Skip to main content

This job has expired

Cyber Defence Analyst

Employer
Triumph Consultants Ltd
Location
West Midlands Region
Salary
Competitive Market Rate
Closing date
28 Aug 2024

We are seeking a Cyber Defence Analyst to join an established security team. The role involves designing, delivering, and maintaining operational cybersecurity capabilities, and conducting proactive, risk-based monitoring of priority C4IS/networks to identify cyber threats and attacks. The ideal candidate will have strong cyber defence experience, work in an Enterprise SOC, possess knowledge of SIEM, and understand frameworks such as the cyber kill chain and MITRE ATT&CK.

Key accountabilities:

  • Develop and integrate security event monitoring and incident management services.
  • Respond to security incidents as they occur as part of an incident response team. Implement metrics and dashboards to give visibility of the Enterprise infrastructure.
  • Use of the SOAR platform to assist with playbook automation and case management capabilities to streamline team processes and tools.
  • Produce documentation to ensure the repeatability and standardisation of security operating procedures.
  • Develop additional investigative methods using the SOC’s software toolsets to enhance recognition opportunities for specific analysis.
  • Maintain a baseline of system security according to latest threat intelligence and evolving trends.

Key requirements:

  • Elastic Stack proficiency.
  • Previous experience of Enterprise ICS/network architectures and technologies.
  • Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning.
  • Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks.
  • Skilled in using virtualisation software.
  • Knowledge of key security frameworks (e.g. ISO, NIST 800-53).
  • Ability to document and report security incidents clearly and concisely.
  • Experience of writing Defence/Government documentation.
  • Creation, development and management of security alert dashboards.

Desirable Qualifications:

  • Broad Spectrum Cyber Course (CompTIA Sec+, SANS SEC401 or SEC501 or equivalent)
  • SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent)


If you consider yourself to have a disability or if you are a veteran, and you meet the essential criteria for the role, you will be put forward for the ‘Guaranteed Interview’ scheme whereby you will have the opportunity to discuss this role and your suitability with a member of the Sourcing team.

If you are successful in securing this role, please note that for the entire duration of this contract, regardless of extension you will be working this role at the equivalent PAYE rate that has been advertised. For absolute clarity, we only work on a PAYE basis. If you wish to understand PAYE vs Umbrella more, please let us know and we can send you some additional information.
 

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert