Senior Associate, Network Detection and Response - Glasgow, United Kingdom - Kyndryl UK Limited
Description
Why Kyndryl
Kyndryl is a market leader that thinks and acts like a start-up. We design, build, manage, and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl?
We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers, and our communities.
We invest heavily in you - not only through learning, training, and career development, but also through the flexible working practices and stellar benefits that help you grow and progress long-term.
And we give back - from planting 90,000 trees in our first 3 months as part of our One Tree Planted initiative to the Corporate Social Responsibility and Environment, Social and Governance practices embedded within everything we do, we are committed to powering human progress in an ethical, sustainable way.
Your Role and Responsibilities
Core competencies, knowledge and experience:
- Significant experience of Security Incident Handling & Security Incident Response (minimum of 3 years).
- Significant experience in ruling and tuning Enterprise level SIEM tools.
- Significant Operations experience (minimum of 3 years).
- Professional Industry Recognised Certifications e.g. SANS, CEH, RHCE, CISSP, CISM etc.
- Ability to achieve SC clearance.
Must have technical / professional qualifications:
- Significant experience working with SIEM tools (ArcSight, QRadar)
- Hands on experience using SIEM tools to conduct investigations
- Significant experience working with IDS/IPS technologies (e.g. Cisco/TippingPoint/Snort etc).
- Knowledge of Security including types and methods of cyberattack and underlying network protocols.
- Significant experience escalating incidents to, and in driving incident resolution with, technology vendors and stakeholders.
- Demonstrable experience in supporting large, complex Networks and Hosting Estates using multiple technologies including:
- Managing SIEM's (e.g. ArcSight/QRadar).
- Vulnerability Management (Trend, Qualys).
- IDS/IPS technologies (e.g. Cisco FirePOWER/Cisco FMC/Cisco FTD/Symantec HIDS/Carbon Black).
- Network analysis tools (e.g. Wireshark, NetworkMiner).
- Firewalls (e.g. Cisco/Checkpoint/Juniper/Fortinet)
- Load balancers (e.g. F5's)
- Proxies (e.g. Bluecoat, zScaler)
- Enterprise level Operating Systems (e.g. Windows Server, RedHat Linux).
- ServiceNow
Required Technical and Professional Expertise
- 24*7 shift based Cyber security analyst to monitor and respond to events, supporting ArcSight, QRADAR,
- Qualis for UK public sector, and commercial customers, providing triage and response, as well as escalation as required.
Preferred Technical and Professional Experience
- Security Analyst
Required Education
High School Diploma/GED
Preferred Education
Bachelor's Degree
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are.
But we're not doing it single-handily: Our Kyndryl Inclusion Networks (KINs) are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice.
This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture.
That's the Kyndryl Way.Other things to know
Primary Job Category
Technical Specialist
Role (Job Role)
Infrastructure Specialist
Employment Type
Full-Time
Contract Type
Regular
Position Type
Professional
Travel Required
Some travel may be required based on business demand
Company
(Y072) Kyndryl UK Limited
Is this role a commissionable / sales incentive based position
No
More jobs from Kyndryl UK Limited
-
Network Consultant
Glasgow, United Kingdom - 3 weeks ago
-
Senior Lead, Systems Administration
London, United Kingdom - 1 week ago
-
Core Enterprise Sme
Glasgow, United Kingdom - 2 weeks ago
-
Lead Database Administrator
Portsmouth, United Kingdom - 8 hours ago
-
Core Enterprise Sme
Glasgow, United Kingdom - 2 weeks ago
-
Associate Director Cybersecurity Education and Ocm
Glasgow, United Kingdom - 3 weeks ago