Security Event Analyst (SIEM - ArcSight) - Bristol

Security Event Analyst (SIEM - ArcSight) - Bristol

The Company This is an opportunity to join one of the largest defence equipment suppliers to the UK MoD. My client prides itself on investment its employees, with an impressive £3.5m annually spent on employee training and development in the UK alone.

The work is technically challenging, with a supportive environment allowing you to approach tasks in the way you deem most effective. You will work on a number of varied and interesting projects, which are critical and make a real difference. You will be joining a highly collaborative environment, working alongside other highly skilled, technically minded individuals to create ground breaking solutions.

Employee well being is at the heart of the company culture, as they believe that people work to their best when they are able to achieve balance between work and other aspects of life. This is demonstrated through a multitude of employee focused benefits, designed to create a happy working environment. 

The Role

We are looking for a Cyber Security Engineer to join our Enterprise Security team. Your role will play a major part in the design and build of secure information systems that are delivered to our customers in a range of organisations including defence and government.

To be successful in this role you will need to be confident in operating multiple system engineering lifecycle phases including architectural design, subsystem design, implementation and client facing engagements. You will also need to have working knowledge  of network and systems infrastructure, and an awareness of cyber security, ideally with accreditations. 

Key Skills 

• Strong knowledge of the ArcSight product suite (particularly ESM and Logger) across large scale implementations including design, support and enhancements.
• Understanding of other SIEM toolsets
• Scripting languages - Python, Bash and PowerShell
• Knowledge of Unix/Linux and Windows operating systems.

Desirable Skills: 

• Cybersecurity tools such as Nessus, Sourcefire, Cisco, Palo Alto, RSA Netwitness, NetScout, EDR / EPP forensics, McAfee.
• Splunk Enterprise system design and implementation.
• Automated build tooling e.g. Puppet/Docker.
• Virtualisation technologies e.g. VMWare
• Enterprise Networking and Services (TCP/IP Networks, devices and services (e.g. DHCP/DNS).

Apply
Due to the urgency of the role and nature of the work, candidates must have current and transferable SC. To find out more please contact Robyn Clarke at Evolution Recruitment.