Accessibility Links

Senior Cyber Security Analyst

  • Salary: Up to £40380 per annum + shift allowance
  • Job type: Permanent
  • Location: Manchester, Greater Manchester
  • Sector: IT
  • Date posted: 03/04/2018
  • Job reference: J384218A

SENIOR CYBER SECURITY ANALYST - HOME OFFICE

LIVE SERVICES, OPERATIONS, CYBER, SECURITY, ANALYST, CSOC, SOC, SPLUNK, ELK, SNOW, QUALYS, APT

Permanent role based in Salford - Salary up to £40,380 + shift allowance + up to 22% employer pension contribution and more.

The Home Office have set up a Cyber Security Operating Centre (CSOC) in Manchester which provides security monitoring and response across the Home Office estate. Due to expansion the Head of CSOC requires a Deputy CSOC Manager, and technical lead, to provide leadership and strategic direction to the technical function, and to support the Head of CSOC in the day-to-day running of the team.

About the team

The Home Office are in the process of building a new Cyber Security Operations Centre (CSOC). This function would lead in four main areas:

  • Security monitoring and detection of incidents and concerns.
  • Analysis of incidents by technical and business specialists including the invocation of mitigating actions by liaising with operational teams.
  • Active threat intelligence and vulnerability management through close partnerships with vendors and National Cyber Centre, including information on current malware threats on the wider Internet.
  • Forensic analysis and investigation to support any future risk mitigation activities

Essential Criteria

  • Have a strong IT technical background and experience working in a SOC environment.
  • Functional knowledge of operating protocol analysers and analysing output.
  • Functional experience performing monitoring, analysis and recovery procedures.
  • Functional experience performing deep-dive incident analysis by correlating data.

Desirable Criteria

  • Functional knowledge of TCP/IP protocol suite, LAN/WAN technologies, switching, routing, VoIP and telephony technologies, firewalls and VPN, intrusion prevention systems (IPS), vulnerability assessment and patch management tools.
  • Functional knowledge of UNIX, Linux, Apple and Windows technologies.
  • Has functional knowledge and experience of using tools for security monitoring (e.g. Splunk, QRadar, Intel McAFee, ArcSight, RSA NetWitness), data analytics (e.g. ELK stack) and security case management (e.g. SNOW).
  • Knowledge of or experience in vulnerability management tools (e.g. Qualys, Nmap, Nessus, Nexpose)
  • Knowledge of targeted cyber-attack (APT), how to analyse these and respond to and mitigate against the attacks.

If you would like to have a discussion about the role or for some further details, please do not hesitate to contact Nick on or 0161 924 3916.

Similar jobs
View more similar jobs