Description
Security Clearance Level Required: SC
Responsible for: Operational management of Linux Servers, delivering a complex web application stack; building and configuring new server platforms and the automated tooling to do so; testing, debugging and troubleshooting of platform level problems; and supporting development teams with configuring applications for deployment.
You will have:
An understanding of common web application architectures.
Experience in configuring and managing Linux Servers for serving a dynamic website.
Experience in debugging a complex multi-server service.
Scripting or basic programming skills.
Familiarity with network protocols - TCP/IP, HTTP, SSL, etc.
A strong technical foundation in build, release and environments.
Passion for and ability to design and support robust build, deployment and configuration management systems for multi-tier Java J2EE & .NET applications.
Experience using: installation and management of open source monitoring tools; configuration management tools like Puppet, Chef; deploying and configuring machines in a Cloud environment (EC2, Google App Engine etc.); application deployment strategies and continuous integration; Networking concepts, technologies, and protocols (TCP/IP, IPSec, HTTP, FTP, DHCP, and DNS); Virtualization systems (VMWare, Xen, etc); Operations team experience; administering application Servers, servlet containers, and web Servers (WebSphere, Apache Tomcat, Jetty, Nginx, Mongrel, Microsoft IIS, Apache HTTP server, etc); integration tools (Jenkins, Travis - CL, Go);
Additional Info: MUST HAVE EXPERIENCE WITH ELK (ABSOLUTELY ESSENTIAL).
Strong IT/Technical background - working with datasets, creating alerts, updating rulesets. Good understanding of current toolsets.
Essential Experience: ELK.
Deploy/setup/install and configure toolsets for the CSOC. Create and maintain the related document associated with the toolsets. Liaise with vendor support for maintenance and continued support. Liaise with CSOC architect and support the design and build of the CSOC. Have a functional knowledge of testing toolsets and the process behind it. Provide input into improving information security reporting and metrics. Create and maintain internal training materials and provide training to appropriate information systems staff; assist with propagating security awareness among employees.
1. Have a strong IT technical background and experience working in a SOC environment.
2. Have a good understanding of current toolsets on the market and their strengths and weaknesses. Have an understanding how to install, configure and maintain them.
3. Has functional knowledge of and understanding to configure toolsets. Examples but not limited to SIEMs (eg Splunk, ELK, LogRhythm, MacAfee, IBM QRadar, etc.), IDS/IPS (eg network- and host-based), NAC, FIM, DLP, vulnerability management tools, network monitoring tools, etc.
4. Functional knowledge of TCP/IP protocol suite, LAN/WAN technologies, switching, routing, VoIP and Telephony technologies, Firewalls and VPN, intrusion prevention systems (IPS), vulnerability assessment and patch management tools.
5. Functional knowledge of UNIX, Linux, Apple and Windows technologies.
6. Functional knowledge of operating protocol analysers and analysing output.
7. Active CISSP, SSCP, SANS certifications, Security or equivalents
8. Knowledge of Shell/Scripting languages.
9. Vendor certifications where applicable
Working in Southport or Salford
Please specify which location you want on your cover sheet