Threat Intelligence Analyst - Portsmouth, United Kingdom - SGN

SGN
SGN
Verified Company
Portsmouth, United Kingdom

2 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

THE ROLE
The threat analyst is a hands-on technical role responsible for configuration, administration and management of indicators of compromise.


Reporting to the Chief Information Security Manager (CISO), they are required to support and coordinate technical improvements and support investigations, to ensure continued optimisation of the security teams' ability to detect threats.


Key responsibilities will include;

  • Responsible for the management and configuration of indicators of compromise (IOC's) across all SGN security technologies.
  • Manage, monitor and update IOC's to the corporate security tooling; produce and maintain performance dashboards to track and resolve performance or configuration issues.
  • Responsible to support the information security managers (ISM's) maturity roadmap.
  • Liaise with SGN's security service providers to enhance development of IOC's
  • GTT, MSSP, Vendors and AWS/AMS.
  • Periodically perform security assessments of security tooling and other component security configurations.
  • Map and document security tooling against NIST CSF & Mitre ATTACK framework and ensuring these are maintained.
  • Maintain security tooling performance through rigorous monitoring and analysis, performance tuning, troubleshooting security problems and escalating problems to the SIAM partner, relevant vendor and SGN service delivery team.
  • Assisting with threat hunts using SIEM and EDR tools.

Methodology & Processes:


  • Provide technical liaison with IT Services Providers and SIAM delivering solutions to SGN.
  • Perform regular health checks identifying and recommending any potential service improvements.
  • To review current and recommend future technical standards covering all technology areas.
  • To maintain processes relating to security management.
  • Assist in the proactive identification of new collection methodologies for the Insider Threat Program.
  • Execute, and maintain standard operating procedures (SOPs) for the Insider Threat Program.
  • Create TTPs for identifying insider threats and brief team members on emerging threats.

CULTURE/BENEFITS


This role will offer plenty of genuine learning and development opportunities, as well as a competitive salary with company benefits including retail & leisure discounts, HolidayPlus & Cycle2work schemes, gym & mobile discounts, a pension scheme, and more.

Fostering a diverse and inclusive culture is something we pride ourselves on at SGN.

We want our workplace to be an innovative and inclusive place to work, where every single person feels empowered to achieve professional success.


WHAT YOU'LL BRING

Technical knowledge:


  • Experienced in impact analysis and security risk assessment.
  • Experienced in driving results through assisting and coordination of indirect resources and 3rd parties.

Technical competency and knowledge of the following technologies:

  • Cisco Routing / Switching / Firewalls
  • IPT Telephony.
  • Internet Connectivity
  • Network Security
  • Mobile Networking and Connectivity Cloud based technologies and virtual networks (e.g. VPC's)

Has technical knowledge of four or more of the following areas:

  • SIEM
  • Vulnerability & Patch Management
  • Encryption
  • Security Incident Response
  • Endpoint Protection
  • CASB Security
  • Operational Technology
  • Cloud Services (AWS/Azure)
  • Firewalls
  • Deception Techniques

Experience:


  • Demonstrable exposure to Change Management and business process experience
  • Experience in technical security support
  • A proven strong knowledge of network and security technology is a necessity with experience in the deployment of complex security solutions in demanding and mission critical environments.
  • Hands on security experience in a large, structured, multivendor enterprise environment including CNI.
  • Good understanding of TCP/IP and networking technologies/protocols.
  • Experience of working in an ITIL controlled environment.
  • Strong clear communication skills are required to build Key Relationships with business stakeholders and Technical Managers and the Network Architects.

Required Key behaviours and style indicators:

  • Excellent technical knowledge, with strong problem-solving skills & ability.
  • Excellent communication skills at all levels, capable of translating technical issues into business impact.
  • Selfmotivated with the ability to prioritise workload and team management.
  • Good written and verbal communications skills.
  • Strong technical fault resolution experience across multiple technologies.

Desired Key behaviours and style indicators:

  • Exposure to the latest I.T. thinking and threat modelling methods.
  • Actively keeps abreast of technology and market place change.

WHO WE ARE


We're on a journey to transform the future of gas and we think outside the box - futuristic technologies and robotics are leading our innovation.

Keeping our customers safe and warm is what we do but beyond that, we want to make the world a better place,which is why we're passionate about helping in our communities, reducing our carbon footprint and driving innovation in our industry.


At SGN, we strive to sustain our world through managing the network that distributes natural and green gas across the south of England and Scotland.

We have an important responsibility to keep the gas flowing to 5.9 million homes and businesses. Your workdirectly impacts SGNs commitments to keeping our customers' homes and businesses safe.
More jobs from SGN
See all jobs of SGN