2nd Line Cyber Security Analyst
Newport (Newport) Infra / Networks / Telecom
Job description
2nd Line Cyber Security Analyst
Airbus DS Newport
As the European specialist in cyber security, the mission of Airbus' CyberSecurity business is to protect governments, companies and critical infrastructures from cyber threats. Its trusted, high performance security products and services are able to detect, analyse and counter the most advanced cyber attacks.
Description of the job
Is Cyber Security more than just an antivirus protection measure for you? If yes, you are the right person for us!
A vacancy for a 2nd Line Cyber Security Analyst has arisen within Airbus CyberSecurity in Newport, South Wales.
Desired profile
Tasks & accountabilities
Your main tasks and responsibilities will include:
· Complete analysis/correlation of 'Events of Interest' to identify incidents
· Ensuring that all events, events of interest, exceptions & incidents are responded to in accordance with established SOC
(Secure Operations Centre) work instructions, including remedial action/recommendations
· Complete post incident reporting
· Provide basic log analysis to support SOC services (threat hunting)
· Responsible for SOC work instructions, ensuring they are reviewed and amended
· Maintain currency in security concepts, tools and best practices
· Produce reports (as per templates) and vulnerability/trending analysis as requested by SOC managers or key stakeholders
· Present and review reports to internal and external key stakeholders
· Complete tooling configuration changes including but not limited to filters/tuning/dashboards as authorised
· Carry out minor tool maintenance as directed by SOC lead engineer
You should be able to work shifts and on call, if required.
Required skills
The following skills and experience are required:
· Educated to a degree level (or equivalent) in Engineering, IT or a related discipline
· Knowledge of the fundamentals of TCP/IP and ITIL (or equivalent)
· You hold one of the following certifications or would be capable of holding one:
· CompTIA Security; CompTIA Network; SANS SEC401: Security Essentials; SANS SEC503: Intrusion Detection in-depth;
SANS SEC504: Hacker Tools, Techniques, Exploits and Incident Handling (or equivalent)
· Experience with Wireshark Packet Analysis
· Ability to present and write professional reports to key stakeholders
· Good time management skills and ability to work well in a team
· Fluent English
One or several of the following certifications would be a plus:
· CCENT
· SANS SEC401: Security Essentials
· Ethical Hacker (CEH)
· Cisco Certified Network Associate CCNA
· FIAHMG - Fundamentals of Information Assurance in HMG (leading to CCP)
· CREST (Registered Intrusion Analyst) (CRIA)
· SANS SEC501: Advanced Security Essentials
This position will require a security clearance or will require being eligible for clearance by the recognised authorities.
What we offer:
· Challenging tasks in a company with some of the most innovative cyber security technology and services
· Integration into an international network of cyber security experts across and outside of Europe
· Participation in Europe-wide projects as prime supplier
· Exciting development opportunities and perspectives within Airbus as a global player
· An attractive company pension scheme
· A private healthcare service
· An extensive range of social benefits, such as car options, travel insurance for the whole family, child care service, etc.
· Flexible working time