SOC and Security Event Analyst - Europe

Job application

Success!

Your application for role of SOC and Security Event Analyst - Europe has been sent to our recruitment team. They will be in touch shortly.

More roles like this:

SOC and Security Event Analyst - Europe

  • Reference DB-POJ-180130-04
  • Remuneration £45 - £70000
  • Role/TypePermanent/Full Time/Part Time
  • LocationBristol
Daniel Beresford Principle Consultant +44 (0)20 3119 3333 Get in touch ›
Apply now

Job Summary:

The role will require candidates to have significant experience in the analysis and handling of network security related events and security event management, with experience of working at expert level as a security event analyst or cyber tools specialist in multiple areas of cyber technologies.

Security Clearance SC minimum.

 

Job Description:

As the Security Event Analyst, the successful candidate will be required to use their in-depth knowledge gained from both experience and qualifications in the Cyber Defence arena to work on advanced cyber-attacks against one of the largest cyber implementations outside of North America. This will include the utilisation of log analysis, IDS/IPS, FPC and forensics tools across a distributed sensor network. The SEA will be required to provide leadership, mentoring and guidance to other staff members within the Event Analysis team.

 

Key Responsibility Areas

Support to Level 1 Event Analysts:

  • Reviewing of tickets;
  • Support for analysis of events;
  • Retrieval and support in the analysis of Full Packet Captures (FPC);
  • Provision of in-depth analysis after ticket escalation;
  • New threat analysis;
  • Vulnerability Assessment scanning;
  • Signature creation e.g. SNORT rules;
  • Test and evaluation of signatures and rules prior to deployment in the operational environment;
  • Evaluation and implementation of sensor tuning requests;
  • Online research, such as creating new signatures, developing new methods of detecting and monitoring new threats, keeping abreast of developments in the cyber arena;
  • Assistance in the support of legacy cyber sensor products;
  • Provision of OntheJob
  • Training (OJT) for the Level 1 event analysts, including tools familiarisation;
  • Creation and updating of Standard Operating Procedures (SOPs) and Security Policies;
  • Creation of a monthly report to the Customer and the Business;
  • Adhoc taskings from the Incident Management Section (IMS) in support to investigations;
  • Occasional deputisation for NCIA Subject Matter Experts (when required);
  • Monthly knowledge transfer meetings for information exchange with the internal cell.

 

Skills, Qualifications & Knowledge Required

  • Significant experience in the analysis and handling of network security related events and security event management.
  • Essential to have one of more professional SANS (e.g., GSEC, GCIA) or CISSP certifications.

 

Expert level of management and analysis of (i.e. Security Event Analyst experience), or configuration, operation, troubleshooting and management (i.e. Tools Specialist) in at least three of the following areas, and a high level of experience in several of the other areas:

  • ArcSight products,
  • Network Based Intrusion Detection Systems (NIDS),
  • Host Based Intrusion Detection Systems (HIDS),
  • Network security appliances and networking devices and associated management software,
  • A variety of Security Event generating sources (e.g. Firewalls, IDS, Routers, Security Appliances), Computer Incident Response Centre (CIRT), Computer Emergency Response Team (CERT),
  • Computer forensics tools (stand alone, online and network)
  • Computer security tools (Vulnerability Assessment, Antivirus, Protocol Analysis, AntiVirus, Protocol Analysis, AntiSpyware, etc.),
  • Secure web design and development,
  • Military communication systems and networks,
  • Network, system and application level troubleshooting techniques.

 

Personal Attributes

  • Ability to manage workload for themselves in pressurised environments to Time, Quality and Standards
  • Ability to communicate technical solutions to both technical and nontechnical audiences
  • Security clearances to SC minimum (NATO SECRET required)
  • Ability to mentor staff
  • Ability to work on International Assignment embedded in customer location in mainland Europe.

 

Intrinsic Factors

  • Ability to become SC/DV/NS cleared.
  • This is an officebased
  • project role using a variety of equipment including
  • display screen equipment, working full time hours which can often be in a
  • demanding environment.
Acumin

SOC and Security Event Analyst - Europe

Job application

You are not logged in. If you would like to retrieve your details to use below, log in to your account.

Acumin alerts

Never miss out on your next career opportunity. Have Acumin alerts sent directly to your inbox.

In our industry we understand the importance of security. We also understand that your data is your data - we will never pass it on to third parties.

Our accreditations & Partners

  • REC Member
  • ISO Accreditation
  • VTC - Virtual Technology Cluster
  • RANT Events
  • Bloom Nepro

Send CV

Send us your CV and have our recruiters match you to the ideal opporunities

Do you already have an account with us?

Log in

Want to have an account with us?

Register

Want to just send us your CV?


By submitting your registration and CV to us you are agreeing to join our database and to be contacted about relevant jobs industry communications. Please read our terms of business for more information.

Password reset

If you need a reminder for your password, fill out the field below

Log in

Access your account to edit your contact details, job alerts or to upload a new CV

Acumin Alerts

Success

Thanks for registering for Acumin alerts.

Register

Create an account to register your contact details, sign up for job alerts and upload your CV

Success

Thanks for registering for Acumin alerts. To get the most out of Acumin's service why not register with us?

Upload only doc, docx, odt, pdf format file.

By submitting your registration and CV to us you are agreeing to join our database and to be contacted about relevant jobs industry communications. Please read our terms of business for more information.