CSOC Analyst
Bristol, England, United Kingdom
1d ago

Job Description

At Boeing, we are all innovators on a mission to connect, protect, explore and inspire. From the seabed to outer space, you’ll learn and grow, contributing to work that shapes the world.

Find your future with us

We have an exciting opportunity for a CSOC Analyst to join the current Cyber Security Operating Centre (CSOC) to play a key role contributing to the Monitoring, Alerting, Analysis and Protection of the corporate IT environment against all cyber threats!

Key Responsibilities :

  • Supporting the Security Specialist / Security Manager / Functional Lead in the identification and ongoing monitoring of specific security risks and KPIs
  • Continuously looking for improvements in both tooling and processes to ensure services operated are aligned to industry best practice and Boeing enterprise best practices
  • Respond to security events, requests and incidents logged in management systems.
  • Monitor the security posture of the IT estate and identify anomalous activity and behaviors by the use of SIEM tools
  • Perform in-depth analysis of log files, systems, and network traffic
  • Hunt for suspicious activity based on anomalous activity.
  • Innovate in the areas of SIEM and SOC.
  • Required Experience :

  • Log analysis
  • Packet capture and analysis
  • Endpoint security : antivirus, device control, integrity, HIDS.
  • Network device : security controls and protocols
  • Excellent / strong knowledge OSI Model and associated layer protocols
  • Working knowledge of SIEM operations (SPLUNK Enterprise Security an advantage)
  • Development of protective monitoring Use Cases.
  • Demonstrable evidence of practical threat hunting experience in a high value information / high threat processing environment dealing with persistent threats
  • Working knowledge of the following desirable :

  • Experience interpreting routed and routing protocols and application traffic logs
  • Experience researching current threats and vulnerabilities to Information Technology systems
  • Experience working in a Security Operations Centre (SOC)
  • Experience working with SIEMs and evaluating SIEM alerts
  • Scripting / programming experience
  • Desirable Qualifications :

  • Information Security qualification, Degree-level education in Information Security or related area
  • CISSP IA Certification
  • CISM Certification
  • Certified Ethical Hacker
  • KALI Offensive Security Certified Professional (OSCP)
  • Certified Ethical Hacker
  • CREST Intrusion Analyst, Cyber Threat Intelligence
  • All information provided will be checked and may be verified.

    Add to favorites
    Remove from favorites
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form