Security Operations Centre Specialists
Graduate job Birmingham (West Midlands) Community management
Job description
The primary purpose of the Security Operations Specialist is to monitor security systems to identify threats and respond with the appropriate actions to investigate and remediate. You would be primarily using a SIEM (Security Incident and Event Management) toolset to perform monitoring activity along with other security solutions to aid investigation and monitoring.
Main duties consist of:
The role holder will be responsible for the monitoring and initial investigation of security events and incidents in conjunction with other Atos teams and 3rd parties. This activity will account for 80% of the time worked
Perform advanced diagnosis and remediation planning on security incidents
Operate, maintain and troubleshoot the SIEM environment
Manage Intrusion Prevention and Detection solutions
Manage Privileged Access Management (PAM) solutions
Manage Web Application Firewall (WAF) solutions
Manage Data Loss Prevention (DLP) solutions
Perform IT security threat management
Analyzing alerts to determine validity, priority and impact
Monitoring and usage of ticket systems to log incident and perform change activity
The role will involve keeping abreast of evolving cyber threats and identifying new and sophisticated methods of detecting them across our customer's IT estates
To assist in the development of the operational readiness of the SOC, the role holder will be expected to undertake the following supporting activities. These activities will account for 10% of the time worked
Document procedures in accordance to internal policies.
Perform audits for network/system security and risk management.
Supporting research, analysis, and testing of network, systems, and industrial controls to mitigate risk to the infrastructure and our customers.
Identify mitigating countermeasures to identified threats and vulnerabilities.
Creation of operational reporting in accordance with business and regulatory needs
The role holder will be responsible for maintaining the documentation library and knowledge management systems for the security operations centre
The role holder will be responsible for delivering periodic and ad-hoc host Vulnerability Assessments and Application security assessments. This activity will account for 10% of the time worked
Desired profile
Essential / Minimum Criteria
SC Security Clearance capable
Fluent English language Oral and Written skills
Able to communicate with stakeholders on a day to day basis via telephone, email and face to face
Able to prepare and deliver presentations to small groups
The ability to demonstrate a logical approach to problem identification and resolution
The ability to work independently using their own initiative once an objective has been agreed
The ability to think creatively and develop innovative ideas that will enhance or improve delivery quality
Strong knowledge and demonstrable experience of information security technologies and methods
Security event log collection and analysis
Experience in systems (Linux/Unix) and networking
Experience of vulnerability and threat assessment
Experience of Intrusion detection and prevention systems
Experience of Web-based application security
Ability to develop custom code (perl/shell scripting etc.
Desirable Criteria
Experience of working in a Security Operations Centre environment or similar
Certified to one or more of the following or equivalent
CISSP
CEH
SSCP
GIAC
GCFA, GIAC Certified Forensic Analyst
GERM, GIAC Reverse Engineering Malware
GCFE, GIAC Certified Forensic Examiner
OSCP Offensive Security Certified Professional (OSCP)
About Atos
Acteur international spécialisé dans les services informatiques, Atos SE (Société Européenne) est une société créée en 2000 par Bernard Bourigeaud. Employant 76 300 collaborateurs répartis dans 52 pays, la mission d’Atos s’articule autour de quatre métiers principaux : conseil et services technologiques, intégration de systèmes, l’infogérance et les services transactionnels de haute technologie. En 2012, Atos a généré un chiffre d’affaires de 8,6 milliards d’euros. En plus de son engagement quotidien auprès de ses clients pour les aider à réaliser leur vision de l’entreprise du futur, Atos est également le partenaire informatique mondial des Jeux Olympiques et Paralympiques. Les activités du groupe se retrouvent sous différents noms (Atos, Atos Consulting, Wordline et Atos Worldgrid) mais ne répondent qu’à une seule devise : Your business technologists.