Cyber Defence Analyst
Hereford - West Midlands
Job Number
41985
Posted
26th Oct 2021 : 2:52 pm
Job Status
Live
Job Type
Temporary
Duration
12 Months
Pay Type
Inside IR35
Pay Rate
£550.00
Payment Method
Daily
Contact
Surita Dadral
Contact details
0203 356 4949, admin@121.uk.com
Job Description
The public sector client is looking to recruit a Cyber Defence Analyst for a 12 month temporary contract based in Hereford. The successful cyber analyst will have a valid DV Clearance.
Role Description:
Essential Skills & Experience
Skills/Experience:
• Previous experience of Enterprise ICS/network architectures and technologies
• Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning.
• Experience as a mentor/coach to junior analysts
• Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks
• Skilled in maintaining Microsoft directory services.
• Skilled in using virtualisation software.
• Knowledge of key security frameworks (e.g. ISO, NIST 800-53)
• Excellent communication skills
• Experience of writing Defence/Government documentation
• Desirable – Experience of managing cyber incidents and investigations
Key Tasks & Deliverables
Your Tasks:
• Develop and integrate security event monitoring and incident management services.
• Respond to security incidents as they occur as part of an incident response team.
• Implement metrics and dashboards to give visibility of the Enterprise infrastructure.
• Assist with the leadership of a composite cyber response team during incidents and investigations
• Use of the SOAR platform to assist with playbook automation and case management capabilities to streamline team processes and tools.
• Produce documentation to ensure the repeatability and standardisation of security operating procedures.
• Develop additional investigative methods using the Authority’s environment’s software toolsets to enhance recognition opportunities for specific analysis.
• Maintain a baseline of system security according to latest threat intelligence and evolving trends.
• Participate in root cause analysis of incidents in conjunction with analysts and engineers across the enterprise.
• Provide Subject Matter Expertise (SME) on a broad range of information security standards and best practices.
• Offer strategic and tactical security guidance including valuation requirement of technical controls.
• Be part of the CRM process
• Liaise with the Authority’s environment’s Level 3 engineers to maintain up-to-date dashboards of security alerts, to allow the Authority to better respond to an incident.
• Document, validate and create operational processes and procedures to help develop the Authority’s environment.
• Assist in identifying, prioritising, and coordinating the protection of critical cyber defence infrastructure and key resources.
• Build, install, configure, and test dedicated cyber defence hardware.
• Support Level 1 Analysts to manage Authority’s environment’s systems.
Qualifications, Training & Certificates
Desirable Qualifications:
• Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent)
• SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent)
• Advanced Analyst Course (SANS SEC503 or equivalent)