Security Operations Centre Consultant

Job description

Security Operations Centre Consultant

Market leading Global Telecommunication company are recruiting for a Senior SOC Engineer to join a high performing and growing Yorkshire based team. You will be required to assist the Head of Operational Security with the administration and growth of the SOC as well as customer and internal security projects.

Responsibilities

• Help grow the SOC function, by way of technical security-focused configuration, advice, monitoring, presentation and documentation.
• Provide call-out cover as required, no more than one week in every four.
• Assist with the installation, deployment, configuration and development of SOC toolsets.
• Monitor and analyse Intrusion Detection Systems (IDS), Anomaly Detection Systems (ADS), Firewall event logs, Security Incident and Event Management (SIEM) toolset and other event logs to identify security attacks and threats for remediation/suppression.
• Provide technical expertise in support of internal security designs, projects and activities.
• Assist the Sales and Pre-Sales teams with security expertise by way of response and documentation.
• Help maintain operational security standards, process and procedures.
• Maintain awareness of global security landscape and threats, operational security threats and security industry best practice.
• Work closely with and assist the Information Security function to maintain operational compliance.
• Help develop and maintain technical security service descriptions and data-sheets.
• Respond in a timely manner to security threats or incidents within customer solutions with remediation & mitigation advice and strategy.
• Ad hoc and other duties commensurate with Security Operations Centre (SOC) functions.
• Be vigilant for possible fraudulent activity and if necessary raise a security incident report using the template accessible via the corporate Intranet.
• Periodically review Daisy Security Policies - centrally hosted on the Intranet - to ensure full compliance with current legal, regulatory and company requirements.
• To be compliant with health and safety company policy and legislation.

Required Skills and Experience

Essential:

• Internet security industry experience.
• Security Operations Centre (SOC) industry experience.
• Excellent knowledge of: TCP/IP & routing, SIEM configuration, live & historical threat hunting and analysis.
• Good understanding of encryption, intrusion detection & prevention, security event & information management, cyber-attack vectors, regulatory compliance, Cloud & virtualised deployments and technologies. Good understanding of endpoint protection, including; anti-virus/malware and data-loss prevention.
• Ability to attain HMG Security Check (SC) national security vetting clearance.

Desirable:

• Desirable Qualifications:
• Certified Ethical Hacker - CEH Certification
• Cisco - CCNP Routing and Switching, CCNP Security.
• Any SIEM related qualifications
• Certified Information Systems Security Professional (CISSP)
• Security-focused technical career background.
• Organised, responsive and thorough problem-solving and analytical skills.
• Strong communication, interpersonal and presentation skills.
• Keen cyber threat-landscape interest and awareness.
• Customer focused.