Accessibility Links
  • Job reference: RMS0178434

2nd Line Security Analyst

  • Sector: Automotive
  • Location: Corsham, Wiltshire
  • Job type: Contract
  • Date posted: 12/04/2017
  • Duration: 6 months
  • Time left:
    d h m s
    (10/05/17)
This vacancy has now expired.

The Company:
makes the freedom of flight possible by designing, manufacturing and supporting the world's best aircraft. Its people around the globe are united by a passion for aviation, as well as their desire to create better, more efficient ways for airlines and passengers to fly.

The Role:
The successful candidate will need current transferable DV

Shift work required - D = Day shift, N = Night shift.
Shift pattern:
Week 1 Week 2 Week 3 Week 4
M T W Th F Sa Su M T W Th F Sa Su M T W Th F Sa Su M T W Th F Sa Su
D D N N - - - - - D D N N N - - - - D D D N N - - - - -


Role Activity:
-When required perform initial triage/identification of 'Events of interest' using the SOC toolset.
-Complete analysis/correlation of 'events of interest' to identify incidents.
-Ensuring that all events, events of interest, exceptions and incidents are responded to in accordance with established SOC work instructions, including remedial action/recommendations.
-Complete post incident reporting.
-Provide basis log analysis to support SOC services (threat hunting)
-Responsible for SOC work instructions, ensuring they are reviewed and amended.
-Maintain currency in security concepts, tools and best practices.
-produce reports (as per templates) and vulnerability/trending analysis as requested by UK SOC manager or key stakeholders.
-Complete tooling configuration changes including but not limited to filters/tuning/dashboards as authorized.
-Carry out minor tool maintenance as directed by SOC lead engineer.

Essential Skills / Qualifications:
-TCP/IP Fundamentals
-ITIL Fundamentals
-CompTIA Security (or equivalent)
-CompTIA Network (or equivalent)
-Wireshark packet analysis
-SIEM Administrator/analyst
-SANS SEC401: Security Essentials (or equivalent)
-SANS SEC503: Intrusion Detection in-depth (or equivalent)
-SANS SEC504: Hacker tools, techniques, Exploits and incident handling (or equivalent)
-All analysts/engineers from level 2 onwards are expected to be able to present and write reports to key managers.
-All staff are expected to exercise good time management and work as part of a team.

Desirable Skills / Qualifications:
-CCENT
-Ethical hacker
-Cisco Certified network associate CCNA
-FIAHMG - Fundamentals of information assurance in HMG (leading to CCP)
-CREST (Registered intrusion analyst) (CIRA)
-SANS SEC401: Advanced security essentials

About Fircroft:
Fircroft has been placing people in specialist technical industries for approaching half a century, focusing on mid to senior level engineers for contract and permanent roles worldwide. By applying for this job you give consent for Fircroft to contact you, via email & telephone, to discuss your application along with future positions and Fircroft's services.

Similar jobs
Technical Analyst - 33778 Location: West Midlands Duration: ongoing The Role: Position Description: As a Technical Analyst...
Technical Analyst Location: Coventry, West Midlands Duration: ongoing The Role: Technical Analyst - Opportunity for a high calibre...
David Kennedy
Business Analyst Location: West Midlands Duration: ongoing The Role: We are searching for an experienced Business...

TOP