Senior Active Defence Analyst
1 day left
- Recruiter
- BAE Systems
- Location
- Preston, United Kingdom; United Kingdom; Homeworking
- Salary
- Circa 50k + benefits
- Posted
- 18 Sep 2023
- Closes
- 29 Sep 2023
- Ref
- 00107794
- Job Type
- Analytics, Business Intelligence, Data Analytics
- Employer Sector
- Automotive & Aviation, Engineering & Electronics, Government & Military, Production, Manufacturing & Operations
- Contract Type
- Permanent
- Hours
- Full Time
Job title: Senior Active Defence Analyst
Location: Preston
We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role.
Salary: Circa 50k
What you’ll be doing:
• Supporting and enhancing the Breach and Attack Simulation toolset to support Purple Team operations
• Particpate with the scoping of Purple Team exercises including the development and formulation of the planning, execution and final Purple Team exercise report
• Conduct attack simulations to identify gaps in detection and prevention capabilities and offer guidance on necessary improvements
• Assist with producing comprehensive reports and providing actionable recommendations to improve the security posture of BAE Systems
• Collaborating with internal SOC teams to improve and implement effective additional cyber detection rules for the associated SIEM / EDR toolsets to remediate security gaps.
• Support the Active Defence Team by confidently presenting on the output of the Purple Team exercises and be comfortable talking at a senior management level
• Monitor the latest attacker techniques and behaviour, exploring detection and prevention methods
Your skills and experiences:
Essential
• An extensive technical background with a detailed knowledge of cyber security, computer networks and operating systems
• An understanding of Breach and Attack Simulation Toolsets
• Broad and detailed experience of technologies including but not limited to firewalls, IDS/IPS, Active Directory, endpoint protection, Windows Server, Linux, TCP/IP, Networks, Cloud, CDN’s and Vulnerability Management
• Analytical background that is comfortable analysing and interpreting large and complex data sets and articulating the story behind any observations along with providing conclusions and recommendations
• Detailed knowledge of the current threat landscape, the TTPs frequently employed in those attacks and how we can investigate and mitigate these
• Knowledge and demonstrable experience of the MITRE ATT&CK framework
• Good knowledge of server and end user compute technologies
Benefits:
You’ll receive benefits including a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. You’ll also have access to additional benefits such as flexible working, an employee assistance programme, Cycle2work and employee discounts - you may also be eligible for an annual incentive.
The Cyber Operations team:
Cyber Operations is responsible for protecting BAE Systems from Cyber Attack by various threat actors. Not only do we protect BAE Systems and its employees, indirectly we protect those who protect us - who serve in our military and rely on the products and services we create. Across Threat Intelligence, Detection, Incident Response and now Active Defence we work to evolve cyber operations as a world class capability. All roles in Cyber Operations are supported by Immersive Labs and other training as part of our Cyber Academy .
Why BAE Systems?
This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals.
We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.”
Please be aware that many roles working for BAE Systems will be subject to both security and export control restrictions. These restrictions mean that factors including your nationality, any previous nationalities you have held, and your place of birth may limit those roles you can perform for the organisation.
Closing Date: 29 th September 2023
We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
#LI-NP1
Location: Preston
We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role.
Salary: Circa 50k
What you’ll be doing:
• Supporting and enhancing the Breach and Attack Simulation toolset to support Purple Team operations
• Particpate with the scoping of Purple Team exercises including the development and formulation of the planning, execution and final Purple Team exercise report
• Conduct attack simulations to identify gaps in detection and prevention capabilities and offer guidance on necessary improvements
• Assist with producing comprehensive reports and providing actionable recommendations to improve the security posture of BAE Systems
• Collaborating with internal SOC teams to improve and implement effective additional cyber detection rules for the associated SIEM / EDR toolsets to remediate security gaps.
• Support the Active Defence Team by confidently presenting on the output of the Purple Team exercises and be comfortable talking at a senior management level
• Monitor the latest attacker techniques and behaviour, exploring detection and prevention methods
Your skills and experiences:
Essential
• An extensive technical background with a detailed knowledge of cyber security, computer networks and operating systems
• An understanding of Breach and Attack Simulation Toolsets
• Broad and detailed experience of technologies including but not limited to firewalls, IDS/IPS, Active Directory, endpoint protection, Windows Server, Linux, TCP/IP, Networks, Cloud, CDN’s and Vulnerability Management
• Analytical background that is comfortable analysing and interpreting large and complex data sets and articulating the story behind any observations along with providing conclusions and recommendations
• Detailed knowledge of the current threat landscape, the TTPs frequently employed in those attacks and how we can investigate and mitigate these
• Knowledge and demonstrable experience of the MITRE ATT&CK framework
• Good knowledge of server and end user compute technologies
Benefits:
You’ll receive benefits including a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. You’ll also have access to additional benefits such as flexible working, an employee assistance programme, Cycle2work and employee discounts - you may also be eligible for an annual incentive.
The Cyber Operations team:
Cyber Operations is responsible for protecting BAE Systems from Cyber Attack by various threat actors. Not only do we protect BAE Systems and its employees, indirectly we protect those who protect us - who serve in our military and rely on the products and services we create. Across Threat Intelligence, Detection, Incident Response and now Active Defence we work to evolve cyber operations as a world class capability. All roles in Cyber Operations are supported by Immersive Labs and other training as part of our Cyber Academy .
Why BAE Systems?
This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals.
We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.”
Please be aware that many roles working for BAE Systems will be subject to both security and export control restrictions. These restrictions mean that factors including your nationality, any previous nationalities you have held, and your place of birth may limit those roles you can perform for the organisation.
Closing Date: 29 th September 2023
We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
#LI-NP1
Similar jobs
-
New
-
New
