Overview
Join to apply for the Cyber Defence Analyst L2 role at Airbus Protect.
The Role
An exciting opportunity has arisen for a 2nd Line Analyst within Airbus Protect in Newport. The role of the 2nd Line Analyst is to be an escalation point for all SOC operational activity. The successful candidate will be responsible for the day to day monitoring of multiple security devices, including SIEM, EDR, SOAR etc, ensuring that all customer SLAs are met. You will be required to work as part of the SOC team ensuring all SOC operational tasks are completed on time and work tickets updated/closed with satisfactory technical details included. The 2nd Line Analyst will be comfortable at a technical level, often being required to attend technical workshops and customer briefings/service reviews. All Analysts are expected to be able to present and write professional reports to key stakeholders and exercise good time management.
Responsibilities
* Perform further analysis of escalated events and alarms using the SOC toolset and guided by playbooks.
* Provide support and expertise across stages of the Incident Response lifecycle (preparation, detection and analysis, containment, post-incident activity).
* Ingest and interpret data from research, reports and incidents and turn them into actionable use cases across various technologies.
* Assist with initial triage, scoping and containment during incident response engagements and compromise assessments.
* Mentor junior analysts.
* Lead and direct intelligence driven threat hunts.
* Act as a technical point of contact for customers.
* Maintain currency in cyber security concepts, tools and best practices relevant to the Senior Cyber Defence Analyst L2 role.
* Carry out IOC searches and react using predefined playbooks.
* Develop playbooks for junior analysts to follow.
* Provide feedback and support across the Airbus Protect Defence Team and contribute to Continual Service Improvement lifecycle.
Required
* Perform further analysis of escalated events and alarms using the SOC toolset and guidance steps described in the associated playbooks.
* Provide support and expertise across stages of the Incident Response lifecycle such as preparation, detection and analysis, containment, post-incident activity.
* Ingest and interpret multiple data sources and turn them into actionable use cases across various technologies.
* Assist with initial triage, scoping and containment during incident response engagements and compromise assessments.
* Mentor junior analysts.
* Lead and direct intelligence driven threat hunts.
* Act as a solid technical point of contact for customers.
* Maintain currency in cyber security concepts, tools and best practices appropriate to the Senior Cyber Defence Analyst L2 role.
* Carry out IOC searches and react using the predefined playbooks.
* Develop playbooks for junior analysts to follow.
* Provide feedback and support along the first, second and third capability within the Airbus Protect Defence Team; contribute to the Continual Service Improvement life cycle.
Desirable
* SANS SEC503 GCIA
* SANS SEC504 GCIH
* SANS FOR508 GCFA
* Security Blue BTL1 / BTL2
* PJMR
* CREST (Registered Intrusion Analyst) (CRIA)
Soft Skills / Qualifications
* The 2nd Line Analyst is expected to present and write professional reports to key stakeholders.
* All staff are expected to exercise good time management and work as part of a team.
You will work from Airbus Protect offices, Newport, South Wales, with occasional requirements for business travel within the UK and abroad.
Because of the nature of work undertaken, these positions are required to meet special nationality rules and therefore these vacancies are only open to sole British Citizens. If you meet this criteria you will also undergo security clearance vetting, if not already security cleared to a minimum DV level.
Equal Employment Opportunity
We are committed to equal employment opportunities regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.
Company
Airbus Protect Limited
Contract Type
Permanent
Experience Level
Professional
Job Function
Cyber Security
Industries
Business Consulting and Services
#J-18808-Ljbffr