Level 1 Threat Monitoring Analysts
Hursley (Hampshire)
Job description
The Threat Monitoring Analyst role is part of the SIOC team. Candidates in this role will monitor computer security events according to documented procedures and industry best practices and are the first line of defense in protecting 's information systems from internal and external threats. Ideal candidates should be experienced in the areas of networking, client/server technologies, and log file analysis. Candidates must have strong multitasking capabilities and be able to evaluate threats, vulnerabilities, and risk while under pressure. Must display enthusiasm for and interest in Information Security.
Technical Competencies
•Process and Procedure adherence
•General network knowledge, TCP/IP Troubleshooting
•Ability to trace down an endpoint on the network based on ticket information
•Familiarity with system log information and what it means
•Understanding of common network services (web, mail, DNS, authentication)
•Knowledge of host based firewalls, Anti-Malware, HIDS
•General Desktop OS and Server OS knowledge
•TCP/IP, Internet Routing, UNIX / LINUX & Windows NT
•Strong analytical and problem
Auto req ID
167758BR
Required Education
None
Role ( Job Role )
Security Specialist
State / Province
HAMPSHIRE
Primary job category
Technical Specialist
Company
(8660) IBM United Kingdom Limited
Contract type
Regular
Employment Type
Full-Time
Is this role a commissionable/sales incentive based position?
No
Travel Required
Up to 50% or 3 days a week (home on weekends - based on project requirements)
IBM Business Group
Security
Preferred Education
None
City / Township / Village
HURSLEY
EO Statement
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
Required Technical and Professional Expertise
Technical Competencies
•Process and Procedure adherence
•General network knowledge, TCP/IP Troubleshooting
•Ability to trace down an endpoint on the network based on ticket information
•Familiarity with system log information and what it means
•Understanding of common network services (web, mail, DNS, authentication)
•Knowledge of host based firewalls, Anti-Malware, HIDS
•General Desktop OS and Server OS knowledge
•TCP/IP, Internet Routing, UNIX / LINUX & Windows NT
•Strong analytical and problem
Skill-keywords
Experience in IT Security and Investigations
Demonstrated experience of leading teams of investigators on diverse and complex investigations
Demonstrated capability in handing large scale investigations involving Targeted Threat Actors
Demonstrated presentation skills, able to articulate and present to a wide audience from technical to the board room
Demonstrated experience of maintaining and developing Digital Investigation Service capabilities
Demonstrated experience of contributing to IT Security projects
Demonstrated experience of SOC, Digital Forensic and Incident Response operations.
Country/Region
United Kingdom
Preferred Technical and Professional Experience
Training, Qualifications, and Certifications
Preferred:
Security Essentials
Computer Forensic Investigation – Windows In-Depth
Recommended:
Security Incident Handling and Forensic
Secondary Job Category
Technical Solutions Support Specialist
Eligibility Requirements
Right to work in the UK and EU without additional Visa.
Needs SC or ability to get SC clearance added in eligibility
Position Type
Early Professional
Early Professional Track
Track unaligned
New Collar Role
Yes