Offers “Airbus”

Expires soon Airbus

3rd Line Cyber Security Analyst

  • Newport (Newport)
  • Infra / Networks / Telecom

Job description

3rd Line Cyber Security Analyst

Airbus Defence & Space Newport

As the European specialist in cyber security, the mission of Airbus' CyberSecurity business is to protect governments, companies and critical infrastructures from cyber threats. Its trusted, high performance security products and services are able to detect, analyse and counter the most advanced cyber attacks.

Airbus is a global leader in aeronautics, space and related services. In 2016, it generated revenues of € 67 billion and employed a workforce of around 134,000. Airbus offers the most comprehensive range of passenger airliners from 100 to more than 600 seats. Airbus is also a European leader providing tanker, combat, transport and mission aircraft, as well as Europe's number one space enterprise and the world's second largest space business. In helicopters, Airbus provides the most efficient civil and military rotorcraft solutions worldwide.

Our people work with passion and determination to make the world a more connected, safer and smarter place. Taking pride in our work, we draw on each other's expertise and experience to achieve excellence. Our diversity and teamwork culture propel us to accomplish the extraordinary - on the ground, in the sky and in space.

Description of the job

A vacancy for a 3rd Line Cyber Security Analyst (m/w) has arisen within Airbus CyberSecurity in Newport, South Wales.

Desired profile

Tasks & accountabilities

Your main tasks and responsibilities will include:

·  Complete analysis/correlation of 'Events of Interest' to identify incidents when required
·  Ensuring that all events, events of interest, exceptions & incidents are responded to in accordance with established SOC work instructions, including remedial action/recommendations
·  Complete post incident reporting
·  Provide basic malware analysis, network forensics (including in depth log analysis) to support SOC services (threat hunting)
·  Assisting in the coordination and response to assurance testing and audit activities
·  Responsible for SOC work instructions, ensuring they are reviewed and amended
·  Maintain currency in security concepts, tools and best practices
·  Produce reports (as per templates) and vulnerability/trending analysis as requested by SOC Manager or key stakeholders
·  Present and review reports to internal and external key stakeholders
·  Complete tooling configuration changes including but not limited to filters/tuning/dashboards as authorised
·  Carry out minor tool maintenance as directed by SOC lead engineer
·  Improve inter team development through mentoring, knowledge sharing, briefing and production of guides and incident scenarios
·  Show flexibility in developing knowledge of supporting areas and performing their responsibilities during times of operational needs

Required skills

The following skills and certifications are required:

·  Educated to a degree level (or equivalent) in IT, Engineering or a related discipline
·  You hold one of the following certifications or would be capable of holding one: SANS SEC501: Advanced Security Essentials; SANS SEC502: Perimeter Protection in-Depth; SANS SEC511: Continuous Monitoring & Security Operations; SANS FOR578: Advanced Network Forensics; CCNP Security; CISSP; CESG Certified Professional (CCP); CREST Certified Network Intrusion Analyst (CCNIA)
·  Ability to present and write professional reports to key internal and external stakeholders
·  Good time management skills and ability to work well in a team
·  Fluent English

Experience in the following fields would be a plus:

·  Countermeasures and Cyber Deception
·  Threat Intelligence
·  Threat Hunting
·  Code & Scripting (e.g. Python)

This position will require a security clearance or will require being eligible for clearance by the recognised authorities.

Make every future a success.
  • Job directory
  • Business directory