Cyber Incident Response Specialist
- Cheltenham, Gloucestershire
- Permanent
- Full-time
- Perform daily response operations for event triage to detect witting or unwitting internal and external threat actors
- Data Loss Prevention (DLP) exception queue management to minimize insider threat risk
- External threat queue management to minimize external threat risk
- Work with internal and external customers to assess the validity of the threat, and determine if further allocation of investigative resources is needed
- Provide recommendations for system/tool tuning and development of new threat indicators
- Support additional Cyber programs when required to ensure business and regulatory requirements are adhered to
- Support Cyber tools and system administration
- Implement automation using technology and process development supporting Cyber and business needs
- Minimum BTEC Level 3 Extended Diploma in Cyber Security or equivalent
- Cyber Security Degree Apprenticeship - Level 6 with basic experience in Cyber Security
- Degree (or equivalent experience) in Computer Science or “STEM” (Science, Technology, Engineering and Math) with basic experience
- The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills
- Experience utilizing logs, tools and manual processes to compare normal activity against malicious activity
- Creativity to assess intention and actions, even during limited or fragmented data
- Ability to trust their instincts, and know when to keep diving into a problem to define the existence and intention of adversary activity
- Good knowledge of Windows and Linux operating systems
- Knowledge of Splunk / SIEM tools
- Performance based annual bonus
- Non-contributory Pension
- Life Assurance
- Group income protection
- Private medical cover
- Holiday Hourly equivalent of 26 days, with flexible option to buy or sell