|Job Ref:||204766847||Employer:||cv-library.co.uk||Job Type:||Contract||Country:||United Kingdom||County/State:||Bedfordshire||City:||Salford||Address:||Post Code:||OX7||Salary:||£400 - £450/day||Post Date:||11/10/2016 03:46|
An exciting opportunity has arisen for an experienced Senior Cyber Security Analyst to work within Central Government on a contract basis. This position is based in Salford, initially for 12 months offering up to £450 per day ltd.|
As a Security Analyst, your role on the team will include leveraging your knowledge of industry best practices, good judgment and problem solving skills to execute security operations.
Areas of concentration include firewalls, intrusion detection/prevention, encryption, antivirus, incident response, and security event management.
Technologies of specific interest (desirable but not essential) include: Familiarity with Wireless NAC, ELK, and RSA Envision
Provide security monitoring for a growing environment; support incident responses and provide root cause analysis support for incidents.
Review aggregated server logs, firewall logs, intrusion prevention logs, and network traffic for unusual or suspicious activity.
Conduct research on emerging threats in support of security enhancement and development efforts
Working as part of a team, performing deep-dive incident analysis and determining if critical systems or data sets has been impacted.
Have a strong IT technical background and experience working in a SOC environment.
Essential Experience: ELK. Functional knowledge of configuring opensource toolsets (Splunk, Logstash, Redis, ElasticsSearch, and Kibana)
Has utilised toolsets for analysis such as but not limited to SIEMs (e.g. Splunk, ELK, LogRhythm, MacAfee, IBM QRadar, etc.), IDS/IPS (e.g. network- and host-based), NAC, FIM, DLP, vulnerability management tools, network monitoring tools, Cyber Security Case management (eg SNow), etc.
Functional knowledge of TCP/IP protocol suite, LAN/WAN technologies, switching, routing, VoIP and Telephony technologies, firewalls and VPN, intrusion prevention systems (IPS), vulnerability assessment and patch management tools.
Functional knowledge of UNIX, Linux, Apple and Windows technologies.
Experience of using Security Information and Event Management (SIEM) platforms, and Case Management tools.
Active CISSP, SSCP, SANS certifications, Security or equivalents
Knowledge of building and consuming RESTful web services.
Knowledge of JASON, Query String Query, and Python (or similar).
For any queries please contact Rebecca Eaton on either (Apply online only) or