Senior Cyber Security Analyst / Senior Cyber Defence Analyst / SIEM SME / Incident SME
Position Overview:
As a member of the expanding security team, the Cyber Defence Analyst plays a pivotal role in conceptualising, implementing, and sustaining operational cyber security measures. This role encompasses proactive risk assessment, protective monitoring of priority C4IS/networks, and the identification and mitigation of both internal and external cyber threats. Additionally, this position entails a diverse skill set, including the nurturing of junior analysts, real-time network monitoring for unauthorised activities, and active participation in incident response efforts.
Your Responsibilities:
* Develop and integrate security event monitoring and incident management services.
* Respond promptly to security incidents as part of an incident response team.
* Establish metrics and dashboards to enhance visibility of the Enterprise infrastructure.
* Utilise the SOAR platform to automate playbooks and streamline case management processes.
* Produce comprehensive documentation to ensure the repeatability and standardisation of security procedures.
* Innovate investigative methodologies using the SOC's software toolsets to bolster recognition opportunities for specific analysis.
* Maintain system security baseline in accordance with the latest threat intelligence and evolving trends.
* Provide Subject Matter Expertise (SME) on a wide range of information security standards and best practices.
* Offer strategic and tactical security guidance, including evaluation of technical controls.
* Collaborate with SOC engineers to maintain up-to-date dashboards of security alerts, enhancing incident response capabilities.
* Support Junior Analysts in managing SOC systems.
Desirable Qualifications:
• Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent)
• SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent)
• Advanced Analyst Course (SANS SEC503 or equivalent)