Development Engineer Location: Hybrid/London Salary: £60,000 - £65,000 Our client is looking for a Developer in the Java/Microservices/AWS space to join a growing practice. What you'll be doing: You will be part of an agile team contributing to the build of digital products, developing new and enhancing existing software components. Your primary role is to develop clean code, adhering to SOLID principles that is well tested, performant and maintainable. They should adhere to the agreed development life cycle, frameworks and quality criteria and collaborate readily with other agile delivery team members to enable the right outcome for the customer. This includes, working with Quality Assurance to support test automation, DevOps engineers to support security, configurability and smooth code deployment, plus pairing with other team members/new colleagues to assist with knowledge transfer, on boarding and pair coding/code reviews. In this role, you will be primarily responsible for: * Delivery of high-quality development work results (structure, content, form) * Integrating the application Front End services (with a basic understanding of web Front End technologies) * Managing the exchange of data between different Back End services (owned by separate development teams) and Front End application and third party API integration * Development of all Server Side logic, working with BA and Quality Assurance to ensure business logic is implemented as required and fully testable * Introducing and owning technical user stories for integration and service optimisation * Documenting solutions through flowcharts, diagrams, code comments, clear code and via Confluence/knowledge base articles * Ensuring compliance with quality guidelines (Unit Tests, Code Quality, Test Driven Development) * Addressing non-functional requirements and operational/support-relevant topics during conception and implementation (eg logging, capacity/performance management, monitoring and distributed tracing/debugging) * End-to-end thinking during development - supporting and improving releases from test to integration and production environments * Proactive skill and artefact building with regards assessing and adopting new technologies * Presentation and demonstration of concepts and services via show-and-tell demos, tech-talks and taking part in direct user feedback and evaluation sessions * Providing and collaborating to produce development work estimates * Following agile software development life cycles, but maintaining foresight to reduce tech debt where possible and not at the cost of good documentation, test automation and non-functional considerations * Working under pressure and at pace when required to meet urgent client needs. What experience you'll bring: In order to be successful in this role, you will have proven experience in and a solid understanding of most of the following: * Delivering integration micro-service patterns using Java Spring Boot * Applying SOLID principles and creating clean code * Experience working with streaming data (eg Apache Kafka) and AWS native messaging/streaming features * API specification/design and documentation * Working with SQL and NoSQL data sources such as Postgres and Mongo Experience with DevOps tooling and application hosting services such as: * Jenkins, Drone, AWS CodeCommit/Pipeline/Deploy * Atlassian stack, Azure DevOps/Docker/Kubernetes/Function as a Service deployments * Broader AWS knowledge (eg S3, KMS, EKS) * Great attention to detail, organisational skills and a keen analytical mind * Experience with Front End JavaScript frameworks, such as React * Proven delivery success in large scale development projects (including, for example, enterprise integration patterns, high assurance/secure services, high throughput/availability non-functional demands) * Demonstrable collaborative team working and taking ownership of delivery commitments and addressing challenges Education and Experience * SC Cleared * Experienced in consulting and ability to cope with pressured environments. * Ideally Public Sector/Central Government experience * Proven experience as Microservices Developer * Ideally AWS or Kubernetes Application Developer Certified Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
18/04/2024
Full time
Development Engineer Location: Hybrid/London Salary: £60,000 - £65,000 Our client is looking for a Developer in the Java/Microservices/AWS space to join a growing practice. What you'll be doing: You will be part of an agile team contributing to the build of digital products, developing new and enhancing existing software components. Your primary role is to develop clean code, adhering to SOLID principles that is well tested, performant and maintainable. They should adhere to the agreed development life cycle, frameworks and quality criteria and collaborate readily with other agile delivery team members to enable the right outcome for the customer. This includes, working with Quality Assurance to support test automation, DevOps engineers to support security, configurability and smooth code deployment, plus pairing with other team members/new colleagues to assist with knowledge transfer, on boarding and pair coding/code reviews. In this role, you will be primarily responsible for: * Delivery of high-quality development work results (structure, content, form) * Integrating the application Front End services (with a basic understanding of web Front End technologies) * Managing the exchange of data between different Back End services (owned by separate development teams) and Front End application and third party API integration * Development of all Server Side logic, working with BA and Quality Assurance to ensure business logic is implemented as required and fully testable * Introducing and owning technical user stories for integration and service optimisation * Documenting solutions through flowcharts, diagrams, code comments, clear code and via Confluence/knowledge base articles * Ensuring compliance with quality guidelines (Unit Tests, Code Quality, Test Driven Development) * Addressing non-functional requirements and operational/support-relevant topics during conception and implementation (eg logging, capacity/performance management, monitoring and distributed tracing/debugging) * End-to-end thinking during development - supporting and improving releases from test to integration and production environments * Proactive skill and artefact building with regards assessing and adopting new technologies * Presentation and demonstration of concepts and services via show-and-tell demos, tech-talks and taking part in direct user feedback and evaluation sessions * Providing and collaborating to produce development work estimates * Following agile software development life cycles, but maintaining foresight to reduce tech debt where possible and not at the cost of good documentation, test automation and non-functional considerations * Working under pressure and at pace when required to meet urgent client needs. What experience you'll bring: In order to be successful in this role, you will have proven experience in and a solid understanding of most of the following: * Delivering integration micro-service patterns using Java Spring Boot * Applying SOLID principles and creating clean code * Experience working with streaming data (eg Apache Kafka) and AWS native messaging/streaming features * API specification/design and documentation * Working with SQL and NoSQL data sources such as Postgres and Mongo Experience with DevOps tooling and application hosting services such as: * Jenkins, Drone, AWS CodeCommit/Pipeline/Deploy * Atlassian stack, Azure DevOps/Docker/Kubernetes/Function as a Service deployments * Broader AWS knowledge (eg S3, KMS, EKS) * Great attention to detail, organisational skills and a keen analytical mind * Experience with Front End JavaScript frameworks, such as React * Proven delivery success in large scale development projects (including, for example, enterprise integration patterns, high assurance/secure services, high throughput/availability non-functional demands) * Demonstrable collaborative team working and taking ownership of delivery commitments and addressing challenges Education and Experience * SC Cleared * Experienced in consulting and ability to cope with pressured environments. * Ideally Public Sector/Central Government experience * Proven experience as Microservices Developer * Ideally AWS or Kubernetes Application Developer Certified Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
2nd Line Support Engineer - Cloud - Office 365 - SC Cleared - Wool, Dorset (RL7380) Location: Wool, Dorset Salary: Upto £37,000 (DOE) + Benefits Start Date: ASAP Please note this role unfortunately does not offer sponsorship. The Company Our client empowers people to create sustainable value with the clever use of technology. They are proud to be one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365 and Microsoft 365. Their deep expertise has led to a long track record of success delivering transformational IT services and solutions for their customers. The Role Our client is seeking an experienced 2nd Line Support Engineer. This position is perfect for someone seeking a challenging role with ample opportunity for career growth. The role will suit an experienced 2nd Line Support Engineer residing in the UK. You've been in this or similar role previously and have developed strong analytical and technical skills, having hands on experience in IT industry. This means working with latest technologies and supporting users is something you'll look forward to. You should be eligible for SC clearance. You will be mainly responsible for: Taking ownership and managing tickets through resolution or escalation is something you know all too well. Meeting your SLAs ( Service Level Agreements ) - troubleshooting, maintaining, and supporting a wide range of systems is just as important to you as answering queries and complaints. Taking ownership of your tickets, you're constantly involved in collaboration with the rest of the teams, ensuring personal and team objectives are achieved and providing further guidance when necessary. Upskilling yourself by gaining relevant qualifications and accreditations to further develop your skills. Understanding the importance of problem ownership and client success and aiming for top rated client feedback, providing high quality services. Handling client interaction, managing their expectations, reporting client facing risks and customer feedback with great professionalism. Ensuring quality delivery when working at any of their client sites and enjoy working it, all at the same time. Technical Skills: These are some of your areas of expertise and where you will be able to showcase your IT skills: Microsoft Exchange Active Directory Cloud (Azure, AWS or Google cloud) SCCM Office 365 Mobile Device Management Intune Windows Servers (full range) Server Virtualisation (HyperV/VMWare) Local Area Networking Symantec Products Cisco LAN/WAN (Routers, Switches, ASAs) Routing/switching equipment including, but not limited to, Cisco, Dell, HP Switches, Routers and Firewalls Citrix ( XenApp/XenDesktop) Formal IT qualification, ideally MCSE/MCITP or multiple MCPs massively advantageous Sharepoint 2010/2013 To apply for this 2nd Line Support Engineer permanent job, please click the button below and submit your latest CV. Curo Services endeavours to respond to all applications, however this may not always be possible during periods of high volume. Thank you for your patience. Curo Services is a trading name of Curo Resourcing Ltd and acts as an Employment Business for contract and temporary recruitment as well as an Employment Agency in relation to permanent vacancies.
18/04/2024
Full time
2nd Line Support Engineer - Cloud - Office 365 - SC Cleared - Wool, Dorset (RL7380) Location: Wool, Dorset Salary: Upto £37,000 (DOE) + Benefits Start Date: ASAP Please note this role unfortunately does not offer sponsorship. The Company Our client empowers people to create sustainable value with the clever use of technology. They are proud to be one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365 and Microsoft 365. Their deep expertise has led to a long track record of success delivering transformational IT services and solutions for their customers. The Role Our client is seeking an experienced 2nd Line Support Engineer. This position is perfect for someone seeking a challenging role with ample opportunity for career growth. The role will suit an experienced 2nd Line Support Engineer residing in the UK. You've been in this or similar role previously and have developed strong analytical and technical skills, having hands on experience in IT industry. This means working with latest technologies and supporting users is something you'll look forward to. You should be eligible for SC clearance. You will be mainly responsible for: Taking ownership and managing tickets through resolution or escalation is something you know all too well. Meeting your SLAs ( Service Level Agreements ) - troubleshooting, maintaining, and supporting a wide range of systems is just as important to you as answering queries and complaints. Taking ownership of your tickets, you're constantly involved in collaboration with the rest of the teams, ensuring personal and team objectives are achieved and providing further guidance when necessary. Upskilling yourself by gaining relevant qualifications and accreditations to further develop your skills. Understanding the importance of problem ownership and client success and aiming for top rated client feedback, providing high quality services. Handling client interaction, managing their expectations, reporting client facing risks and customer feedback with great professionalism. Ensuring quality delivery when working at any of their client sites and enjoy working it, all at the same time. Technical Skills: These are some of your areas of expertise and where you will be able to showcase your IT skills: Microsoft Exchange Active Directory Cloud (Azure, AWS or Google cloud) SCCM Office 365 Mobile Device Management Intune Windows Servers (full range) Server Virtualisation (HyperV/VMWare) Local Area Networking Symantec Products Cisco LAN/WAN (Routers, Switches, ASAs) Routing/switching equipment including, but not limited to, Cisco, Dell, HP Switches, Routers and Firewalls Citrix ( XenApp/XenDesktop) Formal IT qualification, ideally MCSE/MCITP or multiple MCPs massively advantageous Sharepoint 2010/2013 To apply for this 2nd Line Support Engineer permanent job, please click the button below and submit your latest CV. Curo Services endeavours to respond to all applications, however this may not always be possible during periods of high volume. Thank you for your patience. Curo Services is a trading name of Curo Resourcing Ltd and acts as an Employment Business for contract and temporary recruitment as well as an Employment Agency in relation to permanent vacancies.
LA International Computer Consultants Ltd
Hereford, Herefordshire
DV Cleared Onsite in Hereford Duration: 6 months initially Market Rates via Umbrella Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: * Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. * Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. * Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. * Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. * Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. * Implement data management standards, requirements, and specifications. * Develop data standards, policies, and procedures. * Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. * To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: * Knowledge of big data technologies and ecosystems (eg, NiFi). * Knowledge of current market and emerging leaders in data analytical and SIEM platforms. * Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. * Knowledge of intrusion detection systems and signature development. * Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. * Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. * Knowledge of cyber defence and information security policies, procedures and regulations. * Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: * Previous experience of Enterprise ICS/network architectures and technologies. * Working with frameworks and technologies that support data-intensive distributed applications. * Experience maintaining and administrating data analytical and SIEM platforms. * Experience using host and network-based IDS/IPS. Experience using packet capture solutions. * Skill in developing and deploying signatures. * Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). * Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications * Red Hat System Administration I & II (RH124/RH134). * Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. * Certified engineer in a market leading data analysis/SIEM platform. * SANS SEC501 Advanced Security Essentials Enterprise Defender. * SANS SEC 511 Continuous Monitoring & Security Operations. * SANS SEC555: SIEM with Tactical Analytics Available locations: -Hereford -Northallerton -Corsham -Portsmouth Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 18 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.
17/04/2024
Project-based
DV Cleared Onsite in Hereford Duration: 6 months initially Market Rates via Umbrella Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: * Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. * Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. * Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. * Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. * Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. * Implement data management standards, requirements, and specifications. * Develop data standards, policies, and procedures. * Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. * To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: * Knowledge of big data technologies and ecosystems (eg, NiFi). * Knowledge of current market and emerging leaders in data analytical and SIEM platforms. * Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. * Knowledge of intrusion detection systems and signature development. * Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. * Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. * Knowledge of cyber defence and information security policies, procedures and regulations. * Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: * Previous experience of Enterprise ICS/network architectures and technologies. * Working with frameworks and technologies that support data-intensive distributed applications. * Experience maintaining and administrating data analytical and SIEM platforms. * Experience using host and network-based IDS/IPS. Experience using packet capture solutions. * Skill in developing and deploying signatures. * Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). * Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications * Red Hat System Administration I & II (RH124/RH134). * Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. * Certified engineer in a market leading data analysis/SIEM platform. * SANS SEC501 Advanced Security Essentials Enterprise Defender. * SANS SEC 511 Continuous Monitoring & Security Operations. * SANS SEC555: SIEM with Tactical Analytics Available locations: -Hereford -Northallerton -Corsham -Portsmouth Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take up to a minimum 18 weeks. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.
Onsite Messaging Engineer + Long term contract available + Based onsite in Stevenage + £450 to £490 per day + Inside IR35 Key Skills: + Hold current DV Clearance + Exchange 2000 to 2013 As a Messaging Engineer you will contribute to this by providing expert Messaging operational support to 20+ customers as part of a managed service agreement. Your role will involve: Provide 3rd Line Messaging Support to a range of customers in accordance with defined standards and agreed SLAs. The Messaging Team forms part of wider service team, which is responsible for providing BAU and project support across a range of Wintel, Storage and Database. The environment is busy, fast paced and challenging with new work streams and opportunities being introduced into the team regularly. Your transferable skills and experience: Experience of MSCE Windows 2000/2003 and MCP MS Exchange 2000/2003/2007/2010/2013 Ability to deal with complex issues/potential escalations with minimal supervision. Messaging desktop clients, eg Outlook Helpdesk/problem control and management services Support of Microsoft Exchange 2003/2010/2013 standalone and clustered Experience and support of AV software products (Trend Micro Scanmail), Sophos A/V, Groupshield etc) Support of SMTP Gateways (Exchange, MailSweeper etc) Experience and support of Exchange FAX Solutions E-mail archiving tools, eg Enterprise Vault, SourceOne Security and SPAM protection products, eg IronPort
17/04/2024
Project-based
Onsite Messaging Engineer + Long term contract available + Based onsite in Stevenage + £450 to £490 per day + Inside IR35 Key Skills: + Hold current DV Clearance + Exchange 2000 to 2013 As a Messaging Engineer you will contribute to this by providing expert Messaging operational support to 20+ customers as part of a managed service agreement. Your role will involve: Provide 3rd Line Messaging Support to a range of customers in accordance with defined standards and agreed SLAs. The Messaging Team forms part of wider service team, which is responsible for providing BAU and project support across a range of Wintel, Storage and Database. The environment is busy, fast paced and challenging with new work streams and opportunities being introduced into the team regularly. Your transferable skills and experience: Experience of MSCE Windows 2000/2003 and MCP MS Exchange 2000/2003/2007/2010/2013 Ability to deal with complex issues/potential escalations with minimal supervision. Messaging desktop clients, eg Outlook Helpdesk/problem control and management services Support of Microsoft Exchange 2003/2010/2013 standalone and clustered Experience and support of AV software products (Trend Micro Scanmail), Sophos A/V, Groupshield etc) Support of SMTP Gateways (Exchange, MailSweeper etc) Experience and support of Exchange FAX Solutions E-mail archiving tools, eg Enterprise Vault, SourceOne Security and SPAM protection products, eg IronPort
DV Cleared SIEM/Incident SME Location: Northallerton/Corsham/Portsmouth Duration: 6 - 12 Months Rate to SSC: Market Rate MUST BE PAYE THROUGH UMBRELLA Role Description: The Cyber Defence Analyst will join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal and external cyber-threats/attacks. This position involves a broad range of skills, including the development and mentoring of Junior Analysts, monitoring networks to actively remediate unauthorised activities. Your role Develop and integrate security event monitoring and incident management services. Respond to security incidents as they occur as part of an incident response team. Implement metrics and dashboards to give visibility of the Enterprise infrastructure. Use of the SOAR platform to assist with playbook automation and case management capabilities to streamline team processes and tools. Produce documentation to ensure the repeatability and standardisation of security operating procedures. Develop additional investigative methods using the SOC's software toolsets to enhance recognition opportunities for specific analysis. Maintain a baseline of system security according to latest threat intelligence and evolving trends. Participate in root cause analysis of incidents in conjunction with engineers across the enterprise. Provide Subject Matter Expertise (SME) on a broad range of information security standards and best practices. Offer strategic and tactical security guidance including valuation requirement of technical controls. Be part of the CRM process Liaise with the SOC engineers to maintain up-to-date dashboards of security alerts, to allow the organisation to better respond to an incident. Document, validate and create operational processes and procedures to help develop the SOC. Assist in identifying, prioritising, and coordinating the protection of critical cyber defence infrastructure and key resources. Build, install, configure, and test dedicated cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to Junior Analysts Your profile Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks Skilled in maintaining Microsoft directory services. Skilled in using virtualisation software. Knowledge of key security frameworks (eg ISO, NIST 800-53, 800-171, 800-172, C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications: Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent)
15/04/2024
Project-based
DV Cleared SIEM/Incident SME Location: Northallerton/Corsham/Portsmouth Duration: 6 - 12 Months Rate to SSC: Market Rate MUST BE PAYE THROUGH UMBRELLA Role Description: The Cyber Defence Analyst will join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal and external cyber-threats/attacks. This position involves a broad range of skills, including the development and mentoring of Junior Analysts, monitoring networks to actively remediate unauthorised activities. Your role Develop and integrate security event monitoring and incident management services. Respond to security incidents as they occur as part of an incident response team. Implement metrics and dashboards to give visibility of the Enterprise infrastructure. Use of the SOAR platform to assist with playbook automation and case management capabilities to streamline team processes and tools. Produce documentation to ensure the repeatability and standardisation of security operating procedures. Develop additional investigative methods using the SOC's software toolsets to enhance recognition opportunities for specific analysis. Maintain a baseline of system security according to latest threat intelligence and evolving trends. Participate in root cause analysis of incidents in conjunction with engineers across the enterprise. Provide Subject Matter Expertise (SME) on a broad range of information security standards and best practices. Offer strategic and tactical security guidance including valuation requirement of technical controls. Be part of the CRM process Liaise with the SOC engineers to maintain up-to-date dashboards of security alerts, to allow the organisation to better respond to an incident. Document, validate and create operational processes and procedures to help develop the SOC. Assist in identifying, prioritising, and coordinating the protection of critical cyber defence infrastructure and key resources. Build, install, configure, and test dedicated cyber defence hardware. Support Junior Analysts to manage SOC systems. Previous experience of Enterprise ICS/network architectures and technologies Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. Experience as a mentor/coach to Junior Analysts Your profile Previous experience of utilising the MITRE ATT&CK and Cyber Kill Chain frameworks Skilled in maintaining Microsoft directory services. Skilled in using virtualisation software. Knowledge of key security frameworks (eg ISO, NIST 800-53, 800-171, 800-172, C2M2) Excellent communication skills Experience of writing Defence/Government documentation Desirable Qualifications: Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) Advanced Analyst Course (SANS SEC503 or equivalent)
Cyber Defence Engineer Location: Full Time onsite in Hereford Duration: 6 months MUST BE PAYE THROUGH UMBRELLA We are heading up a recruitment drive on behalf of a leading IT consultancy that require a DV cleared Cyber Defence Engineer to join their team on a major defence project that is based in Hereford. Role Description: Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. Implement data management standards, requirements, and specifications. Develop data standards, policies, and procedures. Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: Knowledge of big data technologies and ecosystems (eg, NiFi). Knowledge of current market and emerging leaders in data analytical and SIEM platforms. Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. Knowledge of intrusion detection systems and signature development. Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. Knowledge of cyber defence and information security policies, procedures and regulations. Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: Previous experience of Enterprise ICS/network architectures and technologies. Working with frameworks and technologies that support data-intensive distributed applications. Experience maintaining and administrating data analytical and SIEM platforms. Experience using host and network-based IDS/IPS Experience using packet capture solutions. Skill in developing and deploying signatures. Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications Red Hat System Administration I & II (RH124/RH134). Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. Certified engineer in a market leading data analysis/SIEM platform. SANS SEC501 Advanced Security Essentials Enterprise Defender. SANS SEC 511 Continuous Monitoring & Security Operations. SANS SEC555: SIEM with Tactical Analytics
15/04/2024
Project-based
Cyber Defence Engineer Location: Full Time onsite in Hereford Duration: 6 months MUST BE PAYE THROUGH UMBRELLA We are heading up a recruitment drive on behalf of a leading IT consultancy that require a DV cleared Cyber Defence Engineer to join their team on a major defence project that is based in Hereford. Role Description: Role Description: Cyber Defence Engineer will join a growing security team responsible for the testing, implementation, deployment, maintenance, configuration and troubleshooting of the SOC's technology stack (hardware and software). The engineer will also assist with the continued development and maintenance of data pipelines and signature updates and the professional development of the system engineering team. Tasks: Perform system administration on specific cyber defence applications and systems to include installation, configuration, maintenance, troubleshooting, backup and restoration. Manage system/server resources including performance, capacity, availability, serviceability, and recoverability. Diagnose and resolve customer reported system incidents, problems, and events to ensure continuing operability. Coordinate with SOC and CTI Analysts to assist in the development of signatures which can be implemented on cyber defence network tools in response to new or observed threats within the network environment or enclave. Manage the compilation, cataloguing, distribution, and retrieval of data from a range of enterprise networks and data sources. Implement data management standards, requirements, and specifications. Develop data standards, policies, and procedures. Analyse data sources to provide actionable recommendations and facilitate data-gathering methods. To share knowledge, skills and experience, create and improve documentation, and train new members of the data engineering team. Knowledge: Knowledge of big data technologies and ecosystems (eg, NiFi). Knowledge of current market and emerging leaders in data analytical and SIEM platforms. Knowledge of network security implementations (eg, host-based IDS, IPS), including their function and placement in a network. Knowledge of intrusion detection systems and signature development. Knowledge of Front End collection systems, including network traffic collection, filtering, and selection. Knowledge of system administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems. Knowledge of cyber defence and information security policies, procedures and regulations. Knowledge of network security architecture concepts including topology, protocols, components and principles. Skills/Experience: Previous experience of Enterprise ICS/network architectures and technologies. Working with frameworks and technologies that support data-intensive distributed applications. Experience maintaining and administrating data analytical and SIEM platforms. Experience using host and network-based IDS/IPS Experience using packet capture solutions. Skill in developing and deploying signatures. Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). Ability to provide technical and service leadership to junior SOC Engineers (mentor/coach). Desirable Qualifications/Certifications Red Hat System Administration I & II (RH124/RH134). Baseline Cyber Courses eg Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. Certified engineer in a market leading data analysis/SIEM platform. SANS SEC501 Advanced Security Essentials Enterprise Defender. SANS SEC 511 Continuous Monitoring & Security Operations. SANS SEC555: SIEM with Tactical Analytics