Principal Digital Forensics Analyst £65,000 - £70,000 + bonus + extensive benefits Full Time/Permanent Remote with occasional travel to West Midlands offices and labs and sites throughout the UK for major incidents The Role and Company: I am looking for a driven and experienced Principal Digital Forensics Analyst to join a large nationally recognised brand head quartered in the West Midlands. As the Principal Digital Forensics Analyst, you will be the most senior analyst in the team and will possess expert level of proficiency in forensically acquiring, preserving, and analysing digital evidence across a variety of platforms to support internal investigations, e-discovery, litigation, and incident response efforts. The Principal Analyst will also take a lead role in complex cases, develop forensic methodologies, and mentor other team members. This role can be primarily remote based however the successful candidate must be willing to travel to the West Midlands head offices and labs and sites throughout the UK for major incidents. Key Responsibilities: Lead and conduct digital forensic investigations to identify causes and impacts of cyber incidents, insider threats, fraud, IP theft, and regulatory non-compliance. Acquire and process digital evidence across multiple sources (laptops, Servers, mobile, cloud, network logs) to ensure evidential integrity and maintain a strict chain of custody. Perform forensic analysis of file systems, OS artefacts, memory, network traffic, and malware to reconstruct events and determine root causes. Prepare and deliver detailed technical reports and executive summaries to communicate findings clearly to technical, legal, and senior business stakeholders. Research and implement emerging forensic tools and methodologies to enhance investigation capabilities and maintain operational excellence. Collaborate with the Cyber Security Incident Response Team to provide rapid forensic support during live cybersecurity incidents. Experience required: Proven Digital Forensics experience operating at a senior/lead level within large and complex enterprise organisations. Previous experience or a practical understanding of Operational Technology (OT) cyber security frameworks and standards. Proven expert knowledge of core forensic principles, evidence handling best practices, and the legal framework surrounding digital evidence, seizure of items and chain of custody. Expert level proficiency with industry leading forensic tools. Deep understanding of operating system internals (Windows, macOS, Linux) and file systems. Solid experience with network forensics, log analysis, and an understanding of network protocols (TCP/IP). Please apply via the link or contact (see below) for more information Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
10/03/2026
Full time
Principal Digital Forensics Analyst £65,000 - £70,000 + bonus + extensive benefits Full Time/Permanent Remote with occasional travel to West Midlands offices and labs and sites throughout the UK for major incidents The Role and Company: I am looking for a driven and experienced Principal Digital Forensics Analyst to join a large nationally recognised brand head quartered in the West Midlands. As the Principal Digital Forensics Analyst, you will be the most senior analyst in the team and will possess expert level of proficiency in forensically acquiring, preserving, and analysing digital evidence across a variety of platforms to support internal investigations, e-discovery, litigation, and incident response efforts. The Principal Analyst will also take a lead role in complex cases, develop forensic methodologies, and mentor other team members. This role can be primarily remote based however the successful candidate must be willing to travel to the West Midlands head offices and labs and sites throughout the UK for major incidents. Key Responsibilities: Lead and conduct digital forensic investigations to identify causes and impacts of cyber incidents, insider threats, fraud, IP theft, and regulatory non-compliance. Acquire and process digital evidence across multiple sources (laptops, Servers, mobile, cloud, network logs) to ensure evidential integrity and maintain a strict chain of custody. Perform forensic analysis of file systems, OS artefacts, memory, network traffic, and malware to reconstruct events and determine root causes. Prepare and deliver detailed technical reports and executive summaries to communicate findings clearly to technical, legal, and senior business stakeholders. Research and implement emerging forensic tools and methodologies to enhance investigation capabilities and maintain operational excellence. Collaborate with the Cyber Security Incident Response Team to provide rapid forensic support during live cybersecurity incidents. Experience required: Proven Digital Forensics experience operating at a senior/lead level within large and complex enterprise organisations. Previous experience or a practical understanding of Operational Technology (OT) cyber security frameworks and standards. Proven expert knowledge of core forensic principles, evidence handling best practices, and the legal framework surrounding digital evidence, seizure of items and chain of custody. Expert level proficiency with industry leading forensic tools. Deep understanding of operating system internals (Windows, macOS, Linux) and file systems. Solid experience with network forensics, log analysis, and an understanding of network protocols (TCP/IP). Please apply via the link or contact (see below) for more information Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
Principal Digital Forensics Analyst 65,000 - 70,000 + bonus + extensive benefits Full Time / Permanent Remote with occasional travel to West Midlands offices and labs and sites throughout the UK for major incidents The Role and Company: I am looking for a driven and experienced Principal Digital Forensics Analyst to join a large nationally recognised brand head quartered in the West Midlands. As the Principal Digital Forensics Analyst, you will be the most senior analyst in the team and will possess expert level of proficiency in forensically acquiring, preserving, and analysing digital evidence across a variety of platforms to support internal investigations, e-discovery, litigation, and incident response efforts. The Principal Analyst will also take a lead role in complex cases, develop forensic methodologies, and mentor other team members. This role can be primarily remote based however the successful candidate must be willing to travel to the West Midlands head offices and labs and sites throughout the UK for major incidents. Key Responsibilities: Lead and conduct digital forensic investigations to identify causes and impacts of cyber incidents, insider threats, fraud, IP theft, and regulatory non-compliance. Acquire and process digital evidence across multiple sources (laptops, servers, mobile, cloud, network logs) to ensure evidential integrity and maintain a strict chain of custody. Perform forensic analysis of file systems, OS artefacts, memory, network traffic, and malware to reconstruct events and determine root causes. Prepare and deliver detailed technical reports and executive summaries to communicate findings clearly to technical, legal, and senior business stakeholders. Research and implement emerging forensic tools and methodologies to enhance investigation capabilities and maintain operational excellence. Collaborate with the Cyber Security Incident Response Team to provide rapid forensic support during live cybersecurity incidents. Experience required: Proven Digital Forensics experience operating at a senior / lead level within large and complex enterprise organisations. Previous experience or a practical understanding of Operational Technology (OT) cyber security frameworks and standards. Proven expert knowledge of core forensic principles, evidence handling best practices, and the legal framework surrounding digital evidence, seizure of items and chain of custody. Expert level proficiency with industry leading forensic tools. Deep understanding of operating system internals (Windows, macOS, Linux) and file systems. Solid experience with network forensics, log analysis, and an understanding of network protocols (TCP/IP). Please apply via the link or contact (url removed) for more information Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
10/03/2026
Full time
Principal Digital Forensics Analyst 65,000 - 70,000 + bonus + extensive benefits Full Time / Permanent Remote with occasional travel to West Midlands offices and labs and sites throughout the UK for major incidents The Role and Company: I am looking for a driven and experienced Principal Digital Forensics Analyst to join a large nationally recognised brand head quartered in the West Midlands. As the Principal Digital Forensics Analyst, you will be the most senior analyst in the team and will possess expert level of proficiency in forensically acquiring, preserving, and analysing digital evidence across a variety of platforms to support internal investigations, e-discovery, litigation, and incident response efforts. The Principal Analyst will also take a lead role in complex cases, develop forensic methodologies, and mentor other team members. This role can be primarily remote based however the successful candidate must be willing to travel to the West Midlands head offices and labs and sites throughout the UK for major incidents. Key Responsibilities: Lead and conduct digital forensic investigations to identify causes and impacts of cyber incidents, insider threats, fraud, IP theft, and regulatory non-compliance. Acquire and process digital evidence across multiple sources (laptops, servers, mobile, cloud, network logs) to ensure evidential integrity and maintain a strict chain of custody. Perform forensic analysis of file systems, OS artefacts, memory, network traffic, and malware to reconstruct events and determine root causes. Prepare and deliver detailed technical reports and executive summaries to communicate findings clearly to technical, legal, and senior business stakeholders. Research and implement emerging forensic tools and methodologies to enhance investigation capabilities and maintain operational excellence. Collaborate with the Cyber Security Incident Response Team to provide rapid forensic support during live cybersecurity incidents. Experience required: Proven Digital Forensics experience operating at a senior / lead level within large and complex enterprise organisations. Previous experience or a practical understanding of Operational Technology (OT) cyber security frameworks and standards. Proven expert knowledge of core forensic principles, evidence handling best practices, and the legal framework surrounding digital evidence, seizure of items and chain of custody. Expert level proficiency with industry leading forensic tools. Deep understanding of operating system internals (Windows, macOS, Linux) and file systems. Solid experience with network forensics, log analysis, and an understanding of network protocols (TCP/IP). Please apply via the link or contact (url removed) for more information Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
Information Security Analyst - Staffordshire Cyber Analyst to join the Information Security Team. Someone who can take those outputs from projects / tools and drive improvements. Looking for an experienced, proactive Security Analyst to ensure the correct level of security integrity to protect systems, information, personal data and people from cyber-attacks and unauthorised access. Working with other departments to ensure security systems are secure, fit for purpose and protected to an optimal level. You will be responsible for driving the security scrutiny, culture, awareness, and adoption across the business. Security Toolsets and a Technical Mindset, you re not expected or required to be an expert in all areas but expected to have a solid understanding and grounding in security principals to adapt to the varied requirements Experienced in a wide variety of security software, systems, services and toolsets such as E-mail Security, EDR, NAC, IT/OT Segmentation, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management Understanding of Information Security best practice for elements including workstations, servers, cloud, networking, architecture, common protocols, and application security Can confidently perform security audits, both internal and external (e.g., third party and supplier assurance) and ensure recommendations are followed for continuous improvement Strong Incident Response Management skills including threat and vulnerability analysis Understanding of security frameworks such as NIST, and Cyber Essentials As the analyst you will work with the security manager and engineer the day-to-day running and monitoring of Information Security systems. Analyse and interpret outputs to identify security weaknesses and recommend continuous improvements and be involved in - Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery. Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk Conduct regular security risk reviews and manage security remediation activity, internally on new IT/Business projects and with third parties This is working for an excellent client who offer progression and development. This is an office-based role in Staffordshire and you will join a small, dedicated security team.
27/02/2026
Full time
Information Security Analyst - Staffordshire Cyber Analyst to join the Information Security Team. Someone who can take those outputs from projects / tools and drive improvements. Looking for an experienced, proactive Security Analyst to ensure the correct level of security integrity to protect systems, information, personal data and people from cyber-attacks and unauthorised access. Working with other departments to ensure security systems are secure, fit for purpose and protected to an optimal level. You will be responsible for driving the security scrutiny, culture, awareness, and adoption across the business. Security Toolsets and a Technical Mindset, you re not expected or required to be an expert in all areas but expected to have a solid understanding and grounding in security principals to adapt to the varied requirements Experienced in a wide variety of security software, systems, services and toolsets such as E-mail Security, EDR, NAC, IT/OT Segmentation, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management Understanding of Information Security best practice for elements including workstations, servers, cloud, networking, architecture, common protocols, and application security Can confidently perform security audits, both internal and external (e.g., third party and supplier assurance) and ensure recommendations are followed for continuous improvement Strong Incident Response Management skills including threat and vulnerability analysis Understanding of security frameworks such as NIST, and Cyber Essentials As the analyst you will work with the security manager and engineer the day-to-day running and monitoring of Information Security systems. Analyse and interpret outputs to identify security weaknesses and recommend continuous improvements and be involved in - Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery. Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk Conduct regular security risk reviews and manage security remediation activity, internally on new IT/Business projects and with third parties This is working for an excellent client who offer progression and development. This is an office-based role in Staffordshire and you will join a small, dedicated security team.
Principal Cyber Security Incident Response Analyst 60,000 - 70,000 Full Time / Permanent West Midlands / Hybrid (1-2 days a month in the office ideally) The Role I am looking for a driven and experienced Principal Cyber Security Incident Response Analyst to join a large nationally recognised brand head quartered in the West Midlands. As a Principal Cyber Security Incident Response Analyst, you will play a pivotal role in protecting critical systems, assets, and people from cyber security threats. You'll be part of a world-class team, working at the forefront of threat detection and response. We are ideally looking for someone Midlands based who can be on site in Warwickshire 1-2 days a month on average. Responsibilities: Provide leadership and mentorship to Analysts and Senior Analysts, fostering a culture of excellence and continuous development. Drive the evolution and enhancement of the Cyber Security Incident Response function, ensuring the team consistently meets and exceeds key performance indicators. Lead investigations and remediation efforts for cyber security incidents and alerts across diverse sources, including network, endpoint, cloud environments, and threat intelligence feeds. Perform in-depth trend analysis to identify patterns and inform improvements in organisational controls and threat detection capabilities. Develop, maintain, and continuously improve documentation and reporting frameworks to support transparency, consistency, and strategic decision-making. Experience required: Previous experience in a similar Cyber Incident Response Analyst role, preferably in a senior or lead capacity. Strong experience in security monitoring across diverse systems and environments, including cloud and on-premises. Proven leadership in incident response within SOC settings. Deep understanding of the cyber threat landscape, attack vectors, and detection techniques. Proficient in cybersecurity tools, regulations, and compliance standards. Excellent communication and stakeholder engagement skills, with the ability to convey technical insights to varied audiences. Please apply via the link or contact (url removed) for more information Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
04/10/2025
Full time
Principal Cyber Security Incident Response Analyst 60,000 - 70,000 Full Time / Permanent West Midlands / Hybrid (1-2 days a month in the office ideally) The Role I am looking for a driven and experienced Principal Cyber Security Incident Response Analyst to join a large nationally recognised brand head quartered in the West Midlands. As a Principal Cyber Security Incident Response Analyst, you will play a pivotal role in protecting critical systems, assets, and people from cyber security threats. You'll be part of a world-class team, working at the forefront of threat detection and response. We are ideally looking for someone Midlands based who can be on site in Warwickshire 1-2 days a month on average. Responsibilities: Provide leadership and mentorship to Analysts and Senior Analysts, fostering a culture of excellence and continuous development. Drive the evolution and enhancement of the Cyber Security Incident Response function, ensuring the team consistently meets and exceeds key performance indicators. Lead investigations and remediation efforts for cyber security incidents and alerts across diverse sources, including network, endpoint, cloud environments, and threat intelligence feeds. Perform in-depth trend analysis to identify patterns and inform improvements in organisational controls and threat detection capabilities. Develop, maintain, and continuously improve documentation and reporting frameworks to support transparency, consistency, and strategic decision-making. Experience required: Previous experience in a similar Cyber Incident Response Analyst role, preferably in a senior or lead capacity. Strong experience in security monitoring across diverse systems and environments, including cloud and on-premises. Proven leadership in incident response within SOC settings. Deep understanding of the cyber threat landscape, attack vectors, and detection techniques. Proficient in cybersecurity tools, regulations, and compliance standards. Excellent communication and stakeholder engagement skills, with the ability to convey technical insights to varied audiences. Please apply via the link or contact (url removed) for more information Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
COMPANY DESCRIPTION On May 31, 2023, Viasat completed its acquisition of Inmarsat, combining the teams, technologies and resources of the two companies to create a new global communications partner. About Viasat Viasat is a global communications company that believes everyone and everything in the world can be connected. With offices in 24 countries around the world, our mission shapes how consumers, businesses, governments and militaries around the world communicate and connect. Viasat is developing the ultimate global communications network to power high-quality, reliable, secure, affordable, fast connections to positively impact people's lives anywhere they are-on the ground, in the air or at sea, while building a sustainable future in space. Chief Operations Office The Chief Operations Office (COO) plays a vital role managing the services that keep our business running and delivering to our customers. COO consists of 9 functions including: Satellite Operations, Network Operations, Service Assurance, Service Delivery Aviation and Customer Assurance, Service Delivery and Supply Chain, Project Management Office, Global Cyber Security and Group IT JOB DESCRIPTION Key responsibilities of the position: Act as a first line security event analyst monitoring the Security Information and Event Management (SIEM) System. Monitor the alarm console; provide initial analysis of logs and network traffic; and make security event determinations on alarm severity, escalation, and response routing. Provide first line telephone, e-mail and ticket routing services for security event notifications and incident response processes. Deliver first level investigation and remediation activities as a member of the Security Incident Response Team. Participate in Security Incident Response Team (SIRT) events: Conduct research and assessments of security events; provide analysis of firewall, IDS, anti-virus and other network sensor produced events; present findings as input to SIRT. Participate in a Compliance/Vulnerability Assessment (VA) Scanning Capability. Follow a documented process for routine scanning of Inmarsat infrastructure and network elements. Develop mitigation and remediation plans as a result of the vulnerability assessment findings. Monitor threat and vulnerability news services for any relevant information that may impact installed infrastructure. Analyze reports to understand threat campaign(s) techniques, lateral movements and extract indicators of compromise (IOCs). Create and update security event investigation notes, conduct shift change reports on open cases, and maintain case data in the Incident Response Management platform. Document information security operations policies, process and procedures. The post may require working daytime, night time, and weekend work (adequate notification will be provided) QUALIFICATIONS Essential Knowledge and Skills: A University degree level education or equivalent in Information Security, Forensics, or Computer Science; related experience and/or training in the field of IT security monitoring and analysis, cyber threat analysis, and vulnerability analysis. Understanding of performing 1st level analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures, and reduction of false-positives. A Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or equivalent certification would be advantageous. Intermediate knowledge of Information Security fundamentals, technologies, and design principals. Understanding or proven experience in securing Windows, Linux, Oracle and VM platforms. Understanding or proven experience of QRadar or similar Security Information and Event Management (SIEM) tools for analysing network and security incidents. Experience in Tenable Network Security Nessus, BeyondTrust Retina or similar Vulnerability Assessment (VA) scanner operations for identifying network and platform risks and mis-configurations. Willingness to learn new skills and be self-motivated. Ability to work in a team environment, to work under pressure and show flexibility. Excellent verbal and written communication skills in English. ADDITIONAL INFORMATION You must be eligible to work in this location advertised. Our culture and ways of working Our values define our culture and represent what we believe in. Viasat employees aspire to behaviours that support our values, which create a stronger working environment and lie at the heart of our continued success as an organisation. Customer - we provide a unique value to our customers Accountability - we take ownership, we deliver results, and we keep our promises Respect - we collaborate, we embrace and celebrate diversity and we value difference Excellence - we create bold solutions for our customers and put quality at the heart of everything we do We also value and encourage a healthy work-life balance, so we offer flexible working wherever possible. Depending on the operational requirements of your job and your team, we can offer compressed hours (nine-day fortnight), hybrid office-remote working, and flexibility during your working day to take care of personal commitments. Diversity We want the best people for the job, and we warmly welcome applications from you if you're suitably qualified and eligible, regardless of your sex, gender, age, race, ethnicity, disability, sexuality, gender identity, neurodiverse qualities, religion or belief, marital status, pregnancy, or maternity status. We are signed up to the Halo Hair Code, which aims to protect employees who come to work with natural hair and protective hairstyles associated with their racial, ethnic, and cultural identities. To give you the best experience possible during your application process and interview, we can make adjustments. For example, if you're visually impaired we'll happily meet you locally and help you find your way to our office, or if you have neurodiverse qualities, we can provide you with additional support to help you prepare for your interview. Please let our Resourcing Team know if there are any ways in which we can support you.
15/08/2023
Full time
COMPANY DESCRIPTION On May 31, 2023, Viasat completed its acquisition of Inmarsat, combining the teams, technologies and resources of the two companies to create a new global communications partner. About Viasat Viasat is a global communications company that believes everyone and everything in the world can be connected. With offices in 24 countries around the world, our mission shapes how consumers, businesses, governments and militaries around the world communicate and connect. Viasat is developing the ultimate global communications network to power high-quality, reliable, secure, affordable, fast connections to positively impact people's lives anywhere they are-on the ground, in the air or at sea, while building a sustainable future in space. Chief Operations Office The Chief Operations Office (COO) plays a vital role managing the services that keep our business running and delivering to our customers. COO consists of 9 functions including: Satellite Operations, Network Operations, Service Assurance, Service Delivery Aviation and Customer Assurance, Service Delivery and Supply Chain, Project Management Office, Global Cyber Security and Group IT JOB DESCRIPTION Key responsibilities of the position: Act as a first line security event analyst monitoring the Security Information and Event Management (SIEM) System. Monitor the alarm console; provide initial analysis of logs and network traffic; and make security event determinations on alarm severity, escalation, and response routing. Provide first line telephone, e-mail and ticket routing services for security event notifications and incident response processes. Deliver first level investigation and remediation activities as a member of the Security Incident Response Team. Participate in Security Incident Response Team (SIRT) events: Conduct research and assessments of security events; provide analysis of firewall, IDS, anti-virus and other network sensor produced events; present findings as input to SIRT. Participate in a Compliance/Vulnerability Assessment (VA) Scanning Capability. Follow a documented process for routine scanning of Inmarsat infrastructure and network elements. Develop mitigation and remediation plans as a result of the vulnerability assessment findings. Monitor threat and vulnerability news services for any relevant information that may impact installed infrastructure. Analyze reports to understand threat campaign(s) techniques, lateral movements and extract indicators of compromise (IOCs). Create and update security event investigation notes, conduct shift change reports on open cases, and maintain case data in the Incident Response Management platform. Document information security operations policies, process and procedures. The post may require working daytime, night time, and weekend work (adequate notification will be provided) QUALIFICATIONS Essential Knowledge and Skills: A University degree level education or equivalent in Information Security, Forensics, or Computer Science; related experience and/or training in the field of IT security monitoring and analysis, cyber threat analysis, and vulnerability analysis. Understanding of performing 1st level analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures, and reduction of false-positives. A Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or equivalent certification would be advantageous. Intermediate knowledge of Information Security fundamentals, technologies, and design principals. Understanding or proven experience in securing Windows, Linux, Oracle and VM platforms. Understanding or proven experience of QRadar or similar Security Information and Event Management (SIEM) tools for analysing network and security incidents. Experience in Tenable Network Security Nessus, BeyondTrust Retina or similar Vulnerability Assessment (VA) scanner operations for identifying network and platform risks and mis-configurations. Willingness to learn new skills and be self-motivated. Ability to work in a team environment, to work under pressure and show flexibility. Excellent verbal and written communication skills in English. ADDITIONAL INFORMATION You must be eligible to work in this location advertised. Our culture and ways of working Our values define our culture and represent what we believe in. Viasat employees aspire to behaviours that support our values, which create a stronger working environment and lie at the heart of our continued success as an organisation. Customer - we provide a unique value to our customers Accountability - we take ownership, we deliver results, and we keep our promises Respect - we collaborate, we embrace and celebrate diversity and we value difference Excellence - we create bold solutions for our customers and put quality at the heart of everything we do We also value and encourage a healthy work-life balance, so we offer flexible working wherever possible. Depending on the operational requirements of your job and your team, we can offer compressed hours (nine-day fortnight), hybrid office-remote working, and flexibility during your working day to take care of personal commitments. Diversity We want the best people for the job, and we warmly welcome applications from you if you're suitably qualified and eligible, regardless of your sex, gender, age, race, ethnicity, disability, sexuality, gender identity, neurodiverse qualities, religion or belief, marital status, pregnancy, or maternity status. We are signed up to the Halo Hair Code, which aims to protect employees who come to work with natural hair and protective hairstyles associated with their racial, ethnic, and cultural identities. To give you the best experience possible during your application process and interview, we can make adjustments. For example, if you're visually impaired we'll happily meet you locally and help you find your way to our office, or if you have neurodiverse qualities, we can provide you with additional support to help you prepare for your interview. Please let our Resourcing Team know if there are any ways in which we can support you.
COMPANY DESCRIPTION On May 31, 2023, Viasat completed its acquisition of Inmarsat, combining the teams, technologies and resources of the two companies to create a new global communications partner. About Viasat Viasat is a global communications company that believes everyone and everything in the world can be connected. With offices in 24 countries around the world, our mission shapes how consumers, businesses, governments and militaries around the world communicate and connect. Viasat is developing the ultimate global communications network to power high-quality, reliable, secure, affordable, fast connections to positively impact people's lives anywhere they are-on the ground, in the air or at sea, while building a sustainable future in space. Chief Operations Office The Chief Operations Office (COO) plays a vital role managing the services that keep our business running and delivering to our customers. COO consists of 9 functions including: Satellite Operations, Network Operations, Service Assurance, Service Delivery Aviation and Customer Assurance, Service Delivery and Supply Chain, Project Management Office, Global Cyber Security and Group IT JOB DESCRIPTION Key responsibilities of the position: Act as a first line security event analyst monitoring the Security Information and Event Management (SIEM) System. Monitor the alarm console; provide initial analysis of logs and network traffic; and make security event determinations on alarm severity, escalation, and response routing. Provide first line telephone, e-mail and ticket routing services for security event notifications and incident response processes. Deliver first level investigation and remediation activities as a member of the Security Incident Response Team. Participate in Security Incident Response Team (SIRT) events: Conduct research and assessments of security events; provide analysis of firewall, IDS, anti-virus and other network sensor produced events; present findings as input to SIRT. Participate in a Compliance/Vulnerability Assessment (VA) Scanning Capability. Follow a documented process for routine scanning of Inmarsat infrastructure and network elements. Develop mitigation and remediation plans as a result of the vulnerability assessment findings. Monitor threat and vulnerability news services for any relevant information that may impact installed infrastructure. Analyze reports to understand threat campaign(s) techniques, lateral movements and extract indicators of compromise (IOCs). Create and update security event investigation notes, conduct shift change reports on open cases, and maintain case data in the Incident Response Management platform. Document information security operations policies, process and procedures. The post may require working daytime, night time, and weekend work (adequate notification will be provided) QUALIFICATIONS Essential Knowledge and Skills: A University degree level education or equivalent in Information Security, Forensics, or Computer Science; related experience and/or training in the field of IT security monitoring and analysis, cyber threat analysis, and vulnerability analysis. Understanding of performing 1st level analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures, and reduction of false-positives. A Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or equivalent certification would be advantageous. Intermediate knowledge of Information Security fundamentals, technologies, and design principals. Understanding or proven experience in securing Windows, Linux, Oracle and VM platforms. Understanding or proven experience of QRadar or similar Security Information and Event Management (SIEM) tools for analysing network and security incidents. Experience in Tenable Network Security Nessus, BeyondTrust Retina or similar Vulnerability Assessment (VA) scanner operations for identifying network and platform risks and mis-configurations. Willingness to learn new skills and be self-motivated. Ability to work in a team environment, to work under pressure and show flexibility. Excellent verbal and written communication skills in English. ADDITIONAL INFORMATION You must be eligible to work in this location advertised. Our culture and ways of working Our values define our culture and represent what we believe in. Viasat employees aspire to behaviours that support our values, which create a stronger working environment and lie at the heart of our continued success as an organisation. Customer - we provide a unique value to our customers Accountability - we take ownership, we deliver results, and we keep our promises Respect - we collaborate, we embrace and celebrate diversity and we value difference Excellence - we create bold solutions for our customers and put quality at the heart of everything we do We also value and encourage a healthy work-life balance, so we offer flexible working wherever possible. Depending on the operational requirements of your job and your team, we can offer compressed hours (nine-day fortnight), hybrid office-remote working, and flexibility during your working day to take care of personal commitments. Diversity We want the best people for the job, and we warmly welcome applications from you if you're suitably qualified and eligible, regardless of your sex, gender, age, race, ethnicity, disability, sexuality, gender identity, neurodiverse qualities, religion or belief, marital status, pregnancy, or maternity status. We are signed up to the Halo Hair Code, which aims to protect employees who come to work with natural hair and protective hairstyles associated with their racial, ethnic, and cultural identities. To give you the best experience possible during your application process and interview, we can make adjustments. For example, if you're visually impaired we'll happily meet you locally and help you find your way to our office, or if you have neurodiverse qualities, we can provide you with additional support to help you prepare for your interview. Please let our Resourcing Team know if there are any ways in which we can support you.
14/08/2023
Full time
COMPANY DESCRIPTION On May 31, 2023, Viasat completed its acquisition of Inmarsat, combining the teams, technologies and resources of the two companies to create a new global communications partner. About Viasat Viasat is a global communications company that believes everyone and everything in the world can be connected. With offices in 24 countries around the world, our mission shapes how consumers, businesses, governments and militaries around the world communicate and connect. Viasat is developing the ultimate global communications network to power high-quality, reliable, secure, affordable, fast connections to positively impact people's lives anywhere they are-on the ground, in the air or at sea, while building a sustainable future in space. Chief Operations Office The Chief Operations Office (COO) plays a vital role managing the services that keep our business running and delivering to our customers. COO consists of 9 functions including: Satellite Operations, Network Operations, Service Assurance, Service Delivery Aviation and Customer Assurance, Service Delivery and Supply Chain, Project Management Office, Global Cyber Security and Group IT JOB DESCRIPTION Key responsibilities of the position: Act as a first line security event analyst monitoring the Security Information and Event Management (SIEM) System. Monitor the alarm console; provide initial analysis of logs and network traffic; and make security event determinations on alarm severity, escalation, and response routing. Provide first line telephone, e-mail and ticket routing services for security event notifications and incident response processes. Deliver first level investigation and remediation activities as a member of the Security Incident Response Team. Participate in Security Incident Response Team (SIRT) events: Conduct research and assessments of security events; provide analysis of firewall, IDS, anti-virus and other network sensor produced events; present findings as input to SIRT. Participate in a Compliance/Vulnerability Assessment (VA) Scanning Capability. Follow a documented process for routine scanning of Inmarsat infrastructure and network elements. Develop mitigation and remediation plans as a result of the vulnerability assessment findings. Monitor threat and vulnerability news services for any relevant information that may impact installed infrastructure. Analyze reports to understand threat campaign(s) techniques, lateral movements and extract indicators of compromise (IOCs). Create and update security event investigation notes, conduct shift change reports on open cases, and maintain case data in the Incident Response Management platform. Document information security operations policies, process and procedures. The post may require working daytime, night time, and weekend work (adequate notification will be provided) QUALIFICATIONS Essential Knowledge and Skills: A University degree level education or equivalent in Information Security, Forensics, or Computer Science; related experience and/or training in the field of IT security monitoring and analysis, cyber threat analysis, and vulnerability analysis. Understanding of performing 1st level analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures, and reduction of false-positives. A Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or equivalent certification would be advantageous. Intermediate knowledge of Information Security fundamentals, technologies, and design principals. Understanding or proven experience in securing Windows, Linux, Oracle and VM platforms. Understanding or proven experience of QRadar or similar Security Information and Event Management (SIEM) tools for analysing network and security incidents. Experience in Tenable Network Security Nessus, BeyondTrust Retina or similar Vulnerability Assessment (VA) scanner operations for identifying network and platform risks and mis-configurations. Willingness to learn new skills and be self-motivated. Ability to work in a team environment, to work under pressure and show flexibility. Excellent verbal and written communication skills in English. ADDITIONAL INFORMATION You must be eligible to work in this location advertised. Our culture and ways of working Our values define our culture and represent what we believe in. Viasat employees aspire to behaviours that support our values, which create a stronger working environment and lie at the heart of our continued success as an organisation. Customer - we provide a unique value to our customers Accountability - we take ownership, we deliver results, and we keep our promises Respect - we collaborate, we embrace and celebrate diversity and we value difference Excellence - we create bold solutions for our customers and put quality at the heart of everything we do We also value and encourage a healthy work-life balance, so we offer flexible working wherever possible. Depending on the operational requirements of your job and your team, we can offer compressed hours (nine-day fortnight), hybrid office-remote working, and flexibility during your working day to take care of personal commitments. Diversity We want the best people for the job, and we warmly welcome applications from you if you're suitably qualified and eligible, regardless of your sex, gender, age, race, ethnicity, disability, sexuality, gender identity, neurodiverse qualities, religion or belief, marital status, pregnancy, or maternity status. We are signed up to the Halo Hair Code, which aims to protect employees who come to work with natural hair and protective hairstyles associated with their racial, ethnic, and cultural identities. To give you the best experience possible during your application process and interview, we can make adjustments. For example, if you're visually impaired we'll happily meet you locally and help you find your way to our office, or if you have neurodiverse qualities, we can provide you with additional support to help you prepare for your interview. Please let our Resourcing Team know if there are any ways in which we can support you.
