Offers “Airbus”

Expires soon Airbus

Second Line CyberSecurity SOC Engineer (m/f)

  • Newport (Newport)
  • Design / Civil engineering / Industrial engineering

Job description

Second Line CyberSecurity SOC Engineer (m/f)

Airbus Defence & Space Corsham (ex Cassidian)

As the European specialist in cyber security, the mission of Airbus' CyberSecurity business is to protect governments, companies and critical infrastructures from cyber threats. Its trusted, high performance security products and services are able to detect, analyse and counter the most advanced cyber attacks.

Airbus is a global leader in aeronautics, space and related services. In 2016, it generated revenues of € 67 billion and employed a workforce of around 134,000. Airbus offers the most comprehensive range of passenger airliners from 100 to more than 600 seats. Airbus is also a European leader providing tanker, combat, transport and mission aircraft, as well as Europe's number one space enterprise and the world's second largest space business. In helicopters, Airbus provides the most efficient civil and military rotorcraft solutions worldwide.

Our people work with passion and determination to make the world a more connected, safer and smarter place. Taking pride in our work, we draw on each other's expertise and experience to achieve excellence. Our diversity and teamwork culture propel us to accomplish the extraordinary - on the ground, in the sky and in space.

Description of the job

A vacancy for a Second Line CyberSecurity SOC Engineer (m/f) has arisen within Airbus CyberSecurity in Corsham.

Desired profile

Tasks & accountabilities

Your main tasks and responsibilities will include:

·  Support the 3rd Line and SOC (Services Operations Centre) Lead Engineer as directed
·  Provide the 2nd Line level assistance in resolving/coordinating incidents, applying diagnosis, maintenance, change and configuration control attributes to bring about a resolution
·  Support the Firewall, IPS or SIEM subject matter expert for 2nd line SOC engineering tasks
·  Assist in driving efficiency into technical delivery of relevant processes
·  Action change(s) in formal asset / configuration control whilst maintaining SOC assets in any relevant CMDB
·  Ensure ADHOC spreadsheets / asset tracker(s) are kept current (Firewall / IPS spreadsheets)
·  Deliver operational change within KPIs/SLAs
·  Provide support to the Problem Managers for relevant incidents within KPIs/SLAs
·  Provide support to 3rd line for SOC Tooling
·  Ensure SOC Tooling is performing, maintained and operated within KPIs/SLAs

The successful applicant should be able to work shifts and on call, if required.

Required skills

·  Educated to a degree level (or equivalent) in Engineering, IT or a related discipline
·  Knowledge of the fundamentals of TCP/IP and ITIL
·  You hold one of the following certifications or would be capable of holding one: Cisco Certified Entry Networking Technician (CCENT), CompTIA Security, CompTIA Network, SEC401Security Essentials
·  Experience with Wireshark Packet Analysis
·  Experience in presenting and writing professional reports to key stakeholders
·  Good time management skills and ability to work well in a team
·  Fluent English

One or several of the following certifications and experiences would be a plus:

·  Certified Ethical Hacker (CEH)
·  SEC503: Intrusion Detection In-Depth and SEC504: Hacker Tools, Techniques, Exploits, and Incident Handling
·  Cisco Certified Network Associate (CCNA)
·  Experience as an SIEM Administrator/Analyst
·  Course in Fundamentals of Information Assurance in HMG (FIAHMG)
·  CREST Registered Intrusion Analyst (CRIA)

This position will require a security clearance or will require being eligible for clearance by the recognised authorities.

Make every future a success.
  • Job directory
  • Business directory