L2 SOC Analyst - MOD Corsham/DV Cleared
-
Job ref:
1168374/002_1556788397
-
Location:
Corsham, Wiltshire
-
Sector:
-
Job type:
-
Salary:
£40 - £46 per hour
-
Contact:
Phil Johnson
-
Email:
-
Published:
almost 2 years ago
-
Duration:
12 Months +
-
Start date:
ASAP
-
Consultant:
#
L2 SOC Analyst - DV Cleared
+ Wiltshire based role
+ L2 SOC Analyst
+ Initial 12 month contract role
+ Shift work - £46 per hour
Position:
12 month initial contract supporting a highly secure SOC at MOD Corsham. Shift work required.
Role Activity:
When required perform initial triage/identification of 'Events of Interest' using the SOC toolset
- Complete analysis/correlation of 'Events of Interest' to identify incidents
- Ensuring that all events, events of interest, exceptions & incidents are responded to in accordance with established SOC work instructions, including remedial action/recommendations.
- Create and follow Playbooks
- Complete post incident reporting.
- Provide log analysis to support SOC services (including threat hunting)
- Responsible for SOC work instructions, ensuring they are reviewed & amended.
- Maintain currency in security concepts, tools and best practices
- Produce reports (as per templates) & vulnerability/trending analysis as requested by UK SOC Mgr or key stakeholders.
- Present & review reports to internal & external key stakeholders
- Complete tooling configuration changes including but not limited to filters/tuning/dashboards as authorised.
- Carry out minor tool maintenance as directed by SOC lead engineer.
Required:
- SIEM - ArcSight Analyst
- In depth knowledge of Intrusion Prevention Systems (Analysis)
- Firewall / CISO ASA
- TCP/IP Fundamentals
- ITIL Fundamentals (or equivalent)
- CompTIA Security (or equivalent)
- CompTIA Network (or equivalent)
- Wireshark Packet Analysis
- SANS SEC401: Security Essentials (or equivalent)
- SANS SEC503: Intrusion Detection in-depth (or equivalent)
- SANS SEC504: Hacker Tools, Techniques, Exploits and Incident Handling (or equivalent)
Desirable:
- SANS SEC401: Security Essentials
- Ethical Hacker (CEH)
- Cisco Certified Network Associate CCNA
- FIAHMG - Fundamentals of Information Assurance in HMG (leading to CCP)
- CREST (Registered Intrusion Analyst) (CRIA)
- SANS SEC501: Advanced Security Essentials
Soft Skills/Qualifications:
- All Analysts/Engineers from level 2 onwards are expected to be able to present and write professional reports to key.
- All staff are expected to exercise good time management and work as part of a team
