About the 2nd/3rd Line Cyber Engineer
We are looking to recruit a cyber engineer into our government service delivery team. This is a practical security role and is likely to be more hands-on and flexible than a traditional SOC. 
You will be expected to work with the authorities on both project related builds and incident response on live systems.

Responsibilities:

• Responding to incidents and investigating events,
• Endpoint monitoring and threat hunting/XDR - Triaging & containing incidents & Differentiating real intrusion events from false positives
• Pro-actively optimising confidentiality, integrity and availability through: Patching and updates, and the rollout of new technology, Proposing changes and responding to threat intelligence, Optimising email/web/VPN gateways, firewalls, and identity appliances & Tailoring management systems and SIEM to the needs of the organisation
• Building, protecting, and hardening servers, network and end user devices.
• Conducting vulnerability assessments with Nessus.
• Reviewing security technology for effectiveness, and auditing where needed.
• Assessing and implementing changes
• Helping to develop cyber security process & procedures.
• Working with other members of the service desk team in aid of troubleshooting and support, getting hands on to help secure and assure customer systems.
  

Experience:
An engineer with experience in the following:

• Endpoint security products (such as MS365 Defender Endpoint and Sophos)
• Windows operating systems and Azure/365 security technologies, including Windows 10/11, Windows Server/VM builds and hardening with both Active Directory & Azure Active Directory
• TCP/IP, DNS, DHCP, SMTP/Exchange
• A good understanding of security tools and their functions, such as NGFW/UTM, certificates/PKI, Intrusion prevention systems (IPS) and Anti-malware.
• A good understanding of SIEM/Logging solutions and management software, ideally Sentinel, AlienVault, or Solarwinds.
• Previous experience working on a customer facing help desk
• Resolving incidents & managing escalations
• Strong Communication skills with all levels within an organisation.

Any experience of Cisco or Sophos firewalls or VMware Horizon is highly desirable. Experience of standards like ISO27001 or PCI-DSS or working on military or government systems is also desirable but not a prerequisite as training will be provided. 
  
Successful candidates will require to be either SC cleared or have the ability to be cleared.

Salaire : £40,000 - £60,000

Date annonce : 04/11/2022

Date de debut : 04/11/2022

Lien pour postuler : https://apply.jobadder.com/eu1/3099...

Lien : https://elitecyber-group.com/cyber-...

Plus d'information sur : https://elitecyber-group.com/cyber-jobs/job/2nd-3rd-line-cyber-engineer