Lead Intrusion Analysts Job, Gloucestershire

A fantastic opportunity for an experienced Lead Intrusion Analyst to join one of the UK’s leading Cyber Security MSSP’s

Lead Intrusion Analyst – Gloucester – up to £75,000 per annum plus benefits

  • Candidates must be willing to undergo full UK SC Clearance

An exciting opportunity to join one of the UK’s leading Cyber-Security Services companies. As the Lead Intrusion Analyst. As the Lead Intrusion Analyst you will be responsible for training and supervision of analysts, responding to and investigating alerts raised, liaising with customers to detail investigation outcomes and recommend remediation actions, managing threat intelligence and actor profiling, assisting in the generation of new signatures / rules, and assisting in the definition of analysis procedures and protocols.

Education: Degree in a relevant field (Information Security / Computing / Network Security) or suitable work experience

Experience: 5 or more years experience in network intrusion analysis or a similar field

Knowledge / Skills:

  1. Comprehensive knowledge of common SIEM solutions, the purpose of them and an understanding of how they work;
  2. Comprehensive knowledge of APT actors; their tools, techniques, and procedures;
  3. Comprehensive knowledge of various types of malware, as well as a strong knowledge of infection vectors and indicators of an infection;
  4. Comprehensive knowledge of common network protocols such as TCP/IP; HTTP, SSL, DNS, etc.;
  5. Comprehensive knowledge of IDS principals, the purpose of them and an understanding of how they work;
  6. Comprehensive experience of IDS and SIEM rule creation, content management and tuning;
  7. Exposure to computer networking design principals;
  8. Good understanding of SQL;
  9. Good knowledge of typical business network architecture (i.e. type of servers/devices);
  10. Good knowledge of current Information Security threats and past threats;
  11. Experience of developing / scripting new analysis tools and techniques;
  12. Experience of providing training and working in a supervisory role to junior staff beneficial but not essential.