In this role, you will:
1. Specialize in network-centric analysis (NSM), host-centric analysis (live response, digital forensics), malware analysis, and log-centric analysis (SIEM).
2. Perform daily response operations on a schedule that may involve non-traditional working hours.
3. Curate signatures, tune systems/tools, and develop scripts and correlation rules.
4. Analyse host and network forensic artifacts and identify patterns and behaviours related to threat actors.
5. Lead technical aspects of incident detection and response.
6. Mentor and train incident response team members on detection techniques and processes.
Qualifications:
* Bachelor's Degree in Computer Science or STEM majors (Science, Technology, Engineering and Math).
* CISSP, CISM or related SANs or Industry certifications.
Desired Expertise:
* Relevant Cyber or IT related experience in client and server environments, infrastructure management and support.
* Understanding of CND-based analytical models (Kill Chain, ATT&CK, Pyramid of Pain, etc.).
* Understanding of APT, Cyber Crime and associated tactics.
* Understanding of host forensics, network analysis techniques and tools.
* Understanding of malware and reverse engineering.
* Understanding of vulnerabilities, vulnerability management, remediation, and implementation techniques.
* Understanding of responding to threats in cloud platforms (AWS, Azure, Google, etc.).
* Excellent verbal and written communication skills.
* Excellent organizational and analytical skills.
* Detail-oriented with the ability to multi-task and prioritize efforts.
* Ability to express thoughts clearly and collaborate in a team environment.
* Must currently hold or be eligible to apply for UK SC clearance.
Additional Information:
GE supports flexible working arrangements and recognizes the benefits of work-life balance. Our benefits include:
* Non-contributory Pension
* Life Assurance
* Group income protection
* Private medical cover
* Holiday entitlement of 26 days, with flexible options to buy or sell
Baseline Personnel Security Standard (BPSS) clearance is required and must be maintained. If BPSS clearance cannot be obtained, employment may be withdrawn due to national security considerations. For more details, see BPSS clearance requirements.
#J-18808-Ljbffr