Security Analyst Team Lead

  • Job Reference: N6030-595S
  • Date Posted: 16 January 2018
  • Location: Bournemouth
  • Salary: On Application
  • Sector: Government & Defence, I.T. & Communications
  • Job Type: Permanent
  • Work Hours: Full Time
  • Contact: Sue Allen
  • Email: info@gregory-martin.com
  • Telephone: 01252 710215

Job Description

Security Analyst Team Lead

 

Our client has an opportunity for a Senior Security Analyst Team Lead.

 

The Senior Security Analyst / Team Leader will manage the Security Operation Centre (SOC) of 3 people. You will oversee the application of analytic and technical skills to achieve the monitoring of network security resources.  Oversees the investigation and resolution of security incidents and the identification of malicious activity. Supervises and ensures the coordination of incident response.

 

The Senior Security Analyst / Team Lead will lead, manage, and oversee the conduct of advanced network threat detection and analysis of security events identified by SIEM engines, signatures triggered by IPS/IDS, firewalls, syslogs, and endpoint security solutions, and/or escalated via ticket. They will oversee SOC analysts monitoring and parsing security data and netflow feeds, including inspection of correlated events and packet captures.  They will supervise the integration of threat intelligence into the corporate network platform by SOC personnel. They will ensure the development, enhancement and implementation of detection and response capabilities, including creation of robust SIEM content, IDS rules, SOP documentation, and creation of incident response methodologies. This individual will be a key part of driving research and product development to help recommend new security tools to improve the current environment and will be expected to work in close coordination with the IT Services team. They will be expected to be able to communicate effectively, evenly, and intelligently via phone, email or ticket updates. And will be expected to remain an SME on cyber security issues through research of industry trends.

 

As the Senior Security Analyst team lead your skills and qualifications will ideally include:

Technical expertise in Information and Network Security including:

  • Administration of Carbon Black Endpoints, LogRhythm SEIM management, and Nexpose

  • Certification in Ethical hacking.

  • Understanding and command of network routing, TCP/IP and Network Security and associated certification in in Security Management principles.

  • 2+ years of SOC or MSSP experience with at least 1 year in an in-depth technical role

  • 2+ years of SIEM experience – with knowledge of content creation (rules, alerts, etc.)

  • Strong analytical and investigation skills

  • Ability to communicate IT, networking, and security concepts to personnel at all levels of experience and responsibility

  • Experience with automated incident response tools (Sysmon, Carbon Black, etc.), packet capture and analysis (tcpdump/windump, Wireshark, etc.) and host and network forensics

  • Strong background with in-depth analysis of security events and the ability to triage security events

  • Strong understanding of security architectures and devices, threat intelligence consumption and management, malware infections and proactive mitigation, data exfiltration techniques

 

Security Analyst Team Lead

Based Bournemouth, Dorset

Salary:  Competitive