At Boeing, we are all innovators on a mission to connect, protect, explore and inspire. From the seabed to outer space, you’ll learn and grow, contributing to work that shapes the world.
Find your future with us
We have an exciting opportunity for a CSOC Analyst to join the current Cyber Security Operating Centre (CSOC) to play a key role contributing to the Monitoring, Alerting, Analysis and Protection of the corporate IT environment against all cyber threats!
Key Responsibilities :
Supporting the Security Specialist / Security Manager / Functional Lead in the identification and ongoing monitoring of specific security risks and KPIs
Continuously looking for improvements in both tooling and processes to ensure services operated are aligned to industry best practice and Boeing enterprise best practices
Respond to security events, requests and incidents logged in management systems.
Monitor the security posture of the IT estate and identify anomalous activity and behaviors by the use of SIEM tools
Perform in-depth analysis of log files, systems, and network traffic
Hunt for suspicious activity based on anomalous activity.
Innovate in the areas of SIEM and SOC.
Required Experience :
Packet capture and analysis
Endpoint security : antivirus, device control, integrity, HIDS.
Network device : security controls and protocols
Excellent / strong knowledge OSI Model and associated layer protocols
Working knowledge of SIEM operations (SPLUNK Enterprise Security an advantage)
Development of protective monitoring Use Cases.
Demonstrable evidence of practical threat hunting experience in a high value information / high threat processing environment dealing with persistent threats
Working knowledge of the following desirable :
Experience interpreting routed and routing protocols and application traffic logs
Experience researching current threats and vulnerabilities to Information Technology systems
Experience working in a Security Operations Centre (SOC)
Experience working with SIEMs and evaluating SIEM alerts
Scripting / programming experience
Desirable Qualifications :
Information Security qualification, Degree-level education in Information Security or related area
CISSP IA Certification
Certified Ethical Hacker
KALI Offensive Security Certified Professional (OSCP)
Certified Ethical Hacker
CREST Intrusion Analyst, Cyber Threat Intelligence
SANS GNFA, GREM, GCIH, GPEN
All information provided will be checked and may be verified.