Tasks and Accountabilities

  • Maintain currency in security concepts, tools and best practices
  • When required perform initial triage/identification of 'Events of Interest' using a range of monitoring and detection tools.
  • Complete analysis/correlation of 'Events of Interest' to identify incidents
  • Ensuring that all events, events of interest, exceptions & incidents are responded to in accordance with established SOC work instructions, including remedial action/recommendations.
  • Responsible for maintaining SOC work instructions - reviews & amendment.
  • Maintain currency in security concepts, tools and best practices
  • Produce reports (as per templates) & vulnerability/trending analysis as requested by UK SOC Manager or key stakeholders.
  • Present & review reports to internal & external key stakeholders
  • Complete tooling configuration changes including but not limited to filters/tuning/dashboards as authorised.
  • Carry out minor tool maintenance as directed by SOC lead engineer.
  • Support the lead engineer for rules/policy/filters/use cases on SOC tooling.
  • Research causes and effects of incidents and exceptions. Provide solutions to procedural failures and improvements to working practices.
  • Mentoring - Improve inter team development through mentoring, knowledge sharing, briefing and production of guides and incident scenarios. Show flexibility in developing knowledge of supporting areas and performing their responsibilities during times of operational needs.

Skills & Experience

Essential

  • TCP/IP Fundamentals
  • ITIL Fundamentals (or equivalent)
  • CompTIA Security (or equivalent)
  • CompTIA Network (or equivalent)
  • Wireshark Packet Analysis
  • SIEM Administrator/Analyst
  • SANS SEC401: Security Essentials (or equivalent)
  • SANS SEC503: Intrusion Detection in-depth (or equivalent)
  • SANS SEC504: Hacker Tools, Techniques, Exploits and Incident Handling (or equivalent)

Desirable

  • CCENT
  • Ethical Hacker (CEH)
  • Cisco Certified Network Associate CCNA
  • FIAHMG - Fundamentals of Information Assurance in HMG (leading to CCP)
  • CREST (Registered Intrusion Analyst) (CRIA)
  • SANS SEC501: Advanced Security Essentials

Please click here to find out more about our Key Information Documents. Please note that the documents provided contain generic information. If we are successful in finding you an assignment, you will receive a Key Information Document which will be specific to the vendor set-up you have chosen and your placement.

To find out more about Computer Futures please visit www.computerfutures.com

Computer Futures, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy | Registered office | 1st Floor, 75 King William Street, London, EC4N 7BE, United Kingdom | Partnership Number | OC387148 England and Wales

Apply for this Job