Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we work closely with clients to embrace a transformational approach aimed at benefiting all stakeholders-empowering organizations to grow, build sustainable competitive advantage, and drive positive societal impact. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives that question the status quo and spark change. BCG delivers solutions through leading-edge management consulting, technology and design, and corporate and digital ventures. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, fueled by the goal of helping our clients thrive and enabling them to make the world a better place. BCG X BCG X is the tech build & design unit of BCG. Turbocharging BCG's deep industry and functional expertise, BCG X brings together advanced tech knowledge and ambitious entrepreneurship to help organizations enable innovation at scale. With nearly 3,000 technologists, scientists, programmers, engineers, and human-centered designers located across 80+ cities, BCG X builds and designs platforms and software to address the world's most important challenges and opportunities. Teaming across our practices, and in close collaboration with our clients, our end-to-end global team unlocks new possibilities. Together we're creating the bold and disruptive products, services, and businesses of tomorrow. Practice Area Profile What You'll Do The Responsible AI Senior Analyst plays a critical role leading interaction with our AI product teams to ensure alignment with our Responsible AI policy, principles, and standards, as well as supporting the design, continuous improvement, and execution of the overall Responsible AI program at BCG. YOU'RE GOOD AT Working in a fast-paced environment where you engage with a myriad of AI product teams working across client, industry, and geographic contexts to help them identify Responsible AI risks and develop mitigation plans, using your experience with and passion for Responsible AI to look for ways we can continually improve our program, while coordinating with stakeholders across BCG and contributing to thought leadership. Responsible AI Senior Analysts work with a diverse set of stakeholders to: Ensure responsible development of AI products by providing Responsible AI expert support to AI product teams, including conducting independent product reviews, responding to ad hoc support requests, and facilitating workshops and learning opportunities Engage directly with client teams on Responsible AI-related issues across the entire software development lifecycle of an AI product Oversee execution of the Responsible AI risk monitoring processes (e.g., identify and assess risks, oversee development of mitigation plans, escalate issues, recommend paths forward) Assist with Responsible AI Committee meetings and help refine Committee procedures Help coordinate multi-stakeholder work across Legal, Compliance, Security, and other related teams Maintain and update the Responsible AI program content, structure, and processes Develop and integrate Responsible AI tools and frameworks into AI product delivery Build Responsible AI culture and awareness through creation, update, coordination, and delivery of Responsible AI training content for technical and non-technical audiences at all levels of seniority Contribute to Responsible AI thought leadership, technical tutorials, and tool development Monitor emerging global AI regulatory frameworks and policies and help translate into required Responsible AI program updates Remain up-to-date on emerging frameworks, standards, technical approaches, and related issues by participating in workshops, reading professional publications, maintaining personal networks, and participating in professional organisations Identify and develop partnership opportunities with key players in the Responsible AI domain What You'll Bring (Experience & Qualifications) 3-5+ years of experience in Responsible AI/AI ethics, including directly engaging with AI product teams 3-5+ years of experience in program/project management and team leadership Excellent written and verbal communication skills across technical and non-technical audiences Stellar problem-solving and risk identification/mitigation skills in business contexts Demonstrable knowledge of Responsible AI issues, trends, frameworks, and best practices Working knowledge of emerging AI regulatory and legal frameworks across the globe Software development and coding abilities are strongly preferred You'll work in a fast-paced, intellectually challenging, product-oriented environment where we advance our thinking about and operationalization of Responsible AI. You'll engage with a diverse set of stakeholders, including senior executives, product developers, product managers, legal, compliance, and security teams, as well as BCG X's Chief AI Ethics Officer, the Director of the Responsible AI team, and other members of the Responsible AI team.
May 05, 2024
Full time
Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we work closely with clients to embrace a transformational approach aimed at benefiting all stakeholders-empowering organizations to grow, build sustainable competitive advantage, and drive positive societal impact. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives that question the status quo and spark change. BCG delivers solutions through leading-edge management consulting, technology and design, and corporate and digital ventures. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, fueled by the goal of helping our clients thrive and enabling them to make the world a better place. BCG X BCG X is the tech build & design unit of BCG. Turbocharging BCG's deep industry and functional expertise, BCG X brings together advanced tech knowledge and ambitious entrepreneurship to help organizations enable innovation at scale. With nearly 3,000 technologists, scientists, programmers, engineers, and human-centered designers located across 80+ cities, BCG X builds and designs platforms and software to address the world's most important challenges and opportunities. Teaming across our practices, and in close collaboration with our clients, our end-to-end global team unlocks new possibilities. Together we're creating the bold and disruptive products, services, and businesses of tomorrow. Practice Area Profile What You'll Do The Responsible AI Senior Analyst plays a critical role leading interaction with our AI product teams to ensure alignment with our Responsible AI policy, principles, and standards, as well as supporting the design, continuous improvement, and execution of the overall Responsible AI program at BCG. YOU'RE GOOD AT Working in a fast-paced environment where you engage with a myriad of AI product teams working across client, industry, and geographic contexts to help them identify Responsible AI risks and develop mitigation plans, using your experience with and passion for Responsible AI to look for ways we can continually improve our program, while coordinating with stakeholders across BCG and contributing to thought leadership. Responsible AI Senior Analysts work with a diverse set of stakeholders to: Ensure responsible development of AI products by providing Responsible AI expert support to AI product teams, including conducting independent product reviews, responding to ad hoc support requests, and facilitating workshops and learning opportunities Engage directly with client teams on Responsible AI-related issues across the entire software development lifecycle of an AI product Oversee execution of the Responsible AI risk monitoring processes (e.g., identify and assess risks, oversee development of mitigation plans, escalate issues, recommend paths forward) Assist with Responsible AI Committee meetings and help refine Committee procedures Help coordinate multi-stakeholder work across Legal, Compliance, Security, and other related teams Maintain and update the Responsible AI program content, structure, and processes Develop and integrate Responsible AI tools and frameworks into AI product delivery Build Responsible AI culture and awareness through creation, update, coordination, and delivery of Responsible AI training content for technical and non-technical audiences at all levels of seniority Contribute to Responsible AI thought leadership, technical tutorials, and tool development Monitor emerging global AI regulatory frameworks and policies and help translate into required Responsible AI program updates Remain up-to-date on emerging frameworks, standards, technical approaches, and related issues by participating in workshops, reading professional publications, maintaining personal networks, and participating in professional organisations Identify and develop partnership opportunities with key players in the Responsible AI domain What You'll Bring (Experience & Qualifications) 3-5+ years of experience in Responsible AI/AI ethics, including directly engaging with AI product teams 3-5+ years of experience in program/project management and team leadership Excellent written and verbal communication skills across technical and non-technical audiences Stellar problem-solving and risk identification/mitigation skills in business contexts Demonstrable knowledge of Responsible AI issues, trends, frameworks, and best practices Working knowledge of emerging AI regulatory and legal frameworks across the globe Software development and coding abilities are strongly preferred You'll work in a fast-paced, intellectually challenging, product-oriented environment where we advance our thinking about and operationalization of Responsible AI. You'll engage with a diverse set of stakeholders, including senior executives, product developers, product managers, legal, compliance, and security teams, as well as BCG X's Chief AI Ethics Officer, the Director of the Responsible AI team, and other members of the Responsible AI team.
Salary: £65,000 Location: Hybrid working (1-2 days Becrypt Head Office in Central London/Home Working) The Opportunity As part of the Becrypt Managed Services strategy we are looking to recruit a Senior SOC Analyst to build a new SOC function from the ground up. The role will initially be very hands on, responsible for monitoring and triaging of events and incidents for our client base, using such tools as Microsoft Sentinel and Manage Engine Log 360. The role will also involve standing up new SIEM tools to support multiple environments, an in-depth understanding of configuring and tuning tools, as well as monitoring, is a must. This is a chance for an individual to be involved at the start of the development of the SOC function. This role will play a leading part in the day-to-day activities of the SOC and influence the SOC on an operational, technical and strategic level. This role requires someone driven, willing to get hands on, has a keen eye for documentation and is passionate about delivering an excellent security service. A great team player is a must. Job Purpose: The main purpose of this role is to bring stability and a standard approach to security monitoring across a number of SIEM tools for multiple environments, thus ensuring a strong security posture is maintained. Primarily the role will be concerned with taking on all security monitoring for a handful of small client environments and the corporate environment. The role will also be accountable for ensuring a SIEM platform is embedded as a BAU service for a new Private Cloud solution. As a Senior SOC Analyst you will play a pivotal role in ensuring the security and resilience of our organisation, and client's information systems. The Senior SOC analyst will be the first recruit into the SOC Team and will be expected to work with management to ensure the service is built and grows to suit the requirements of the business. Main Duties and Responsibilities: Security Monitoring: & Investigation: Monitoring multiple SIEM tools to assure high a level of security on solutions Becrypt deliver. Oversee and enhance security monitoring systems to detect and analyse potential security incidents. Conduct real-time analysis of security events and incident and escalate as necessary. Support other teams on investigations into incidents, determining the root cause and impact. Document findings and lessons learned to improve incident response procedures. Ensure runbooks are followed and are fit for purpose. Incident Response: Lead and coordinate incident response activities to effectively contain, eradicate, and recover from security incidents. Develop and maintain incident response plans, ensuring they align with industry best practices. Escalation management in the event of a security incident. Follow major incident process. Threat Intelligence: Stay abreast of the latest cybersecurity threats and vulnerabilities, integrating threat intelligence into security monitoring processes. Contribute to the development of threat intelligence feeds to enhance proactive threat detection. Security Tool Management: Manage and optimise SIEM tools, ensuring they are properly configured and updated to maximize effectiveness. Evaluate new security technologies and recommend enhancements to the security infrastructure. Collaboration: Collaborate with cross-functional teams, including IT, legal, and management, to address security incidents and implement preventive measures. Provide expertise and guidance to other analysts. Working with the Technical Delivery Team to ensure all new and changed services are monitored accordingly. Documentation: Maintain accurate and up-to-date documentation of security procedures, incident response plans, and analysis reports. Create post-incident reports for management and stakeholders. Create monthly reporting packs as per contractual requirements. Create and document robust event and incident management processesRunbooks & Playbooks. Other responsibilities: Involvement in scoping and standing up new solutions for new opportunities. Assisting Pre-Sales team with requirements on new opportunities. Demonstrations of SOC tools to clients. Continual Service Improvement - Recommendations for change to address incidents or persistent events. Essential Skills and Experience: Analytical mindset with the ability to troubleshoot and solve complex security issues. Excellent communication and interpersonal skills for collaborating with diverse teams. Leadership qualities to guide other team member and drive security initiatives. Up-to-date knowledge of cybersecurity trends and threats. Full understanding of SIEM systems -Microsoft Sentinel, Manage Engine Log 360, IBM QRadar, Splunk, Sentinel etc Demonstrable understanding of IT Security Management, Policies, Procedures, Standards and Guidelines. Ability to work autonomously Clear understanding of runbooks and playbooks with the ability create these from scratch Understanding of ISO 27001, ISO 9001 & Cyber Essentials would be extremely advantageous Security Operations and Incident Handling Previous experience working within a SOC team A great opportunity for a SOC professional to push their career forward in a challenging and exciting environment. Due to the high level of Security clearance required, applicants must be British Nationals. You must hold SC Clearance for this role or be willing to go through SC Clearance. Salary: £65,000 Location: Hybrid working (1-2 days Becrypt Head Office in Central London/Home Working) Apply Now To apply for the Senior SOC Analyst role, please send a copy of your CV and covering letter by using the apply button provided on the page.
May 04, 2024
Full time
Salary: £65,000 Location: Hybrid working (1-2 days Becrypt Head Office in Central London/Home Working) The Opportunity As part of the Becrypt Managed Services strategy we are looking to recruit a Senior SOC Analyst to build a new SOC function from the ground up. The role will initially be very hands on, responsible for monitoring and triaging of events and incidents for our client base, using such tools as Microsoft Sentinel and Manage Engine Log 360. The role will also involve standing up new SIEM tools to support multiple environments, an in-depth understanding of configuring and tuning tools, as well as monitoring, is a must. This is a chance for an individual to be involved at the start of the development of the SOC function. This role will play a leading part in the day-to-day activities of the SOC and influence the SOC on an operational, technical and strategic level. This role requires someone driven, willing to get hands on, has a keen eye for documentation and is passionate about delivering an excellent security service. A great team player is a must. Job Purpose: The main purpose of this role is to bring stability and a standard approach to security monitoring across a number of SIEM tools for multiple environments, thus ensuring a strong security posture is maintained. Primarily the role will be concerned with taking on all security monitoring for a handful of small client environments and the corporate environment. The role will also be accountable for ensuring a SIEM platform is embedded as a BAU service for a new Private Cloud solution. As a Senior SOC Analyst you will play a pivotal role in ensuring the security and resilience of our organisation, and client's information systems. The Senior SOC analyst will be the first recruit into the SOC Team and will be expected to work with management to ensure the service is built and grows to suit the requirements of the business. Main Duties and Responsibilities: Security Monitoring: & Investigation: Monitoring multiple SIEM tools to assure high a level of security on solutions Becrypt deliver. Oversee and enhance security monitoring systems to detect and analyse potential security incidents. Conduct real-time analysis of security events and incident and escalate as necessary. Support other teams on investigations into incidents, determining the root cause and impact. Document findings and lessons learned to improve incident response procedures. Ensure runbooks are followed and are fit for purpose. Incident Response: Lead and coordinate incident response activities to effectively contain, eradicate, and recover from security incidents. Develop and maintain incident response plans, ensuring they align with industry best practices. Escalation management in the event of a security incident. Follow major incident process. Threat Intelligence: Stay abreast of the latest cybersecurity threats and vulnerabilities, integrating threat intelligence into security monitoring processes. Contribute to the development of threat intelligence feeds to enhance proactive threat detection. Security Tool Management: Manage and optimise SIEM tools, ensuring they are properly configured and updated to maximize effectiveness. Evaluate new security technologies and recommend enhancements to the security infrastructure. Collaboration: Collaborate with cross-functional teams, including IT, legal, and management, to address security incidents and implement preventive measures. Provide expertise and guidance to other analysts. Working with the Technical Delivery Team to ensure all new and changed services are monitored accordingly. Documentation: Maintain accurate and up-to-date documentation of security procedures, incident response plans, and analysis reports. Create post-incident reports for management and stakeholders. Create monthly reporting packs as per contractual requirements. Create and document robust event and incident management processesRunbooks & Playbooks. Other responsibilities: Involvement in scoping and standing up new solutions for new opportunities. Assisting Pre-Sales team with requirements on new opportunities. Demonstrations of SOC tools to clients. Continual Service Improvement - Recommendations for change to address incidents or persistent events. Essential Skills and Experience: Analytical mindset with the ability to troubleshoot and solve complex security issues. Excellent communication and interpersonal skills for collaborating with diverse teams. Leadership qualities to guide other team member and drive security initiatives. Up-to-date knowledge of cybersecurity trends and threats. Full understanding of SIEM systems -Microsoft Sentinel, Manage Engine Log 360, IBM QRadar, Splunk, Sentinel etc Demonstrable understanding of IT Security Management, Policies, Procedures, Standards and Guidelines. Ability to work autonomously Clear understanding of runbooks and playbooks with the ability create these from scratch Understanding of ISO 27001, ISO 9001 & Cyber Essentials would be extremely advantageous Security Operations and Incident Handling Previous experience working within a SOC team A great opportunity for a SOC professional to push their career forward in a challenging and exciting environment. Due to the high level of Security clearance required, applicants must be British Nationals. You must hold SC Clearance for this role or be willing to go through SC Clearance. Salary: £65,000 Location: Hybrid working (1-2 days Becrypt Head Office in Central London/Home Working) Apply Now To apply for the Senior SOC Analyst role, please send a copy of your CV and covering letter by using the apply button provided on the page.
Senior Cyber Security Analyst Utilities Hybrid: 2-3 days per week in Taunton or Exeter 6 months+ £650 - £700 per day In short: Classic Cyber Security Analyst required to join a major utilities company in SOC-related activities. In full: Reporting to the Senior Cyber Solutions Architect, you will be responsible for the development, delivery and support of new cyber security systems and processes within the department specialising in OT and Telecoms cyber security. You will also be a subject matter expert and a point of escalation for the business and cyber security analysts. Main Responsibilities Responsible for the management and development of SIEM reports and dashboards. Conduct vulnerability assessments within IT & OT and resolve any identified vulnerabilities, in collaboration with system owners. Responsible for investigating and resolving security queries in relation to company systems. Evaluating security processes against benchmarks. Developing specific cyber security metrics / KPI's. Deliver service improvements, such as process automation, platform tuning and configuration management. Provide subject matter expertise in relation to cyber risks and threats. Respond to cyber security incidents. Identify cyber security training needs. Carry out forensics on systems and hardware as required. Monitoring and assessment of threat intelligence feeds. Analyse the output of various security reports and advise/escalate where required. Liaise with Business System owners on security matters. Participate in and manage penetration tests. You should have an appropriate level of experience within an IT Environment, working with OT and cyber security. It would be advantageous to have or be working towards a recognised Cyber Security qualification such as OSCP, CISSP, CCNA Security etc. Experience and/or knowledge of OT/SCADA, Telecoms and control systems would be beneficial. The successful candidate may initially be appointed on a designate basis and all candidates will be required to undertake and successfully complete a Security Check (SC). Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
May 04, 2024
Full time
Senior Cyber Security Analyst Utilities Hybrid: 2-3 days per week in Taunton or Exeter 6 months+ £650 - £700 per day In short: Classic Cyber Security Analyst required to join a major utilities company in SOC-related activities. In full: Reporting to the Senior Cyber Solutions Architect, you will be responsible for the development, delivery and support of new cyber security systems and processes within the department specialising in OT and Telecoms cyber security. You will also be a subject matter expert and a point of escalation for the business and cyber security analysts. Main Responsibilities Responsible for the management and development of SIEM reports and dashboards. Conduct vulnerability assessments within IT & OT and resolve any identified vulnerabilities, in collaboration with system owners. Responsible for investigating and resolving security queries in relation to company systems. Evaluating security processes against benchmarks. Developing specific cyber security metrics / KPI's. Deliver service improvements, such as process automation, platform tuning and configuration management. Provide subject matter expertise in relation to cyber risks and threats. Respond to cyber security incidents. Identify cyber security training needs. Carry out forensics on systems and hardware as required. Monitoring and assessment of threat intelligence feeds. Analyse the output of various security reports and advise/escalate where required. Liaise with Business System owners on security matters. Participate in and manage penetration tests. You should have an appropriate level of experience within an IT Environment, working with OT and cyber security. It would be advantageous to have or be working towards a recognised Cyber Security qualification such as OSCP, CISSP, CCNA Security etc. Experience and/or knowledge of OT/SCADA, Telecoms and control systems would be beneficial. The successful candidate may initially be appointed on a designate basis and all candidates will be required to undertake and successfully complete a Security Check (SC). Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
take you in an exciting new direction, offers opportunities, support and rewards that will take you further. We are currently seeking an experienced individual to join this team in the role of Risk & Compliance Analyst (Data Privacy & Protection). The Senior Associate, Information Security & Privacy, UK will support and report to the Senior Manager, Information Security & Privacy, UK with regulatory responsibilities for the business aspects of privacy and information security at Innovation Banking. This role is within COO, with a reporting line-up into the EMEA COO. This role will support the Head of Information Security & Privacy to oversee and monitor Innovation Banking to ensure compliance with applicable existing and emerging laws and regulations. Key Responsibilities: • Support the Head of Information Security & Privacy in the delivery and maintenance of the Bank's information security and privacy activities. • Operate within the terms of the applicable decision-making frameworks and RACI models to ensure that the Bank can provide the required level of evidence to the UK regulators regarding independence and risk management activities. • Partnering with the First and Second line of defence Controls, Risk and Compliance functions to monitor and review output including UK ROPA, DPIA and LIAs, DSRs, data breach management. • Ensure that privacy and security risks are identified and managed through the specified channels. • Support the drafting, assessing and implementation of policies, guidance and process relating to information security and privacy. • Review internal monitoring of the Bank's compliance against information security, privacy and related compliance areas in line with identified key performance indicators and measures. • Administer the Bank's Internal information security and privacy Forum, liaising with attendees on agenda items, preparing papers, attending and minuting meetings. • Support projects and/or initiatives which entail UK information security or privacy requirements. • Contribute to and assist in the delivery of the information security and privacy training and awareness programmes. • Promote a culture of choice, control, transparency and proportionate security in handling personal data by working with and influencing internal and external stakeholders • Support the Head of in the provision of advice on compliance, regulatory and risk management issues relating to privacy and information security matters. Experience: • Experience working within information security and privacy and broader risk management. • Experience of assessing key documents such as frameworks, policies and procedures. • Understanding and working knowledge of Privacy, Data Protection and Information Security principles and protocols. • Flexible and responsive with a proactive approach to problem solving. • Risk and Compliance background / experience. • Able to inspire, influence and enthuse others. • Thorough and detailed approach to assessing records. • High degree of accuracy and attention to detail
May 03, 2024
Full time
take you in an exciting new direction, offers opportunities, support and rewards that will take you further. We are currently seeking an experienced individual to join this team in the role of Risk & Compliance Analyst (Data Privacy & Protection). The Senior Associate, Information Security & Privacy, UK will support and report to the Senior Manager, Information Security & Privacy, UK with regulatory responsibilities for the business aspects of privacy and information security at Innovation Banking. This role is within COO, with a reporting line-up into the EMEA COO. This role will support the Head of Information Security & Privacy to oversee and monitor Innovation Banking to ensure compliance with applicable existing and emerging laws and regulations. Key Responsibilities: • Support the Head of Information Security & Privacy in the delivery and maintenance of the Bank's information security and privacy activities. • Operate within the terms of the applicable decision-making frameworks and RACI models to ensure that the Bank can provide the required level of evidence to the UK regulators regarding independence and risk management activities. • Partnering with the First and Second line of defence Controls, Risk and Compliance functions to monitor and review output including UK ROPA, DPIA and LIAs, DSRs, data breach management. • Ensure that privacy and security risks are identified and managed through the specified channels. • Support the drafting, assessing and implementation of policies, guidance and process relating to information security and privacy. • Review internal monitoring of the Bank's compliance against information security, privacy and related compliance areas in line with identified key performance indicators and measures. • Administer the Bank's Internal information security and privacy Forum, liaising with attendees on agenda items, preparing papers, attending and minuting meetings. • Support projects and/or initiatives which entail UK information security or privacy requirements. • Contribute to and assist in the delivery of the information security and privacy training and awareness programmes. • Promote a culture of choice, control, transparency and proportionate security in handling personal data by working with and influencing internal and external stakeholders • Support the Head of in the provision of advice on compliance, regulatory and risk management issues relating to privacy and information security matters. Experience: • Experience working within information security and privacy and broader risk management. • Experience of assessing key documents such as frameworks, policies and procedures. • Understanding and working knowledge of Privacy, Data Protection and Information Security principles and protocols. • Flexible and responsive with a proactive approach to problem solving. • Risk and Compliance background / experience. • Able to inspire, influence and enthuse others. • Thorough and detailed approach to assessing records. • High degree of accuracy and attention to detail
Butler Rose is looking for a proactive and customer-focused IT Support Technician to join a friendly team to provide 1st and 2nd line IT support. The successful candidate will offer excellent customer service on various computer applications and platforms. You will troubleshoot issues, provide advice on appropriate actions, and assist with general duties assigned by the IT department. Key Responsibilities: Receive, log, prioritise, allocate, and resolve Service Desk/Remote Managed Service alerts/calls from end users. Discuss reported problems with customers, gather relevant information, and guide customers through diagnostic procedures to identify the root cause of issues. Escalate unresolved incidents to internal resolver teams and third-party suppliers. Keep end customers informed of the status and progress of incidents and requests in a timely manner. Research, isolate, and resolve routine customer problems, escalating more complex issues to internal resolver teams and third-party suppliers. Handle all calls in accordance with defined Service Level Agreements and current Customer Service procedures. Utilise Service Desk/Remote Management tools, reference materials, and other resources effectively to aid problem resolution. Build, configure, and deploy new desktops, laptops, mobile devices, and peripherals. Collaborate with Senior Engineers on projects when necessary. Experience Required: Previous experience working in a Service Desk environment. Excellent organisational and communication skills, and a professional telephone manner. Basic User & Security Group Active Directory administration. Strong knowledge of Microsoft-based operating systems, particularly Windows 10 OS and Office 365. Experience in using and troubleshooting Outlook 2016 within a network environment. Experience supporting and administering Android and iOS devices. Knowledge and experience in supporting MAC OS related operating systems and hardware. Experience administering remote access software (e.g., LogMeIn). Experience in network troubleshooting with WAN, LAN, VoIP (CISCO), Video, and Audio conferencing. Customer-focused, team-oriented with a positive attitude and a '1st time right' mentality. Desirable Knowledge/Skills: ITIL V3 qualified to foundation level. MCITP - Microsoft Certified IT Professional. Knowledge of a broad range of technologies. Good knowledge of industry best practices and methodologies. Experience liaising with business areas to understand priorities and associated impacts. Excellent benefits package with some hybrid working available To Apply: Please submit your CV showcasing the required experience for the vacancy. We look forward to receiving your application. Butler Rose is committed to equality in the workplace and is an equal opportunity employer.Butler Rose Ltd is acting as an Employment Business in relation to this vacancy.
May 03, 2024
Full time
Butler Rose is looking for a proactive and customer-focused IT Support Technician to join a friendly team to provide 1st and 2nd line IT support. The successful candidate will offer excellent customer service on various computer applications and platforms. You will troubleshoot issues, provide advice on appropriate actions, and assist with general duties assigned by the IT department. Key Responsibilities: Receive, log, prioritise, allocate, and resolve Service Desk/Remote Managed Service alerts/calls from end users. Discuss reported problems with customers, gather relevant information, and guide customers through diagnostic procedures to identify the root cause of issues. Escalate unresolved incidents to internal resolver teams and third-party suppliers. Keep end customers informed of the status and progress of incidents and requests in a timely manner. Research, isolate, and resolve routine customer problems, escalating more complex issues to internal resolver teams and third-party suppliers. Handle all calls in accordance with defined Service Level Agreements and current Customer Service procedures. Utilise Service Desk/Remote Management tools, reference materials, and other resources effectively to aid problem resolution. Build, configure, and deploy new desktops, laptops, mobile devices, and peripherals. Collaborate with Senior Engineers on projects when necessary. Experience Required: Previous experience working in a Service Desk environment. Excellent organisational and communication skills, and a professional telephone manner. Basic User & Security Group Active Directory administration. Strong knowledge of Microsoft-based operating systems, particularly Windows 10 OS and Office 365. Experience in using and troubleshooting Outlook 2016 within a network environment. Experience supporting and administering Android and iOS devices. Knowledge and experience in supporting MAC OS related operating systems and hardware. Experience administering remote access software (e.g., LogMeIn). Experience in network troubleshooting with WAN, LAN, VoIP (CISCO), Video, and Audio conferencing. Customer-focused, team-oriented with a positive attitude and a '1st time right' mentality. Desirable Knowledge/Skills: ITIL V3 qualified to foundation level. MCITP - Microsoft Certified IT Professional. Knowledge of a broad range of technologies. Good knowledge of industry best practices and methodologies. Experience liaising with business areas to understand priorities and associated impacts. Excellent benefits package with some hybrid working available To Apply: Please submit your CV showcasing the required experience for the vacancy. We look forward to receiving your application. Butler Rose is committed to equality in the workplace and is an equal opportunity employer.Butler Rose Ltd is acting as an Employment Business in relation to this vacancy.
Risk & Compliance Analyst (Data Privacy & Protection)London / HybridContract until end December 2024£300.00 p/d If you're looking for a career that will help you stand out, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, offers opportunities, support and rewards that will take you further. We are currently seeking an experienced individual to join this team in the role of Risk & Compliance Analyst (Data Privacy & Protection).The Senior Associate, Information Security & Privacy, UK will support and report to the Senior Manager, Information Security & Privacy, UK with regulatory responsibilities for the business aspects of privacy and information security at Innovation Banking. This role is within COO, with a reporting line-up into the EMEA COO.This role will support the Head of Information Security & Privacy to oversee and monitor Innovation Banking to ensure compliance with applicable existing and emerging laws and regulations.Key Responsibilities:• Support the Head of Information Security & Privacy in the delivery and maintenance of the Bank's information security and privacy activities.• Operate within the terms of the applicable decision-making frameworks and RACI models to ensure that the Bank can provide the required level of evidence to the UK regulators regarding independence and risk management activities.• Partnering with the First and Second line of defence Controls, Risk and Compliance functions to monitor and review output including UK ROPA, DPIA and LIAs, DSRs, data breach management.?• Ensure that privacy and security risks are identified and managed through the specified channels.• Support the drafting, assessing and implementation of policies, guidance and process relating to information security and privacy.• Review internal monitoring of the Bank's compliance against information security, privacy and related compliance areas in line with identified key performance indicators and measures.• Administer the Bank's Internal information security and privacy Forum, liaising with attendees on agenda items, preparing papers, attending and minuting meetings.• Support projects and/or initiatives which entail UK information security or privacy requirements.?• Contribute to and assist in the delivery of the information security and privacy training and awareness programmes.• Promote a culture of choice, control, transparency and proportionate security in handling personal data by working with and influencing internal and external stakeholders• Support the Head of in the provision of advice on compliance, regulatory and risk management issues relating to privacy and information security matters.Experience:• Experience working within information security and privacy and broader risk management.• Experience of assessing key documents such as frameworks, policies and procedures.• Understanding and working knowledge of Privacy, Data Protection and Information Security principles and protocols.• Flexible and responsive with a proactive approach to problem solving.• Risk and Compliance background / experience.• Able to inspire, influence and enthuse others.• Thorough and detailed approach to assessing records.• High degree of accuracy and attention to detail
May 03, 2024
Full time
Risk & Compliance Analyst (Data Privacy & Protection)London / HybridContract until end December 2024£300.00 p/d If you're looking for a career that will help you stand out, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, offers opportunities, support and rewards that will take you further. We are currently seeking an experienced individual to join this team in the role of Risk & Compliance Analyst (Data Privacy & Protection).The Senior Associate, Information Security & Privacy, UK will support and report to the Senior Manager, Information Security & Privacy, UK with regulatory responsibilities for the business aspects of privacy and information security at Innovation Banking. This role is within COO, with a reporting line-up into the EMEA COO.This role will support the Head of Information Security & Privacy to oversee and monitor Innovation Banking to ensure compliance with applicable existing and emerging laws and regulations.Key Responsibilities:• Support the Head of Information Security & Privacy in the delivery and maintenance of the Bank's information security and privacy activities.• Operate within the terms of the applicable decision-making frameworks and RACI models to ensure that the Bank can provide the required level of evidence to the UK regulators regarding independence and risk management activities.• Partnering with the First and Second line of defence Controls, Risk and Compliance functions to monitor and review output including UK ROPA, DPIA and LIAs, DSRs, data breach management.?• Ensure that privacy and security risks are identified and managed through the specified channels.• Support the drafting, assessing and implementation of policies, guidance and process relating to information security and privacy.• Review internal monitoring of the Bank's compliance against information security, privacy and related compliance areas in line with identified key performance indicators and measures.• Administer the Bank's Internal information security and privacy Forum, liaising with attendees on agenda items, preparing papers, attending and minuting meetings.• Support projects and/or initiatives which entail UK information security or privacy requirements.?• Contribute to and assist in the delivery of the information security and privacy training and awareness programmes.• Promote a culture of choice, control, transparency and proportionate security in handling personal data by working with and influencing internal and external stakeholders• Support the Head of in the provision of advice on compliance, regulatory and risk management issues relating to privacy and information security matters.Experience:• Experience working within information security and privacy and broader risk management.• Experience of assessing key documents such as frameworks, policies and procedures.• Understanding and working knowledge of Privacy, Data Protection and Information Security principles and protocols.• Flexible and responsive with a proactive approach to problem solving.• Risk and Compliance background / experience.• Able to inspire, influence and enthuse others.• Thorough and detailed approach to assessing records.• High degree of accuracy and attention to detail
Help us to make a world of difference Urenco offers a rare expertise in enriching uranium for the civil nuclear industry. In fact, we are the only company with the capability to do this at four sites across the world. As a global leader in the production of low carbon energy, we work at the cutting edge of the transition to a sustainable, net zero world. This transformational vision opens up unique and exciting opportunities to build a dynamic, energising, and rewarding career. And right now, we re looking for a Head of IS Delivery & Engagement. Based at our Stoke Poges site you ll manage the delivery of this complete portfolio of Information Security programme of projects, running the Information Security PMO and associated governance and procedures required, and tracking delivery through rigorous PMO discipline. What will your day look like? • This is a hands on role involved in the initiation and scoping of each project (to ensure the projects are setup and resourced to ensure successful delivery) and progressing projects through the early approval stages. • The programme lead is also the secretariat for the Information Security Steering Group Information Security Performance Board the senior board within Urenco responsible for the oversight of the Information Security Improvement programme. • Line responsibility for 4 current Project Leads + 2 Business Analysts though this could flex upwards/downwards dependent on number of projects in flight. • Manage the Information Security budget and financial planning cycles. What do you need to be great at this role? • Background as a Senior Project Manager/Programme Manager looking after challenging and complex Cyber Security projects. • Excellent knowledge of business change management principles. • Strong experience in a commercial environment with Capex and Opex. • It s always useful if you have come from a CNI background, however, will consider candidates that haven t. What can you expect from us? More than just a job, we offer a future. More than just a place to work, we provide an opportunity to prosper. Urenco powers the possibilities that let you make the most of your day to day and shape your own tomorrow. We reward your contribution with industry-leading pay and thats just the start. An exceptional range of physical and mental wellbeing, financial, and lifestyle benefits flex around the things you find most important in life. Like the idea of travelling overseas? We can make that happen too. And our annual global awards bring us together to celebrate our outstanding work achievements. We re well aware that being the best company possible starts with helping you become the best you can be in your career. We re also committed to helping you achieve work-life balance. So you can count on us to deliver the personal development resources you need to gain new qualifications, learn new skills, and open new possibilities. • Annual leave of 27 days per annum. • A generous bonus scheme based on achievement of personal and company objectives. • A defined contribution pension scheme: contributions start at 4% (employee) and 10% (employer). • Hybrid Working Pattern: up to two days working remotely on average per week. Flexible start and finish time and 1.30pm finish on Fridays. • Flexible benefits package including life assurance and income protection. In addition, you ll have an opportunity to purchase additional benefits that suit your lifestyle. • Paid time off for volunteering. • The opportunity to join our private medical and dental insurance schemes. • Education and training we take pride in helping people learn and develop by supporting, accelerating and directing your learning. As well as the completion of mandatory health and safety courses, training packages will be offered to meet your specific needs. Please be aware that this role is subject to SC level of security clearance with medical, drug and alcohol testing prior to start. Our Promise As a truly global company with a presence in the UK, USA, Germany, and the Netherlands, we know that our individual differences make us stronger. Putting people at the heart of our business, we strive to create an open and inclusive workplace that allows every voice to be heard and diversity to thrive. And we support an array of dedicated initiatives, activities, and employee networks to nurture a positive and inspiring work experience. Because together, we are one Urenco. We are enriching the world. And enriching your future.
May 03, 2024
Full time
Help us to make a world of difference Urenco offers a rare expertise in enriching uranium for the civil nuclear industry. In fact, we are the only company with the capability to do this at four sites across the world. As a global leader in the production of low carbon energy, we work at the cutting edge of the transition to a sustainable, net zero world. This transformational vision opens up unique and exciting opportunities to build a dynamic, energising, and rewarding career. And right now, we re looking for a Head of IS Delivery & Engagement. Based at our Stoke Poges site you ll manage the delivery of this complete portfolio of Information Security programme of projects, running the Information Security PMO and associated governance and procedures required, and tracking delivery through rigorous PMO discipline. What will your day look like? • This is a hands on role involved in the initiation and scoping of each project (to ensure the projects are setup and resourced to ensure successful delivery) and progressing projects through the early approval stages. • The programme lead is also the secretariat for the Information Security Steering Group Information Security Performance Board the senior board within Urenco responsible for the oversight of the Information Security Improvement programme. • Line responsibility for 4 current Project Leads + 2 Business Analysts though this could flex upwards/downwards dependent on number of projects in flight. • Manage the Information Security budget and financial planning cycles. What do you need to be great at this role? • Background as a Senior Project Manager/Programme Manager looking after challenging and complex Cyber Security projects. • Excellent knowledge of business change management principles. • Strong experience in a commercial environment with Capex and Opex. • It s always useful if you have come from a CNI background, however, will consider candidates that haven t. What can you expect from us? More than just a job, we offer a future. More than just a place to work, we provide an opportunity to prosper. Urenco powers the possibilities that let you make the most of your day to day and shape your own tomorrow. We reward your contribution with industry-leading pay and thats just the start. An exceptional range of physical and mental wellbeing, financial, and lifestyle benefits flex around the things you find most important in life. Like the idea of travelling overseas? We can make that happen too. And our annual global awards bring us together to celebrate our outstanding work achievements. We re well aware that being the best company possible starts with helping you become the best you can be in your career. We re also committed to helping you achieve work-life balance. So you can count on us to deliver the personal development resources you need to gain new qualifications, learn new skills, and open new possibilities. • Annual leave of 27 days per annum. • A generous bonus scheme based on achievement of personal and company objectives. • A defined contribution pension scheme: contributions start at 4% (employee) and 10% (employer). • Hybrid Working Pattern: up to two days working remotely on average per week. Flexible start and finish time and 1.30pm finish on Fridays. • Flexible benefits package including life assurance and income protection. In addition, you ll have an opportunity to purchase additional benefits that suit your lifestyle. • Paid time off for volunteering. • The opportunity to join our private medical and dental insurance schemes. • Education and training we take pride in helping people learn and develop by supporting, accelerating and directing your learning. As well as the completion of mandatory health and safety courses, training packages will be offered to meet your specific needs. Please be aware that this role is subject to SC level of security clearance with medical, drug and alcohol testing prior to start. Our Promise As a truly global company with a presence in the UK, USA, Germany, and the Netherlands, we know that our individual differences make us stronger. Putting people at the heart of our business, we strive to create an open and inclusive workplace that allows every voice to be heard and diversity to thrive. And we support an array of dedicated initiatives, activities, and employee networks to nurture a positive and inspiring work experience. Because together, we are one Urenco. We are enriching the world. And enriching your future.
2nd Line Support Engineer My client, a specialist communications and managed service provider, are currently looking for a 2nd Line Support Engineer to join their growing team! As a 2nd Line Support Technician, you will be responsible for the ongoing support and maintenance of their clients' IT, telephony, and connection infrastructure. You will be responsible for providing technical assistance to end users, resolving complicated issues, and improving the overall efficiency of their support service. The role is primarily desk-based and provides remote support; however, it will also include occasional trips to customers' premises. This post is suitable for a driven and ambitious IT professional looking to advance their career. Location: Northampton Salary: Up to 35,000 DOE Key responsibilities: Provide second-line technical help to end users, resolving hardware and software issues quickly and efficiently. Diagnose and resolve escalated IT incidents, interacting with the first-line support, additional support teams, and vendors as necessary. Install, set up, and maintain computer hardware, software, and peripherals. Install system upgrades and patches to ensure the security and stability of clients' IT environments. Manage and resolve network issues such as connectivity problems, access point failures, and configuration mistakes. Manage the proactive services in partnership with the Head of Technology, with an emphasis on the development of warning and alerting systems for both standard and custom solutions. Use tools to provide clear technical reporting and devise strategies for addressing trends and resolving recurring difficulties. Manage and resolve phone difficulties, such as VolP systems and connectivity. Assist in user training for end users and on-the-job with 1st line support colleagues. Skills: Proficient in resolving cloud, hardware, software, and network issues. Strong understanding of Microsoft operating systems. Experience with Active Directory, Group Policy, and other network administration responsibilities. Experience using VolP telephony systems. Familiarity with all Microsoft products, including Premium SKUs, Azure, and Endpoint Manager, is preferred. Benefits: 22 days holiday (extra day leave on your Birthday!) NHS Healthcare Top Up Cash Plan (money back on everyday medical expenses Death in Service Discount scheme on entertainment/shopping/leisure activities If you are looking for a new position in a professional, but fun, environment, then please apply today! Key words: 2nd Line, Second Line, IT Support, Support Engineer, IT Analyst, Service Desk, Support Desk, Helpdesk, Help Desk, IT Engineer, Escalations, Senior Support Locations: Northamptonshire, Northampton, Wellingborough, Kettering, Rushden, Milton Keynes, Cranfield, Rugby, Bletchley, Corby, Bedford, Banbury, Wigston, Leighton Buzzard, Eaton Socon, Bicester, Royal Leamington Spa
May 03, 2024
Full time
2nd Line Support Engineer My client, a specialist communications and managed service provider, are currently looking for a 2nd Line Support Engineer to join their growing team! As a 2nd Line Support Technician, you will be responsible for the ongoing support and maintenance of their clients' IT, telephony, and connection infrastructure. You will be responsible for providing technical assistance to end users, resolving complicated issues, and improving the overall efficiency of their support service. The role is primarily desk-based and provides remote support; however, it will also include occasional trips to customers' premises. This post is suitable for a driven and ambitious IT professional looking to advance their career. Location: Northampton Salary: Up to 35,000 DOE Key responsibilities: Provide second-line technical help to end users, resolving hardware and software issues quickly and efficiently. Diagnose and resolve escalated IT incidents, interacting with the first-line support, additional support teams, and vendors as necessary. Install, set up, and maintain computer hardware, software, and peripherals. Install system upgrades and patches to ensure the security and stability of clients' IT environments. Manage and resolve network issues such as connectivity problems, access point failures, and configuration mistakes. Manage the proactive services in partnership with the Head of Technology, with an emphasis on the development of warning and alerting systems for both standard and custom solutions. Use tools to provide clear technical reporting and devise strategies for addressing trends and resolving recurring difficulties. Manage and resolve phone difficulties, such as VolP systems and connectivity. Assist in user training for end users and on-the-job with 1st line support colleagues. Skills: Proficient in resolving cloud, hardware, software, and network issues. Strong understanding of Microsoft operating systems. Experience with Active Directory, Group Policy, and other network administration responsibilities. Experience using VolP telephony systems. Familiarity with all Microsoft products, including Premium SKUs, Azure, and Endpoint Manager, is preferred. Benefits: 22 days holiday (extra day leave on your Birthday!) NHS Healthcare Top Up Cash Plan (money back on everyday medical expenses Death in Service Discount scheme on entertainment/shopping/leisure activities If you are looking for a new position in a professional, but fun, environment, then please apply today! Key words: 2nd Line, Second Line, IT Support, Support Engineer, IT Analyst, Service Desk, Support Desk, Helpdesk, Help Desk, IT Engineer, Escalations, Senior Support Locations: Northamptonshire, Northampton, Wellingborough, Kettering, Rushden, Milton Keynes, Cranfield, Rugby, Bletchley, Corby, Bedford, Banbury, Wigston, Leighton Buzzard, Eaton Socon, Bicester, Royal Leamington Spa
As the lead Security Risk Analyst, you will drive the strategic direction for the system level risk identification, management, and review for one of the most critical networks - the Operational Technology Services Network (OTSN). Ensuring new and changed standards grow the cyber security maturity of the organisation, are proportionate to the risk (in line with the ET's risk appetite & the NIS Regulation) and are in line with security & resilience strategies. Key accountabilities Lead the creation, development, and management of OTSNs risk assessment frameworks and principles to support the cyber security decision making processes within ET. Provide expert technical support for the risk assessment of vulnerabilities and deviations from the target state including agreeing mitigating actions within agreed delegated authority. Support the development of cyber security policies and specifications to reduce risk. Improve organisational cyber security maturity and support compliance with the NIS Regulation for the OTSN by managing OTSN registers in line with risk appetite. Support the business to understand cyber security requirements for OTSN through engagement with projects and design teams on OTSN risks. Support the business to understand cyber security risks through appropriate reporting and communication of current risks and vulnerabilities. Influence the security and resilience strategies to accelerate cyber security risk reduction. Support the optimisation of OTSN management strategies in the long-term interests of consumers and the business Interpersonal, Supervisory or Management Relevant experience risk reporting including leading teams of risk analysts and/or project management. Strong data analytical skills and excellent written and communication skills with the ability to interface comfortably with senior stakeholders. Strong investigation and problem-solving skills, demonstrating autonomy and initiative. Proactive with the ability to work under tight deadline pressures across multiple workstreams. Sound understanding and proven experience of IEC 62443, ISO27000, NIST CSF and audit processes. Experience of introducing changes to specifications or policies that apply to a technical audience. Extensive experience communicating difficult and standard issues associated with areas of expertise in a clear and concise manner both verbally & in writing. Eager to develop their business and technical skills, you will be comfortable breaking new ground and changing the way the business makes decisions. Technical or Specialist Technical understanding of the LAN / WAN Networks and Operational Technology (OT). Detailed understanding of how cyber security risks can manifest within networks, devices, and systems. Understanding of asset management principles, including risk management, decision making, planning, asset lifecycle and asset data/information. Experience of using and developing decision making frameworks and tools including economic assessments (NPV, CBA) and whole life asset assessments (WLV) Familiarity with international standards related to cyber security including IEC62443 and IEC62351 Commensurate experience with O365, including excel and preferable Power BI. Experience with MITRE ATT&CK desirable, preferably MITRE ICS.
May 03, 2024
Full time
As the lead Security Risk Analyst, you will drive the strategic direction for the system level risk identification, management, and review for one of the most critical networks - the Operational Technology Services Network (OTSN). Ensuring new and changed standards grow the cyber security maturity of the organisation, are proportionate to the risk (in line with the ET's risk appetite & the NIS Regulation) and are in line with security & resilience strategies. Key accountabilities Lead the creation, development, and management of OTSNs risk assessment frameworks and principles to support the cyber security decision making processes within ET. Provide expert technical support for the risk assessment of vulnerabilities and deviations from the target state including agreeing mitigating actions within agreed delegated authority. Support the development of cyber security policies and specifications to reduce risk. Improve organisational cyber security maturity and support compliance with the NIS Regulation for the OTSN by managing OTSN registers in line with risk appetite. Support the business to understand cyber security requirements for OTSN through engagement with projects and design teams on OTSN risks. Support the business to understand cyber security risks through appropriate reporting and communication of current risks and vulnerabilities. Influence the security and resilience strategies to accelerate cyber security risk reduction. Support the optimisation of OTSN management strategies in the long-term interests of consumers and the business Interpersonal, Supervisory or Management Relevant experience risk reporting including leading teams of risk analysts and/or project management. Strong data analytical skills and excellent written and communication skills with the ability to interface comfortably with senior stakeholders. Strong investigation and problem-solving skills, demonstrating autonomy and initiative. Proactive with the ability to work under tight deadline pressures across multiple workstreams. Sound understanding and proven experience of IEC 62443, ISO27000, NIST CSF and audit processes. Experience of introducing changes to specifications or policies that apply to a technical audience. Extensive experience communicating difficult and standard issues associated with areas of expertise in a clear and concise manner both verbally & in writing. Eager to develop their business and technical skills, you will be comfortable breaking new ground and changing the way the business makes decisions. Technical or Specialist Technical understanding of the LAN / WAN Networks and Operational Technology (OT). Detailed understanding of how cyber security risks can manifest within networks, devices, and systems. Understanding of asset management principles, including risk management, decision making, planning, asset lifecycle and asset data/information. Experience of using and developing decision making frameworks and tools including economic assessments (NPV, CBA) and whole life asset assessments (WLV) Familiarity with international standards related to cyber security including IEC62443 and IEC62351 Commensurate experience with O365, including excel and preferable Power BI. Experience with MITRE ATT&CK desirable, preferably MITRE ICS.
IT Cyber Security Analyst & Team Leader - CISSP or CySA+ or MSc Information Security Weymouth, Dorset, or London, South East UK or Stoke on Trent, Staffordshire 50,000pa + Hybrid & Flexi-Working & Training & Certifications Available Weymouth, Dorset, or London, South East UK, or Staffordshire + Hybrid and Flexible Working as Standard The Client: Are a well-known High St and Online retailer who are seeking a Senior IT Cyber Security Analyst who specialises in Microsoft / Wintel Servers and Virtualisation supporting a UK wide infrastructure. Objective: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security in delivering the Information Security service to the global business. You will lead all Cyber Security Operations function and be the first point of contact for technical information security related matters. Role Responsibilities: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security Act as the first point of action or escalation for the identification of security incidents and their investigation. Be responsible for the managed Security Operations Centre (SOC), Network Monitoring and Managed Detection and Response services and associated vendor relationships. Offer mentoring, advice and guidance to those in your Team Be the subject matter expert for technical security related queries, providing the Security Architect, IT Service and Delivery teams and business stakeholders with authoritative advice and defined security requirements. Be responsible for the Security Education and Awareness scheme. Ensure Cyber Security campaigns are conducted, and improvements implemented and ensure colleague queries around policies and requirements are appropriately answered in a timely manner. Be responsible for the Vulnerability Management process. Act on vulnerability information and conduct Cyber Security risk assessments and work with suppliers, partners, and internal teams to ensure security vulnerabilities are identified, assessed, and remediated in good time. Key Requirements you will need: In depth knowledge of Information Security concepts and principles, including cloud security capabilities. Experience with configuring and utilising security tooling, including SIEM, EDR, vulnerability scanners, CASB, network scanning, DLP. Hands-on IT experience with proven expertise in a previous Information Security role. Vendor management experience. A relevant intermediate or advanced Information Security based qualification (e.g. CISSP, CySA+, MSc Information Security) Ability to critically analyse information and make decisions based on judgement, knowledge, and experience. Business Knowledge: Knowledge of Retail and eCommerce is of great advantage but is not essential. Working knowledge of the Information Security elements of Data Protection regulations (e.g. GDPR, The Data Protection Act 2018) is essential. Knowledge of the NIST Cyber Security Framework is of advantage. Awareness of regulations that affect Retail, such as PCI DSS, is of great advantage but experience of maintaining compliance is not essential. CISSP or CySA+ or MSc Information Security Certifications will be advantageous. Call (phone number removed) today!
May 03, 2024
Full time
IT Cyber Security Analyst & Team Leader - CISSP or CySA+ or MSc Information Security Weymouth, Dorset, or London, South East UK or Stoke on Trent, Staffordshire 50,000pa + Hybrid & Flexi-Working & Training & Certifications Available Weymouth, Dorset, or London, South East UK, or Staffordshire + Hybrid and Flexible Working as Standard The Client: Are a well-known High St and Online retailer who are seeking a Senior IT Cyber Security Analyst who specialises in Microsoft / Wintel Servers and Virtualisation supporting a UK wide infrastructure. Objective: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security in delivering the Information Security service to the global business. You will lead all Cyber Security Operations function and be the first point of contact for technical information security related matters. Role Responsibilities: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security Act as the first point of action or escalation for the identification of security incidents and their investigation. Be responsible for the managed Security Operations Centre (SOC), Network Monitoring and Managed Detection and Response services and associated vendor relationships. Offer mentoring, advice and guidance to those in your Team Be the subject matter expert for technical security related queries, providing the Security Architect, IT Service and Delivery teams and business stakeholders with authoritative advice and defined security requirements. Be responsible for the Security Education and Awareness scheme. Ensure Cyber Security campaigns are conducted, and improvements implemented and ensure colleague queries around policies and requirements are appropriately answered in a timely manner. Be responsible for the Vulnerability Management process. Act on vulnerability information and conduct Cyber Security risk assessments and work with suppliers, partners, and internal teams to ensure security vulnerabilities are identified, assessed, and remediated in good time. Key Requirements you will need: In depth knowledge of Information Security concepts and principles, including cloud security capabilities. Experience with configuring and utilising security tooling, including SIEM, EDR, vulnerability scanners, CASB, network scanning, DLP. Hands-on IT experience with proven expertise in a previous Information Security role. Vendor management experience. A relevant intermediate or advanced Information Security based qualification (e.g. CISSP, CySA+, MSc Information Security) Ability to critically analyse information and make decisions based on judgement, knowledge, and experience. Business Knowledge: Knowledge of Retail and eCommerce is of great advantage but is not essential. Working knowledge of the Information Security elements of Data Protection regulations (e.g. GDPR, The Data Protection Act 2018) is essential. Knowledge of the NIST Cyber Security Framework is of advantage. Awareness of regulations that affect Retail, such as PCI DSS, is of great advantage but experience of maintaining compliance is not essential. CISSP or CySA+ or MSc Information Security Certifications will be advantageous. Call (phone number removed) today!
Role: SOC Analyst REF 76205 Contract Length: Until 30/01/26 Location: Corsham IR35: Inside Pay Rate to Intermediary: Market Rate Security Clearance: DV and Sole UK National requested Spinwell is recruiting for a SOC Analyst for an excellent opportunity within the public sector. RESPONSIBILITIES OF THE SOC ANALYST To support the transition of a SOC with expert security guidance and application of best practices. Leading the development, communication and continuous improvement of the cyber incident response plan Identification of and planning for the required levels of cyber investment within the CSOC to include governance, tooling and staffing. Defining and continuous development of a use case-driven logging, monitoring and response capability to ensure responsiveness and resilience to cyber security threats. Defining the cyber security operations strategy in coordination with senior business and external stakeholders, this includes the management of the Cyber Security Operations Centre (CSOC) and processes in accordance with the threat posture and government direction. SKILLS/EXPERIENCE OF THE SOC ANALYST Advanced industry standard SOC Security qualifications (SANS, ISC2, etc.). Proven Tier 2 SOC Analyst experience (2 years) Demonstratable experience working with SIEM technology and SIEM engineering (including tool configuration) i.e. within an enterprise SOC. Experience in creation of use-cases, analytics and playbooks. An understanding of cloud technologies. Perform triage of security events; determine scope, priority and impact, and make recommendations that enable expeditious remediation. Conduct real-time management of security incidents from detection to resolution. Degree level qualification; preferably in technical, engineering or computing subject. If you are a SOC Analyst, apply now or send your CV to Spinwell! We welcome all applications regardless of background, in line with our commitment to diversity, equality and inclusion. Applying to this or any other vacancy advertised by Spinwell Ltd constitutes an agreement for Spinwell Ltd to hold your details for 24 months for the purpose of assessing suitability for the advertised position and to make you aware of any other positions deemed suitable of which You will make you aware by means of either email, text or phone. In line with GDPR regulations you are able to request your details be removed from the company data at any time by emailing us Disability Confident As a member of the disability confident scheme, the client guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group. Armed Forces Covenant The client is proud to support the Armed Forces Covenant and as such, we guarantee to interview all veterans or spouses / partners of military personnel who meet all the essential criteria for the vacancy. In cases where we have a high volume of ex-military candidates / military spouses or partners, who meet all of the essential criteria, we will interview the best candidates from within that group. If you qualify for the above, please notify us and quote the role you are applying for. We will be in touch to discuss your suitability and arrange your Guaranteed Interview. Should you require reasonable adjustments at any point during the recruitment process or if there is a more accessible way for us to communicate, please do let us know.
May 03, 2024
Contractor
Role: SOC Analyst REF 76205 Contract Length: Until 30/01/26 Location: Corsham IR35: Inside Pay Rate to Intermediary: Market Rate Security Clearance: DV and Sole UK National requested Spinwell is recruiting for a SOC Analyst for an excellent opportunity within the public sector. RESPONSIBILITIES OF THE SOC ANALYST To support the transition of a SOC with expert security guidance and application of best practices. Leading the development, communication and continuous improvement of the cyber incident response plan Identification of and planning for the required levels of cyber investment within the CSOC to include governance, tooling and staffing. Defining and continuous development of a use case-driven logging, monitoring and response capability to ensure responsiveness and resilience to cyber security threats. Defining the cyber security operations strategy in coordination with senior business and external stakeholders, this includes the management of the Cyber Security Operations Centre (CSOC) and processes in accordance with the threat posture and government direction. SKILLS/EXPERIENCE OF THE SOC ANALYST Advanced industry standard SOC Security qualifications (SANS, ISC2, etc.). Proven Tier 2 SOC Analyst experience (2 years) Demonstratable experience working with SIEM technology and SIEM engineering (including tool configuration) i.e. within an enterprise SOC. Experience in creation of use-cases, analytics and playbooks. An understanding of cloud technologies. Perform triage of security events; determine scope, priority and impact, and make recommendations that enable expeditious remediation. Conduct real-time management of security incidents from detection to resolution. Degree level qualification; preferably in technical, engineering or computing subject. If you are a SOC Analyst, apply now or send your CV to Spinwell! We welcome all applications regardless of background, in line with our commitment to diversity, equality and inclusion. Applying to this or any other vacancy advertised by Spinwell Ltd constitutes an agreement for Spinwell Ltd to hold your details for 24 months for the purpose of assessing suitability for the advertised position and to make you aware of any other positions deemed suitable of which You will make you aware by means of either email, text or phone. In line with GDPR regulations you are able to request your details be removed from the company data at any time by emailing us Disability Confident As a member of the disability confident scheme, the client guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group. Armed Forces Covenant The client is proud to support the Armed Forces Covenant and as such, we guarantee to interview all veterans or spouses / partners of military personnel who meet all the essential criteria for the vacancy. In cases where we have a high volume of ex-military candidates / military spouses or partners, who meet all of the essential criteria, we will interview the best candidates from within that group. If you qualify for the above, please notify us and quote the role you are applying for. We will be in touch to discuss your suitability and arrange your Guaranteed Interview. Should you require reasonable adjustments at any point during the recruitment process or if there is a more accessible way for us to communicate, please do let us know.
Senior Cyber Security Engineer About Us: We are the tech company with people at heart. At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services. Position Overview: As a Cyber Security Engineer, you will play a pivotal role in safeguarding our organization's critical infrastructure and data against cyber threats. Your expertise in designing, implementing, and maintaining SIEM solutions will help us proactively identify and mitigate security incidents, ensuring the confidentiality, integrity, and availability of our systems. Responsibilities: - Work with the technical lead / SME for the CSOC and SIEM service offering by managing and improving the platforms to meet the requirements of the business and/or client - Assist in establishing and maintaining processes, tooling and metrics that help provide a high level of productivity, supportability, and operational readiness - Actively participate in project planning activities, service enhancements and change management controls - Ensure all security platforms are optimised to detect and prevent security threats across all on-premise and cloud environments to meet business objectives and regulatory requirements - Act as a technical escalation point and technical mentor for SOC Analysts and Senior SOC Analysts in delivery of our CSOC services - Work collaboratively with architects, infrastructure teams and key stakeholders inside and out of the business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical and problem-solving skills with the ability to handle complex security incidents. Familiarity with regulatory frameworks and standards Click here for the list of benefits. This is a remote-first hybrid role. See here for details about our hybrid workstyle. This role requires eligibility to obtain security clearance (SC) , which requires UK citizenship and at least 5 years residency in the UK. If you have any questions on this requirement please ask the recruitment team during the process. Our Selection Process: We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law. Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.
May 03, 2024
Full time
Senior Cyber Security Engineer About Us: We are the tech company with people at heart. At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services. Position Overview: As a Cyber Security Engineer, you will play a pivotal role in safeguarding our organization's critical infrastructure and data against cyber threats. Your expertise in designing, implementing, and maintaining SIEM solutions will help us proactively identify and mitigate security incidents, ensuring the confidentiality, integrity, and availability of our systems. Responsibilities: - Work with the technical lead / SME for the CSOC and SIEM service offering by managing and improving the platforms to meet the requirements of the business and/or client - Assist in establishing and maintaining processes, tooling and metrics that help provide a high level of productivity, supportability, and operational readiness - Actively participate in project planning activities, service enhancements and change management controls - Ensure all security platforms are optimised to detect and prevent security threats across all on-premise and cloud environments to meet business objectives and regulatory requirements - Act as a technical escalation point and technical mentor for SOC Analysts and Senior SOC Analysts in delivery of our CSOC services - Work collaboratively with architects, infrastructure teams and key stakeholders inside and out of the business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical and problem-solving skills with the ability to handle complex security incidents. Familiarity with regulatory frameworks and standards Click here for the list of benefits. This is a remote-first hybrid role. See here for details about our hybrid workstyle. This role requires eligibility to obtain security clearance (SC) , which requires UK citizenship and at least 5 years residency in the UK. If you have any questions on this requirement please ask the recruitment team during the process. Our Selection Process: We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law. Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.
Unleash Your Cybersecurity Potential as a Senior SOC Analyst! Embark on an Extraordinary Journey: Position: Team Leader SOC Analyst Contract: Outside IR35 Shifts: Monday - Friday 9-5 Location: Birmingham Onsite Must Hold Active Security Clearance Why Take the Plunge: Are you ready to transcend the ordinary and become a leading force in cybersecurity? Prepare yourself for a role that surpasses expectations! Imagine a dynamic 24/7 shift schedule offering unparalleled flexibility and a thrilling on-site experience in the bustling heart of Birmingham. But that's just the beginning of what awaits! What's in Store for You: Cutting-Edge Technological Playground: Delve into LogRhythm, Splunk, Darktrace (Threat Visualizer), and FireEye (EX, NX, HX, CMS) - platforms where your expertise shines brightest. Mastering Networks: Navigate the OSI Reference Model and engage with various network communication protocols with finesse. Unleash Action: Dive deep into incident response, log analysis, and PCAP analysis - your canvas for showcasing cybersecurity excellence. Digital Sleuth: Investigate Windows/Linux systems, uncovering signs of compromise with your digital magnifying glass. Communication Virtuoso: Translate cybersecurity risks into language that resonates with business objectives. Incident Commander: Lead security incidents with strategic finesse, providing user-centric updates along the way. Guardian of Cyber Realms: Implement Defensive Cyber-attack methodologies and frameworks, safeguarding digital territories with your toolkit. Scripting Expertise: Elevate your game with foundational scripting knowledge, adding an extra layer of brilliance to your arsenal. SOC Mastery: Your journey through Security Operations Centers or as a security analyst equips you to handle incidents across a spectrum of tools. Why Choose Us? Continuous Learning Environment: Elevate your skills in an ecosystem that thrives on constant growth and development. Talented Team Collaboration: Work alongside a diverse and highly skilled cohort, fostering innovation and creativity. Cutting-Edge Challenges: Tackle the latest security challenges head-on, equipped with the most advanced technology available.
May 03, 2024
Contractor
Unleash Your Cybersecurity Potential as a Senior SOC Analyst! Embark on an Extraordinary Journey: Position: Team Leader SOC Analyst Contract: Outside IR35 Shifts: Monday - Friday 9-5 Location: Birmingham Onsite Must Hold Active Security Clearance Why Take the Plunge: Are you ready to transcend the ordinary and become a leading force in cybersecurity? Prepare yourself for a role that surpasses expectations! Imagine a dynamic 24/7 shift schedule offering unparalleled flexibility and a thrilling on-site experience in the bustling heart of Birmingham. But that's just the beginning of what awaits! What's in Store for You: Cutting-Edge Technological Playground: Delve into LogRhythm, Splunk, Darktrace (Threat Visualizer), and FireEye (EX, NX, HX, CMS) - platforms where your expertise shines brightest. Mastering Networks: Navigate the OSI Reference Model and engage with various network communication protocols with finesse. Unleash Action: Dive deep into incident response, log analysis, and PCAP analysis - your canvas for showcasing cybersecurity excellence. Digital Sleuth: Investigate Windows/Linux systems, uncovering signs of compromise with your digital magnifying glass. Communication Virtuoso: Translate cybersecurity risks into language that resonates with business objectives. Incident Commander: Lead security incidents with strategic finesse, providing user-centric updates along the way. Guardian of Cyber Realms: Implement Defensive Cyber-attack methodologies and frameworks, safeguarding digital territories with your toolkit. Scripting Expertise: Elevate your game with foundational scripting knowledge, adding an extra layer of brilliance to your arsenal. SOC Mastery: Your journey through Security Operations Centers or as a security analyst equips you to handle incidents across a spectrum of tools. Why Choose Us? Continuous Learning Environment: Elevate your skills in an ecosystem that thrives on constant growth and development. Talented Team Collaboration: Work alongside a diverse and highly skilled cohort, fostering innovation and creativity. Cutting-Edge Challenges: Tackle the latest security challenges head-on, equipped with the most advanced technology available.
Senior IT Security Analyst Up to 55,000 Hybrid - 2 days per week at either the London, Weymouth, or Newcastle offices We are representing a leading B2C retailer who are in the process of modernising their technology estate, with significant investment in IT. As the Senior IT Security Analyst, you will report to the Head of Information Security, whilst leading a team of two IT Security Analysts. You will be the SME for technical security, have the responsibility for the managed SOC and associated vendor relationships, as well as the vulnerability, penetration, and application security testing. We are looking for: An individual with the relevant Information Security based qualification (e.g. CISSP) Proven experience with incident management and the ability to lead on this Technical understanding on a Microsoft stack - especially Darktrace Prior experience managing a 3rd party It would be a bonus if you had: Previous experience/knowledge of the Retail or eCommerce space Experience leading and managing a team If this sounds of interest, please apply today!
May 03, 2024
Full time
Senior IT Security Analyst Up to 55,000 Hybrid - 2 days per week at either the London, Weymouth, or Newcastle offices We are representing a leading B2C retailer who are in the process of modernising their technology estate, with significant investment in IT. As the Senior IT Security Analyst, you will report to the Head of Information Security, whilst leading a team of two IT Security Analysts. You will be the SME for technical security, have the responsibility for the managed SOC and associated vendor relationships, as well as the vulnerability, penetration, and application security testing. We are looking for: An individual with the relevant Information Security based qualification (e.g. CISSP) Proven experience with incident management and the ability to lead on this Technical understanding on a Microsoft stack - especially Darktrace Prior experience managing a 3rd party It would be a bonus if you had: Previous experience/knowledge of the Retail or eCommerce space Experience leading and managing a team If this sounds of interest, please apply today!
Unleash Your Cybersecurity Potential as a Senior SOC Analyst! Embark on an Extraordinary Journey: Position: Senior SOC Analyst Contract: Outside IR35 Shifts: Shift pattern including night shifts Location: Birmingham Onsite Must Hold Active Security Clearance Why Take the Plunge: Are you ready to transcend the ordinary and become a leading force in cybersecurity? Prepare yourself for a role that surpasses expectations! Imagine a dynamic 24/7 shift schedule offering unparalleled flexibility and a thrilling on-site experience in the bustling heart of Birmingham. But that's just the beginning of what awaits! What's in Store for You: Cutting-Edge Technological Playground: Delve into LogRhythm, Splunk, Darktrace (Threat Visualizer), and FireEye (EX, NX, HX, CMS) - platforms where your expertise shines brightest. Mastering Networks: Navigate the OSI Reference Model and engage with various network communication protocols with finesse. Unleash Action: Dive deep into incident response, log analysis, and PCAP analysis - your canvas for showcasing cybersecurity excellence. Digital Sleuth: Investigate Windows/Linux systems, uncovering signs of compromise with your digital magnifying glass. Communication Virtuoso: Translate cybersecurity risks into language that resonates with business objectives. Incident Commander: Lead security incidents with strategic finesse, providing user-centric updates along the way. Guardian of Cyber Realms: Implement Defensive Cyber-attack methodologies and frameworks, safeguarding digital territories with your toolkit. Scripting Expertise: Elevate your game with foundational scripting knowledge, adding an extra layer of brilliance to your arsenal. SOC Mastery: Your journey through Security Operations Centers or as a security analyst equips you to handle incidents across a spectrum of tools. Why Choose Us? Continuous Learning Environment: Elevate your skills in an ecosystem that thrives on constant growth and development. Talented Team Collaboration: Work alongside a diverse and highly skilled cohort, fostering innovation and creativity. Cutting-Edge Challenges: Tackle the latest security challenges head-on, equipped with the most advanced technology available.
May 03, 2024
Contractor
Unleash Your Cybersecurity Potential as a Senior SOC Analyst! Embark on an Extraordinary Journey: Position: Senior SOC Analyst Contract: Outside IR35 Shifts: Shift pattern including night shifts Location: Birmingham Onsite Must Hold Active Security Clearance Why Take the Plunge: Are you ready to transcend the ordinary and become a leading force in cybersecurity? Prepare yourself for a role that surpasses expectations! Imagine a dynamic 24/7 shift schedule offering unparalleled flexibility and a thrilling on-site experience in the bustling heart of Birmingham. But that's just the beginning of what awaits! What's in Store for You: Cutting-Edge Technological Playground: Delve into LogRhythm, Splunk, Darktrace (Threat Visualizer), and FireEye (EX, NX, HX, CMS) - platforms where your expertise shines brightest. Mastering Networks: Navigate the OSI Reference Model and engage with various network communication protocols with finesse. Unleash Action: Dive deep into incident response, log analysis, and PCAP analysis - your canvas for showcasing cybersecurity excellence. Digital Sleuth: Investigate Windows/Linux systems, uncovering signs of compromise with your digital magnifying glass. Communication Virtuoso: Translate cybersecurity risks into language that resonates with business objectives. Incident Commander: Lead security incidents with strategic finesse, providing user-centric updates along the way. Guardian of Cyber Realms: Implement Defensive Cyber-attack methodologies and frameworks, safeguarding digital territories with your toolkit. Scripting Expertise: Elevate your game with foundational scripting knowledge, adding an extra layer of brilliance to your arsenal. SOC Mastery: Your journey through Security Operations Centers or as a security analyst equips you to handle incidents across a spectrum of tools. Why Choose Us? Continuous Learning Environment: Elevate your skills in an ecosystem that thrives on constant growth and development. Talented Team Collaboration: Work alongside a diverse and highly skilled cohort, fostering innovation and creativity. Cutting-Edge Challenges: Tackle the latest security challenges head-on, equipped with the most advanced technology available.
Salary: £65,000 Location: Hybrid working (1-2 days Becrypt Head Office in Central London/Home Working) The Opportunity As part of the Becrypt Managed Services strategy we are looking to recruit a Senior SOC Analyst to build a new SOC function from the ground up. The role will initially be very hands on, responsible for monitoring and triaging of events and incidents for our client base, using such tools as Microsoft Sentinel and Manage Engine Log 360. The role will also involve standing up new SIEM tools to support multiple environments, an in-depth understanding of configuring and tuning tools, as well as monitoring, is a must. This is a chance for an individual to be involved at the start of the development of the SOC function. This role will play a leading part in the day-to-day activities of the SOC and influence the SOC on an operational, technical and strategic level. This role requires someone driven, willing to get hands on, has a keen eye for documentation and is passionate about delivering an excellent security service. A great team player is a must. Job Purpose: The main purpose of this role is to bring stability and a standard approach to security monitoring across a number of SIEM tools for multiple environments, thus ensuring a strong security posture is maintained. Primarily the role will be concerned with taking on all security monitoring for a handful of small client environments and the corporate environment. The role will also be accountable for ensuring a SIEM platform is embedded as a BAU service for a new Private Cloud solution. As a Senior SOC Analyst you will play a pivotal role in ensuring the security and resilience of our organisation, and client s information systems. The Senior SOC analyst will be the first recruit into the SOC Team and will be expected to work with management to ensure the service is built and grows to suit the requirements of the business. Main Duties and Responsibilities: Security Monitoring: & Investigation: Monitoring multiple SIEM tools to assure high a level of security on solutions Becrypt deliver. Oversee and enhance security monitoring systems to detect and analyse potential security incidents. Conduct real-time analysis of security events and incident and escalate as necessary. Support other teams on investigations into incidents, determining the root cause and impact. Document findings and lessons learned to improve incident response procedures. Ensure runbooks are followed and are fit for purpose. Incident Response: Lead and coordinate incident response activities to effectively contain, eradicate, and recover from security incidents. Develop and maintain incident response plans, ensuring they align with industry best practices. Escalation management in the event of a security incident. Follow major incident process. Threat Intelligence: Stay abreast of the latest cybersecurity threats and vulnerabilities, integrating threat intelligence into security monitoring processes. Contribute to the development of threat intelligence feeds to enhance proactive threat detection. Security Tool Management: Manage and optimise SIEM tools, ensuring they are properly configured and updated to maximize effectiveness. Evaluate new security technologies and recommend enhancements to the security infrastructure. Collaboration: Collaborate with cross-functional teams, including IT, legal, and management, to address security incidents and implement preventive measures. Provide expertise and guidance to other analysts. Working with the Technical Delivery Team to ensure all new and changed services are monitored accordingly. Documentation: Maintain accurate and up-to-date documentation of security procedures, incident response plans, and analysis reports. Create post-incident reports for management and stakeholders. Create monthly reporting packs as per contractual requirements. Create and document robust event and incident management processes Runbooks & Playbooks. Other responsibilities: Involvement in scoping and standing up new solutions for new opportunities. Assisting Pre-Sales team with requirements on new opportunities. Demonstrations of SOC tools to clients. Continual Service Improvement Recommendations for change to address incidents or persistent events. Essential Skills and Experience: Analytical mindset with the ability to troubleshoot and solve complex security issues. Excellent communication and interpersonal skills for collaborating with diverse teams. Leadership qualities to guide other team member and drive security initiatives. Up-to-date knowledge of cybersecurity trends and threats. Full understanding of SIEM systems Microsoft Sentinel, Manage Engine Log 360, IBM QRadar, Splunk, Sentinel etc Demonstrable understanding of IT Security Management, Policies, Procedures, Standards and Guidelines. Ability to work autonomously Clear understanding of runbooks and playbooks with the ability create these from scratch Understanding of ISO 27001, ISO 9001 & Cyber Essentials would be extremely advantageous Security Operations and Incident Handling Previous experience working within a SOC team A great opportunity for a SOC professional to push their career forward in a challenging and exciting environment. Due to the high level of Security clearance required, applicants must be British Nationals. You must hold SC Clearance for this role or be willing to go through SC Clearance. Salary: £65,000 Location: Hybrid working (1-2 days Becrypt Head Office in Central London/Home Working) Apply Now To apply for the Senior SOC Analyst role, please send a copy of your CV and covering letter by using the apply button provided on the page.
May 03, 2024
Full time
Salary: £65,000 Location: Hybrid working (1-2 days Becrypt Head Office in Central London/Home Working) The Opportunity As part of the Becrypt Managed Services strategy we are looking to recruit a Senior SOC Analyst to build a new SOC function from the ground up. The role will initially be very hands on, responsible for monitoring and triaging of events and incidents for our client base, using such tools as Microsoft Sentinel and Manage Engine Log 360. The role will also involve standing up new SIEM tools to support multiple environments, an in-depth understanding of configuring and tuning tools, as well as monitoring, is a must. This is a chance for an individual to be involved at the start of the development of the SOC function. This role will play a leading part in the day-to-day activities of the SOC and influence the SOC on an operational, technical and strategic level. This role requires someone driven, willing to get hands on, has a keen eye for documentation and is passionate about delivering an excellent security service. A great team player is a must. Job Purpose: The main purpose of this role is to bring stability and a standard approach to security monitoring across a number of SIEM tools for multiple environments, thus ensuring a strong security posture is maintained. Primarily the role will be concerned with taking on all security monitoring for a handful of small client environments and the corporate environment. The role will also be accountable for ensuring a SIEM platform is embedded as a BAU service for a new Private Cloud solution. As a Senior SOC Analyst you will play a pivotal role in ensuring the security and resilience of our organisation, and client s information systems. The Senior SOC analyst will be the first recruit into the SOC Team and will be expected to work with management to ensure the service is built and grows to suit the requirements of the business. Main Duties and Responsibilities: Security Monitoring: & Investigation: Monitoring multiple SIEM tools to assure high a level of security on solutions Becrypt deliver. Oversee and enhance security monitoring systems to detect and analyse potential security incidents. Conduct real-time analysis of security events and incident and escalate as necessary. Support other teams on investigations into incidents, determining the root cause and impact. Document findings and lessons learned to improve incident response procedures. Ensure runbooks are followed and are fit for purpose. Incident Response: Lead and coordinate incident response activities to effectively contain, eradicate, and recover from security incidents. Develop and maintain incident response plans, ensuring they align with industry best practices. Escalation management in the event of a security incident. Follow major incident process. Threat Intelligence: Stay abreast of the latest cybersecurity threats and vulnerabilities, integrating threat intelligence into security monitoring processes. Contribute to the development of threat intelligence feeds to enhance proactive threat detection. Security Tool Management: Manage and optimise SIEM tools, ensuring they are properly configured and updated to maximize effectiveness. Evaluate new security technologies and recommend enhancements to the security infrastructure. Collaboration: Collaborate with cross-functional teams, including IT, legal, and management, to address security incidents and implement preventive measures. Provide expertise and guidance to other analysts. Working with the Technical Delivery Team to ensure all new and changed services are monitored accordingly. Documentation: Maintain accurate and up-to-date documentation of security procedures, incident response plans, and analysis reports. Create post-incident reports for management and stakeholders. Create monthly reporting packs as per contractual requirements. Create and document robust event and incident management processes Runbooks & Playbooks. Other responsibilities: Involvement in scoping and standing up new solutions for new opportunities. Assisting Pre-Sales team with requirements on new opportunities. Demonstrations of SOC tools to clients. Continual Service Improvement Recommendations for change to address incidents or persistent events. Essential Skills and Experience: Analytical mindset with the ability to troubleshoot and solve complex security issues. Excellent communication and interpersonal skills for collaborating with diverse teams. Leadership qualities to guide other team member and drive security initiatives. Up-to-date knowledge of cybersecurity trends and threats. Full understanding of SIEM systems Microsoft Sentinel, Manage Engine Log 360, IBM QRadar, Splunk, Sentinel etc Demonstrable understanding of IT Security Management, Policies, Procedures, Standards and Guidelines. Ability to work autonomously Clear understanding of runbooks and playbooks with the ability create these from scratch Understanding of ISO 27001, ISO 9001 & Cyber Essentials would be extremely advantageous Security Operations and Incident Handling Previous experience working within a SOC team A great opportunity for a SOC professional to push their career forward in a challenging and exciting environment. Due to the high level of Security clearance required, applicants must be British Nationals. You must hold SC Clearance for this role or be willing to go through SC Clearance. Salary: £65,000 Location: Hybrid working (1-2 days Becrypt Head Office in Central London/Home Working) Apply Now To apply for the Senior SOC Analyst role, please send a copy of your CV and covering letter by using the apply button provided on the page.
Crisis24, a GardaWorld company, is widely regarded as the leading integrated risk management, crisis response, consulting, and global protective solutions firm, serving the world's most influential people, disruptive brands, and prominent organizations. Championed by our advanced Global Operation Centers and our skilled team of intelligence analysts, we offer highly specialized services, security and consulting, with the technology and AI to power it all across the globe. At Crisis24, we go beyond mere employment; we pave the way to a realm where your skills become instrumental in shaping global security, guiding clients through a multifaceted and challenging landscape. Your journey with us will be deeply fulfilling, driven by a powerful sense of purpose and accomplishment. Within our thriving environment, you'll discover abundant chances for both personal and career advancement. Seize this moment to push your limits, broaden your expertise, and elevate your professional journey to unprecedented levels. Join the Crisis24 team today and be a part of something extraordinary where growth and impact converge. Crisis24's Crisis & Security Consulting (CSC) division, specifically the All-Hazards Response team, is on the lookout for a Senior Consultant. This role is ideally suited for candidates based in the UK or in mainland Europe. As a part of our dynamic and agile Response Group, the successful applicant will have the chance to enhance their skill set and knowledge, enabling them to contribute across various teams within the organization. Candidates should possess comprehensive experience in crisis management at both tactical and strategic levels and have a wide-ranging understanding of different industries. The position involves readiness to deploy globally at short notice, often in challenging situations, requiring confidence and the ability to provide immediate support and guidance to high-level / C-Suite stakeholders. What You Will Work On Summary You will deliver All Hazards Response services, providing expert advice and guidance to clients facing crises, from threats and violence to political and cyber-related issues. This role entails global deployment, often without prior notice, creating documentation in line with CSC's methodologies, conducting sensitive investigations, and potentially training as a subject matter expert for example as a crisis communications consultant. You will also support the development of junior team members and collaborate with the global consulting team on service delivery, maintaining accurate records across platforms such as Salesforce. Specifics Provide advice and guidance to clients in response to case activations on the following peril types: Active Assailant / Workplace Violence; Political Violence & Terrorism; Cyber Extortion; and Any other crisis-level event in which All-Hazard Response are engaged. Deployment globally in support of any new case activation, often with no notice. Produce all relevant documentation in support of assigned response cases, in line with CSC's doctrine and methodology. Coordinate and conduct sensitive investigational support to clients. Train as a Crisis Communications consultant. Support the development of more junior team members and work in cooperation with the wider global consulting team on all other aspects of consulting services delivery. Keep Salesforce and any other platforms used by Crisis24 up to date and accurate in relation to relevant accounts and proposals. Obtain the skill set and knowledge to actively respond as a Special Risks Response Consultant when required. Support to Insurance Partners Deliver onboarding briefings to new policy holders. Provide capability briefings in support of marketing the wider insurance policies. Assist in the delivery of update reports to insurance underwriters during ongoing cases. Generation of new response retainers, providing services to insurance partners or private clients. Direct engagement contracts for new response cases when insurance options are not present. Assist wider CSC team members in any business development briefings and activity when required. Support the implementation of a business development plan for the region. Scope, price, manage and/or oversee the development of client proposals and responses to RFPs. Represent CSC, Crisis24 and GardaWorld in client pitches/senior-level presentations/in-person meetings. Duty officer Following training, there may be a requirement to join the Duty Officer roster for All-Hazards Response activations. Account management Client liaison and account/client relationship management of new and existing consulting clients. Other Support the wider Crisis24 and GardaWorld business as required. Who You Will Work With Under the guidance of the Associate Director for All Hazards Response, you will collaborate on a variety of response cases and projects. These initiatives are diverse in terms of geography, industry, and complexity, necessitating effective management of pressures. You will be an integral part of both the Response Group and the wider CSC team, frequently assisting other teams within Crisis24 and GardaWorld. Owing to the sensitive nature of the case activity, All Hazards personnel are often visible to the highest levels of leadership within Crisis24 and GardaWorld. What You Will Bring Summary Candidates should have at least 10 years of experience in Crisis Management, preferably within a corporate or consulting environment, and a solid background in Security Risk and Crisis Management. You should be knowledgeable about crisis response processes, the specialist insurance market, and have a track record of developing new business opportunities. The role demands extensive global travel, often to high-risk areas, and requires strong analytical, problem-solving, and communication skills. Candidates must be adaptable, motivated to work irregular hours, and committed to continuous professional development. Specifics 10+ years of experience in Crisis Management, preferably in a corporate and/or consulting setting. Strong working knowledge of Security Risk and Crisis Management. In-depth knowledge and experience of crisis response processes. An understanding of specialist insurance markets. Demonstrable commercial experience developing new business opportunities. Extensive travel experience globally, including in high-threat/hostile environments. Strong analytical and problem-solving skills; a creative thinker who can apply initiative and create solutions to solve clients' problems. Ability to manage multiple cases simultaneously with strong attention to detail. Personable and able to communicate effectively at all levels with team members and clients, with the gravitas to influence at a very senior level, including verbal communications and presentations skills. Able to relate well to others with confidence and empathy, build trust and be calm and resourceful during difficult and emotive situations. The flexibility and motivation to work irregular hours and maintain quality delivery. Invested in development; maintains a high level of industry knowledge and awareness of geopolitical and security/crisis management issues and trends. The annual leave year runs from 1 January to 31 December. Your paid annual leave entitlement will be 25 days per annum (pro rata for part time hours). Group Life Insurance effective upon commencement of employment. Death in Service pays out at 4x base salary. Employee Assistance Program effective upon commencement of employment. Full details will be provided after joining the company. A Discretionary Bonus Scheme, effective in the year following your employment, and based on company performance in the previous fiscal year. Group Pension Scheme, to which you will be automatically enrolled from the beginning of the third month following start date: We will match your contributions up to 5%. The minimum contribution you can make to the scheme is 4%. You will be entitled to opt out should you wish. Information Security Protect the data and systems of Crisis24 and its stakeholders by adhering to policies, reporting incidents and potential problems, completing regular training, and identifying opportunities for improvement. Crisis24, A GardaWorld Company is dedicated to equal opportunity in employment. We are committed to a work environment that celebrates diversity. We do not discriminate against any individual based on race, color, sex, national origin, age, religion, marital or parental status, sexual orientation, gender identity, gender expression, military or veteran status, disability, or any factors protected by applicable laws.
May 03, 2024
Full time
Crisis24, a GardaWorld company, is widely regarded as the leading integrated risk management, crisis response, consulting, and global protective solutions firm, serving the world's most influential people, disruptive brands, and prominent organizations. Championed by our advanced Global Operation Centers and our skilled team of intelligence analysts, we offer highly specialized services, security and consulting, with the technology and AI to power it all across the globe. At Crisis24, we go beyond mere employment; we pave the way to a realm where your skills become instrumental in shaping global security, guiding clients through a multifaceted and challenging landscape. Your journey with us will be deeply fulfilling, driven by a powerful sense of purpose and accomplishment. Within our thriving environment, you'll discover abundant chances for both personal and career advancement. Seize this moment to push your limits, broaden your expertise, and elevate your professional journey to unprecedented levels. Join the Crisis24 team today and be a part of something extraordinary where growth and impact converge. Crisis24's Crisis & Security Consulting (CSC) division, specifically the All-Hazards Response team, is on the lookout for a Senior Consultant. This role is ideally suited for candidates based in the UK or in mainland Europe. As a part of our dynamic and agile Response Group, the successful applicant will have the chance to enhance their skill set and knowledge, enabling them to contribute across various teams within the organization. Candidates should possess comprehensive experience in crisis management at both tactical and strategic levels and have a wide-ranging understanding of different industries. The position involves readiness to deploy globally at short notice, often in challenging situations, requiring confidence and the ability to provide immediate support and guidance to high-level / C-Suite stakeholders. What You Will Work On Summary You will deliver All Hazards Response services, providing expert advice and guidance to clients facing crises, from threats and violence to political and cyber-related issues. This role entails global deployment, often without prior notice, creating documentation in line with CSC's methodologies, conducting sensitive investigations, and potentially training as a subject matter expert for example as a crisis communications consultant. You will also support the development of junior team members and collaborate with the global consulting team on service delivery, maintaining accurate records across platforms such as Salesforce. Specifics Provide advice and guidance to clients in response to case activations on the following peril types: Active Assailant / Workplace Violence; Political Violence & Terrorism; Cyber Extortion; and Any other crisis-level event in which All-Hazard Response are engaged. Deployment globally in support of any new case activation, often with no notice. Produce all relevant documentation in support of assigned response cases, in line with CSC's doctrine and methodology. Coordinate and conduct sensitive investigational support to clients. Train as a Crisis Communications consultant. Support the development of more junior team members and work in cooperation with the wider global consulting team on all other aspects of consulting services delivery. Keep Salesforce and any other platforms used by Crisis24 up to date and accurate in relation to relevant accounts and proposals. Obtain the skill set and knowledge to actively respond as a Special Risks Response Consultant when required. Support to Insurance Partners Deliver onboarding briefings to new policy holders. Provide capability briefings in support of marketing the wider insurance policies. Assist in the delivery of update reports to insurance underwriters during ongoing cases. Generation of new response retainers, providing services to insurance partners or private clients. Direct engagement contracts for new response cases when insurance options are not present. Assist wider CSC team members in any business development briefings and activity when required. Support the implementation of a business development plan for the region. Scope, price, manage and/or oversee the development of client proposals and responses to RFPs. Represent CSC, Crisis24 and GardaWorld in client pitches/senior-level presentations/in-person meetings. Duty officer Following training, there may be a requirement to join the Duty Officer roster for All-Hazards Response activations. Account management Client liaison and account/client relationship management of new and existing consulting clients. Other Support the wider Crisis24 and GardaWorld business as required. Who You Will Work With Under the guidance of the Associate Director for All Hazards Response, you will collaborate on a variety of response cases and projects. These initiatives are diverse in terms of geography, industry, and complexity, necessitating effective management of pressures. You will be an integral part of both the Response Group and the wider CSC team, frequently assisting other teams within Crisis24 and GardaWorld. Owing to the sensitive nature of the case activity, All Hazards personnel are often visible to the highest levels of leadership within Crisis24 and GardaWorld. What You Will Bring Summary Candidates should have at least 10 years of experience in Crisis Management, preferably within a corporate or consulting environment, and a solid background in Security Risk and Crisis Management. You should be knowledgeable about crisis response processes, the specialist insurance market, and have a track record of developing new business opportunities. The role demands extensive global travel, often to high-risk areas, and requires strong analytical, problem-solving, and communication skills. Candidates must be adaptable, motivated to work irregular hours, and committed to continuous professional development. Specifics 10+ years of experience in Crisis Management, preferably in a corporate and/or consulting setting. Strong working knowledge of Security Risk and Crisis Management. In-depth knowledge and experience of crisis response processes. An understanding of specialist insurance markets. Demonstrable commercial experience developing new business opportunities. Extensive travel experience globally, including in high-threat/hostile environments. Strong analytical and problem-solving skills; a creative thinker who can apply initiative and create solutions to solve clients' problems. Ability to manage multiple cases simultaneously with strong attention to detail. Personable and able to communicate effectively at all levels with team members and clients, with the gravitas to influence at a very senior level, including verbal communications and presentations skills. Able to relate well to others with confidence and empathy, build trust and be calm and resourceful during difficult and emotive situations. The flexibility and motivation to work irregular hours and maintain quality delivery. Invested in development; maintains a high level of industry knowledge and awareness of geopolitical and security/crisis management issues and trends. The annual leave year runs from 1 January to 31 December. Your paid annual leave entitlement will be 25 days per annum (pro rata for part time hours). Group Life Insurance effective upon commencement of employment. Death in Service pays out at 4x base salary. Employee Assistance Program effective upon commencement of employment. Full details will be provided after joining the company. A Discretionary Bonus Scheme, effective in the year following your employment, and based on company performance in the previous fiscal year. Group Pension Scheme, to which you will be automatically enrolled from the beginning of the third month following start date: We will match your contributions up to 5%. The minimum contribution you can make to the scheme is 4%. You will be entitled to opt out should you wish. Information Security Protect the data and systems of Crisis24 and its stakeholders by adhering to policies, reporting incidents and potential problems, completing regular training, and identifying opportunities for improvement. Crisis24, A GardaWorld Company is dedicated to equal opportunity in employment. We are committed to a work environment that celebrates diversity. We do not discriminate against any individual based on race, color, sex, national origin, age, religion, marital or parental status, sexual orientation, gender identity, gender expression, military or veteran status, disability, or any factors protected by applicable laws.
About The Role Position Summary SOC Analysts have responsibility for leading incident response efforts, monitoring security events, analysing logs and data for threats, providing proactive threat intelligence, managing security tools, preparing comprehensive incident reports, conducting security assessments, coordinating incident handling, promoting security awareness, and driving continuous improvement within the SOC. The role is crucial in protecting the organisation and enhancing security operations to mitigate risks effectively. Objectives and Key Results The key objectives will be to: Be responsible for incident analysis, classification and response actions including notification and alerting. Monitor for possible security incidents, using knowledge of attack types and standard protocol behaviour to classify incidents, comment, and provide advice on mitigation or remedial actions to clients. Work with other SOC analysts, the Shift Lead, Senior SOC Analysts and the SOC Team Lead on any delegated tasks. This may include mentorship, rule tuning, threat hunting, reports and service improvements. Essential Duties and Responsibilities Conduct incident triage on new tickets in line with established triage SLAs. Raise incidents to customers as appropriate, in line with established notification SLAs. Escalate incidents to a Level 1 SOC Analyst or Shift Lead as appropriate. About You Behavioural Competencies - Organisational and Behavioural Ability to multi-task, prioritise, and manage time effectively Strong attention to detail and intellectually curious Excellent interpersonal skills and professional demeanour Excellent verbal and written communication skills Excellent customer service skills Proficient in Microsoft Office applications Candidate must be eligible to obtain Security Clearance Critical competencies - Technical Bachelor's degree in a related field or equivalent demonstrated experience and knowledge Knowledge of various security methodologies and processes, and technical security solutions (firewall, SIEM and intrusion detection/prevention systems, vulnerability scanners, etc.) Knowledge of TCP/IP Protocols, network analysis, and network/security applications; and a good background with network troubleshooting and technologies; Firewall configuration, monitoring, network packet capture (tcpdump/Wireshark), etc. Excellent understanding of commonly used Internet protocols such as SMTP, HTTP, and DNS Incident Response: Strong knowledge and experience in handling security incidents, including identifying, analysing, and responding to security events in real-time Intrusion Detection and Prevention Systems (IDS/IPS): Familiarity with IDS/IPS technologies, their configuration, and their use in monitoring and protecting networks from potential threats Threat Intelligence: Understanding of threat intelligence feeds and their application in identifying and mitigating potential threats, as well as the ability to leverage threat intelligence platforms effectively Malware Analysis: Familiarity with basic malware analysis techniques, such as static and dynamic analysis, to identify and understand the behaviour of malicious software Vulnerability Management: Experience with vulnerability scanning tools, knowledge of common vulnerabilities and exposures (CVEs), and the ability to prioritise and remediate vulnerabilities effectively Endpoint Security: Understanding of endpoint protection technologies (antivirus, host-based intrusion detection systems, etc.) and the ability to monitor and respond to security events on endpoints Secure Network Architecture: Knowledge of secure network design principles, including segmentation, DMZ, VPNs, and network access controls Threat Hunting: Ability to proactively search for signs of potential threats or security breaches within the network environment using various techniques and tools Cloud Security: Understanding of cloud security concepts, including secure configuration, identity and access management (IAM), and monitoring of cloud environments Security Standards and Frameworks: Familiarity with industry security standards and frameworks such as NIST Cybersecurity Framework, ISO 27001, and CIS Controls In addition, the following are highly desirable: Cyber Security Training Certifications, including: SANS CREST COMPTIA Network+, Linux+, Security+, CySA+, CASP+ Microsoft Azure Fundamentals (AZ-900) and Security Operations Analyst (SC-200) AWS Certified Cloud Practitioner and Certified Security Speciality Blue Team Level 1 and Level 2 Experience of ticketing systems to manage communication with customers Understanding of performing 1st level analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures, and reduction of false-positives Working For Claranet Here at Claranet we pride ourselves on going the extra mile for and with our employees (yes, we really mean it). We offer an extensive benefits package that you can tailor to your needs, inclusive of a matching contribution pension scheme, healthcare, insurance, dental, discounted gyms and app supported benefit access. But what we think makes us different is 'Team Claranet,' our dedicated internal part of the business that supports you with matters close to your heart. We proudly support local charities in each of our office locations, support employees with paid charity leave, organise key charity fundraising event per year and have a dedicated committee responsible for supporting employee's fundraising efforts. Claranet are one of the 10 founding members of TC4RE (Technology Community for Racial Equality). Being a part of a group of leading UK technology organisations, we are dedicated to building a more diverse and inclusive workforce. We are also very proud members of Tech Talent Charter, a government supported, industry-led membership group created to address the UK's tech talent shortage and diversity gap through collective action.
May 02, 2024
Full time
About The Role Position Summary SOC Analysts have responsibility for leading incident response efforts, monitoring security events, analysing logs and data for threats, providing proactive threat intelligence, managing security tools, preparing comprehensive incident reports, conducting security assessments, coordinating incident handling, promoting security awareness, and driving continuous improvement within the SOC. The role is crucial in protecting the organisation and enhancing security operations to mitigate risks effectively. Objectives and Key Results The key objectives will be to: Be responsible for incident analysis, classification and response actions including notification and alerting. Monitor for possible security incidents, using knowledge of attack types and standard protocol behaviour to classify incidents, comment, and provide advice on mitigation or remedial actions to clients. Work with other SOC analysts, the Shift Lead, Senior SOC Analysts and the SOC Team Lead on any delegated tasks. This may include mentorship, rule tuning, threat hunting, reports and service improvements. Essential Duties and Responsibilities Conduct incident triage on new tickets in line with established triage SLAs. Raise incidents to customers as appropriate, in line with established notification SLAs. Escalate incidents to a Level 1 SOC Analyst or Shift Lead as appropriate. About You Behavioural Competencies - Organisational and Behavioural Ability to multi-task, prioritise, and manage time effectively Strong attention to detail and intellectually curious Excellent interpersonal skills and professional demeanour Excellent verbal and written communication skills Excellent customer service skills Proficient in Microsoft Office applications Candidate must be eligible to obtain Security Clearance Critical competencies - Technical Bachelor's degree in a related field or equivalent demonstrated experience and knowledge Knowledge of various security methodologies and processes, and technical security solutions (firewall, SIEM and intrusion detection/prevention systems, vulnerability scanners, etc.) Knowledge of TCP/IP Protocols, network analysis, and network/security applications; and a good background with network troubleshooting and technologies; Firewall configuration, monitoring, network packet capture (tcpdump/Wireshark), etc. Excellent understanding of commonly used Internet protocols such as SMTP, HTTP, and DNS Incident Response: Strong knowledge and experience in handling security incidents, including identifying, analysing, and responding to security events in real-time Intrusion Detection and Prevention Systems (IDS/IPS): Familiarity with IDS/IPS technologies, their configuration, and their use in monitoring and protecting networks from potential threats Threat Intelligence: Understanding of threat intelligence feeds and their application in identifying and mitigating potential threats, as well as the ability to leverage threat intelligence platforms effectively Malware Analysis: Familiarity with basic malware analysis techniques, such as static and dynamic analysis, to identify and understand the behaviour of malicious software Vulnerability Management: Experience with vulnerability scanning tools, knowledge of common vulnerabilities and exposures (CVEs), and the ability to prioritise and remediate vulnerabilities effectively Endpoint Security: Understanding of endpoint protection technologies (antivirus, host-based intrusion detection systems, etc.) and the ability to monitor and respond to security events on endpoints Secure Network Architecture: Knowledge of secure network design principles, including segmentation, DMZ, VPNs, and network access controls Threat Hunting: Ability to proactively search for signs of potential threats or security breaches within the network environment using various techniques and tools Cloud Security: Understanding of cloud security concepts, including secure configuration, identity and access management (IAM), and monitoring of cloud environments Security Standards and Frameworks: Familiarity with industry security standards and frameworks such as NIST Cybersecurity Framework, ISO 27001, and CIS Controls In addition, the following are highly desirable: Cyber Security Training Certifications, including: SANS CREST COMPTIA Network+, Linux+, Security+, CySA+, CASP+ Microsoft Azure Fundamentals (AZ-900) and Security Operations Analyst (SC-200) AWS Certified Cloud Practitioner and Certified Security Speciality Blue Team Level 1 and Level 2 Experience of ticketing systems to manage communication with customers Understanding of performing 1st level analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures, and reduction of false-positives Working For Claranet Here at Claranet we pride ourselves on going the extra mile for and with our employees (yes, we really mean it). We offer an extensive benefits package that you can tailor to your needs, inclusive of a matching contribution pension scheme, healthcare, insurance, dental, discounted gyms and app supported benefit access. But what we think makes us different is 'Team Claranet,' our dedicated internal part of the business that supports you with matters close to your heart. We proudly support local charities in each of our office locations, support employees with paid charity leave, organise key charity fundraising event per year and have a dedicated committee responsible for supporting employee's fundraising efforts. Claranet are one of the 10 founding members of TC4RE (Technology Community for Racial Equality). Being a part of a group of leading UK technology organisations, we are dedicated to building a more diverse and inclusive workforce. We are also very proud members of Tech Talent Charter, a government supported, industry-led membership group created to address the UK's tech talent shortage and diversity gap through collective action.
DV CLEARED - Cyber Defence Engineer + Other Cyber Sec Opportunities! Are you a DV Cleared professional working in the Cyber Security space and looking for a new challenge? Keep reading! One of our client operating within the Defence and Security space is currently looking for various senior Cyber Security profiles (DV CLEARED) Start Date: ASAP - We can accommodate a reasonable notice period (1 month) Contract Length: 6 -12 months + Extension Pay: OPEN! If you are DV Cleared and can meet the on-site requirements we can consider any rates for these roles. Initially all roles are 5 days on-site per week at any of the mentioned locations. For outstanding profiles, our client is happy to move to 3 days on-site + 2 remote after the initial 2 months of the contract. ROLES Cyber Defense Engineer - Hereford SIEM / Incident SME - Portsmouth, Corsham or Northallerton Cyber Defence Analyst - Hereford SOC Analyst Does any of these roles look like you or someone you know? If so, please apply with your updated CV or contact me at to refer a colleague/friend. (Referral bonus)
May 02, 2024
Full time
DV CLEARED - Cyber Defence Engineer + Other Cyber Sec Opportunities! Are you a DV Cleared professional working in the Cyber Security space and looking for a new challenge? Keep reading! One of our client operating within the Defence and Security space is currently looking for various senior Cyber Security profiles (DV CLEARED) Start Date: ASAP - We can accommodate a reasonable notice period (1 month) Contract Length: 6 -12 months + Extension Pay: OPEN! If you are DV Cleared and can meet the on-site requirements we can consider any rates for these roles. Initially all roles are 5 days on-site per week at any of the mentioned locations. For outstanding profiles, our client is happy to move to 3 days on-site + 2 remote after the initial 2 months of the contract. ROLES Cyber Defense Engineer - Hereford SIEM / Incident SME - Portsmouth, Corsham or Northallerton Cyber Defence Analyst - Hereford SOC Analyst Does any of these roles look like you or someone you know? If so, please apply with your updated CV or contact me at to refer a colleague/friend. (Referral bonus)
IT Development Analyst Location: Southampton (50/50 Remote Working) + Occasional Site Visits Salary: £31,000 to £34,000 + Benefits You will be reporting into the Development Manager who will be leaving their role at the end of the year so ideally the successful candidate will step into their role when they leave. Purpose of Role: To support the IT Development Manager and focus on implementing new systems and helping all staff get the most out of the applications and systems that has already acquired. This will be a primarily proactive role reporting to the IT Development Manager but also working alongside the other more reactive IT support team roles. This role will require working both in head office and at any of the sites located in Southampton, Portsmouth and at other locations throughout Hampshire. Specific Duties: IT Business Systems Development & Support 1. Ensuring Software systems are setup and implemented properly 2. Working with software vendors during and after implementation to ensure all required features are implemented correctly 3. Ensuring software is functioning properly and that users are supported with any issues that occur, liaising with external support as appropriate. 4. Ensuring that existing software capability is understood 5. Making Managers aware of new or unused features in these systems that might aid their business practice 6. Making sure all systems and the way staff use them are reviewed regularly. 7. Ensuring all data held within these systems is well maintained and accurate. 8. Ensuring that all Managers are able to report on the information stored within these various systems. 9. Providing advice, assistance and basic training in the use of applications software that staff use. 10. Helping the HR team and Managers to arrange appropriate systems training for users and providing and/or producing support materials where relevant to aid user understanding and use of their systems Other Duties 1. Performing other IT duties as part of the wider IT Support team as required 2. Working as a team player but also being able to work independently 3. Being prepared to attend training courses as required 4. Taking direction from managers and senior managers. Essential Experience, Knowledge and Ability - the successful candidate must demonstrate the following: Assessment A good knowledge of Business systems and processes Form/Interview Excellent problem analysis and solving skills Form/Interview Willingness to travel to any SSJ site as required. Form/Interview Relevant IT experience and technical expertise Form/Interview A good knowledge of Microsoft Office Software and Windows 10 Form/Interview A good understanding of web based software and services Form/Interview A good understanding of IT and data security Form/Interview Understanding of issues around confidentiality Interview Ability to plan, prioritise and take responsibility for workload Form/Interview Good numeracy skills Form Good telephone manner and communication skills Interview Attention to Detail Form/Interview Working with minimum supervision, using own initiative Interview Experience of working in a team Form/Interview To be sympathetic to the aims of the Society of St James Form/Interview A willingness to work within Societys Equal Opportunities Policy Interview A willingness to undertake training relevant to the post Form Desirable Experience: Knowledge and Ability - the successful candidate may demonstrate the following: Assessment Experience of using Google Apps for business Form/Interview Holding an appropriate IT qualification or certification Form/Interview Experience of working in an Application Support environment or as a Business Analyst Form/Interview Experience or certification in any of the following systems: Salesforce, iTrent, Sage, LINKS CarePath, Pyramid, In-Form or other Housing management systems. Form/Interview Experience of using Wordpress or similar Form/Interview Car Driver with valid driving license Form/Interview Project planning experience or qualifications Form/Interview
May 02, 2024
Full time
IT Development Analyst Location: Southampton (50/50 Remote Working) + Occasional Site Visits Salary: £31,000 to £34,000 + Benefits You will be reporting into the Development Manager who will be leaving their role at the end of the year so ideally the successful candidate will step into their role when they leave. Purpose of Role: To support the IT Development Manager and focus on implementing new systems and helping all staff get the most out of the applications and systems that has already acquired. This will be a primarily proactive role reporting to the IT Development Manager but also working alongside the other more reactive IT support team roles. This role will require working both in head office and at any of the sites located in Southampton, Portsmouth and at other locations throughout Hampshire. Specific Duties: IT Business Systems Development & Support 1. Ensuring Software systems are setup and implemented properly 2. Working with software vendors during and after implementation to ensure all required features are implemented correctly 3. Ensuring software is functioning properly and that users are supported with any issues that occur, liaising with external support as appropriate. 4. Ensuring that existing software capability is understood 5. Making Managers aware of new or unused features in these systems that might aid their business practice 6. Making sure all systems and the way staff use them are reviewed regularly. 7. Ensuring all data held within these systems is well maintained and accurate. 8. Ensuring that all Managers are able to report on the information stored within these various systems. 9. Providing advice, assistance and basic training in the use of applications software that staff use. 10. Helping the HR team and Managers to arrange appropriate systems training for users and providing and/or producing support materials where relevant to aid user understanding and use of their systems Other Duties 1. Performing other IT duties as part of the wider IT Support team as required 2. Working as a team player but also being able to work independently 3. Being prepared to attend training courses as required 4. Taking direction from managers and senior managers. Essential Experience, Knowledge and Ability - the successful candidate must demonstrate the following: Assessment A good knowledge of Business systems and processes Form/Interview Excellent problem analysis and solving skills Form/Interview Willingness to travel to any SSJ site as required. Form/Interview Relevant IT experience and technical expertise Form/Interview A good knowledge of Microsoft Office Software and Windows 10 Form/Interview A good understanding of web based software and services Form/Interview A good understanding of IT and data security Form/Interview Understanding of issues around confidentiality Interview Ability to plan, prioritise and take responsibility for workload Form/Interview Good numeracy skills Form Good telephone manner and communication skills Interview Attention to Detail Form/Interview Working with minimum supervision, using own initiative Interview Experience of working in a team Form/Interview To be sympathetic to the aims of the Society of St James Form/Interview A willingness to work within Societys Equal Opportunities Policy Interview A willingness to undertake training relevant to the post Form Desirable Experience: Knowledge and Ability - the successful candidate may demonstrate the following: Assessment Experience of using Google Apps for business Form/Interview Holding an appropriate IT qualification or certification Form/Interview Experience of working in an Application Support environment or as a Business Analyst Form/Interview Experience or certification in any of the following systems: Salesforce, iTrent, Sage, LINKS CarePath, Pyramid, In-Form or other Housing management systems. Form/Interview Experience of using Wordpress or similar Form/Interview Car Driver with valid driving license Form/Interview Project planning experience or qualifications Form/Interview