This position is no longer open for applications

Cyber Security Analyst

Cyber Security Analyst (BBBH16878) London, England

General Job Information

Job Function Description

Positions in this function are involved in the body of technologies, processes, and practices designed to protect and defend networks, computers, programs, and data from attack, damage, theft, or unauthorized access. Functions focus on cybersecurity incident detection, response, and management.

 

Please note this will be shift work and Analysts would be required to work mid shifts and late shifts

 

Job Family Description

The Security Operations Center provides 24/7/365 monitoring, analyzes, and responds to cybersecurity alerts for the organization. Provides rapid response to incoming security alerts, enriches those alerts with an initial triage effort and ensures the proper team is engaged for response.

General Job Profile

  • Monitors work queues for alerts of potential network threats, intrusions, and/or compromises.
  • Assess validity and scope to determine if the alert is actionable and determine remediation steps required.
  • Confirm accuracy of the alerting information.
  • Identify malicious behaviors and respond to them.
  • Determine remediation actions needed.
  • Escalate incident to proper team where required.

Job Scope and Guidelines

  • Experience and knowledge conducting analysis of cybersecurity threats.
  • Experience in cybersecurity event monitoring/analysis in a Security Operations Center environment.
  • Efficient documentation of triage details, sources of information, and recommendations for response.

Additional Scope and Guidelines

Not Applicable

Minimum Educational Background

One, or more, of the following:

  • BS/BA in Computer Science, Computer Engineering, Cyber Security, Forensics and/or equivalent work experience.
  • 1 to 3 years of relevant work experience.
  • Certification in cybersecurity (e.g., Security+, CCNA Cyber Ops, CCSP, GCIA, GCIH, CEH, CySA+, OSCP, etc.)

Functional Competencies

Functional Competency & Description

  • Knowledge of industry recognized analysis frameworks (Kill Chain, Diamond Model, MITRE ATT&CK, NIST Incident Response, etc.)
  • Thorough understanding of fundamental security related to cloud platforms (AWS, Azure, GCP, etc.)
  • Thorough understanding of fundamental security and network concepts (Operating systems, intrusion/detection, TCP/IP, ports, etc.)
  • Willing to work in a team-oriented 24/7 SOC environment; flexibility to work on a rotating schedule

 

;