Senior Security Operations Analyst – Threat Hunter Department for Work and Pensions
Reference
1588629
Location
Manchester
Salary
£38,700
Work hours
37
Employment type
Permanent
Job benefits
In addition to salary there is a very competitive pension, a generous annual leave allowance, great work/life balance include flexible working, family friendly policies and much more.
Closing date
19 July 2018
Job description
Senior Security Operations Analyst – Threat Hunter, DWP Digital:
If you’re creative and curious to learn, want to be empowered to make decisions and challenge the norm, and want to bring BIG ideas to a MASSIVE digital challenge then you’ll love it here. And we’d love to hear from you.
We’re looking for talented Security Operations Analyst’s to work as threat hunters and to join our growing community of experts and become a key part of one of the biggest and highest-profile digital transformation programmes in the world. Using fresh ideas and leading edge technologies – and putting the user at the centre of everything we do – we create innovative digital solutions that make a difference to the lives of our 22 million users.
About You
We’re looking for Senior Security Operations Analyst’s who can play a vital role in securing the DWP IT Estate; the Threat Hunter has a critical role to play in protecting the integrity of our systems from both internal and external threat actors. You will undertake proactive in-depth analysis of activity captured in system logs to quickly determine if systems have been compromised and subsequently taking appropriate response action. This may include using digital forensic and malware analysis tools, commercial or open source to support decision making. Where appropriate, you will provide all necessary information and make a referral to the relevant expert domain (e.g. Security Incident Response Team) to further progress the potential incident.
A core element of this role is to develop strong and effective working relationships with Data Scientists, SIEM architects and other data analysts to ensure emerging threats identified are fully assessed in terms of their potential impact. You will support the development of theoretical rules to deploy and test across large data sets, thinking innovatively and creatively to solve problems. You will ensure rules are continually refined to ensure high quality outputs are maintained and supplied to operational stakeholders.
What are we looking for ?
- You have comprehensive knowledge of techniques an adversary would use to bypass or evade security controls, investigating cyber security across large sets of information using a range of network devices utilising OSINT and commercial tools
- You have proven experience of using intelligence feeds and information from 3rd parties to develop indicators of compromise to search for vulnerabilities across the DWP estate and of performing in-depth analysis of cyber security alerts, proactively interrogating large data sets of structured and unstructured data, to identify anomalous behaviour
- You’re experienced in using a variety of the latest SIEM/network analysis tools, techniques and procedures, e.g. Arcsight, LogRythm, Splunk, AlienVault, up to searching and reporting level; and of using digital forensic and malware analysis tools, commercial or open source, such as Wireshark, FireEye AX to support decision making
- You’re experienced in working in cyber-security environments and are capable of working in isolation or as part of an operational team to develop new tools and techniques, including operating device containment processes to isolate and prevent the spread of malicious activity
Strong understanding of the concepts of information security, and of current and emerging IT security, data protection and information risk principles and technologies
Where You’ll Work
You’ll join us in our easy-to-reach digital hub in Manchester, where you’ll work with the latest tech and tooling as part of a multi-disciplinary agile team. You’ll have a great Security community to lean on, and have the autonomy to work in your own style.
Our Offer
In return for your skills we offer competitive salary up to £38,700, a brilliant civil service pension, and a generous leave package.
We also have a broad benefits package built around your work-life balance which includes:
- Flexible working
- Family friendly policies
- Volunteering and charitable giving
- discounts and savings on shopping, fun days out and more
- Interest-free loans to buy a bike or a season ticket, so it’s even easier for you to get to work and start making a difference
- Sports and social activities
- And lots more
Building Our Future
We believe the work we do really matters, so we’re serious about investing in your ability.
You’ll have access to a huge suite of training and learning opportunities to complement the new skills and experience you’ll acquire on the job. You’ll share ideas with colleagues from across the tech community, and grow your skills via our coaching and mentoring programmes.