Security Operations Analyst - SOC - Southampton

11 Oct 2016
19 Oct 2016
Contract Type
Our client is a major critical infrastructure provider seeking to internalise the skills associated with security operations management to improve their ability to react to security incidents and alerts. This role has the potential to develop, and represents an opportunity to design and develop a co-sourced SIEM function within a unique and critical industry. The individual will act as the Intelligent Customer between the critical infrastructure provider and the Information Security Managed Service Provider (Lockheed Martin) in respect of Cyber Security incidents and alerts. This role is responsible for the day to day management of potential cyber incidents, events and vulnerabilities identified from alerts to the Business and to subsequently undertake an impact analysis, recommend, drive and track appropriate action to address these risks and vulnerabilities. Responsibilities: • On a day to day basis you will work closely with the Information Security Managed Service Provider and the Corporate Security Team to ensure that all alerts, incident and events are identified, investigated and appropriate action is taken to mitigate any risks; also that lessons are learned and reports become increasingly insightful. • Take ownership of the SIEM/SOC service to drive forward coverage, mature processes and enhance the organisations ability to react in an appropriate manner. Undertake any actions in respect of tactical Incident Event Management that arise. • Undertake a daily Impact Analysis to ensure that the correct level of risk is identified and the appropriate course of action is recommended. • Work closely with the organisations Asset & Project Managers to advise on any potential risks and vulnerabilities in respect of information & cyber security within the operational estate and project lifecycles, recommending and tracking actions as appropriate. • Responsible for the management and preparation of regular metrics and ad hoc reports for Senior Management and Project Managers in relation to identified risks and vulnerabilities so that the context of the environment can be understood and decisions made accordingly. • Provide good quality advice and guidance to colleagues across the organisation as to the management and avoidance of technical risks to the Business. • Contribute to the Crisis Management process and Team in respect of potential and actual vulnerabilities. • Own and develop the organisations threat intelligence processes, developing connections and insights that support the effectiveness of the SIEM. Report threat intelligence issues to the necessary stakeholders escalating as appropriate. • Provide support to the CISO and the team in respect of other Information Security matters as required. • Support the CISO in raising awareness of potential Security Incident Events and vulnerabilities to increase the ability of individuals in understanding and identifying any potential risk. Qualifications and professional skills: • Certified Information Security Systems Professional (CISSP) accreditation or similar, or working toward such accreditation. • Previous experience of operational security activities, supported by an inquisitive, tenacious nature and ability to prioritise • Good understanding of cyber risks and vulnerabilities supported by a good understanding of network security, firewall management/admin, network services/protocols, and security toolsets. • Ability to work well under pressure as part of a small team with the ability to self-motivate and to work with minimal supervision in respect of discharging accountabilities • The ability to influence others to take appropriate action in an effective and timely manner; discrete and pragmatic when it comes to dealing with issues. • Good communication and interpersonal skills with the ability to develop strong relationships in the Business at all levels and with third party suppliers. • Security clearance to SC level will be required. Acumin Consulting is a member of the Red Snapper Group. The Red Snapper Group acts as an employment agency (permanent) and as an employment business (temporary) - a confidential service to candidates. The Red Snapper Recruitment Group is an equal opportunities employer. This job was originally posted as

More jobs like this