Security Operations Centre Specialist

Ref Number

1361

Type

Permanent

Location

Manchester, UK

Clearance

N/A

Salary

Market Rate

CND have partnered a large SOC in Manchester looking to grow their Security team. We have a newly created position within the team available for a Senior SOC Analyst experienced with using SIEM tools. You will gain experience working within a SOC that is protecting a vast amount of data and the complex challenges that come with that. You will be the subject expert in an already talented team. Security has been heavily invested in and your development will be fully supported where your ideas will be valued. .

Role Requirements

Responsibilities

Deploy, maintain, fine tune and implement security tooling such as SIEM and IDS/ IPS.

You will be defending against APT’s and complex Malware

Ensure that the SOC is constantly improving in order to maintain a high-level security posture

Liaise with engineering team to ensure rules and filters are as effective as possible

Produce concise incident reports to high specification

You will be responding to events through their full life cycle to ensure they are dealt with in an effective way.

Essential Skills

Experience working with a variety of SIEM tools.

Comprehensive knowledge of common network protocols such as TCP/IP, HTTP, DNS, etc

Experience with proactive log reviews, alerting and reporting

Good knowledge of intrusion detection software packages

The expertise to configure, manage and support security products and tools, and evaluate new and emerging products

Experience in Incident Response and IDS Monitoring

Desirable Skills

Certified CHECK team member/leader or equivalent (CREST or TIGER or SANS GPEN or GXPN)

Published security research/vulnerabilities (possibly with CVE attribution) or winner of CTF/bug bounty programs

Tools Development (shell scripting, Python, Ruby, etc)

Social Engineering skills

Exploit development experience and ability to defeat protection mechanisms

MUST HAVE CURRENT NATO SECRET CLEARANCE ideally with CTS in place, or you have the ability to obtain this

Would you like to be considered for this role?