Cyber Security Engineer - Newry (co.down)
Salary: £30k - £40k + Pension + Phone + Laptop + Travel Expenses
Our client is a leader in building, integrating and managing complex cloud environments for their clients globally. They are accredited with the leading global cloud technology providers and offer the full spectrum of IT Managed Services, Integration Services, Software Development and 24X7 Support. They enable organisations to advance their digital transformation journey at an infrastructure and business optimisation level with their consulting practice and business automation software tool set. Led by an experienced team of industry experts the workforce of IT and business professionals operate internationally.
Analyse data, perform research, and verify information for potential misconduct or abnormal behaviour.
Analyse data feeds for event detection and perform correlation analysis on data from multiple monitoring sources.
Respond to cybersecurity events and incidents caused by internal and external threats to our clients, coordinate response activities with various stakeholders for confirmed incidents, and recommend mitigation strategies.
Proactively hunt for adversaries on customer networks utilizing a variety of tools and techniques
Triage emerging threats to protect assets and information in client environments.
Produce forensic imaging and coordinate evidence collection for investigations.
Utilize data mining tools to collect, search, sort, and organize large amounts of information.
Research, address, and resolve data loss prevention (DLP), virus alerts, and other security-related events.
Partner with cross-functional technical teams to share expertise, research threats, and implement solutions.
Produce reports, communications, e-blasts and other forms of communication that may be both internal and client facing, to include leadership and executive management.
Draft root cause analysis reports and recommendations after cybersecurity incidents.
Identify risk areas that will require vulnerability prevention
Understanding of IT operations: help desk, end-point management and server management
1-3 years of hands on experience with security monitoring tools such as IDP/IDS, FW and AV
Ability to quickly explore, examine and understand complex security problems and how it affects a customer's business
Experience with forensics, firewalls, proxies, incident response, and information security frameworks.
Familiarity with configuring and executing vulnerability scans, leveraging tools such as Nessus and Qualys.
Experience with system security vulnerabilities and remediation techniques.
Strong understanding of network and web-related protocols, operating system security, common attack patterns, and exploitation techniques.
Experience performing log analysis of Windows event logs, Apache, IIS, SQL, and firewall logs leveraging SIEM platforms.
Working UNIX/Linux knowledge
Scripting ability in Python is a plus
Excellent written and verbal communication skills, including presentation skills. Desire to work in a support function, performing day to day blocking and tackling on system alerts and end user requests
Experience supporting clients and serving as a technical advisor.
Strong analytic, qualitative, and quantitative reasoning skills.
Knowledge of commercial and federal cybersecurity best practices preferred.
Ability to anticipate and respond to changing priorities and operate effectively in a dynamic demand-based environment requiring flexibility and responsiveness to client matters and needs.
Additional Resources are an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003