Job Title: Security Analyst - NATO Clearance Location: Belgium Salary/Rate: €500-€530 Start Date: May 2024 Job Type: Contract *Candidates must hold NATO Clearance* Job description Perform initial analysis of logs and network traffic, determine alert severity and escalate if necessary. Collate information in clear format, providing recommendation and first line response. Responsibility: Conduct assessment of security events. Analyse of Firewalls, IDS, anti-virus and network sensors events. Use tool set for investigations (eg Log collection, Intrusion detection, Packet Capture, Network devices) Support the end-to-end incident handling Process. Propose enhancements in Cybersecurity. Technical skills Degree in IT Experience in cybersecurity analysis: 1 years. Knowledge in communication security, including TCP/IP network, Windows and Linux operating systems. Knowledge of network security threats and mitigation techniques. Experience of two years in: SIEM ( eg Splunk, Arcsight ) Analysis, of NIDS events ( eg Palo Alto Network Threat Prevention, Sourcefire ) Log analysis of various sources ( Firewall, Routers, Proxies ) Network traffic Capture analysis using Wireshark Logical approach to analysis. Desirable: Certification in cybersecurity area such as GCIA, GNFA Computer Incident response Team CIRT, CERT Full packet Capture System ( eg NetWitness, Niksun ) HIDS Computer security tools - vulnerability Assessment, Protocol analysis, Anti-virus; Forensics tools Disclaimer Notwithstanding any guidelines given to level of experience sought, we will consider candidates from outside this range if they can demonstrate the necessary competencies. Square One is acting as both an employment agency and an employment business, and is an equal opportunities recruitment business. Square One embraces diversity and will treat everyone equally. Please see our website for our full diversity statement.
24/04/2024
Project-based
Job Title: Security Analyst - NATO Clearance Location: Belgium Salary/Rate: €500-€530 Start Date: May 2024 Job Type: Contract *Candidates must hold NATO Clearance* Job description Perform initial analysis of logs and network traffic, determine alert severity and escalate if necessary. Collate information in clear format, providing recommendation and first line response. Responsibility: Conduct assessment of security events. Analyse of Firewalls, IDS, anti-virus and network sensors events. Use tool set for investigations (eg Log collection, Intrusion detection, Packet Capture, Network devices) Support the end-to-end incident handling Process. Propose enhancements in Cybersecurity. Technical skills Degree in IT Experience in cybersecurity analysis: 1 years. Knowledge in communication security, including TCP/IP network, Windows and Linux operating systems. Knowledge of network security threats and mitigation techniques. Experience of two years in: SIEM ( eg Splunk, Arcsight ) Analysis, of NIDS events ( eg Palo Alto Network Threat Prevention, Sourcefire ) Log analysis of various sources ( Firewall, Routers, Proxies ) Network traffic Capture analysis using Wireshark Logical approach to analysis. Desirable: Certification in cybersecurity area such as GCIA, GNFA Computer Incident response Team CIRT, CERT Full packet Capture System ( eg NetWitness, Niksun ) HIDS Computer security tools - vulnerability Assessment, Protocol analysis, Anti-virus; Forensics tools Disclaimer Notwithstanding any guidelines given to level of experience sought, we will consider candidates from outside this range if they can demonstrate the necessary competencies. Square One is acting as both an employment agency and an employment business, and is an equal opportunities recruitment business. Square One embraces diversity and will treat everyone equally. Please see our website for our full diversity statement.
Knowledge * Working knowledge of various Operating Systems (OS) (MSWin, Linux, OSX, IOS) * Purple Teaming knowledge * Basic understanding of computer forensics * Use of Firewalls and IDS/IPS devices * Knowledge of SIEM technologies. * Networking, routing and switching * Cyber Security Review (CSR) Compliant * Cybersecurity Frameworks and Standards: Knowledge of frameworks such as NIST, ISO 27001,MITRE ATT&CK and CIS. * Legal and Regulatory Understanding: Familiarity with laws and regulations related to cybersecurity, such as GDPR, CCPA, or HIPAA. Skills * Personnel Management * In house training of personnel. * Stakeholder engagement * Risk Management * Threat Hunting * Threat Analysis * Use of vulnerability management tools * Malware reverse engineering * Detection rule engineering * Incident Management * Alert Triage * Crisis management Experience * Extensive working experience in a live SOC environment * Line management experience. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.
24/04/2024
Project-based
Knowledge * Working knowledge of various Operating Systems (OS) (MSWin, Linux, OSX, IOS) * Purple Teaming knowledge * Basic understanding of computer forensics * Use of Firewalls and IDS/IPS devices * Knowledge of SIEM technologies. * Networking, routing and switching * Cyber Security Review (CSR) Compliant * Cybersecurity Frameworks and Standards: Knowledge of frameworks such as NIST, ISO 27001,MITRE ATT&CK and CIS. * Legal and Regulatory Understanding: Familiarity with laws and regulations related to cybersecurity, such as GDPR, CCPA, or HIPAA. Skills * Personnel Management * In house training of personnel. * Stakeholder engagement * Risk Management * Threat Hunting * Threat Analysis * Use of vulnerability management tools * Malware reverse engineering * Detection rule engineering * Incident Management * Alert Triage * Crisis management Experience * Extensive working experience in a live SOC environment * Line management experience. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 10 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.
Here at Harvey Nash our Glasgow based client is looking to recruit a Senior Cyber Security Analyst on a Full time bases to join their existing team to lead the implementation, development, and execution of Security Operations, to protect users, infrastructure, and data from a range of threats. In the role you will monitor networks and systems, analyse, detect and report on security threats, intrusion attempts either resolving them or escalating them, depending on the severity. You will also take the lead and provide a focal point for a range of security related activities such as compliance with policies and standards, vulnerability management, monitoring and reporting, risk and threat assessment, incident response, business continuity and disaster recovery, supporting plans to develop and improve Cyber Security and compliance with ISO27001, GDPR and other standards and regulations Essential skills Required: Strong experience within Cyber Security role including an understanding of Cyber-attack techniques, vulnerabilities, and mitigation strategies, XDR, EDR, email & remote access security Cyber Security essentials, ISO27001 Azure Platform Security tooling (Windows & Cloud environment) Cloud Security (SaaS, PaaS, IaaS) Network and application Firewalls Mitre ATT&CK and NIST frameworks If you are interested in learning more about this opportunity then please send you up to date CV
24/04/2024
Full time
Here at Harvey Nash our Glasgow based client is looking to recruit a Senior Cyber Security Analyst on a Full time bases to join their existing team to lead the implementation, development, and execution of Security Operations, to protect users, infrastructure, and data from a range of threats. In the role you will monitor networks and systems, analyse, detect and report on security threats, intrusion attempts either resolving them or escalating them, depending on the severity. You will also take the lead and provide a focal point for a range of security related activities such as compliance with policies and standards, vulnerability management, monitoring and reporting, risk and threat assessment, incident response, business continuity and disaster recovery, supporting plans to develop and improve Cyber Security and compliance with ISO27001, GDPR and other standards and regulations Essential skills Required: Strong experience within Cyber Security role including an understanding of Cyber-attack techniques, vulnerabilities, and mitigation strategies, XDR, EDR, email & remote access security Cyber Security essentials, ISO27001 Azure Platform Security tooling (Windows & Cloud environment) Cloud Security (SaaS, PaaS, IaaS) Network and application Firewalls Mitre ATT&CK and NIST frameworks If you are interested in learning more about this opportunity then please send you up to date CV
Security Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks/security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key 'soft skill' areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
23/04/2024
Full time
Security Analyst - Hybrid - 3 days on site - Nottinghamshire Main Responsibilities: - Triage, analyse and investigate alerts, log data and network traffic using security tools to identify cyber-attacks/security incidents. This includes the investigation and root cause analysis of potential security incidents. - Proactively investigate potential security breaches by utilising threat intelligence and internal and external security systems and provide subject matter expertise for technical responses to confirmed cyber security incidents. - Create and maintain the clients target cyber security architecture. - Deliver subject matter expertise to key stakeholders to drive the implementation of security controls to meet the target architecture. - Accountable for vulnerability scanning, including the prioritisation of unpatched vulnerabilities and reporting against agreed KPIs and KRIs. - Support the annual penetration testing schedule by arranging penetration testing, including tracking, and communicating penetration testing results. - Perform supplementary testing of clients detection and response controls by procuring, installing, and running penetration testing tooling. - Participate in process improvement work to automate and improve critical cyber security processes such as monitoring, patching, and hardening. - Develop and maintain process documentation for security architecture, vulnerability management, cyber incident response, and playbooks. - Provide security representation across multiple geographies, business units and teams to achieve objectives, including engagement with the Information Security Enhancement Office. Skills, Knowledge and Experience - Has obtained one or more of the following qualifications: CEH, CRTSA, and OSCP. - Qualifications such as CISSP and CISM would be advantageous. - Problem solving skills, and the ability to come up with new solutions to existing challenges. - Strengths in key 'soft skill' areas such as relationship management, communication, and presentation of technical security information to a variety of audiences. - Technical skills to investigate potential breaches through existing tools, packet capture and log file analysis. - A logical mindset, the ability to identify proportionate, appropriate mitigations to identified security incidents, and to prioritise incidents based on risk. - Capable of working independently/without ongoing supervision on projects and day to day tasks. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website