This job is no longer available.
You can view related vacancies or set-up an email alert notification when similar jobs are added to the website using the buttons below.

Associate Incident Response Consultant

18/09/18/cr._1537281576
Up to £40000 per annum

Managing this Role

image

Charlee Ryman

Consultant - Cyber Specialist 0207 759 7878

Spending seven years in the Royal Navy as a warfare technician, Charlee uses his comprehensive military network and his deep technical expertise to quickly pinpoint the best cyber security professionals for leading employers of all shapes and sizes.

 

Roles recruited: SOC managers/analysts and cyber security analysts/consultants

Seniority: Junior-Senior

Job Type: Permanent

Geographical coverage: London

Market: Cyber security operations within MSSPs

Want to get thrown into the deep end? Our Client is looking for an Associate Incident Response Consultant to join their team, If you have a good understanding of Incident Response then this is a great opportunity for you as well as candidates who have studied computer science, IT security, or Computer Forensics.

You will be dealing with real world attacks, dissecting them and help get to the bottom of where they came from. You will be doing all of this whilst working for a company that is highly innovative, rapidly growing and will provide you with lots of opportunities to learn and grow.

What will you be doing:

  • Provide Investigations and incident response services to end users.
  • Respond to and contain security incidents mainly focused on advanced targeted attacks.
  • You will cover a range of areas such as forensic investigations and proactive compromise assessments,
  • Be able to guide clients through the implementation of response procedures.

Requirements:

  • Ability to clearly communicate to a range of audiences from technical practitioners through to executive boards. This requires the ability to identify technical issues and describe them in a way the Client will understand.

  • You will have a good general knowledge of both enterprise IT platforms and information security.

  • You will understand the motivations and methods adopted by a wide range of threat sources with a good understanding of how exploitation of systems occurs.
  • Performing consultancy for Clients and producing high quality reports to present findings and guidance
  • Maintaining target utilisation on client chargeable projects whilst working as an Incident Response Consultant
  • Producing output to highlight the technical competence of the company to a standard that can be published
  • Supporting your practice area in successful delivery and growth

  • Solid understanding of client-server infrastructures, security architectures and related logging and alerting

  • Knowledge of TCP/IP networking with the ability to perform deep-dive network forensic analysis

  • Solid understanding of file-system analysis including FAT, NTFS, HFS and/or EXT2/3/4 and ability to

find and extract common disk-based indicators of compromise

  • Knowledge of Windows, Linux and/or OS X internals

  • Knowledge of and experience in Malware Analysis to a minimum level of behavioural analysis

  • Knowledge of and experience in memory analysis

  • Ability to report key findings in a clear and concise manner both at technical and senior management level

Bonus Points...

  • Experience with a scripting language such as Python, Ruby, Powershell or Bash is desirable

  • Vendor independent qualification in Incident Response and Forensics

  • Vendor specific qualifications

If you feel like you are up to the challenge of tackling threats head on and want to be apart of an elite and professional team then go ahead and apply now.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.


This job has now been filled but you may be interested in:

 

Threat Hunter

My client provides an elite threat detection capability to a large array of clients using the latest tooling to help detect and respond to the latest threats. Using these tools provides my client with the capability to detect both internal and external threats.

This is your chance to provide an elite threat detection service to a broad spectrum of clients, whilst due to the rapid growth of my client you will be exposing yourself to a level of career progression that is hard to match.

The Role

As a Cyber Security Analyst you will have the ability to monitor the networks for threats and report your findings to all audiences.

You will be expected to monitor the client's assets and environments using our high end security tools. Identifying, analysing and alerting the client's to existing and emerging threat actors, the following will be the main focus of the role:

  • Perform detailed network analysis to identify potential threat actors.
  • Create clear, concise and analytical reports on threats.
  • Keep on top of current threats and informing Clients of the risk.

Key Skills

You will need to be a quick thinker who can quickly analyze threats and the impact they will have. You will have the ability to think of ways to prevent the future attacks and to be one step ahead of the threat at all times.

  • Knowledge of current Cyber Threats.
  • Understanding of typical malware functionality and capabilities.
  • Understanding of tools used with Blue Teams.
  • Packet Capture experience.
  • Familiarity with typical security technologies such as firewalls and SIEM tools.
  • An understanding of large scale networking technologies.
  • Windows and Linux exposure.
  • Scripting exposure - Python and Bash.

If you can demonstrate that you have the knowledge of current Cyber Threats, and the ability to discuss Cyber Security concepts revolving around Network IDS and malware then apply now to be apart of this professional team!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Security Analyst

The role

Our client a leading provider of professional services is looking for an experienced Cyber/ Information Security professional that will complement our existing team, and who will be responsible for the delivery of key security initiatives and activities.

Key Responsibilities

  • You will act as the primary contact for all security related incidents
  • Engage with business stakeholders to maintain information security across the business
  • Prepare accurate reports for all levels in a language and tone appropriate for the audience
  • Maintain awareness of developments in the information security industry
  • Assist the organisation in securely delivering existing and new solutions to the market
  • Assist CTI in obtaining and maintaining certifications (ISO 27001)
  • Assist the organisation in adhering to regulatory requirements (GDPR)
  • Assist in the organisation in due diligence responses
  • Conduct due diligence on potential partners and new solutions
  • Identify security control gaps and implement solutions
  • Work with 3rdparty SOC
  • Point of contact for suspected incidents
  • Provide business context and ensure they are kept up to date with environment changes
  • Continuous focus on tuning and automation of alerts
  • Act as security representative at the Change Advisory Board
  • Act as a consultant to our Infrastructure team during projects and proposed changes

Required skills

  • Security Architecture design and implementation
  • Experience developing MSSP SOC
  • Incident Detection/Response experience
  • Experience working with a SIEM solution
  • Exposure to SIEM & Vulnerability management solutions
  • Strong Active Directory experience
  • Securing Windows environments (desktop/server)
  • 3 years' experience in an Information Security role
  • Strong knowledge of network security within a corporate environment
  • Experience working in an ITIL environment

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Tier 2 SOC Analyst

Do you want to respond to real events that require a SC clearance in a state of the art SOC? We are looking for a TIER 2 Analyst to join my client in Reading to help detect, analyse and respond to the latest security threats.

You will be working for one of the leading communication companies in the world, one of the first to be established. They will provide training on their own bespoke tooling and you will not have to work the standard security shift pattern. You will help the team in escalation and classification of live events as well as remediation by applying current security methodologies and processes, whilst also training the more junior members of the team.

Skill set:

  • Knowledge of TCP/IP Protocols, network analysis, and network/security applications
  • Knowledge of common Internet protocols and applications
  • Knowledge and hands on experience of IP networks and their key components
  • Ability to apply non standard processes to incidents and investigations
  • Motivated and ambitious to work on your own initiative without needing direction with a genuine enthusiasm and drive to work within Cyber Security
  • Strong attention to detail
  • Ability to multi-task, prioritise, and manage time effectively
  • Excellent interpersonal skills and professional demeanour
  • Excellent verbal and written communication skills

Additional Skills:

  • Recognised qualifications such as CompTia Network , Security , CySA and/or CEH or equivalent
  • Knowledge of Security management, network and information security, people security and running of one or more services within a Security Operations Centre.
  • Proficient in Microsoft Office Applications
  • Recent experience of working within an IT/IP network based environment
  • Experience working in a customer facing environment
  • Leadership experience

This is an incredible opportunity for someone who wants to be apart of a global company who will take you to the next step of your career. Get in touch now for more information.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Threat Analyst

Blackthorn Trace have partnered with a global leading financial services industry who are building a Cyber Threat team across the UK, US and Canada. With the financial services industry constantly under attack by sophisticated cyber adversaries that range from nation states to criminals. In response, my client is adding a Cyber Threat Center associate, charged with ensuring all equities are secure against all tiers of adversaries. 

You will work within the central hub for Computer Operations and be on the front lines of security incident response, threat hunting, and intelligence. Hours - 6am – 2.30pm, 2 days per week from home.

Responsibilities

  • Act a senior member of the Cyber Threat Center who handles security events and incidents on a daily basis in a fast-paced environment.
  • Acts as an Incident Handler who can handle minor and major security incidents within the defined Computer Security Incident Response process.
  • Role embodies Cyber Network Defense and a successful Cyber Threat Analyst will be able to quickly analyze threats, understand risk, deploy effective countermeasures, make business critical incident response decisions, and work as part of a team of individuals dedicated to protecting the firm.
  • Maintains situational awareness for cyber threats across the global firm and take action where necessary.
  • Countermeasure deployment across various technologies.
  • Malware and exploit analysis.
  • Assessing alerts and notifications of event activity from intrusion detection systems and responding accordingly to the threat.
  • Continuing content development of threat detection and prevention systems.

 

Experience and Skills

  • Systems administrator experience in Linux, Unix, Windows or OSX operating systems.
  • Knowledge of networking and the common network protocols.
  • Demonstrated ability to create scripts, develop tools, or automate processes
  • Knowledge of vulnerabilities and a comfort in manipulating exploit code for analysis.
  • Demonstrated ability to perform static and dynamic malware analysis.
  • Demonstrated ability to analyze large data sets and identify anomalies.
  • Demonstrated ability to quickly create and deploy countermeasures under pressure.
  • Familiarity with NIST framework for incident handling.
  • Understand OSINT techniques.
  • Experience leading and managing IR investigations.

 

One or more of the following certifications or the ability to obtain within 1 year:

  • CISSP: Certified Information Systems Security Professional
  • CCNA: Cisco Certified Network Associate
  • SANS: GCIH – Incident Handler
  • SANS: GCIA – Intrusion Analyst
  • CREST: Certified Incident Manager