Find More Than 10K+
United Kingdom Jobs

Job description

Location: Farnborough

Job Description:

In this role, you will provide technical leadership of operational cyber defence capability to our customers, including development, integration, improvement and optimisation of the various components and the overall customer-facing capability across threat intelligence, defensive monitoring, threat hunting and incident analysis.

Key Accountabilities

• Develop and champion operational cyber defend integrated capability, including capability roadmap, to support the cyber business objectives, taking account of the competitive market environment and in close collaboration with relevant stakeholders.
• Lead SOC detection content development capability, spanning cyber security monitoring, threat hunting and end-point detection and response.
• Leverage threat intelligence in the creation of bespoke detection content, including SIEM rules, threat hunts and EDR rules.
• Develop novel and bespoke approaches to SIEM-based detection and threat hunting with convincing evidenced rationale.
• Execute, improve, refine, and document threat hunting playbooks, queries, and visualisations.
• Coach and mentor SOC analysts to upskill wider capability.
• Lead SOC engagement with key customers at senior level.
• Contribute compelling cyber security monitoring, detection and threat hunting solutions to relevant bids.

Key Capabilities/Knowledge

• Recognised by organisation as an expert in operational proactive and threat informed cyber defend monitoring and detection solutions provided to remote (3rd party) clients as a managed cyber security service
• Excellent understanding and recognised by organisation as expert in the current cyber threat landscape, technical vulnerabilities, attack methodologies, threat actors and MITRE ATT&CK framework
• Able to identify evidence, create compelling cases for, and oversee creation of, cyber security monitoring and threat hunting strategies in business and operational contexts that deliver benefits. Able to explain how threat hunting complements and enhances cyber security monitoring.
• Able to lead cyber security monitoring and threat hunting capability, instilling confidence and earning credibility
• Good awareness of Security Information and Event Management (SIEM), Big Data and Endpoint Detection & Response (EDR), technologies, and how to write rules and queries for them.
• Able to identify relevant log sources required for effective content development and threat hunting. Able to create detection content across a wide range of tooling that follows industry best practice.
• Able to identify suspicious and malicious events by manually reviewing logs, leveraging threat intelligence, and drilling down into further details. Able to deal with ambiguous log events.
• Able to explain with justification to stakeholders at all levels the limitations in cyber security monitoring and/or threat hunting arising from inadequate log sources
• Able to work independently, with guidance in only the most complex situations
• Able to engage effectively with, and contribute to business winning activities such as bid writing.
• Excellent IT skills, including knowledge of computer networks, operating systems, software, hardware and security
• Outcome focused senior stakeholder engagement, influence & persuasion skills
• Collaborate effectively across organisation and externally to achieve required outcomes
• STEM degree or equivalent

Job Type: Full-time

Salary: £65,000.00-£80,000.00 per year

Benefits:

• Company pension

Schedule:

• Monday to Friday

Ability to commute/relocate:

• Farnborough: reliably commute or plan to relocate before starting work (preferred)

Experience:

• Cybersecurity: 3 years (preferred)

Work authorisation:

• United Kingdom (preferred)

Work Location: One location

Application deadline: 06/02/2023
Reference ID: 32729