This job is no longer available.
You can view related vacancies or set-up an email alert notification when similar jobs are added to the website using the buttons below.

Associate Incident Response Consultant

18/09/18/cr._1537281576
Up to £40000 per annum

Managing this Role

image

Charlee Ryman

Associate Consultant - Cyber Specialist 0207 759 7878

Spending seven years in the Royal Navy as a warfare technician, Charlee uses his comprehensive military network and his deep technical expertise to quickly pinpoint the best cyber security professionals for leading employers of all shapes and sizes.

 

Roles recruited: CISOs, SOCs managers/analysts and cyber security analysts/consultants

Seniority: Mid-senior

Job Type: Permanent

Geographical coverage: London

Market: Cyber security operations within MSSPs

Want to get thrown into the deep end? Our Client is looking for an Associate Incident Response Consultant to join their team, If you have a good understanding of Incident Response then this is a great opportunity for you as well as candidates who have studied computer science, IT security, or Computer Forensics.

You will be dealing with real world attacks, dissecting them and help get to the bottom of where they came from. You will be doing all of this whilst working for a company that is highly innovative, rapidly growing and will provide you with lots of opportunities to learn and grow.

What will you be doing:

  • Provide Investigations and incident response services to end users.
  • Respond to and contain security incidents mainly focused on advanced targeted attacks.
  • You will cover a range of areas such as forensic investigations and proactive compromise assessments,
  • Be able to guide clients through the implementation of response procedures.

Requirements:

  • Ability to clearly communicate to a range of audiences from technical practitioners through to executive boards. This requires the ability to identify technical issues and describe them in a way the Client will understand.

  • You will have a good general knowledge of both enterprise IT platforms and information security.

  • You will understand the motivations and methods adopted by a wide range of threat sources with a good understanding of how exploitation of systems occurs.
  • Performing consultancy for Clients and producing high quality reports to present findings and guidance
  • Maintaining target utilisation on client chargeable projects whilst working as an Incident Response Consultant
  • Producing output to highlight the technical competence of the company to a standard that can be published
  • Supporting your practice area in successful delivery and growth

  • Solid understanding of client-server infrastructures, security architectures and related logging and alerting

  • Knowledge of TCP/IP networking with the ability to perform deep-dive network forensic analysis

  • Solid understanding of file-system analysis including FAT, NTFS, HFS and/or EXT2/3/4 and ability to

find and extract common disk-based indicators of compromise

  • Knowledge of Windows, Linux and/or OS X internals

  • Knowledge of and experience in Malware Analysis to a minimum level of behavioural analysis

  • Knowledge of and experience in memory analysis

  • Ability to report key findings in a clear and concise manner both at technical and senior management level

Bonus Points...

  • Experience with a scripting language such as Python, Ruby, Powershell or Bash is desirable

  • Vendor independent qualification in Incident Response and Forensics

  • Vendor specific qualifications

If you feel like you are up to the challenge of tackling threats head on and want to be apart of an elite and professional team then go ahead and apply now.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.


This job has now been filled but you may be interested in:

 

SOC Analyst - Insurance- London

We are working with a leading Insurance group who are looking to add to their Cyber Security capability in London. The SOC Analyst will work closely with the Information Security Officer, Infrastructure team and outsourced MSSP. You will have autonomy and be looked towards to help build the Cyber capability for the UK, with a look forward to building a team in the future.

Key Responsibilities

  • Monitor Security Operations Centre (SOC) generated security events and alerts
  • Perform initial analysis to determine security events and alerts requiring immediate response and escalation
  • Triage confirmed security events and alerts, in coordination with Tier 2 and Tier 3 network and infrastructure engineers, following documented procedures
  • Develop processes and response procedures to improve overall SOC functions
  • Develop, refine, maintain, and regularly test the Incident Response Plan
  • Monitor external data sources to maintain currency of information security threat condition and determine which security issues may have an impact on the enterprise
  • Maintain both internal and external vulnerability scanning tools and report on their findings

Technical Skills

  • Strong understanding of security and network incident response protocols
  • Good understanding of malware, including APT and other emerging threats
  • Strong understanding of information security principles as it relates to system, network, internet security (i.e. ports, protocols, system hardening and system functions analysis)
  • Indicators of Compromise, understanding malware analysis, VA scanners, SIEM tools
  • Sound understanding of networking administration and troubleshooting (e.g. TCP/IP, WAN/LAN and WiFi)
  • Good understanding of firewalls and IDS/IPS systems
  • Good understanding Citrix platform
  • Good understanding of Active Directory
  • Intermediate understanding of virtualization
  • Intermediate understanding of databases (SQL in particular)

Qualifications

  • Desirable qualifications for the role include CompTIA A , CompTIA A , Network , Security , Certified Ethical Hacker (CEH), GIAC, GCIH, CISSP)

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

SOC Analyst

This is your chance to take the next step into a more senior position. Working as an Integral member in my clients SOC you will be able to use SIEM tools to monitor and investigate client's security environments. You will place an emphasis on vulnerability assessments and remediation.

The role

  • Analysis and investigation of alerts from SIEM and AI tools
  • Vulnerability Scanning, reporting and prioritising
  • Utilise Intrusion Prevention solutions to monitor and alert on potential breaches.
  • Creation of custom IPS signature on occasion.
  • Use packet-capture tools
  • Use Threat Intelligence Services to identify potential new threats and develop new mitigation's.
  • Working with customer security teams to detect, contain and eradicate threats.
  • An understanding of Penetration Testing.

  • You will be Analytical, Inquisitive and have a strong passion for Cyber Security.
  • You will have the ability to lead.
  • Have a passion for self development and development of your team.

This is a good opportunity to be involved in one of the fastest growing MSSP's in Central London.

You will have the chance to test and develop your skills whilst mentoring the junior members of the team.

If this role sounds like you then go ahead and apply now.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Security Analyst - London

Due to a record breaking 2018, our client, a global telecommunications organisation based in London are growing their Security Operations team.

As part of this network expansion they are looking for a Cyber Security Analysts to act as Incident Handlers and will conduct vulnerability assessments and monitor systems, networks, databases and web hosted services for potential system breaches. Report, investigate and resolve security incidents. Educate and communicate security requirements and procedures to all users and new employees.

Responsibilities:

  • The post will require rotating 24X7 shift work to include daytime, night time, and weekend work
  • Act as a first line security event analyst monitoring the SIEM tools. Monitor the alarm console; provide initial analysis of logs and network traffic.
  • Provide first line telephone, e-mail and ticket routing services for security event notifications and incident response processes.
  • Deliver first level investigation and remediation activities as a member of the Security Incident Response Team. Participate in SIRT events
  • Participate in a Compliance/Vulnerability Assessment Scanning Capability.
  • Develop mitigation and remediation plans as a result of the vulnerability assessment findings.
  • Monitor threat and vulnerability news services for any relevant information that may impact installed infrastructure. Analyze reports to understand threat campaign techniques, lateral movements and extract indicators of compromise.
  • Create and update security event investigation notes, conduct shift change reports on open cases, and maintain case data in the Incident Response Management platform.

Essential & Desirable Skills:

  • Understanding of performing 1st line analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures, and reduction of false-positives.
  • GIAC, GCIH, GIAC , GCIA
  • Intermediate knowledge of Information Security fundamentals, technologies, and design principals.
  • Understanding or proven experience in securing Windows, Linux, Oracle and VM platforms.
  • Understanding or proven experience of SIEM tools for analysing network and security incidents.
  • Experience in Tenable Network Security Nessus, BeyondTrust Retina or similar Vulnerability Assessment scanner operations for identifying network and platform risks and mis-configurations.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.