanding of the Confidentiality, Integrity and Availability (CIA) triad.
• Understanding of current trends for malware, ransomware, Advanced Persistent Threats affecting Cloud Platforms and On Premise solutions.
• Proficient with the full suite of Microsoft Office products Word, Excel, Visio.
• Experience of working with the disciplines of a Change Controlled environment.
• Knowledge of Identification, Authentication, Authorisation, Auditing and Logging services.
• An understanding of the OSI 7 network layers.
• An understanding of the TCP/IP network layers.
• Experience of using as many as possible of detective and preventative Cyber Security tools such as but not limited to Security Information Event Monitoring (SIEM), Security Orchestration and Automated Response (SOAR), End Point Protection (EPP), End Point Detection and Response (EDR), Web Application Firewall (WAF) and Firewalls
• An understanding of the implementation of technologies such as but not limited to Hardware Security Modules (HSM), USB Controls, Encryption, SSL, TLS, and SSH.
• Exposure to leading vendor products such as but not limited to Fortinet Firewalls, Cisco Firewalls, Palo Alto Firewalls, SPLUNK, Sophos End Point Protection, McAfee ePO, Symantec, Nessus, Rapid 7, AWS Guard Duty, Azure Security Centre, Azure Office 365 Security and Compliance Centre
• The ideal candidate will hold or be willing to gain CISSP, GMON, GCIH certification or equivalent and have an exposure to market leading public cloud technology.

This role is to start asap and will pay £35-50k p/a (perm) or £390-£475 per day (Ltd/Umbrella - IR35 status TBC)

Networkers acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers and is part of Gattaca Plc.

Gattaca Plc provides support services to Networkers and may assist with processing your application.