Information Security Consultant - Reading, United Kingdom - Project People

Project People
Project People
Verified Company
Reading, United Kingdom

1 week ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

Role:
CERT Consultant / Information Security Consultant

Type:
Permanent

Location:
Reading (Hybrid)
We have an exciting opportunity with one of our telecom clients in Reading for the CERT Consultant role.


Role Purpose:


  • Provide oversight and governance of our Security Operations Centre (SOC) to assure operational effectiveness to identify and detect security threats, coordinating an effective rapid response and recovery.
  • Responsible for Vulnerability / Threat Management and Security Critical Incident Response
  • Establish, monitor, evaluate and report in a professional manner; clearly highlighting the current state of Security Operations and any associated risks
  • Responsible for the tactical management of cyber security incidents; the direction of response activities (in accordance with NIST SP800 60 R2); including the supervision of Cyber Security Analysts.
  • Provide support in proactive and effective oversight (and where appropriate challenge) of the technology and security risk management frameworks, methodologies, processes, assurance, remediation and reporting activities across the company.

Responsibilities Include:


  • Effective governance of external partners and internal teams to deliver and assure Security Operations services to the business
  • Effective governance of the Vulnerability Management programme
  • Effective governance of Threat Management and Security Incident Response capabilities
  • Lead appropriate and focussed Cyber Threat Intelligence (CTI) services
  • Lead and assure effective intelligence led Threat Hunting capability
  • Lead and assure effective cyber threat detection capability
  • Develop and contribute to documentation required by Security Operations functions and capabilities
  • Support the Security Operation Lead in technical and strategical decision making

Experience Required:


  • Must have at least 5 years' experience working in cyber security operations.
  • Must have practical experience of working in a security incident response team and leading the technical response to cyber security incidents and be able to act as the incident manager.
  • Must have a have experience in Vulnerability / Threat management including threat intelligence and threat hunting.
  • Must have good written and oral communication skills, including incident reporting and stakeholder management.
  • Must have experience in creating and documenting processes (processes, procedures, playbooks etc).
  • Must have experience working at pace within a complex operational environment / large enterprise network.
  • Must have the ability to develop use cases / detections based on frameworks such as MITRE ATT&CK.
  • Responsible for mentoring cyber security analysts to develop, improve skills and knowledge.
  • Security related certifications are desirable, particularly blue team certs such as SANS / GIAC.
  • Understanding of cyber security standards and frameworks (ISO27001, NIST, SANS, OWASP etc).
  • Scripting knowledge would be an advantage including PowerShell, Python, and Bash etc.
  • Uptodate knowledge of current exploits, vulnerabilities, threats, and security analysis techniques.
  • Knowledge of TCP/IP, network protocols, OSI model, routing and switching and packet analysis tools.
  • Experience of conducting deep level investigation and analysis, such as malware reverse engineering, using different toolsets is desirable.
  • Understanding of various operating systems, including Windows and Unix.
  • Knowledge of penetration testing processes and techniques is desirable.
  • Working knowledge of one or more SIEM solutions.

Job Types:
Full-time, Permanent


Schedule:

  • 8 hour shift
More jobs from Project People
See all jobs of Project People