Looking For New Opportunities?

Contact Us Today Maxfield Search + 44 203 772 4567

SOC Operations Specialist

  • : 40k - £50k
  • : Permanent
  • : London
  • :

APPLY NOW


Share This Job

SOC IDS IPS SIEM



Job Specification

Our Client is looking for experienced security professional

  • Security monitoring & log analysis of multi-vendor security solutions.
  • Evaluate the type and severity of security events through the use of security event analysis tools and also have an excellent understanding of exploits and vulnerabilities.
  • Provide 3rd level remote technical support, troubleshooting and root cause analysis relating to client networks and security infrastructure.
  • Using a SIEM (Security Incident and Event Management), IDS/IPS (Intrusion Detection/Prevention System), NAC (Network Access Control) toolset to perform monitoring activity along with other security solutions to aid investigation and troubleshooting.
  • Take appropriate corrective action as requested or as stated in the client’s Service Level Agreement (SLA.)

Essential Skills

  • Hands on experience with a variety of different IDS/IPS, NACand SIEMs; 2 or more of the following:
    • Operate, monitor, manage & troubleshoot SIEM environment (Alien Vault OSSIM, SPLUNK, Logrhythm desirable)
    • Operate, monitor, manage & troubleshoot Intrusion Prevention and Detection solutions (Cisco desirable)
    • Operate, monitor, manage & troubleshoot Network Access Control (NAC) solutions (Forescout desirable)
    • Operate, monitor, manage & troubleshoot  Firewall solutions (Cisco & Juniper desirable)
    • Have knowledge of the common types of vulnerabilities and attacks & pperform IT security threat management tasks
    • Perform operational 'eyes on glass' real-time monitoring and analysis of security events from multiple sources including but not limited to events from SEIM monitoring tools, network and host based intrusion detection systems, firewall logs, system logs (Unix & Windows)
    • Perform advanced diagnosis and remediation planning in response to security events & incidents
    • Analyse security event logs and alerts to determine validity, priority and impact against both security threat best practice counter measure and client compliance obligations
    • Monitor and use of incident ticket systems to log incident and perform change activity
    • Accept, manage and update service requests to ensure contracted SLA are met
    • Manage client expectations and escalate critical situations to appropriate levels of management
    • Liaise with Field Engineering resources in the provisioning of high level security support to our clients.
    • Manage vendor operational performance and drive vendor support relationships to achieve problem resolution
    • Working knowledge of desktop word processing and communication software (Microsoft office, Visio, Project, PowerPoint, Excel etc.)

Desirable Skills

  • Deep understanding of computer network, routing and switching protocol
  • Exposure to incident response and threat monitoring
  • Familiarity with offensive attack sequence and defensible security
  • Experience correlating security event data and leveraging SIM/SIEM frameworks
  • Deep understanding of Unix/Linux and Windows OS

Professional Training/Qualification/Accreditation

  • CCNA, CISSP desirable
  • SANS GIAC, GCIA, GCIH, GSEC or similar certification desirable
  • CEH, SSCP
  • OSCP Offensive Security Certified Professional (OSCP )

Personal

  • British Citizen
  • Must have or be able to gain SC level security clearance

This role is now closed

However we would still like to hear from you as we regularly have similar roles that we do not publish on our website and one our experienced consultants will be able to discuss these alternative opportunities with you. Tel: + 44 (0) 203 772 4567

People Also Viewed

Can't find the role that you are looking for?

Due to reasons of confidentiality, there are additional mandates we are actively working on that are not advertised.

If you are currently working in one of our specialist areas and are keen to explore new opportunities,please reach out to one of our experienced consultants, discretion is assured and all communications will be strictly confidential.

Contact Us

Follow Us

Maxfield LinkedIN Maxfield Twitter Maxfield Facebook

© 2009 Maxfield Search. All rights reserved