Cyber Defence Analyst L3 - Airbus Aircraft
Company: Airbus Protect Limited
Location: Newport, South Wales, UK (occasional travel within UK and abroad)
Contract: Permanent
Experience Level: Professional (Mid‑Senior)
Job Overview
An exciting 3rd Line Analyst opportunity within Airbus Protect’s SOC. You will serve as the escalation point for all SOC operational activity and ensure daily monitoring of security devices supports customer SLAs.
Responsibilities
* Escalation point for all SOC operational activity.
* Day‑to‑day monitoring of SIEM, SOAR, IDS/IPS, EDR etc ensuring customer SLAs are met.
* Complete SOC operational tasks, update tickets with detailed technical information.
* Attend technical workshops and customer briefings/service reviews.
* Prepare and present professional reports to stakeholders.
* Lead the SOC team during critical incidents when required.
* Analyze and correlate events of interest, providing remedial recommendations.
* Produce post‑incident reports and review SOC work instructions.
* Develop use‑case factory and playbooks, validate before live deployment.
* Maintain up‑to‑date security concepts, tools, and best practices.
* Define continuous improvement processes with the SDM and propose improvements to internal documentation and tools.
Required Qualifications and Certifications
* PCDRA (Palo Alto Networks Certified Detection and Remediation Analyst)
* Microsoft SC200: Microsoft Security Analyst
* Blue Team Level 1 & 2 (Junior / Advanced Security Operations)
* Knowledge of Microsoft Defender & Sentinel
* Knowledge of SOAR platforms
* Knowledge of Splunk
* Understanding of threat actor TTPs (Tactics, Techniques, Procedures)
* SANS SEC401: Security Essentials (or equivalent)
* SANS SEC503: Network Monitoring and Threat Detection In‑Depth (or equivalent)
* SANS SEC504: Hacker Tools, Techniques, Exploits and Incident Handling (or equivalent)
Desirable
* Knowledge of Reverse Engineering Malware
* Practical Junior Malware Researcher (PJMR)
* SANS SEC488: Cloud Security Essentials (or equivalent)
* CREST Certified Network Intrusion Analyst (CCNIA) (or equivalent)
* SANS FOR508: Advanced Incident Response, Threat Hunting and Digital Forensics (GCFA)
Soft Skills & Qualifications
* Professional report writing and presentation skills.
* Strong time‑management and teamwork abilities.
Security Clearance
Eligible applicants must be British citizens with a minimum DV level security clearance.
EEO Statement
AIRBUS is committed to equal employment opportunities regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.
#J-18808-Ljbffr