This Job Vacancy has Expired!

Security Analyst (SC Cleared)

Source Technology

Posted on Feb 13, 2021 by Source Technology

Not Specified, Belgium
IT
Immediate Start
Annual Salary
Contract/Project


Security Analyst


* Must hold active SC Clearance.*


Perform initial analysis of logs and network traffic, determine alert severity and escalate when required. Analyst will collate information and present findings in a clear, structured format, providing remediation recommendations and first line response where applicable.


Main responsibilities:


- Conduct research and assessments of security events within Cyber Security Centre (NCSC) team


- Provide analysis of Firewall, IDS, anti-virus and other network sensor produced events and present findings


- Appropriately leverage the comprehensive extended toolset (eg Log Collection, Intrusion Detection, Packet Capture, VA, Network Devices etc.) for enhancing investigations


- Support the end-to-end Incident Handling process


- Propose optimizations and enhancements which help to both maintain and improve Cyber Security posture

Requirements


  • Required Security Clearance: SC, DV or NATO Secret

  • knowledge of TCP/IP Networking, Windows and Linux operating systems

  • Broad understanding of common network security threats and mitigation techniques

  • Security Information and Event Management products (SIEM) - eg ArcSight, Splunk

  • Analysis of Network Based Intrusion Detection Systems (NIDS) events- eg SourceFire, Palo Alto Network Threat Prevention

  • Log analysis from a variety of sources (eg Firewalls, Proxies, Routers, DNS and other security appliances)

  • Network traffic capture analysis using Wireshark

  • Logical approach to analysis and ability to perform structured security investigations using large, complex data sets


Desireable



  • Holding industry leading certification in area of cyber security such as GCIA, GNFA, GCIH

  • Computer Incident Response Centre (CIRT), Computer Emergency Response Team (CERT)

  • Proficiency in Intrusion/Incident Detection and Handling

  • Full Packet Capture systems - eg Niksun, RSA/NetWitness

  • Host Based Intrusion Detection Systems (HIDS)

  • Computer security tools (Vulnerability Assessment, Anti-virus, Protocol Analysis, Anti-Virus, Protocol Analysis, Anti-Spyware, etc.)

  • Computer forensics tools (stand alone, online and network)

  • Military communication systems and networks


For more information or to apply please reach out on (see below)




Reference: 1095513175

Set up alerts to get notified of new vacancies.