Job Description Summary

The Cyber Incident Response Specialist will be part of a dynamic, growing team, planning, preparing, hunting for, and responding to cyber incidents stemming from internal threat actors. This individual should have a history of utilizing logs, tools and manual processes to compare normal activity against malicious activity. A strong comprehension of emerging threats and calculating risks will be critical to success.

Job Description

Essential Responsibilities:

• Perform daily response operations for event triage to detect witting or unwitting internal and external threat actors
• Data Loss Prevention (DLP) exception queue management to minimize insider threat risk
• Work with internal and external customers to assess the validity of the threat, and determine if further allocation of investigative resources is needed
• Provide recommendations for system/tool tuning and development of new threat indicators
• Support additional Cyber programs when required to ensure business and regulatory requirements are adhered to
• Support Cyber tools and system administration
• Implement automation using technology and process development supporting Cyber and business needs

Qualifications/Requirements:

• Minimum BTEC Level 3 Extended Diploma in Cyber Security or equivalent
• Cyber Security Degree Apprenticeship - Level 6 with basic experience in Cyber Security
• Degree (or equivalent experience) in Computer Science or “STEM” (Science, Technology, Engineering and Math) with basic experience

Eligibility Requirements:

Must currently hold or be eligible to apply for UK SC clearance

Desired Characteristics:

• The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills
• Experience utilizing logs, tools and manual processes to compare normal activity against malicious activity
• Creativity to assess intention and actions, even during limited or fragmented data
• Ability to trust their instincts, and know when to keep diving into a problem to define the existence and intention of adversary activity
• Good knowledge of Windows and Linux operating systems
• Knowledge of Splunk / SIEM tools

Flexible Working

This role supports hybrid working, with 3 days a week based on site in Cheltenham.

Total Reward

At GE Aviation we understand the importance of Total Reward. Our flexible benefits plan, called FlexChoice, gives you freedom, choice and flexibility in the way you receive your benefits, as well as giving you the opportunity to make savings where possible.

As a new joiner to GE we are pleased to be able to offer you the following as default in your benefit fund, which you then can tailor to meet your individual needs;

• Performance based annual bonus
• Non-contributory Pension
• Life Assurance
• Group income protection

• Private medical cover
• Holiday Hourly equivalent of 26 days, with flexible option to buy or sell

Security Clearance

SC clearance is required and must be maintained for this role. Please note that in the event that an SC cannot be obtained, you will not be eligible for the role and/or any offer of employment may be withdrawn on grounds of national security.

Right to Work

Applications from job seekers who require sponsorship to work in the UK are welcome and will be considered alongside all other applications. However, under the applicable UK immigration rules as may be in place from time to time, it may be that candidates who do not currently have the right to work in the UK may not be appointed to a post if a suitably qualified, experienced and skilled candidate who does not require sponsorship is available to take up the post. For further information please visit the UK Visas and Immigration website.

Additional Information