Job cart
0 items
Not registered? Find out more...
Find out more
Log in
Executive Recruitment Services plc

Senior Security Event Analyst

Senior Security Event Analyst




Steve Dignum

01923 225581

Add to job cart

Send to a friend

Print (opens new window)

Apply now

Senior Security Event Analyst

Senior Security Event Analyst: A major Defence company are looking for a Senior Security Event Analyst based in Bristol!!

Senior Security Event Analyst Responsibilities:
• Reviewing of tickets;
• Support for analysis of events;
• Retrieval and support in the analysis of Full Packet Captures (FPC);
• Provision of in-depth analysis after ticket escalation;
• New threat analysis;
• Vulnerability Assessment scanning;
• Signature creation e.g. SNORT rules;
• Test and evaluation of signatures and rules prior to deployment in the operational environment;
• Evaluation and implementation of sensor tuning requests;
• Online research, such as creating new signatures, developing new methods of detecting and monitoring new threats, keeping abreast of developments in the cyber arena;
• Assistance in the support of legacy cyber sensor products;
• Provision of OntheJob
• Training (OJT) for the Level 1 event analysts, including tools familiarisation;
• Creation and updating of Standard Operating Procedures (SOPs) and Security Policies;
• Creation of a monthly report to the Customer and the Business;
• Adhoc taskings from the Incident Management Section (IMS) in support to investigations;
• Occasional deputisation for NCIA Subject Matter Experts (when required);
• Monthly knowledge transfer meetings for information exchange with the internal cell.

Senior Security Event Analyst Requirements:
• Significant experience in the analysis and handling of network security related events and security event management.
• Essential to have one of more professional SANS (e.g., GSEC, GCIA) or CISSP certifications.
• Expert level of management and analysis of (i.e. Security Event Analyst experience), or configuration, operation, troubleshooting and management (i.e. Tools Specialist) in at least three of the following areas, and a high level of experience in several of the other areas:
• ArcSight products,
• Network Based Intrusion Detection Systems (NIDS),
• Host Based Intrusion Detection Systems (HIDS),
• Network security appliances and networking devices and associated management software,
• A variety of Security Event generating sources (e.g. Firewalls, IDS, Routers, Security Appliances), Computer Incident Response Centre (CIRT), Computer Emergency Response Team (CERT),
• Computer forensics tools (stand alone, online and network)
• Computer security tools (Vulnerability Assessment, Antivirus, Protocol Analysis, AntiVirus, Protocol Analysis, AntiSpyware, etc.),
• Secure web design and development,
• Military communication systems and networks,
• Network, system and application level troubleshooting techniques.

SECURITY CLEARABLE: The successful candidate will be required to achieve full SC clearance for this role!!!!!

Apply now to Steve Dignum

Featured jobs

Radar Test Engineer

Location : Edinburgh
Salary : Competitive
Ref: SH40127

Chief Systems Engineer - Defence

Location : Southampton
Salary : Negotiable
Ref: SD40135

Project Manager - Digital IOS Programme

Location : Luton, Edinburgh, Bristol or Southampton.
Salary : Competitive
Ref: SD40165

Test Engineer

Location : Edinburgh
Salary : Competitive
Ref: SH40106

Principal Project Planner - Project Control, Earned Value, SAP

Location : Basildon
Salary : Negotiable
Ref: SD40257

PMO Planner - MS Project, P6

Location : Bristol
Salary : Negotiable
Ref: SD40239