Role Title: SIEM / Incident SME
Location: Onsite Corsham - Fulltime
Duration: 6-12 months
Rate: Up to £550 per day inside IR35
Clearance: Applicants must currently hold MoD DV security clearance
Role Description
The Cyber Defence Analyst will join a growing security team responsible for designing, delivering, and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal and external cyber-threats/attacks. This position involves a broad range of skills, including the development and mentoring of junior analysts, monitoring networks to actively remediate unauthorised activities.
Your profile
Previous experience of Enterprise ICS/network architectures and technologies
Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning.
Experience as a mentor/coach to junior analysts
Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks
Skilled in maintaining Microsoft directory services.
Skilled in using virtualisation software.
Knowledge of key security frameworks (e.g. ISO, NIST 800-53, 800-171, 800-172, C2M2)
Excellent communication skills
Experience of writing Defence/Government documentation
Desirable Qualifications
Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent)
SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent)
Advanced Analyst Course (SANS SEC503 or equivalent)
This is a business-critical position and we are looking to arrange interviews as soon as possible. To be considered please apply directly or contact me via email at lewis.thompson@searchability.com