Job Description
Airbus Protect is a European specialist in cyber security, safety and sustainability services. Our mission is to protect governments, military and essential national infrastructure enterprises from cyber threats.
We are over 1,800 experts based across our main locations in France, Germany and the UK, each with a Security Operating Centre. We also operate in the US and the Middle East.
We provide a global cyber defence approach that aims to protect, detect and respond to cyber threats with a portfolio including managed security services, industrial control system offerings, encryption, key management and consultancy services.
Our goal is to protect our customers and support their needs with cyber security products. We are passionate about cyber security. If you share our passion, we want to speak with you.
The Role
An exciting opportunity has arisen for a 2nd Line Analyst within Airbus Protect in Newport.
The 2nd Line Analyst is an escalation point for all SOC operational activity. The successful candidate will be responsible for the day‑to‑day monitoring of multiple security devices, including SIEM, EDR, SOAR, etc., ensuring that all customer SLAs are met. You will work as part of the SOC team ensuring all operational tasks are completed on time and work tickets are updated/closed with satisfactory technical details included. The analyst will be comfortable at a technical level, attend technical workshops and customer briefings/service reviews, present and write professional reports to key stakeholders and exercise good time management.
Responsibilities
* Perform analysis of escalated events and alarms using the SOC toolset and following heuristic guidance steps described in the associated playbooks.
* Provide support and expertise across stages of the Incident Response lifecycle such as preparation, detection and analysis, containment and post‑incident activity.
* Ingest and interpret multiple sources of data from research, reports and incidents and transform them into actionable use cases across various technologies.
* Assist with the initial triage, scoping and containment efforts during incident response engagements and compromise assessments.
* Mentor junior analysts and develop playbooks for them to follow.
* Lead and direct efficient intelligence‑driven threat hunts.
* Act as a solid technical point of contact for customers.
* Maintain currency in cyber security concepts, tools and best practices appropriate to the Senior Cyber Defence Analyst L2 role at the stated competence level.
* Carry out IOC searches and react using predefined playbooks.
* Provide feedback and support along the first, second and third capability within the Airbus Protect Defence Team, as well as contribution into the continual service improvement life‑cycle.
Required Qualifications
* Experience performing analysis of escalated events and alarms using a SOC toolset.
* Experience across Incident Response lifecycle stages including detection, analysis, containment, and post‑incident activities.
* Strong analytical skills with ability to ingest diverse data sources.
* Experience mentoring junior analysts and developing playbooks.
* Proficiency in threat hunting and acting as a technical customer liaison.
* Up‑to‑date knowledge of cyber security concepts, tools and best practices relevant to the Senior Cyber Defence Analyst L2 role.
* Ability to perform IOC searches and apply playbooks.
Desirable
* SANS SEC503 GCIA
* SANS SEC504 GCIH
* SANS FOR508 GCFA
* Security Blue BTL1 / BTL2
* PJMR
* CREST (Registered Intrusion Analyst) (CRIA)
Soft Skills and Qualifications
* Ability to present and write professional reports to key stakeholders.
* Excellent time management and teamwork skills.
Benefits and Opportunities
* Exciting development opportunities and perspectives within Airbus as a global player.
* An attractive company pension scheme.
* Airbus Group success share scheme.
* An extensive range of additional benefits.
Location and Travel
You will work from Airbus Protect offices, Newport, South Wales, with occasional requirements for business travel within the UK and abroad.
Because of the nature of work undertaken, these positions are required to meet special nationality rules and are only open to sole British Citizens. Candidates will undergo security clearance vetting to at least DV level if not already cleared.
Company
Airbus Protect Limited
Contract Type
Permanent
Experience Level
Professional
Job Family
Cyber Security
Equal Employment Opportunity
We are committed to equal employment opportunities regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace. This job requires an awareness of potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth. Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief. Airbus is, and always has been, committed to equal opportunities for all. We will never ask for any monetary exchange in the recruitment process; any impersonation of Airbus for such purposes should be reported to emsom@airbus.com.
Application Consent
By submitting your CV or application you consent to Airbus using and storing information about you for monitoring purposes related to your application or future employment. This information will only be used by Airbus.
Workplace Flexibility
At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.
#J-18808-Ljbffr