Job Description
SOC Analyst
Waddington
£70p/h inside IR35
6 months
Candidates must be a sole UK national and hold active SC clearance to be considered for this role
This role will involve contributing to the Monitoring, Alerting, Analysis and Protection of an IT environment against all cyber threats.
Position Overview:
Working within the established monitoring and response frameworks to enable the timely and effective response and management of incidents, alarms, notifications, calls.
Responsibilities:
Responding to security events, requests and incidents logged in management systems.
Monitoring the security posture of the IT estate and identify anomalous activity and behaviours by the use of SIEM tools.
Performing analysis of log files, systems, and network traffic.
Continuously looking for improvements to ensure services operated are aligned to industry best practice and Boeing enterprise best practices.
Working to well-defined SLAs & KPIs.
Work Statement:
Please note that this role will require you to work an early or late rota with occasional surge hours.
Desirable Qualifications (Experience/Education/Skills):
Working with SIEMs and evaluating SIEM alerts.
Experience in using log aggregation and correlation tools.
Experience in interpreting system, application and network device logs.
Strong knowledge OSI Model and associated layer protocols.
Experienced in the development of protective monitoring use cases.
Experienced in alert rule creation and development
Researching current threats and vulnerabilities to Information Technology systems.
Working knowledge of network security controls: IDS/IPS, NIDS.
Working knowledge of security controls: HIDS, EDR.
Familiarisation with Cyber Threat Intelligence methodologies/frameworks and their application
Degree-level education in Information Security or related area is preferred (or demonstrable experience)
Network+ is desirable.
Security+ is desirable.
CySA+ is desirable.
CREST and/or SANS qualifications desirable