Endpoint Lead - Bristol, United Kingdom - Trust In Soda
Description
Job details:
- Posted 31 January 202
- Salary £500 £550 per day + Inside IR3
- Negotiable
- LocationBristol
- Job type Contract
- Discipline Internal, DevOps
- Reference10109
- Contact NameEnrique Cabanas Rodriguez
Job description:
Endpoint Lead - DV CLEARANCE
Start Date:
ASAP - We can accommodate a reasonable notice period
Contract Length: 6 -12 months + Extension
Location:
Hybrid - Corsham, Portsmouth or Northallerton.
Pay:
£500 - £550 per day inside the IR35. This rate can be quite flexible.
- I am working with a leading global consultancy that is looking for an Endpoint Lead who holds active DV Clearance to lead a project in their security operations center.
Role Description:
- You will join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting proactive, riskbased, protective monitoring on priority C4IS/networks to identify internal and external cyberthreats/attacks.
Your role
- Develop and integrate security event monitoring and incident management services.
- Respond to security incidents as they occur as part of an incident response team.
- Use of the SOAR platform to assist with playbook automation and case management capabilities to streamline team processes and tools.
- Produce documentation to ensure the repeatability and standardisation of security operating procedures.
- Develop additional investigative methods using the SOC's software toolsets to enhance recognition opportunities for specific analysis.
- Maintain a baseline of system security according to latest threat intelligence and evolving trends.
- Participate in root cause analysis of incidents in conjunction with engineers across the enterprise.
- Provide Subject Matter Expertise (SME) on a broad range of information security standards and best practices.
- Offer strategic and tactical security guidance including valuation requirement of technical controls.
- Be part of the CRM process
- Liaise with the SOC engineers to maintain uptodate dashboards of security alerts, to allow the organisation to better respond to an incident.
- Document, validate and create operational processes and procedures to help develop the SOC.
- Assist in identifying, prioritising, and coordinating the protection of critical cyber defence infrastructure and key resources.
- Build, install, configure, and test dedicated cyber defence hardware.
- Previous experience of Enterprise ICS/network architectures and technologies
- Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning.
Your profile
- Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks
- Skilled in maintaining Microsoft directory services.
- Skilled in using virtualisation software.
- Knowledge of key security frameworks (e.g. ISO, NIST 80053, , , C2M2)
- Experience of writing Defence/Government documentation
Desirable Qualifications
- Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent)
- SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent)
- If this looks like you, please get back to me with your updated CV
More jobs from Trust In Soda
-
Senior Sales Executive
Camden Area, United Kingdom - 3 weeks ago
-
Senior Recruitment Consultant
City of London, Greater London, United Kingdom - 1 week ago
-
Cyber Security Project Manager
Cambridge, United Kingdom - 3 weeks ago
-
Javascript Developer
london, United Kingdom - 3 weeks ago
-
Recruitment Team Lead
London, United Kingdom - 3 days ago
-
Remote - IT support Engineer
Leeds, United Kingdom - 1 week ago