Description
Information Security Engineer/Cyber Treatment Delivery
- 3 months £400 per day (inside IR35)
- Hybris working (Remote and onsite in Huntingdon)
Our digital services client has a programme of work to improve the cyber security resilience and are looking for an Information Security Engineer to implement a SIEM solution based on NCSC Logging Made Easy and to contribute to the selection and implementation of a new Vulnerability Assessment System.
You will be working with the Cyber & Information Security Lead, Technical Architect, and Infrastructure Manager to:
- Implement a centralised security logging and alerting solution based on NCSC Logging Made Easy
- Upon implementation of a centralised logging solution, the data that is to be captured should have clearly defined retention periods set.
- Upon implementation of a centralised security logging, monitoring and alerting solution, automated log analysis and correlation functionality and a formal log incident triaging process which then should be developed and documented.
- Tuning of centralised logging system to ensure appropriate level of alerts are generated
- Contribute to the selection and implementation of a new Vulnerability Assessment System
Experience of:
- Experiencing operating and tuning Elastic Stack based SIEM solutions
- Specific experience with Logging Made Easy, including design, set up, implementation and introduction to service
- Working with Vulnerability Assessment Systems
- Windows Server and Active Directory Domains
- Group Policy
- Installation and Hardening of Linux Operating Systems
- Application of Public Key Cryptography and Certificates
Skills required
- Experience in information security
- Familiarity with NCSC standards and toolsets
- CISSP or equivalent desired