Location(s):UK, Europe and Africa : UK : London UK, Europe and Africa : UK : Leeds
BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.
Job Title:
Vulnerability Analyst
Requisition ID:
Location:
London: We offer a range of hybrid and flexible working arrangements : please speak to your recruiter about the options for this particular role.
Grade:
GG10
Referral Bonus:
GBP 5,000
SOC Vulnerability Analyst
Role description
To undertake the day to day operation of (and incremental improvement of) a dedicated Security Operations Centre (SOC) to support the defence of a major UK CNI organisation. The networks protected are predominantly hosted in Azure cloud platforms, with many systems within these environments that must be protected. The customer is committed to development of this improved SOC to be a benchmark of best practice and excellence in reflection of the significant threat that the protected systems are subject to..
These roles require a minimum of SC clearance. Due to timelines for the start of operations, it will not be possible to sponsor new clearances so candidates must have existing clearances.
Responsibilities
stylemargin:top:0.0cm;margin:bottom:0.0cm:
:
Own and manage the Vulnerability Assessment platforms, configuring the toolset for appropriate analysis schedule (with assistance from the SOC Engineering team for underlying hosting/operational support), triage and management of output vulnerability data from both internal scanning and external attack surface management.
:
Gather and maintain a set of VA requirements that define the threats that will be monitored and tracked.
:
Undertake Vulnerability Management, managing the priorities related to the data from Vulnerability Assessment as well as collation and management of wider vulnerability exposure (zero days, environmental (business, operation etc) threats, architectural and legacy threats, etc) to advocate for responsible short and long term mitigations that may include patching, IT change and SIEM detection content requirements.
:
Ensure the business is responsive to changing threat profiles and be the voice of operational vulnerability risk mitigation in the prioritisation of SOC resource effort, including reporting/dashboarding as necessary.
Requirements:
Technical
stylemargin:top:0.0cm;margin:bottom:0.0cm typedisc:
:
Working in a SOC team developing vulnerability insight for technical and non:technical audiences.
:
Experience of Microsoft Defender Vulnerability Management and Microsoft Defender External Attack Surface Management highly beneficial
:
Conducting threat assessments and defining threat intelligence requirements beneficial.
:
Good knowledge of Windows and Linux operating systems and use of the command line.
:
Good knowledge of core networking concepts and technologies e.g. TCP/IP.
:
Some knowledge of malware behaviour and techniques employed by attackers to evade security controls.
Non:technical
stylemargin:top:0.0cm;margin:bottom:0.0cm typedisc:
:
Client side consulting, including stakeholder engagement and the ability to communicate insights and concepts to others (including briefing skills and report writing)
:
Able to understand and adapt to different cultures and hierarchical structures.
:
Team player and adept at working in multi:disciplinary and diverse teams
stylemargin:top:0.0cm;margin:bottom:0.0cm typedisc:
:
Proven analytical skills capable of solving new and complex technical problems.
:
Excellent written and verbal communication skills with the ability to communicate the impact and importance