Description
SOC Analyst, Security Analyst - SOC, SIEM, Incident Response
I have a number of very exciting requirements for a SOC/Security Analyst (all levels 1-3), to join my client on a large scale cyber engagement.
I'm keen 'detect' consultants whom can escalate the following 'incident'…
- Have you got at least two years' experience working in a Security Operation Centre (SOC)?
- Previously worked as a Security Analyst at any level (1-3)?
- Do you currently hold SC clearance and able to obtain DV?
- Willing to travel across the UK & throughout Europe?
- Keen to earn a market leading day rate?
- Want to be a part of one of the largest cyber engagements across Europe?
As the SOC/Security Analyst you will play a critical role in the front line defence of cyber threats, overseeing and monitoring intrusion detections within the network & resolving/escalating incidents accordingly.
You will be responsible for analysing network, application and system log events, in order to identify any potentially abnormal behaviours and raise them as incidents for investigation. Further to this you will be involved in the investigation of these events to establish if these are expected events or a imminent security threats. This coupled with utilisation log analysis & IDS/IPS tools, drawing in in the full range of capabilities available.
Key Accountabilities:
- Worked within a Security Operation Centre (SOC) with at least two years experience
- Worked on multiple projects, with various SIEM tools, the likes of ArcSight, Splunk, Symantec (Endpoint) etc..
- Strong knowledge of Intrusion Detection and Prevention Systems (IDS/IPS), ideally Sourcefire & Snort.
- Vulnerability Assessment scanning
- Currently obtains Security Clearance (or higher) and able to obtain DV?
Desirable factors:
- Expert in Sourcefire & Snort IDS/IPS systems
- Holds relevant Information Security certifications (e.g., CISSP, CISM, GSEC, GCIA etc…)
- Experience of ITIL practices
- Packet capture and analysis
- Related Information Security/Cyber Degree (Forensics, Counter Security etc…)
Related Words: SOC Analyst, Security Analyst, Analyst, SOC, SIEM, Incident, Response, Detection, Cyber Security, Security, ArcSight, LogLogic, Q1 labs, Symantec, Endpoint, SNORT, IDS, IPS, forensics, defence, IDS, IPS, Sourcefire, SC, DV