scope of attacks and the affected systems Use threat intelligence to pinpoint scale of the attack, the type of attack and systems affected Conduct incidentresponse activities Use IOC’s to research threats and decide on best course of action Skills: Experience with SIEM tools to provide security … to customers (Azure/Microsoft Sentinel experience a bonus) Experience with EDR (Endpoint Detection Response) tools Experience with Microsoft Defender (Preferred) MSP/MSSP experience desired Previous experience in a Security Analyst or Senior Security Analyst role Cloud Decisions are proud to be part of Microsoft UK's Talent more »
services. * Experience using virtualisation software. * Excellent communication skills * Experience of writing Defence/Government documentation Responsibilities include: * Develop and integrate security event monitoring and incident management services. * Respond to security incidents as they occur as part of an incidentresponse team. * Implement metrics and dashboards to give more »
Birmingham, West Midlands (County), United Kingdom
Jumar Solutions
expertise shines brightest. Mastering Networks: Navigate the OSI Reference Model and engage with various network communication protocols with finesse. Unleash Action: Dive deep into incidentresponse, log analysis, and PCAP analysis - your canvas for showcasing cybersecurity excellence. Digital Sleuth: Investigate Windows/Linux systems, uncovering signs of compromise … with your digital magnifying glass. Communication Virtuoso: Translate cybersecurity risks into language that resonates with business objectives. Incident Commander: Lead security incidents with strategic finesse, providing user-centric updates along the way. Guardian of Cyber Realms: Implement Defensive Cyber-attack methodologies and frameworks, safeguarding digital territories with your toolkit. more »
a large DOD Enterprise Network Environment. Manage a large technical team virtually, interact directly with and manage the Customer relationship. Manage key resources supporting IncidentResponse, Change Management, Problem Management, Operations and Maintenance (O&M), project sustainment and other ITSM and DevSecOps initiatives. Candidates for this position are … maintenance activities with the NMCI Operations Manager, NOC Lead, Release Management team and other key stakeholders. •Tier III escalation support and vendor engagement supporting Incident Management activities. •Active participation in Root Cause Analysis for Problem Management activities. You'll Bring These Qualifications: •Typically requires B.S. Degree and … Willingness to work or be called in to work during off-hours to meet customer mission support requirements. •Participate in on-call rotation for Incident Management responsibilities among the broader team. •Information Assurance Subject Matter Expert for operations providing tier-III support to the NOC watch staff. •Participate in more »
a large DOD Enterprise Network Environment. Manage a large technical team virtually, interact directly with and manage the Customer relationship. Manage key resources supporting IncidentResponse, Change Management, Problem Management, Operations and Maintenance (O&M), project sustainment and other ITSM and DevSecOps initiatives. Candidates for this position are … maintenance activities with the NMCI Operations Manager, NOC Lead, Release Management team and other key stakeholders. •Tier III escalation support and vendor engagement supporting Incident Management activities. •Active participation in Root Cause Analysis for Problem Management activities. You'll Bring These Qualifications: •Typically requires B.S. Degree and … Willingness to work or be called in to work during off-hours to meet customer mission support requirements. •Participate in on-call rotation for Incident Management responsibilities among the broader team. •Information Assurance Subject Matter Expert for operations providing tier-III support to the NOC watch staff. •Participate in more »
/Public Sector field who are responsible for designing, delivering and maintaining cybersecurity capabilities. Job Role: - Responding to security incidents as part of an incidentresponse team - Develop security event monitoring and incident management services - Standardisation of Security Operating Procedures - Provide SME on a broad range of more »
in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats and industry trends. - Participate in incidentresponse and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles more »
london (city of london), south east england, United Kingdom
DGH Recruitment
in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats and industry trends. - Participate in incidentresponse and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles more »
SR2 | Socially Responsible Recruitment | Certified B Corporation™
Risk Management, CPSM & Threat Intelligence. Skills required: Control Frameworks & Industry Standards (ISO27001, 27002, GDPR, NIST) Security Operations Performance Tracking Data Security, Malware Detection, Threat & Incidentresponse For the right person this is a huge opportunity - considering the sustained growth that they're going through, this role has a more »
suppliers and external auditors. In addition to this, you will deliver awareness training, test and report on the business's disaster recovery, continuity and incidentresponse plans, and carry out internal audits of the InfoSec governance frameworks. In order to be suitable for this role, you must be more »
party suppliers and external auditors. In addition to this, you will deliver awareness training, test and report on the businesss disaster recovery, continuity and incidentresponse plans, and carry out internal audits of the InfoSec governance frameworks. In order to be suitable for this role, you must be more »
suppliers and external auditors. In addition to this, you will deliver awareness training, test and report on the business's disaster recovery, continuity and incidentresponse plans, and carry our internal audits of the InfoSec governance frameworks. In order to be suitable for this role, you must be more »
working, in house L&D, 28 days holiday +BH Skills required for this role: - Experience working with SIEM solutions (ideally Sentinel) - Vulnerability management (Nessus) - IncidentResponse - Implementing appropriate mediation Desirables: - SC Clearance - Large guideline expérience (ISO27001, Cyber Essentials, etc) This role gives the right candidate an opportunity to more »
experience with any of the following is a plus: Observe IT, Symantec MessageLabs, IronPort, Splunk Phantom and Recorded Future. Experience or demonstrable knowledge in Incidentresponse, log analysis and PCAP analysis Good level of understanding in the approach threat actors take to attacking a network; phishing, port scanning more »
Level - IC4 Responsible for authoring, tuning and deploying SIEM detections, Threat Hunting and automation via pyton scripting and SOAR tools. May participate in an incident management team, responding to security events in line with Oracle incidentresponse playbooks. Investigates purported intrusions and breaches, and oversees root cause … analysis. Coordinates incidents with other business units and may act as incident commander of serious incidents. Participates in developing new methods, playbooks throughout Oracle. Evaluates existing and proposed technical architectures for security risk, provides technical advice to support the design and development of secure architectures and recommends security controls more »
or autonomy, with little need for escalation It would be great if you had: Knowledge of; Cloud, on-prem, SaaS, PaaS, IaaS environments Security incidentresponse, code/malware analysis Strong coding skills CISSP-ISSEP (Information Systems Security Engineering Professional) Other Cyber/information Security qualification (e.g. CISSP more »
or autonomy, with little need for escalation It would be great if you had: Knowledge of; Cloud, on-prem, SaaS, PaaS, IaaS environments Security incidentresponse, code/malware analysis Strong coding skills CISSP-ISSEP (Information Systems Security Engineering Professional) Other Cyber/information Security qualification (e.g. CISSP more »
further promote the Department's national security posture. Support the creation of government SOPs and playbooks for security guidance that support NSS policy (e.g. incidentresponse, scorecards, stakeholder training) Perform DHS National Security Exception (NSE) reviews and analyses in support of DHS Section 508 compliance, as required. Document more »
Glasgow, Lanarkshire, Scotland, United Kingdom Hybrid / WFH Options
Sopra Steria Limited
or autonomy, with little need for escalation It would be great if you had: Knowledge of; Cloud, on-prem, SaaS, PaaS, IaaS environments Security incidentresponse, code/malware analysis Strong coding skills CISSP-ISSEP (Information Systems Security Engineering Professional) Other Cyber/information Security qualification (e.g. CISSP more »
the appropriate tools, technologies & processes to mitigate critical security risks (e.g., system and mobile antivirus software, encryption modules, patch management programs, insider threat protection, incidentresponse plans, forensic capabilities, and regulation compliance). Conduct vulnerability assessments and administrative audits on client computer systems and network devices considering the more »
Experience developing/implementing integrated security services management processes, such as assessing and auditing network penetration testing, anti-virus planning assistance, risk analysis, and incident response. Experience providing information assurance support for application development that includes system security certifications and project evaluations for firewalls that encompass the development, design more »
Experience developing/implementing integrated security services management processes, such as assessing and auditing network penetration testing, anti-virus planning assistance, risk analysis, and incident response. Experience providing information assurance support for application development that includes system security certifications and project evaluations for firewalls that encompass the development, design more »
standards like GDPR. Generate quarterly cybersecurity briefings for senior management, delivering insights on recent threats and the prevailing risk landscape. Assess security incidents, formulate response strategies, and coordinate with technical incidentresponse teams for prompt and effective resolution. more »
standards like GDPR. Generate quarterly cybersecurity briefings for senior management, delivering insights on recent threats and the prevailing risk landscape. Assess security incidents, formulate response strategies, and coordinate with technical incidentresponse teams for prompt and effective resolution. more »
events and incidents detected at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP) and is responsible for directing and coordinating detection and response activities performed by each Component SOC. Direction and coordination are achieved through a shared customer incident tracking system and other means of coordination … network security monitoring and detection, proactively searching for threats, inspecting traffic for anomalies and new malware patterns, investigating and analyzing logs, providing analysis and response to alerts, and documenting activity in NOSC investigations and Security Event Notifications (SENs). Primary Responsibilities: Manage and conduct hands-on technical detection, analysis … containment, eradication, and remediation as a member of the IncidentResponse team Guide and mentor peers and subordinates to provide cross training Ensure accountability and punctuality of security analysts assigned to your shift Capture cybersecurity metrics that support executive-level briefings (daily, weekly, monthly) Articulate daily challenges to more »