* Cyber Threat Intelligence And Vulnerability Le...
Cyber Threat Intelligence and Vulnerability Lead
LS1 Leeds, Yorkshire and the Humber JobFlurry-WhatJobs-GB
Posted 4 days ago
Job Description
Location(s): UK, Europe & Africa : UK : Leeds
BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.
Cyber Threat Intelligence and Vulnerability Lead
Job Title:
Cyber Threat Intelligence and Vulnerability LeadnRequisition ID: 121483
Location: Leeds (this is a 100% office based role due to the nature of the project)
Grade: GG10 - GG11
Referral Bonus: £5,000
Role Description
BAE Systems have been contracted to undertake the day to day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK Critical National Infrastructure (CNI) organisation. The networks protected are predominantly hosted in cloud platforms, with many hundred systems within these environments that must be protected. The customer is committed to development of this improved SOC to be a benchmark of best practice and excellence in reflection of the significant threat that the protected systems are subject to.
This role requires a minimum of DV clearance.
This role reports to the Service Delivery Manager.
The Role
You will be:
Accountable for ensuring all relevant potential cyber threat and key vulnerabilities are detected, triaged and reported on dailynAccountable for all regular reporting and ensuring the efficient delivery of all threat intelligence and vulnerability products by their respective deadlines
Where there is not established schedule for a product the lead is responsible for ensuring that an achievable deadline is set and the work is fairly tasked out
Responsible and accountable for the selection of key threat actors that pose the greatest risk to the clientnResponsible for the development and continuous review of Priority Intelligence Requirements (PIRs), a tailored collection plan and implementation of both to ensure that the intelligence products are relevant to the client's interestsnAccountable for the quality of all Threat Intelligence and Vulnerability Reports, ensuring that when a product is delivered it is at the highest possible standardnAccountable for ensuring that all relevant process are effectively documented and regularly reviewednResponsible for providing well-reasoned and sound analysis, context and predictions into the relevant deliverablesnAccountable for assessing the maturity of the established functions within the client and identifying areas for improvement, productising those improvements and delivering themnAccountable for the personal development of all members of the Threat Intelligence and Vulnerability teamnResponsible to ensuring that during times of reduced capacity that all ADHOC and regular products are completed and are at a sufficient quality for distributionnRequirements
Technical
5+ years' experience in threat intelligence, vulnerability management or conducting research and investigating cyber threats in a technical capacitynExperience in technical incident response and managementnAn expert understanding of current and emerging threats related to government and CNInExcellent Open-Source research skillsnDemonstrate a high level knowledge of Windows and Linux operating systems and the use of command line terminalsnDemonstrate a high level knowledge of core networking concepts and technologiesnDemonstrate a high level knowledge of and experience operating within cloud platformsnNon-Technical
Bachelor's Degree in Cybersecurity, Computer Science or equivalent experience in a SOC/Threat Intelligence/Vulnerability Management fieldnExcellent written and verbal communication skills with the ability to communicate the risk, potential impact and importance of detailed technical information to non-technical and senior stakeholdersnTeam player and adept at working in a multi-disciplinary and diverse teamnSelf-motivated and motivates others, keeping morale and performance highnExperienced team leader & line management experiencenLife at BAE Systems Digital Intelligence
We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.
By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.
Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential.
Cyber Threat Analyst - National Security West
LS1 Leeds, Yorkshire and the Humber JobFlurry-WhatJobs-GB
Posted 6 days ago
Job Description
Location(s): UK, Europe & Africa : UK : Leeds
BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.
Cyber Threat Hunter
Job Title:
Cyber Threat AnalystnRequisition ID: 121703
Location: Leeds and surrounding area
Grade: GG08 - GG09
Referral Bonus: £5,000
Role Description
BAE Systems have been contracted to undertake the day-to-day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK Critical National Infrastructure (CNI) organisation. The networks protected are predominantly hosted in cloud platforms, with many hundred systems within these environments that must be protected. The customer is committed to development of this improved SOC to be a benchmark of best practice and excellence in reflection of the significant threat that the protected systems are subject to.
This role requires a minimum of SC clearance with the potential for DV Clearance in the future.
This role reports to the Delivery Lead/PMO.
The Role
You will be/have:
Responsible for and capable of independently creating Threat Hunt Hypotheses, running Threat Hunts at a regular cadencenResponsible for and capable of translating Threat Hunt Hypotheses into KQL Queries, running those KQL queries and then independently triaging the results.nExperienced with and have sufficient knowledge of attacker TTP'snHave a deep understanding of Advanced Persistent Threat groups and the ability to conduct in-depth researchnAble to independently verify the results of Threat Hunts, refining the queries where necessarynExperienced in Incident Response and ManagementnResponsible for the quality of all Threat Hunt Reports, ensuring that output is delivered it is at the highest possible standardnResponsible for ensuring that all relevant process is effectively documented and regularly reviewednResponsible for providing well-reasoned and sound analysis, context and predictions into relevant deliverablesnResponsible for assessing the maturity of the function within the client and identifying areas for improvement, productising those improvements and delivering themnBe a point of contact for intrusion analysis, forensics and Incident Response queries. Able to provide root cause analysis of non-standard analytic findings and anomaly detections for which a playbook does not yet exist.nResponsible for ensuring that during times of reduced capacity that all ADHOC and regular products are completed and are at a sufficient quality for distributionnIn-depth knowledge of the various techniques and frameworks used within the Cyber Threat Intelligence Domain, Including the Cyber Kill Chain and MITRE ATT&CKnDevelopment of new analytics and playbooks that result in creation of new detection rules/analyticsnRequirements
Technical
3+ years' experience in Cyber Threat Intelligence, and conducting research and investigating cyber threats in a technical capacitynExperience in technical incident response and managementnAn expert understanding of current and emerging threats related to government and CNInExcellent Open-Source research skillsnDemonstrate a high-level knowledge of Windows operating systems and the Azure LandscapenDemonstrate a high-level knowledge of core networking concepts and technologiesnDemonstrate a high-level knowledge of and experience operating within cloud platformsnNon-Technical
Bachelor's Degree in Cybersecurity, Computer Science or equivalentnExperience in a SOC/Threat Intelligence/Vulnerability Management fieldnExcellent written and verbal communication skills with the ability to communicate the risk, potential impact and importance of detailed technical information to non-technical and senior stakeholdersnTeam player and adept at working in a multi-disciplinary and diverse teamnSelf-motivated and motivates others, keeping morale and performance highnAbility to mentor othersnDesirable Qualifications:
Degree-level education in Cyber Security or related areanSANS GNFA, GCIH, GCIA, GCTDnCySA+nCREST - Intrusion Analyst, Cyber Threat IntelligencenAzure - SC200, SC500, AZ500nAWS - Cloud Essentials, SecuritynEC-Council Certified Ethical Hacker or demonstrable equivalent experiencenLife at BAE Systems Digital Intelligence
We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.
By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.
Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential.
Be The First To Know
About the latest Cyber threat intelligence and vulnerability lead jobsin Leeds !
#J-18808-Ljbffr