CSOC Cyber Intelligence Analyst

To succeed in the role the candidate must be capable of working under pressure, delivering on multiple client accounts and have an appetite to progress and develop their own career. The role will primarily be working within a CSOC, adhering to a matrix managed environment reporting to a Cyber Intelligence Analyst. The Cyber Defence Analyst will be expected to contribute to the growth and development of the CSOC. Essential o British and non-dual national, many of our projects have nationality restrictions. Candidates must be willing to undergo SC clearance, NPPV3 and possibly DV clearance if required. Technology and Process Experience Exposure to working on or within HMG classified systems or programs is a bonus and not a must. Already a CSOC Analyst or a Cyber Defence Analyst with experience of investigating Cyber Security incidents and supporting root cause analysis or can demonstrate transferable skills and acumen to learn and excel at it. Understanding of the Confidentiality, Integrity and Availability (CIA) triad. Understanding of current trends for malware, ransomware, Advanced Persistent Threats affecting Cloud Platforms and On Premise solutions. Proficient with the full suite of Microsoft Office products Word, Excel, Visio. Experience of working with the disciplines of a Change Controlled environment. Knowledge of Identification, Authentication, Authorisation, Auditing and Logging services. An understanding of the OSI 7 network layers. An understanding of the TCP/IP network layers. Exposure to working with NCSC, NIST, and Centre for Internet Security (CIS) best practice. An understanding of network and boundary protection controls for both Cloud and On Premise solutions including but not limited to Firewalls, Network Access Control Lists, Network Security Groups, DDoS Protection, VPN's, Mail Gateways, Web Proxies, Load Balancers including Web Application Firewalls, Intrusion Prevention System and Intrusion Detection Systems. Experience of using as many as possible of detective and preventative Cyber Security tools such as but not limited to Security Information Event Monitoring (SIEM), Security Orchestration and Automated Response (SOAR), End Point Protection (EPP), End Point Detection and Response (EDR), Web Application Firewall (WAF) and Firewalls An understanding of the implementation of technologies such as but not limited to Hardware Security Modules (HSM), USB Controls, Encryption, SSL, TLS, and SSH. Exposure to leading vendor products such as but not limited to Fortinet Firewalls, Cisco Firewalls, Palo Alto Firewalls, SPLUNK, Sophos End Point Protection, McAfee ePO, Symantec, Nessus, Rapid 7, AWS Guard Duty, Azure Security Centre, Azure Office 365 Security and Compliance Centre The ideal candidate will hold or be willing to gain CISSP, GMON, GCIH certification or equivalent and have an exposure to market leading public cloud technology. Networkers acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers and is part of Gattaca Plc. Gattaca Plc provides support services to Networkers and may assist with processing your application. This job was originally posted as www.cwjobs.co.uk/job/89961260