Join Vodafone Business Security Enhanced and strengthen the cyber security of the UK's Critical National Infrastructure and public sector organisations.
What you'll do
As a Cyber Onboarding Engineer, you are key to the successful delivery of Cyber Services for both Vodafone and its customers. You are self-motivated with a strong interest in Cyber Security and can enhance detection content for our SOC Team, enabling them to provide high-quality monitoring of SIEM systems, managed firewall & IPS services, and more.
This role involves full project lifecycle involvement, understanding customer risks, creating relevant SIEM content supporting use-cases and threat models, enhancing feeds, writing custom IDS/IPS rules, and assisting with Vulnerability Scanning activities. You should be curious, organized, detail-oriented, and able to work collaboratively or independently. Knowledge of MITRE ATT&CK and experience mapping SIEM content to this framework are a plus.
* Comfortable writing Regular Expressions (regex)
* Produce/Enhance/Refine Monthly Reports for internal and external audiences
* Configure/Tune SIEM content, Managed Firewalls, and IPS systems
* Monitor Threat Intelligence feeds
* Interact with Cyber Defence, Security, and Incident Response teams within Vodafone, with customers and suppliers
* Experience of SIEM content creation in a SOC environment
* Ability to interpret logs and identify patterns of behaviour and indications of compromise
* Knowledge of cyber frameworks like MITRE ATT&CK
* IT and Network Security knowledge: Windows, Linux, Firewalls, IPS, Security Appliances
* Programming or scripting experience (e.g., Python, C, Java, Bash)
* Degree or equivalent experience
* Must maintain DV security clearance
Working Hours
Full time 37.5 hours per week - Mon to Fri
#J-18808-Ljbffr