incident response Have knowledge of and be able to define and recommend security policy changes to security devices such as Firewalls, proxies, email gateways, IntrusionDetection/Prevention Systems, end-point application whitelisting and anti-virus solutions, and Data Loss Prevention solutions host- and network-based log analysis … analytical role focused primarily on network forensic analysis Evidenced experience of conducting analysis of electronic media, log data, and network devices in support of intrusion analysis or enterprise level information security operations Experience of large data sets and high-performance computing systems in a high threat environment Competency/ more »
SOC Analysts work within a four-day operational rota, collaborating closely with Digital Forensic and Incident Response teams. Responsibilities include: Security Monitoring and Incident Detection: Utilizing SIEM tools to identify potential security incidents and anomalies. Analyzing alerts and log data to assess the severity and impact of threats. Incident … improvement recommendations. Maintaining accurate records of incidents, investigations, and security-related activities. Security Tools Management: Configuring, updating, and maintaining security tools such as firewalls, intrusiondetection/prevention systems, endpoint protection, and SIEM solutions. more »
On technologies. Mobile device management: Covering 300+ deployed mobile devices, applying best practice and industry standards. Cyber security and information assurance: Managing and maintaining intrusiondetection apparatus, supporting queries/investigations and hardened configuration of IT equipment. DevSecOps and Site Reliability Engineering: Supporting enterprise software teams and their more »