This job does not exist anymore.
Or fill in the form below to receive job alerts.
|Location||Home Working / European Travel|
|Area||London, United Kingdom|
|Sector||Retail Manufacturing / Engineering|
- Primary responsibilities include: Analyse network, application and system events in order to identify potential securityincidents and raise tickets as required. Perform and lead proactive analysis from knowledge of current threats and trends withinthe industry Provide input into the training and development plans as required Ensure all operation incidents, ongoing tickets and relevant information is logged into theHOTO and the information is distributed accordingly Ensure all tickets are quality checked prior to release to the regional contacts Provide continuous SME support, updates and recommendations for ongoing incidentsbeing handled by the SOC Support shift training, user awareness and mandated security education as required orspecified and promote additional professionalization within the level 1 analysts. Produce operational reporting as required to support regional and internal informationexchanges and briefing requirements Maintain a broad and current understanding of evolving threats and vulnerabilities asapplicable to the client estate and marketplace Continually assess and maintain the Clients SOC documentation set and use-cases tomaintain a high standard of excellence within the service and ensure ongoing serviceimprovementSECONDARY ROLESecondary responsibilities include: Deputise for the Level 3 Analyst as required Assist the SOC Operations Manager and Level 3 Analyst to recruit and retain a functionalSOC team as required Windows Server Administration (Server 2008 – 2016) – Specifically Domain Controllermanagement (AD/Security Administration/AD Connect/Group Policies/DNS) for a multi-sitemulti-domain replication setup. Windows Certificate Authority management. Perform other essential duties as requiredvia resourceisecuring successESSENTIAL SKILLS & EXPERIENCEEssential skills & experience includes: Demonstrable experience in Cyber Operations include monitoring, incident response &handling, threat detection and threat intelligence SIEM, IDS and general security tooling experience (Ideally Splunk, Palo-Alto, SkyBox orAWS) Network security Excellent communication skills Mentoring and coaching Knowledge of Palo Alto Administration (Implementation, Configuration andAPI/Automation) is a plus.DESIRABLE SKILLS & EXPERIENCEDesirable skills & experience includes: SANS 401/501/504/511 or similar EC-Council CEH or CHFI ITIL certification