Position Description:
The SOC is at the forefront of Technical automation and pushing into a Next-Gen SOC. This position is a fast paced investigation type role which is perfect for candidates who have a keen eye of security and would like to launch their cyber career further in blue team.
You will work alongside other cyber professionals who are focused on pushing our Cyber capabilities further. With hands on training with a variety of SIEM tools and exposure to many different networks this is perfect for anyone looking at growing their hands on experience with a variety of tools and networks.
To provide eyes on glass monitoring to a variety of clients, to ensure that organisations are protected against cyber threats. The role will require someone with an analytical mindset and a keen eye for detail to investigate alerts, piece together information to build a bigger picture and provide suitable remediation steps for customers. This is a fast paced role.
If you’re always one step ahead of the digital game, with a fine-tuned sensitivity to systems and cyber risk, and a deep understanding of threat motivation, there’s a digital revolution underway in the UK, and it needs your help.
From public service transformation to cutting-edge commercial projects, our work has a wide reach, helping make the everyday easier, for everyone. When you start your CGI story, not only will you be improving people’s lives, you can be sure we’ll do the same for you.
And the even better news? Our friendly team will keep you inspired and will support you to do what you do best, better.
Members will have to work shifts on a shift pattern basis. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance.
Your future duties and responsibilities:
> Monitor client environments on a 24/7 basis
> Provide technical reports to clients each month
> Provide technical remediation and assist clients with further investigation
>Detection, monitoring and analysis of security incidents.
>Production of the monthly service reports.
>Assist Senior Analysts to perform network/system/application/log intrusion detection analysis.
>Assist Senior Analysts to ensure that Service Level Agreements are met and assist in the maintenance of SOC Documentation.
Members will have to work shifts on a shift pattern basis. We provide 24x7x365 monitoring of our clients using a 12-hour shift pattern, 2 days on and 2 days off.
The role is currently 100% remote, however, in due course office attendance will be required, with the possibility of some remote working but plan to return to working out of Bridgend in future.
Required qualifications to be successful in this role:
>Have an inquisitive nature and enjoy security technology research and learning
>Characteristics of a team player, good time-management, organizational, troubleshooting, reasoning and problem solving skills.
>Understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP
>Ability to deal with aggressive timelines and the associated pressure.
>Ability to speak and communicate effectively with peers and management.
Desirable Skills:
>Experience in security compliance auditing and remediation.
>Knowledge of SIEM Solutions (ArcSight, Splunk, TippingPoint, Huntsman, FortiAnalyzer)
>Knowledge of Firewall & VPN technologies (Checkpoint, Cisco, Juniper).
>Knowledge of IPS vendors (SourceFire, Cisco, IBM, TrendMicro, Fortigate, F5).
>Knowledge of: strong authentication such as two factor authentication tokens, Public Key Infrastructure (PKI), endpoint security tools such as HIPS, personal firewalls, anti-virus, anti-malware, Internet browser and traffic policy enforcement such as URL and web content monitoring and filtering, Database Activity Monitoring (DAM), Data Loss Prevention (DLP) and Web Application Firewalls.