Working for a tier1 consultancy, this role will primarily consist of analysing security event data on behalf of a wide variety of client organisations - primarily host based, although capabilities in network, application and database security will always be valuable.
Security Clearance is highly desirable, especially DV. However, if you don't have security clearance, please indicate if you are happy to go through that process.
Within the role you will help in the cyber defence of complex, enterprise-wide digital security environments by identifying events of concern and providing strong technical input to the client organisations’ response.
Preference may be given to candidates available to work in our Edinburgh, or London offices - however, remote working could be possible for the right candidate. The role involves minimal travel and is primarily remote from our client organisations.
Key Skills are:
Strong knowledge of Windows System Internals, Defender, Active Directory’s role within the enterprise
Ability to identify patterns and trends in events, and to extract useful indicators of compromise from that data.
Previous host-based investigative or analysis work is strongly beneficial.
A background in client facing business-to-business work.
Excellent written & communication skills.
A strongly developed interest in systems security.
Relevant areas of certification may include SANS / GIAC, OSCP or similar.
Experience of gleaning and analysing security information from a large variety of host and network based technologies - tell us what you bring to the table.
Ability to assess the output of of malware analysis and sandboxing techniques.
If you would like to know more, please email firstname.lastname@example.org with your CV and we will schedule a call.