About Cyber Defence
We are a leading cybersecurity team positioned at the cutting edge of threat detection and incident response.
We offer a wide range of high-quality services to our clients.
We focus on operational cyber defence activities with opportunities for wider strategic initiatives.
You will be responsible for investigating and performing root cause analysis on cybersecurity alerts, analysing data sets to support incident response activities and performing remediation of potential phishing emails.
Key Responsibilities
* Investigate and perform root cause analysis on cybersecurity alerts generated by controls
* Analyse and manipulate data sets to support wider incident response activities
* Perform analysis and remediation of potential phishing emails leveraging all available telemetry
* Conduct and report on cyber threat hunting leveraging threat intelligence
* Triage, process and resolve Help Desk incidents routed to Cyber Defence for support
* Maintain the vulnerability management solution scan calendar to ensure consistent coverage across the estate
* Improve and update process documentation to ensure continuity across operations
* Identify and test new technology solutions to enhance automation and detection capabilities
Qualifications & Experience
* 3+ years of experience in a Cybersecurity role
* Bachelor's or Master's degree in Information Security, Cybersecurity, Computer Science or a related field
* Experience in SOC operations and incident response preferably in the sector
* Knowledge of Windows, Linux, Active Directory, Cloud and networking technologies
* Experience with threat vulnerability management, endpoint detection and response, security information and event management, security orchestration automation & response and cloud technologies
* Experience of log analysis, forensic investigation and report writing
* Professional certifications such as CEH, CompTIA Security+ or AZ-500
* Familiarity of cybersecurity frameworks (e.g., NIST, MITRE) and regulatory requirements (e.g. PCI DSS)
* Strong communication, written and organisational skills
* Ability to understand cybersecurity concepts in business terms and advise on decision-making processes