Security Event Analysts

Description

Selex ES is looking to recruit Security Event Analysts, with a demonstrable experience in the analysis and handling of security events, to support the successful operation of the NATO Computer Incident Response Capability (NCIRC), based out of the customer site in Belgium. The Analysts are responsible for the day-to-day identification of security related events. This role involves a 24/7 shift rotation within the incident handling team in order to provide full time coverage for the system.

Security clearance SC minimum

Intrinsic Job Factors

This is an office-based project role using display screen equipment, working full time hours which can often be in a demanding environment.

The role will be based in Mons, Belgium and may involve travel to other NATO sites to provide technical support across Europe. Candidates should be capable of travelling between UK & Overseas locations.

Equal Opportunities

The company is an equal opportunities employer and positively encourages applications from suitably qualified and eligible candidates regardless of sex, race, disability, age, sexual orientation, gender reassignment, religion or belief, marital status, or pregnancy and maternity. Decisions about recruitment and selection will be made objectively and without unlawful or unfair discrimination.

The successful candidates will be required to use their experience in the analysis and handling of security events, to support the successful operation of the NATO Computer Incident Response Capability (NCIRC), based out of the customer site in Belgium. The Analysts are responsible for the day-to-day identification of security related events, and will need to draw on their demonstrable experience in the analysis and handling of security events to fulfil this role.

The role requires a high level of experience in a minimum of one key cyber security area, along with a working level experience across a broad selection of other cyber security technologies. Example technologies include NIPS, NIDS, HIDS, Computer Forensics tools, Vulnerability Assessment tools, Firewalls, CIRT and CERT.

The successful candidate must be proactive, diligent with a strong technical ability.

Key Responsibility Areas

• High level of experience in at least one of the following areas and working level of experience in several of the other areas:
• Security event management and analysis, especially with the configuration, operation, troubleshooting, and management of ArcSight products;
• Management, use and analysis of events from Network Based Intrusion Detection Systems (NIDS)
• Management, use and analysis of events from Host Based Intrusion Detection Systems (HIDS)
• Deployment, configuration and maintenance of network security appliances and networking devices and associated management software
• Knowledge in the use of a variety of Security Event generating sources (eg Firewalls, IDS, Routers, Security Appliances)
• Network, system and application level troubleshooting techniques
• Computer incident response centre (CIRT), computer emergency response team (CERT)
• Computer forensics tools (stand alone and on-line and network)
• Computer security tools (Vulnerability Assessment, Anti-virus, Protocol Analysis, Anti-Virus, Protocol Analysis, Anti-Spyware, etc)
• Secure web design and development
• Military communication systems and networks

Skills, Qualifications & Knowledge

• A good analytical competency is required for this role.

Candidates should be able to:

• Analyse diverse sources of information;
• Break information into component parts, patterns and relationships;
• Probe for further information or greater understanding of a problem;
• Make rational judgement from the available information and analysis;
• Produce workable solutions to a range of problems and demonstrate an understanding of how one issue may be a part of a much larger system.
• Educated to degree level (or equivalent) in an IT related discipline.
• Desirable to have one of more professional SANS (eg, GSEC, GCIA) or CISSP certifications.

Personal Attributes

• Experience of working within a team environment or on a project with multiple participants.
• Analysis experience.
• Some experience of working in Network Operations Centres (NOCs).
• Ability to communicate clearly with team members and other analysts.
• Security clearances required to UK SC & NATO minimum

The role will be based in Mons, Belgium and may involve travel to other NATO sites to provide technical support across Europe. Candidates should be capable of travelling between UK & Overseas locations.

Location: Mons