Senior Threat Intelligence Analyst About Us: We are the tech company with people at heart. At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services. Position Overview: As a Senior Cyber Threat Intelligence Analyst, you will be responsible for the day-today delivery of Cyber Threat Intelligence to clients spanning multiple industries, as well as leadership and coaching of junior analysts, and ongoing development of our service. This is a hands-on role and requires both a broad technical knowledge of Cyber Security, as well as specific focused knowledge of CTI tools and processes. Knowledge and/or experience of modern IT Systems, particularly Microsoft solutions and network infrastructure is advantageous. Responsibilities: Proactively research and analyse emerging cyber threats, malware variants, and attacker Tactics, Techniques, and Procedures (TTPs) from various open and closed sources, including threat intelligence feeds, dark web monitoring, and open-source reporting. Develop and maintain comprehensive threat intelligence reports and briefings tailored for technical and non-technical audiences, translating complex information into actionable insights for informed decision-making. Lead or participate in incident response activities, including investigation, analysis of evidence, and collaboration with other teams like IT operations and forensics. Conduct advanced threat hunting to proactively identify hidden threats within the organisation's network, utilising advanced tools and techniques. Participate in vulnerability management activities, collaborating with the vulnerability management team to prioritise and remediate critical vulnerabilities identified through intelligence gathering and risk assessments. Contribute to the development and implementation of comprehensive security policies and procedures to strengthen the organisation's overall cyber defence posture. Stay up to date with the latest cyber security trends and developments through continuous learning and participation in industry conferences and training programs. Mentor and support junior cyber security analysts within the team. Analyse large volumes of complex data from security tools, logs, and incident reports to identify potential threats and assess their risk level. Professional Experience: Demonstrable understanding of the Cybersecurity Ecosystem and Infrastructure Technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS). Experience in secured cloud architectures (Azure, AWS, or similar) and engineering solutions. An understanding of operating systems and their programming interfaces such as UNIX Shell and PowerShell. Experience with scripting languages (Python, Bash) and familiarity with APIs beneficial. An awareness of cyber security related standards and regulations, for example, NIST, CIS, ISO 27001 and PCI DSS. Experience leading teams and providing deputy support to Management. Experience designing a service, reviewing effectiveness of services, procurement, or business project work. Qualifications: One or more of the following industry certifications: SANS301/SANS401/FOR578, Crest CRTIA/CCTIM, Security+, or similar. Ideally a BSc or MSc in Cyber Security, preferably including modules on Ethical Hacking, Digital Forensics, Information Security or Threat Intelligence Please note you need to be eligible to undergo the Security Clearance process for this position. This means you will need to be a British national with 5 years residency in the UK. Click here for the list of benefits. This is a remote-first hybrid role. See here for details about our hybrid workstyle. Our Selection Process: We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law. Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.
Mar 28, 2024
Full time
Senior Threat Intelligence Analyst About Us: We are the tech company with people at heart. At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services. Position Overview: As a Senior Cyber Threat Intelligence Analyst, you will be responsible for the day-today delivery of Cyber Threat Intelligence to clients spanning multiple industries, as well as leadership and coaching of junior analysts, and ongoing development of our service. This is a hands-on role and requires both a broad technical knowledge of Cyber Security, as well as specific focused knowledge of CTI tools and processes. Knowledge and/or experience of modern IT Systems, particularly Microsoft solutions and network infrastructure is advantageous. Responsibilities: Proactively research and analyse emerging cyber threats, malware variants, and attacker Tactics, Techniques, and Procedures (TTPs) from various open and closed sources, including threat intelligence feeds, dark web monitoring, and open-source reporting. Develop and maintain comprehensive threat intelligence reports and briefings tailored for technical and non-technical audiences, translating complex information into actionable insights for informed decision-making. Lead or participate in incident response activities, including investigation, analysis of evidence, and collaboration with other teams like IT operations and forensics. Conduct advanced threat hunting to proactively identify hidden threats within the organisation's network, utilising advanced tools and techniques. Participate in vulnerability management activities, collaborating with the vulnerability management team to prioritise and remediate critical vulnerabilities identified through intelligence gathering and risk assessments. Contribute to the development and implementation of comprehensive security policies and procedures to strengthen the organisation's overall cyber defence posture. Stay up to date with the latest cyber security trends and developments through continuous learning and participation in industry conferences and training programs. Mentor and support junior cyber security analysts within the team. Analyse large volumes of complex data from security tools, logs, and incident reports to identify potential threats and assess their risk level. Professional Experience: Demonstrable understanding of the Cybersecurity Ecosystem and Infrastructure Technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS). Experience in secured cloud architectures (Azure, AWS, or similar) and engineering solutions. An understanding of operating systems and their programming interfaces such as UNIX Shell and PowerShell. Experience with scripting languages (Python, Bash) and familiarity with APIs beneficial. An awareness of cyber security related standards and regulations, for example, NIST, CIS, ISO 27001 and PCI DSS. Experience leading teams and providing deputy support to Management. Experience designing a service, reviewing effectiveness of services, procurement, or business project work. Qualifications: One or more of the following industry certifications: SANS301/SANS401/FOR578, Crest CRTIA/CCTIM, Security+, or similar. Ideally a BSc or MSc in Cyber Security, preferably including modules on Ethical Hacking, Digital Forensics, Information Security or Threat Intelligence Please note you need to be eligible to undergo the Security Clearance process for this position. This means you will need to be a British national with 5 years residency in the UK. Click here for the list of benefits. This is a remote-first hybrid role. See here for details about our hybrid workstyle. Our Selection Process: We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law. Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.
eDiscovery Manager London (we have roles in other UK locations and Germany, and also a fixed-term contract in Zurich, Switzerland) Our clients are actively looking to increase their eDiscovery teams at AM and Manager levels in particular. This role is with a leading diverse Consultant in one of their practice areas. We have other roles in law firms and boutiques. Role duties Preparing data for processing, including staging, logging and quality control checks Processing data using specialist software tools, and review exceptions Respond to client requests and queries, escalate as required Proactively carry out project support and administrative Produce document disclosures as per required specifications Quality Control work of colleagues, such as complex searches in Relativity, document disclosure etc. Communicate with clients and senior team members on a regular basis Research new software tools, techniques and workflow to improve the processing and review function Take an active role in building client relationships both internally and externally Requirements Significant experience of working in eDiscovery and with Relativity Follow directions and understand often complex policies and procedures Ability to work under pressure and maintain quality of detailed work, meet often competing and hard deadlines Ability to perform repetitive tasks in an accurately and consistent manner Desire to learn as well as share knowledge (training will be provided as required) Able to work independently with minimal supervision and as part of a wider team environment Ability to articulate technical information clearly, to non-technical stakeholders Efficient and effective time management and organisation skills Essential MS Office skills (Word, Excel, PowerPoint, etc.) Beneficial Additional Experience An understanding of the EDRM, forensic procedures and best practices Understanding of transactional and relational databases (e.g. SQL, mySQL) Experience of any other hosted document review technologies (e.g. Nuix, Recommind, Clearwell etc.) About Brimstone Consulting : We specialise in finding highly qualified staff in the following areas:Legal and LegalTech (E-Discovery, Digital Forensics, EDRM); Big Data and Data Analytics - (MI/BI/CI); InfoSec and Cyber Crime; Audit; Accountancy and Finance; FinTech (Payments etc.); Fraud - (AML/CTF, Investigation, CFE's etc.); Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.); Compliance/Corporate Governance; IT - (full SDLC- BA's PM's , Architects, Developers etc.); • Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients' specifications. Unless requested otherwise on application CV's are retained for future possible opportunities that match requirements and may be held in the cloud (including US cloud providers).
Mar 27, 2024
Full time
eDiscovery Manager London (we have roles in other UK locations and Germany, and also a fixed-term contract in Zurich, Switzerland) Our clients are actively looking to increase their eDiscovery teams at AM and Manager levels in particular. This role is with a leading diverse Consultant in one of their practice areas. We have other roles in law firms and boutiques. Role duties Preparing data for processing, including staging, logging and quality control checks Processing data using specialist software tools, and review exceptions Respond to client requests and queries, escalate as required Proactively carry out project support and administrative Produce document disclosures as per required specifications Quality Control work of colleagues, such as complex searches in Relativity, document disclosure etc. Communicate with clients and senior team members on a regular basis Research new software tools, techniques and workflow to improve the processing and review function Take an active role in building client relationships both internally and externally Requirements Significant experience of working in eDiscovery and with Relativity Follow directions and understand often complex policies and procedures Ability to work under pressure and maintain quality of detailed work, meet often competing and hard deadlines Ability to perform repetitive tasks in an accurately and consistent manner Desire to learn as well as share knowledge (training will be provided as required) Able to work independently with minimal supervision and as part of a wider team environment Ability to articulate technical information clearly, to non-technical stakeholders Efficient and effective time management and organisation skills Essential MS Office skills (Word, Excel, PowerPoint, etc.) Beneficial Additional Experience An understanding of the EDRM, forensic procedures and best practices Understanding of transactional and relational databases (e.g. SQL, mySQL) Experience of any other hosted document review technologies (e.g. Nuix, Recommind, Clearwell etc.) About Brimstone Consulting : We specialise in finding highly qualified staff in the following areas:Legal and LegalTech (E-Discovery, Digital Forensics, EDRM); Big Data and Data Analytics - (MI/BI/CI); InfoSec and Cyber Crime; Audit; Accountancy and Finance; FinTech (Payments etc.); Fraud - (AML/CTF, Investigation, CFE's etc.); Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.); Compliance/Corporate Governance; IT - (full SDLC- BA's PM's , Architects, Developers etc.); • Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients' specifications. Unless requested otherwise on application CV's are retained for future possible opportunities that match requirements and may be held in the cloud (including US cloud providers).
eDiscovery Assistant Manager London (hybrid WFH) Our client is actively looking to increase their eDiscovery team at AM level in particular. This role is with a leading diverse Consultant in one of their practice areas. We have other roles in law firms and boutiques. Responsibilities Process and prepare data for review and QC checks Respond to client requests and queries, and escalate as required Proactively carry out project supporting and administrative functions Communicate with clients and senior team members on a regular and ongoing basis Research new tools, techniques and workflow to stream line the processing and review function Assist with document review process Take an active role in marketing and building client relationships both internally and externally Requirements 2 years'+ experience of working with Relativity Ability to follow directions and understand complex policies and procedures Ability to work under pressure and maintain quality of detailed work while meeting competing and inflexible deadlines Ability to perform repetitive tasks, accurately and consistently Strong desire to learn as well as share knowledge (training will be provided) Able to work independently with minimal supervision and as part of a wider team Ability to articulate complex information clearly, in non-technical language Proactive and adaptable to deliver a solution driven approach to work Efficient and effective time management and organisation skills Essential MS Office skills (Word, Excel, PowerPoint, etc.) Useful: Good understanding of forensic procedures (EDRM) Understanding of transactional and relational databases (e.g. SQL etc.) Experience of any other hosted document review technologies (e.g. Relativity, Nuix, Recommind, Clearwell, Ringtail, Axcelerate, other ) Understanding of the Electronic Discovery Reference Model (EDRM) About Brimstone Consulting : We specialise in finding highly qualified staff in the following areas:Legal and LegalTech (E-Discovery, Digital Forensics, EDRM); Big Data and Data Analytics - (MI/BI/CI); InfoSec and Cyber Crime; Audit; Accountancy and Finance; FinTech (Payments etc.); Fraud - (AML/CTF, Investigation, CFE's etc.); Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.); Compliance/Corporate Governance; IT - (full SDLC- BA's PM's , Architects, Developers etc.); • Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients' specifications. Unless requested otherwise on application CV's are retained for future possible opportunities that match requirements and may be held in the cloud (including US cloud providers).
Mar 27, 2024
Full time
eDiscovery Assistant Manager London (hybrid WFH) Our client is actively looking to increase their eDiscovery team at AM level in particular. This role is with a leading diverse Consultant in one of their practice areas. We have other roles in law firms and boutiques. Responsibilities Process and prepare data for review and QC checks Respond to client requests and queries, and escalate as required Proactively carry out project supporting and administrative functions Communicate with clients and senior team members on a regular and ongoing basis Research new tools, techniques and workflow to stream line the processing and review function Assist with document review process Take an active role in marketing and building client relationships both internally and externally Requirements 2 years'+ experience of working with Relativity Ability to follow directions and understand complex policies and procedures Ability to work under pressure and maintain quality of detailed work while meeting competing and inflexible deadlines Ability to perform repetitive tasks, accurately and consistently Strong desire to learn as well as share knowledge (training will be provided) Able to work independently with minimal supervision and as part of a wider team Ability to articulate complex information clearly, in non-technical language Proactive and adaptable to deliver a solution driven approach to work Efficient and effective time management and organisation skills Essential MS Office skills (Word, Excel, PowerPoint, etc.) Useful: Good understanding of forensic procedures (EDRM) Understanding of transactional and relational databases (e.g. SQL etc.) Experience of any other hosted document review technologies (e.g. Relativity, Nuix, Recommind, Clearwell, Ringtail, Axcelerate, other ) Understanding of the Electronic Discovery Reference Model (EDRM) About Brimstone Consulting : We specialise in finding highly qualified staff in the following areas:Legal and LegalTech (E-Discovery, Digital Forensics, EDRM); Big Data and Data Analytics - (MI/BI/CI); InfoSec and Cyber Crime; Audit; Accountancy and Finance; FinTech (Payments etc.); Fraud - (AML/CTF, Investigation, CFE's etc.); Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.); Compliance/Corporate Governance; IT - (full SDLC- BA's PM's , Architects, Developers etc.); • Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients' specifications. Unless requested otherwise on application CV's are retained for future possible opportunities that match requirements and may be held in the cloud (including US cloud providers).
Job Title : Cyber Security Engineer L1/L2 and Team Lead Location : Ashford Salary : £20,000 - £38,000 (DOE)We are working with a leading cyber security service provider a leading provider of innovative security solutions dedicated to safeguarding digital assets and protecting businesses from evolving cyber threats. With a commitment to excellence and a passion for staying ahead of the curve, we are seeking a talented Cyber Security Analyst to join our dynamic team.We are on the lookout for L1/L2 and Team Lead engineers as the company is growing and are on the lookout for 3 new engineers! If you're passionate about cybersecurity and thrive in a fast-paced environment, we want to hear from you! Responsibilities: Monitor and analyse security events and incidents using SIEM tools to identify potential threats and vulnerabilities. Conduct in-depth investigations into security incidents, including malware analysis, network forensics, and log analysis. Develop and maintain security policies, procedures, and standards to ensure compliance with industry regulations and best practices. Collaborate with cross-functional teams to implement security controls and measures to protect against emerging threats. Perform regular security assessments and penetration tests to identify and remediate vulnerabilities in the organization's systems and applications. Stay abreast of the latest cybersecurity trends, threats, and technologies to continuously improve the organization's security posture. Provide guidance and support to internal stakeholders on cybersecurity best practices and incident response procedures. Participate in security awareness training and education programs for employees to promote a culture of security awareness and compliance. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. Experience in a cybersecurity role, preferably as a Security Analyst or Incident Responder. Strong knowledge of cybersecurity principles, practices, and technologies, including SIEM, IDS/IPS, firewalls, antivirus, and endpoint protection. Hands-on experience with security tools such as Splunk, Wireshark, Nessus, and Metasploit. Experience with threat hunting, malware analysis, and forensic investigation techniques. Understanding of common cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Excellent analytical and problem-solving skills with a keen attention to detail. Strong communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders. Relevant certifications such as CISSP, CEH, or GIAC are a plus. If you are looking for your next challenge in a cybersecurity focused environment than look no further. Please apply with an up-to-date CV to be considered, like mentioned above, we are on the lookout for 3 new engineers. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
Mar 27, 2024
Full time
Job Title : Cyber Security Engineer L1/L2 and Team Lead Location : Ashford Salary : £20,000 - £38,000 (DOE)We are working with a leading cyber security service provider a leading provider of innovative security solutions dedicated to safeguarding digital assets and protecting businesses from evolving cyber threats. With a commitment to excellence and a passion for staying ahead of the curve, we are seeking a talented Cyber Security Analyst to join our dynamic team.We are on the lookout for L1/L2 and Team Lead engineers as the company is growing and are on the lookout for 3 new engineers! If you're passionate about cybersecurity and thrive in a fast-paced environment, we want to hear from you! Responsibilities: Monitor and analyse security events and incidents using SIEM tools to identify potential threats and vulnerabilities. Conduct in-depth investigations into security incidents, including malware analysis, network forensics, and log analysis. Develop and maintain security policies, procedures, and standards to ensure compliance with industry regulations and best practices. Collaborate with cross-functional teams to implement security controls and measures to protect against emerging threats. Perform regular security assessments and penetration tests to identify and remediate vulnerabilities in the organization's systems and applications. Stay abreast of the latest cybersecurity trends, threats, and technologies to continuously improve the organization's security posture. Provide guidance and support to internal stakeholders on cybersecurity best practices and incident response procedures. Participate in security awareness training and education programs for employees to promote a culture of security awareness and compliance. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. Experience in a cybersecurity role, preferably as a Security Analyst or Incident Responder. Strong knowledge of cybersecurity principles, practices, and technologies, including SIEM, IDS/IPS, firewalls, antivirus, and endpoint protection. Hands-on experience with security tools such as Splunk, Wireshark, Nessus, and Metasploit. Experience with threat hunting, malware analysis, and forensic investigation techniques. Understanding of common cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Excellent analytical and problem-solving skills with a keen attention to detail. Strong communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders. Relevant certifications such as CISSP, CEH, or GIAC are a plus. If you are looking for your next challenge in a cybersecurity focused environment than look no further. Please apply with an up-to-date CV to be considered, like mentioned above, we are on the lookout for 3 new engineers. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
Job Title : Cyber Security Engineer L1/L2 and Team Lead Location : Ashford Salary : 20,000 - 38,000 (DOE) We are working with a leading cyber security service provider a leading provider of innovative security solutions dedicated to safeguarding digital assets and protecting businesses from evolving cyber threats. With a commitment to excellence and a passion for staying ahead of the curve, we are seeking a talented Cyber Security Analyst to join our dynamic team. We are on the lookout for L1/L2 and Team Lead engineers as the company is growing and are on the lookout for 3 new engineers! If you're passionate about cybersecurity and thrive in a fast-paced environment, we want to hear from you! Responsibilities: Monitor and analyse security events and incidents using SIEM tools to identify potential threats and vulnerabilities. Conduct in-depth investigations into security incidents, including malware analysis, network forensics, and log analysis. Develop and maintain security policies, procedures, and standards to ensure compliance with industry regulations and best practices. Collaborate with cross-functional teams to implement security controls and measures to protect against emerging threats. Perform regular security assessments and penetration tests to identify and remediate vulnerabilities in the organization's systems and applications. Stay abreast of the latest cybersecurity trends, threats, and technologies to continuously improve the organization's security posture. Provide guidance and support to internal stakeholders on cybersecurity best practices and incident response procedures. Participate in security awareness training and education programs for employees to promote a culture of security awareness and compliance. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. Experience in a cybersecurity role, preferably as a Security Analyst or Incident Responder. Strong knowledge of cybersecurity principles, practices, and technologies, including SIEM, IDS/IPS, firewalls, antivirus, and endpoint protection. Hands-on experience with security tools such as Splunk, Wireshark, Nessus, and Metasploit. Experience with threat hunting, malware analysis, and forensic investigation techniques. Understanding of common cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Excellent analytical and problem-solving skills with a keen attention to detail. Strong communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders. Relevant certifications such as CISSP, CEH, or GIAC are a plus. If you are looking for your next challenge in a cybersecurity focused environment than look no further. Please apply with an up-to-date CV to be considered, like mentioned above, we are on the lookout for 3 new engineers. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
Mar 27, 2024
Full time
Job Title : Cyber Security Engineer L1/L2 and Team Lead Location : Ashford Salary : 20,000 - 38,000 (DOE) We are working with a leading cyber security service provider a leading provider of innovative security solutions dedicated to safeguarding digital assets and protecting businesses from evolving cyber threats. With a commitment to excellence and a passion for staying ahead of the curve, we are seeking a talented Cyber Security Analyst to join our dynamic team. We are on the lookout for L1/L2 and Team Lead engineers as the company is growing and are on the lookout for 3 new engineers! If you're passionate about cybersecurity and thrive in a fast-paced environment, we want to hear from you! Responsibilities: Monitor and analyse security events and incidents using SIEM tools to identify potential threats and vulnerabilities. Conduct in-depth investigations into security incidents, including malware analysis, network forensics, and log analysis. Develop and maintain security policies, procedures, and standards to ensure compliance with industry regulations and best practices. Collaborate with cross-functional teams to implement security controls and measures to protect against emerging threats. Perform regular security assessments and penetration tests to identify and remediate vulnerabilities in the organization's systems and applications. Stay abreast of the latest cybersecurity trends, threats, and technologies to continuously improve the organization's security posture. Provide guidance and support to internal stakeholders on cybersecurity best practices and incident response procedures. Participate in security awareness training and education programs for employees to promote a culture of security awareness and compliance. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. Experience in a cybersecurity role, preferably as a Security Analyst or Incident Responder. Strong knowledge of cybersecurity principles, practices, and technologies, including SIEM, IDS/IPS, firewalls, antivirus, and endpoint protection. Hands-on experience with security tools such as Splunk, Wireshark, Nessus, and Metasploit. Experience with threat hunting, malware analysis, and forensic investigation techniques. Understanding of common cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Excellent analytical and problem-solving skills with a keen attention to detail. Strong communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders. Relevant certifications such as CISSP, CEH, or GIAC are a plus. If you are looking for your next challenge in a cybersecurity focused environment than look no further. Please apply with an up-to-date CV to be considered, like mentioned above, we are on the lookout for 3 new engineers. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
Information Security Manager - Senior SOC Analyst page is loaded Information Security Manager - Senior SOC Analyst Apply remote type Hybrid locations London - UK Home Worker - USA Hamilton - USA Melbourne - USA Alpharetta - USA time type Full time posted on Posted 4 Days Ago job requisition id JR07220 Role Overview As a Senior SOC Analyst you will be working alongside our established Global SOC Team and our MSSP partner to effectively and timely respond and manage security incidents and alerts. Planet's Global SOC Team provides 24x7x365 monitoring and you will be required to work shifts. What you will do Be the first point of contact for security events, anomalies, incidents, and investigations. Lead the response to the incidents from the start to the end. Create and improve security incident response playbooks and processes. Monitor and triage alerts produced by IDS/IPS, EDR, and file integrity monitoring solutions. Conduct log-based and endpoint-based threat detection to protect against threats coming from multiple sources. Correlate suspicious activities across assets (endpoint, network, applications) and environments (on-premises, cloud) to identify patterns of anomalous activity. Work with our MSSP and service owners to ensure proper onboarding of all log sources into the SIEM solution. Perform Digital Forensics during Incident Response. Prepares detailed incident closure report and submits to team and SOC Director/Manager. Create security-related documents, policies, and procedures. Who you are 6+ years' experience in information security monitoring and incident response. Proven experience in working with Splunk SIEM and in using SOAR solutions, preferably Google Chronicle (Siemplify). Proven experience with Microsoft Defender XDR. Proven experience with Phishing and Malware analysis. Proven experience with Digital Forensics. Ability to work independently and complete tasks if alone on the shift. Comfortable building scripts to automate tasks (e.g. PowerShell, Python). Experience with File Integrity Monitoring solutions would be a plus. About Us Company Background Planet provides integrated software, payment and technology solutions for its customers in the Hospitality and Retail sectors and worldwide via a network of global Financial Services Partners. Founded over 35 years ago, we have evolved our services, delivering an innovative digital commerce platform that puts customer experience first. With headquarters in London and around 3,000 expert employees located across six continents we serve customers in over 120 markets.
Mar 25, 2024
Full time
Information Security Manager - Senior SOC Analyst page is loaded Information Security Manager - Senior SOC Analyst Apply remote type Hybrid locations London - UK Home Worker - USA Hamilton - USA Melbourne - USA Alpharetta - USA time type Full time posted on Posted 4 Days Ago job requisition id JR07220 Role Overview As a Senior SOC Analyst you will be working alongside our established Global SOC Team and our MSSP partner to effectively and timely respond and manage security incidents and alerts. Planet's Global SOC Team provides 24x7x365 monitoring and you will be required to work shifts. What you will do Be the first point of contact for security events, anomalies, incidents, and investigations. Lead the response to the incidents from the start to the end. Create and improve security incident response playbooks and processes. Monitor and triage alerts produced by IDS/IPS, EDR, and file integrity monitoring solutions. Conduct log-based and endpoint-based threat detection to protect against threats coming from multiple sources. Correlate suspicious activities across assets (endpoint, network, applications) and environments (on-premises, cloud) to identify patterns of anomalous activity. Work with our MSSP and service owners to ensure proper onboarding of all log sources into the SIEM solution. Perform Digital Forensics during Incident Response. Prepares detailed incident closure report and submits to team and SOC Director/Manager. Create security-related documents, policies, and procedures. Who you are 6+ years' experience in information security monitoring and incident response. Proven experience in working with Splunk SIEM and in using SOAR solutions, preferably Google Chronicle (Siemplify). Proven experience with Microsoft Defender XDR. Proven experience with Phishing and Malware analysis. Proven experience with Digital Forensics. Ability to work independently and complete tasks if alone on the shift. Comfortable building scripts to automate tasks (e.g. PowerShell, Python). Experience with File Integrity Monitoring solutions would be a plus. About Us Company Background Planet provides integrated software, payment and technology solutions for its customers in the Hospitality and Retail sectors and worldwide via a network of global Financial Services Partners. Founded over 35 years ago, we have evolved our services, delivering an innovative digital commerce platform that puts customer experience first. With headquarters in London and around 3,000 expert employees located across six continents we serve customers in over 120 markets.
Job Title: Cyber Security Analyst Location: London Salary: £50,000 We are working with a leading cyber security service provider a leading provider of innovative cybersecurity solutions dedicated to safeguarding digital assets and protecting businesses from evolving cyber threats. With a commitment to excellence and a passion for staying ahead of the curve, we are seeking a talented Cyber Security Analyst to join our dynamic team. If you're passionate about cybersecurity and thrive in a fast-paced environment, we want to hear from you! As a Cyber Security Analyst, you will play a crucial role in protecting the organization's digital infrastructure and ensuring the confidentiality, integrity, and availability of our information assets. You will analyse and respond to security incidents, conduct thorough investigations, and implement proactive measures to mitigate risks and vulnerabilities. This position offers an exciting opportunity to work with cutting-edge technologies and collaborate with a team of skilled professionals dedicated to staying ahead of cyber threats. Responsibilities: Monitor and analyse security events and incidents using SIEM tools to identify potential threats and vulnerabilities. Conduct in-depth investigations into security incidents, including malware analysis, network forensics, and log analysis. Develop and maintain security policies, procedures, and standards to ensure compliance with industry regulations and best practices. Collaborate with cross-functional teams to implement security controls and measures to protect against emerging threats. Perform regular security assessments and penetration tests to identify and remediate vulnerabilities in the organization's systems and applications. Stay abreast of the latest cybersecurity trends, threats, and technologies to continuously improve the organization's security posture. Provide guidance and support to internal stakeholders on cybersecurity best practices and incident response procedures. Participate in security awareness training and education programs for employees to promote a culture of security awareness and compliance. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. Experience in a cybersecurity role, preferably as a Security Analyst or Incident Responder. Strong knowledge of cybersecurity principles, practices, and technologies, including SIEM, IDS/IPS, firewalls, antivirus, and endpoint protection. Hands-on experience with security tools such as Splunk, Wireshark, Nessus, and Metasploit. Experience with threat hunting, malware analysis, and forensic investigation techniques. Understanding of common cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Excellent analytical and problem-solving skills with a keen attention to detail. Strong communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders. Relevant certifications such as CISSP, CEH, or GIAC are a plus. If you are looking for your next challenge in a cybersecurity focussed environment than look no further. Please apply with an up-to-date CV to be considered. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
Mar 25, 2024
Full time
Job Title: Cyber Security Analyst Location: London Salary: £50,000 We are working with a leading cyber security service provider a leading provider of innovative cybersecurity solutions dedicated to safeguarding digital assets and protecting businesses from evolving cyber threats. With a commitment to excellence and a passion for staying ahead of the curve, we are seeking a talented Cyber Security Analyst to join our dynamic team. If you're passionate about cybersecurity and thrive in a fast-paced environment, we want to hear from you! As a Cyber Security Analyst, you will play a crucial role in protecting the organization's digital infrastructure and ensuring the confidentiality, integrity, and availability of our information assets. You will analyse and respond to security incidents, conduct thorough investigations, and implement proactive measures to mitigate risks and vulnerabilities. This position offers an exciting opportunity to work with cutting-edge technologies and collaborate with a team of skilled professionals dedicated to staying ahead of cyber threats. Responsibilities: Monitor and analyse security events and incidents using SIEM tools to identify potential threats and vulnerabilities. Conduct in-depth investigations into security incidents, including malware analysis, network forensics, and log analysis. Develop and maintain security policies, procedures, and standards to ensure compliance with industry regulations and best practices. Collaborate with cross-functional teams to implement security controls and measures to protect against emerging threats. Perform regular security assessments and penetration tests to identify and remediate vulnerabilities in the organization's systems and applications. Stay abreast of the latest cybersecurity trends, threats, and technologies to continuously improve the organization's security posture. Provide guidance and support to internal stakeholders on cybersecurity best practices and incident response procedures. Participate in security awareness training and education programs for employees to promote a culture of security awareness and compliance. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. Experience in a cybersecurity role, preferably as a Security Analyst or Incident Responder. Strong knowledge of cybersecurity principles, practices, and technologies, including SIEM, IDS/IPS, firewalls, antivirus, and endpoint protection. Hands-on experience with security tools such as Splunk, Wireshark, Nessus, and Metasploit. Experience with threat hunting, malware analysis, and forensic investigation techniques. Understanding of common cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Excellent analytical and problem-solving skills with a keen attention to detail. Strong communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders. Relevant certifications such as CISSP, CEH, or GIAC are a plus. If you are looking for your next challenge in a cybersecurity focussed environment than look no further. Please apply with an up-to-date CV to be considered. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
Job Title: Cyber Security Analyst Location: London Salary: 50,000 We are working with a leading cyber security service provider a leading provider of innovative cybersecurity solutions dedicated to safeguarding digital assets and protecting businesses from evolving cyber threats. With a commitment to excellence and a passion for staying ahead of the curve, we are seeking a talented Cyber Security Analyst to join our dynamic team. If you're passionate about cybersecurity and thrive in a fast-paced environment, we want to hear from you! As a Cyber Security Analyst, you will play a crucial role in protecting the organization's digital infrastructure and ensuring the confidentiality, integrity, and availability of our information assets. You will analyse and respond to security incidents, conduct thorough investigations, and implement proactive measures to mitigate risks and vulnerabilities. This position offers an exciting opportunity to work with cutting-edge technologies and collaborate with a team of skilled professionals dedicated to staying ahead of cyber threats. Responsibilities: Monitor and analyse security events and incidents using SIEM tools to identify potential threats and vulnerabilities. Conduct in-depth investigations into security incidents, including malware analysis, network forensics, and log analysis. Develop and maintain security policies, procedures, and standards to ensure compliance with industry regulations and best practices. Collaborate with cross-functional teams to implement security controls and measures to protect against emerging threats. Perform regular security assessments and penetration tests to identify and remediate vulnerabilities in the organization's systems and applications. Stay abreast of the latest cybersecurity trends, threats, and technologies to continuously improve the organization's security posture. Provide guidance and support to internal stakeholders on cybersecurity best practices and incident response procedures. Participate in security awareness training and education programs for employees to promote a culture of security awareness and compliance. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. Experience in a cybersecurity role, preferably as a Security Analyst or Incident Responder. Strong knowledge of cybersecurity principles, practices, and technologies, including SIEM, IDS/IPS, firewalls, antivirus, and endpoint protection. Hands-on experience with security tools such as Splunk, Wireshark, Nessus, and Metasploit. Experience with threat hunting, malware analysis, and forensic investigation techniques. Understanding of common cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Excellent analytical and problem-solving skills with a keen attention to detail. Strong communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders. Relevant certifications such as CISSP, CEH, or GIAC are a plus. If you are looking for your next challenge in a cybersecurity focussed environment than look no further. Please apply with an up-to-date CV to be considered. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
Mar 25, 2024
Full time
Job Title: Cyber Security Analyst Location: London Salary: 50,000 We are working with a leading cyber security service provider a leading provider of innovative cybersecurity solutions dedicated to safeguarding digital assets and protecting businesses from evolving cyber threats. With a commitment to excellence and a passion for staying ahead of the curve, we are seeking a talented Cyber Security Analyst to join our dynamic team. If you're passionate about cybersecurity and thrive in a fast-paced environment, we want to hear from you! As a Cyber Security Analyst, you will play a crucial role in protecting the organization's digital infrastructure and ensuring the confidentiality, integrity, and availability of our information assets. You will analyse and respond to security incidents, conduct thorough investigations, and implement proactive measures to mitigate risks and vulnerabilities. This position offers an exciting opportunity to work with cutting-edge technologies and collaborate with a team of skilled professionals dedicated to staying ahead of cyber threats. Responsibilities: Monitor and analyse security events and incidents using SIEM tools to identify potential threats and vulnerabilities. Conduct in-depth investigations into security incidents, including malware analysis, network forensics, and log analysis. Develop and maintain security policies, procedures, and standards to ensure compliance with industry regulations and best practices. Collaborate with cross-functional teams to implement security controls and measures to protect against emerging threats. Perform regular security assessments and penetration tests to identify and remediate vulnerabilities in the organization's systems and applications. Stay abreast of the latest cybersecurity trends, threats, and technologies to continuously improve the organization's security posture. Provide guidance and support to internal stakeholders on cybersecurity best practices and incident response procedures. Participate in security awareness training and education programs for employees to promote a culture of security awareness and compliance. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. Experience in a cybersecurity role, preferably as a Security Analyst or Incident Responder. Strong knowledge of cybersecurity principles, practices, and technologies, including SIEM, IDS/IPS, firewalls, antivirus, and endpoint protection. Hands-on experience with security tools such as Splunk, Wireshark, Nessus, and Metasploit. Experience with threat hunting, malware analysis, and forensic investigation techniques. Understanding of common cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Excellent analytical and problem-solving skills with a keen attention to detail. Strong communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders. Relevant certifications such as CISSP, CEH, or GIAC are a plus. If you are looking for your next challenge in a cybersecurity focussed environment than look no further. Please apply with an up-to-date CV to be considered. In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.
Our Mission At Palo Alto Networks everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we're looking for innovators who are as committed to shaping the future of cybersecurity as we are. Our Approach to Work We lead with flexibility and choice in all of our people programs. We have disrupted the traditional view that all employees have the same needs and wants. We offer personalization and offer our employees the opportunity to choose what works best for them as often as possible - from your wellbeing support to your growth and development, and beyond! At Palo Alto Networks, we believe in the power of collaboration and value in-person interactions. This is why our employees generally work from the office three days per week, leaving two days for choice and flexibility to work where you feel most effective. This setup fosters casual conversations, problem-solving, and trusted relationships. While details may evolve, our goal is to create an environment where innovation thrives, with office-based teams coming together three days a week to collaborate and thrive, together! Your Career The Senior Consulting Director, Offensive Security will lead the EMEA Offensive security/Red Team focused on assessing and challenging the security posture of Unit 42's clients across a wide array of industries, geographies, and organizational structures. They will be the client's advocate for cybersecurity risk management and will provide strategic and technical leadership in this area. This role will be a mix between hands off and hands on work. As we are growing the region we ask for a hybrid can-do mentality with strong technical acumen. Your Impact Assist in the development of internal infrastructure design for research, development, and testing focused on offensive security Conducts periodic scans of networks to find and detect vulnerabilities Performs client penetration testing to find any vulnerabilities or weaknesses that might be exploited by a malicious party, using open-source, custom, and commercial testing tools Ability to assist in scoping engagements by clearly articulating various penetration approaches and methodologies to audiences ranging from highly technical to executive personnel Report generation that clearly communicates testing and assessment details, results, and remediation recommendations to clients Develop scripts, tools, and methodologies to automate and streamline internal processes and engagements Conducts IT application testing, cybersecurity tool and systems analysis, system and network administration, and systems engineering support for the sustainment of information technology systems (mobile application testing, penetration testing, application, security, and hardware testing) Conduct threat hunting and/or compromise assessment engagements to identify active or dormant indicators of compromise (IoCs) using Crypsis and Palo Alto Networks' threat hunting tools (and/or client owned hunting instrumentation where applicable) Assist Unit42 Leadership in the development of security standards and best practices for the organization and recommend security enhancements as needed Able to conduct cyber risk assessments using frameworks or standards like NIST CSF, ISO 27001/2, PCI, CIS Top 20, CMMC, or other industry measurement tools Conduct cloud penetration testing engagements to assess specific workloads (i.e., AWS, GCP, Azure, containers, or other PaaS and SaaS instances) for vulnerabilities and subsequently attempt to exploit identified weaknesses after receiving permission from client stakeholders Provide recommendations to clients on specific security measures to monitor and protect sensitive data and systems from infiltration and cyber-attacks including response and recovery of a data security breach Manage and grow the Offensive Unit42 EMEA team Ability to manage remote team members Ability to perform travel requirements as needed to meet business demands (on average 30%) Your Experience Demonstrated prior consulting experience and success with large, multinational organisations in designing and implementing an organisation's cybersecurity program, organisational structures, and capabilities Experience as a senior-level team leader having established a security vision, strategy, and program, while anticipating future security and compliance challenges up to and including overseeing other seniors, mid-level analyst/consultant teams Ability to travel as needed to meet business demands Strong communication and presentation skills with verifiable industry experience Expert level of knowledge of applicable laws, compliance regulations, and industry standards as it relates to privacy, security, and compliance Technical proficiency in a wide range of cyber risk management services, including cyber threat, risk and control assessments, penetration testing/Red Teaming, vulnerability assessments, among others Client first mindset and strong client management skills -Experienced-based understanding of clients' needs and desired outcomes in cybersecurity and risk management engagements Public speaking experience, demonstrated writing ability, including technical reports, business communication, and thought leadership pieces Operates with a hands-on approach to service delivery with a bias towards collaboration and teamwork Must be results-driven and strategic, yet have the ability to thrive in a face-paced startup environment Cybersecurity industry certifications such as CISSP and/or CISM Bachelor's Degree -an advanced degree such as MSc, MBA, is a plus or equivalent military experience required 12+ years ofrelevant professional experience in the cyber security industry Track record of thinking out of the box and devising innovative solutions that add value / resolve client challenges Identified ability to provide a valuable contribution to the development and growth of the practice as a whole and, specifically - have an external presence via public speaking, conferences, and/or publications have credibility, executive presence, and gravitas be able to have a meaningful and rapid delivery contribution have the potential and capacity to understand all aspects of the business and gain an excellent understanding of PANW products be collaborative and able to build relationships internally, externally, and across all PANW functions, including the sales team Last but not least a strong track record on scaling Red teams The Team Unit 42 Consulting is Palo Alto Network's security advisory team. Our vision is to create a more secure digital world by providing the highest quality incident response, risk management, and digital forensic services to clients of all sizes. Our team is composed of recognized experts and incident responders with deep technical expertise and experience in investigations, data breach response, digital forensics, and information security. With a highly successful track record of delivering mission-critical cybersecurity solutions, we are experienced in working quickly to provide an effective incident response, attack readiness, and remediation plans with a focus on providing long-term support to improve our clients' security posture. Our Commitment We're trailblazers that dream big, take risks, and challenge cybersecurity's status quo. It's simple: we can't accomplish our mission without diverse teams innovating, together. We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at . Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics. All your information will be kept confidential according to EEO guidelines. Is role eligible for Immigration Sponsorship?: Yes
Mar 22, 2024
Full time
Our Mission At Palo Alto Networks everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we're looking for innovators who are as committed to shaping the future of cybersecurity as we are. Our Approach to Work We lead with flexibility and choice in all of our people programs. We have disrupted the traditional view that all employees have the same needs and wants. We offer personalization and offer our employees the opportunity to choose what works best for them as often as possible - from your wellbeing support to your growth and development, and beyond! At Palo Alto Networks, we believe in the power of collaboration and value in-person interactions. This is why our employees generally work from the office three days per week, leaving two days for choice and flexibility to work where you feel most effective. This setup fosters casual conversations, problem-solving, and trusted relationships. While details may evolve, our goal is to create an environment where innovation thrives, with office-based teams coming together three days a week to collaborate and thrive, together! Your Career The Senior Consulting Director, Offensive Security will lead the EMEA Offensive security/Red Team focused on assessing and challenging the security posture of Unit 42's clients across a wide array of industries, geographies, and organizational structures. They will be the client's advocate for cybersecurity risk management and will provide strategic and technical leadership in this area. This role will be a mix between hands off and hands on work. As we are growing the region we ask for a hybrid can-do mentality with strong technical acumen. Your Impact Assist in the development of internal infrastructure design for research, development, and testing focused on offensive security Conducts periodic scans of networks to find and detect vulnerabilities Performs client penetration testing to find any vulnerabilities or weaknesses that might be exploited by a malicious party, using open-source, custom, and commercial testing tools Ability to assist in scoping engagements by clearly articulating various penetration approaches and methodologies to audiences ranging from highly technical to executive personnel Report generation that clearly communicates testing and assessment details, results, and remediation recommendations to clients Develop scripts, tools, and methodologies to automate and streamline internal processes and engagements Conducts IT application testing, cybersecurity tool and systems analysis, system and network administration, and systems engineering support for the sustainment of information technology systems (mobile application testing, penetration testing, application, security, and hardware testing) Conduct threat hunting and/or compromise assessment engagements to identify active or dormant indicators of compromise (IoCs) using Crypsis and Palo Alto Networks' threat hunting tools (and/or client owned hunting instrumentation where applicable) Assist Unit42 Leadership in the development of security standards and best practices for the organization and recommend security enhancements as needed Able to conduct cyber risk assessments using frameworks or standards like NIST CSF, ISO 27001/2, PCI, CIS Top 20, CMMC, or other industry measurement tools Conduct cloud penetration testing engagements to assess specific workloads (i.e., AWS, GCP, Azure, containers, or other PaaS and SaaS instances) for vulnerabilities and subsequently attempt to exploit identified weaknesses after receiving permission from client stakeholders Provide recommendations to clients on specific security measures to monitor and protect sensitive data and systems from infiltration and cyber-attacks including response and recovery of a data security breach Manage and grow the Offensive Unit42 EMEA team Ability to manage remote team members Ability to perform travel requirements as needed to meet business demands (on average 30%) Your Experience Demonstrated prior consulting experience and success with large, multinational organisations in designing and implementing an organisation's cybersecurity program, organisational structures, and capabilities Experience as a senior-level team leader having established a security vision, strategy, and program, while anticipating future security and compliance challenges up to and including overseeing other seniors, mid-level analyst/consultant teams Ability to travel as needed to meet business demands Strong communication and presentation skills with verifiable industry experience Expert level of knowledge of applicable laws, compliance regulations, and industry standards as it relates to privacy, security, and compliance Technical proficiency in a wide range of cyber risk management services, including cyber threat, risk and control assessments, penetration testing/Red Teaming, vulnerability assessments, among others Client first mindset and strong client management skills -Experienced-based understanding of clients' needs and desired outcomes in cybersecurity and risk management engagements Public speaking experience, demonstrated writing ability, including technical reports, business communication, and thought leadership pieces Operates with a hands-on approach to service delivery with a bias towards collaboration and teamwork Must be results-driven and strategic, yet have the ability to thrive in a face-paced startup environment Cybersecurity industry certifications such as CISSP and/or CISM Bachelor's Degree -an advanced degree such as MSc, MBA, is a plus or equivalent military experience required 12+ years ofrelevant professional experience in the cyber security industry Track record of thinking out of the box and devising innovative solutions that add value / resolve client challenges Identified ability to provide a valuable contribution to the development and growth of the practice as a whole and, specifically - have an external presence via public speaking, conferences, and/or publications have credibility, executive presence, and gravitas be able to have a meaningful and rapid delivery contribution have the potential and capacity to understand all aspects of the business and gain an excellent understanding of PANW products be collaborative and able to build relationships internally, externally, and across all PANW functions, including the sales team Last but not least a strong track record on scaling Red teams The Team Unit 42 Consulting is Palo Alto Network's security advisory team. Our vision is to create a more secure digital world by providing the highest quality incident response, risk management, and digital forensic services to clients of all sizes. Our team is composed of recognized experts and incident responders with deep technical expertise and experience in investigations, data breach response, digital forensics, and information security. With a highly successful track record of delivering mission-critical cybersecurity solutions, we are experienced in working quickly to provide an effective incident response, attack readiness, and remediation plans with a focus on providing long-term support to improve our clients' security posture. Our Commitment We're trailblazers that dream big, take risks, and challenge cybersecurity's status quo. It's simple: we can't accomplish our mission without diverse teams innovating, together. We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at . Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics. All your information will be kept confidential according to EEO guidelines. Is role eligible for Immigration Sponsorship?: Yes
THE ROLE You will deliver innovative, technology focused solutions throughout the disputes and investigations processes. You must have a good understanding of the EDRM model and solid eDiscovery (right hand side) experience. Experience of various technologies that can be used within the project lifecycle. You will learn from senior colleagues the technical aspects of the platforms that the company uses, they will be technical e-Disclosure specialists and you will work together to implement fit-for-purpose project workflows and ensure their eDisclosure Service Providers deliver first class service. You will ensure the overall provision of high quality services and build the reputation of the eDiscovery function both internally and externally. You must be enthusiastic and inquisitive about the use of technology and have a willingness to quickly learn and master different forms/applications of technology. You must also have the independent thinking and inner motivation to keep up to date with industry advancements. This is a challenging but enjoyable role and limited travel may be required from time to time KEY RESPONSIBILITIES To deliver services to the Disputes and Investigations, Competition, and, Corporate groups Work collaboratively with associates and the eDisclosure team, utilising technology wherever possible Work with eDisclosure Service Providers to ensure they are providing access to advanced technology and delivering a quality service Work on eDisclosure projects. To work with paralegals in creating and managing project documentation To work with colleagues to provide frontline technical and operational support for document review and data management platforms To work with a team of e-Disclosure specialists and paralegals To provide document review platform support to fee earners To manage and QC document productions To review and recommend technology solutions that may benefit the firm This role will involve supporting senior in-house eDiscovery specialists alongside eDiscovery service providers. To work under the direction of the Managers/Seniors To work with Managers to develop project management plans To take the lead on individual cases, reporting to and updating Managers/Senior Executives on a regular basis. To assist in the preparation of presentations to internal and external audiences System implementation and support To assist and enable internal stakeholders to work effectively with relevant IT systems for handling case-related information Document review software expertise To work with Third-Party Partners To advise on eDiscovery processes and protocols These responsibilities outlined above cannot fully encompass all tasks that may be required. SKILLS/EXPERIENCE A solid understanding of eDiscovery Technology and its application including full knowledge of EDRM model Experience in an appropriate level in the eDiscovery or technical client data field Able to work collaboratively and to build strong business relationships with internal and external contacts Excellent interpersonal and communication skills Direct technical experience with industry leading tools such as Relativity, Axcelerate, Reveal/Brainspace, Everlaw, Nuix etc. Excellent proven organisational skills Keeping fully up to speed with technical and professional developments in your field Able to interpret a range of data to identify trends and critical issues, track performance or report on progress Able to provide sound advice and recommendations on complex or ambiguous issues Highly personally responsive and helpful in response to issues and problems Able to make complex technical information accessible, understandable and engaging Proactive in discussions Able to lead and manage people An understanding of the legal framework of eDiscovery, existing protocols, practices and relevant legal standards id desirable Academic legal training or experience as a legal practitioner is desirable Experience related to eDiscovery and other Litigation Support processes is desirable Experience of supervising more junior staff Proficiency in MS Windows and MS Office Applications Financial management skills are desirable About Brimstone Consulting : We specialise in finding highly qualified staff in the following areas: Forensic Accounting & Fraud - (AML/CTF, Investigation, CFE's etc.); Legal and LegalTech (E-Discovery, Digital Forensics, EDRM); Big Data and Data Analytics- (MI/BI/CI); InfoSec and Cyber Crime; Audit; Accountancy and Finance; FinTech (Payments etc.); Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.); Compliance/Corporate Governance; IT- (full SDLC- BA's PM's , Architects, Developers etc.); Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients' specifications. We may store applications in our cloud storage facilities that may include dropbox. end
Mar 21, 2024
Full time
THE ROLE You will deliver innovative, technology focused solutions throughout the disputes and investigations processes. You must have a good understanding of the EDRM model and solid eDiscovery (right hand side) experience. Experience of various technologies that can be used within the project lifecycle. You will learn from senior colleagues the technical aspects of the platforms that the company uses, they will be technical e-Disclosure specialists and you will work together to implement fit-for-purpose project workflows and ensure their eDisclosure Service Providers deliver first class service. You will ensure the overall provision of high quality services and build the reputation of the eDiscovery function both internally and externally. You must be enthusiastic and inquisitive about the use of technology and have a willingness to quickly learn and master different forms/applications of technology. You must also have the independent thinking and inner motivation to keep up to date with industry advancements. This is a challenging but enjoyable role and limited travel may be required from time to time KEY RESPONSIBILITIES To deliver services to the Disputes and Investigations, Competition, and, Corporate groups Work collaboratively with associates and the eDisclosure team, utilising technology wherever possible Work with eDisclosure Service Providers to ensure they are providing access to advanced technology and delivering a quality service Work on eDisclosure projects. To work with paralegals in creating and managing project documentation To work with colleagues to provide frontline technical and operational support for document review and data management platforms To work with a team of e-Disclosure specialists and paralegals To provide document review platform support to fee earners To manage and QC document productions To review and recommend technology solutions that may benefit the firm This role will involve supporting senior in-house eDiscovery specialists alongside eDiscovery service providers. To work under the direction of the Managers/Seniors To work with Managers to develop project management plans To take the lead on individual cases, reporting to and updating Managers/Senior Executives on a regular basis. To assist in the preparation of presentations to internal and external audiences System implementation and support To assist and enable internal stakeholders to work effectively with relevant IT systems for handling case-related information Document review software expertise To work with Third-Party Partners To advise on eDiscovery processes and protocols These responsibilities outlined above cannot fully encompass all tasks that may be required. SKILLS/EXPERIENCE A solid understanding of eDiscovery Technology and its application including full knowledge of EDRM model Experience in an appropriate level in the eDiscovery or technical client data field Able to work collaboratively and to build strong business relationships with internal and external contacts Excellent interpersonal and communication skills Direct technical experience with industry leading tools such as Relativity, Axcelerate, Reveal/Brainspace, Everlaw, Nuix etc. Excellent proven organisational skills Keeping fully up to speed with technical and professional developments in your field Able to interpret a range of data to identify trends and critical issues, track performance or report on progress Able to provide sound advice and recommendations on complex or ambiguous issues Highly personally responsive and helpful in response to issues and problems Able to make complex technical information accessible, understandable and engaging Proactive in discussions Able to lead and manage people An understanding of the legal framework of eDiscovery, existing protocols, practices and relevant legal standards id desirable Academic legal training or experience as a legal practitioner is desirable Experience related to eDiscovery and other Litigation Support processes is desirable Experience of supervising more junior staff Proficiency in MS Windows and MS Office Applications Financial management skills are desirable About Brimstone Consulting : We specialise in finding highly qualified staff in the following areas: Forensic Accounting & Fraud - (AML/CTF, Investigation, CFE's etc.); Legal and LegalTech (E-Discovery, Digital Forensics, EDRM); Big Data and Data Analytics- (MI/BI/CI); InfoSec and Cyber Crime; Audit; Accountancy and Finance; FinTech (Payments etc.); Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.); Compliance/Corporate Governance; IT- (full SDLC- BA's PM's , Architects, Developers etc.); Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients' specifications. We may store applications in our cloud storage facilities that may include dropbox. end
Malware Reverse Engineer Location: Remote working - Office based in Reading Salary: Competitive Salary and Benefits Career Level : Specialist, Associate Manager or Manager About Accenture Cyber Threat Intelligence (ACTI) ACTI is a global team that spans 13 countries and 4 continents and speaks more than 30 languages. We are passionate about delivering intelligence analysis, and providing industry-leading analytic insights, cyber context, and critical services our clients need to achieve their business-line and strategic-growth initiatives. We know success is only possible by developing and supporting our most-critical resources: our talented analysts, developers, and supporting team members. We value creativity and entrepreneurship in our team; where possible, we back staff initiatives with opportunities and investments. We enjoy the hunt. We strive to automate and innovate while working with powerful resources and differentiated data. Above all else, we value an egoless approach to guiding our clients as they navigate their businesses through all aspects of the cyber domain. Who You Are You are passionate about cybersecurity and intelligence analysis. You stay abreast of the latest threats, recognize the value of intelligence, and believe it should drive operations. You are a devoted team member who is always willing to lend a hand, mentor a colleague, or increase our global team's awareness by sharing your knowledge and approaches with others. You are productive, easy to work with, and understand that adherence to a good process is key to excellence. Role Description As a Malware Reverse Engineer at ACTI, you will reverse engineer and analyze malware to evaluate sophisticated malicious code to settle malware capabilities and purposes. Analysis includes the use of specialized systems and tools, including dissemblers, debuggers, hex editors, unpackers, virtual machines, and those for network traffic analysis. Key Responsibilities Analyze malicious events and campaigns to determine attack vectors and retrieve malware payloads. Reverse engineer files suspected or known to belong to identified malware families to determine their command-and-control (C2) infrastructure and targeting. Incorporate analysis results into detailed reporting to include purpose, behavior, C2 server infrastructure, and mitigation techniques related to analyzed malware families, malicious campaigns, and events. Track prevailing malware families, including downloaders, banking Trojans, information stealers, ransomware, and remote access Trojans. Reverse engineer recently discovered malware variants to check potential feature augmentation or configuration structure changes. Improve existing tools that extract known malware family configurations based on reverse engineering results. Research the latest malware detection evasion techniques, such as use of customized packers, customized crypters, fully undetectable (FUD) techniques, host intrusion prevention system (HIPS) bypassing, and anti-virus (AV) software bypassing. Based on research, design and develop generic unpacking methods and tools for use as standalone tools or within automated analysis systems and sandboxes. Provide customer support by responding to requests related to suspicious file analysis that sometimes require malware reverse engineering and determination of contextual information surrounding indicators of compromise; do so by providing detailed analysis reports and mitigation recommendations. Provide customer support by responding to cybersecurity requests, including those for: open-source intelligence (OSINT) research; domain, IP address, or URL analysis; malicious campaign information; and/or event attribution. Provide answers to specific questions, the answers of which clients use for operational mentorship to aid their strategies. Design, develop, and implement Windows kernel modules to support automated malware analysis; such modules include kernel system service filtering modules able to intercept operating system services on 32-bit and 64-bit Windows operating systems without triggering those systems' self-protection mechanisms, and kernel-mode modules able to force designated processes to load specific modules that load decoders designed for extracting malware configurations. Design, develop, and implement generic unpackers that combat widely used malware packing methods to retrieve malicious payloads from packed malware samples automatically. Create detection rules and signatures for detecting malware families, and provide detection or blocking recommendations. Develop decoders to extract malware configurations-including basic C2 settings or secondary dynamic configurations, such as those outlining targeted institutions and web injects-based on reverse engineering results. Provide junior engineers with technical training, including: training on malware analysis; reverse engineering; Windows internals; and development, identification, unpacking, and de-obfuscation of malicious code. Travel occasionally as this position may require doing so to address client needs, improve results, or otherwise support projects. Basic Qualifications Bachelor's Degree in Computer Forensics, Science, Engineering, Information Systems, or another related security field, or comparable experience. Experience with malware analysis, reverse engineering, and development. Ability to write, understand, and/or analyze code in programming and scripting languages, including Assembly x86/x64, C, C++, Python, JavaScript, Java, PHP, and HTML. Basic knowledge of and experience with malware packers, crypters, and obfuscation techniques. Understanding of operating system internals and the Windows API. Experience with debuggers, decompilers, and network traffic analysis tools. Development experience in Assembly, Python, C, or C++. Strong understanding of the intelligence lifecycle and associated analytic methodologies (Cyber Kill Chain, Diamond Model, ATT&CK, etc.). Practical understanding of malware analysis and/or reverse engineering, and the ability to develop malware detection signatures (e.g. YARA). Required Skills Ability to analyze and unpack obfuscated code. Strong written and verbal skills; can communicate complex concepts at a high level while retaining accuracy and highlighting features in a way that improves audience engagement. Strong problem solving and critical thinking capabilities. Desired Skills Two or more years of experience in malware analysis, reverse engineering, and development fields. Deep understanding of operating system internals and the Windows API. Ability to work with a high degree of independence. Ability to collaborate in a team environment to focus on a common goal. Show more Show less Qualifications What's in it for you At Accenture in addition to a competitive basic salary, you will alsohave an extensive benefits package which includes 25days' vacation per year, gym subsidy, private medical insurance and 3 extra days leave per year for charitable work of your choice! About Accenture Accenture is a leading global professional services company, providing a broad range of services in strategy and consulting, interactive, technology and operations, with digital capabilities across all of these services. We combine unmatched experience and specialized capabilities across more than 40 industries - powered by the world's largest network of Advanced Technology and Intelligent Operations centers. With 509,000 people serving clients in more than 120 countries, Accenture brings continuous innovation to help clients improve their performance and create lasting value across their enterprises. Visit us at Accenture is an equal opportunities employer and encourages applications from all sections of society and does not discriminate on grounds of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, or gender identity, or any other basis as protected by applicable law. Closing Date for Applications: 30/10/2022 Accenture reserves the right to close the role prior to this date should a suitable applicant be found.
Sep 24, 2022
Full time
Malware Reverse Engineer Location: Remote working - Office based in Reading Salary: Competitive Salary and Benefits Career Level : Specialist, Associate Manager or Manager About Accenture Cyber Threat Intelligence (ACTI) ACTI is a global team that spans 13 countries and 4 continents and speaks more than 30 languages. We are passionate about delivering intelligence analysis, and providing industry-leading analytic insights, cyber context, and critical services our clients need to achieve their business-line and strategic-growth initiatives. We know success is only possible by developing and supporting our most-critical resources: our talented analysts, developers, and supporting team members. We value creativity and entrepreneurship in our team; where possible, we back staff initiatives with opportunities and investments. We enjoy the hunt. We strive to automate and innovate while working with powerful resources and differentiated data. Above all else, we value an egoless approach to guiding our clients as they navigate their businesses through all aspects of the cyber domain. Who You Are You are passionate about cybersecurity and intelligence analysis. You stay abreast of the latest threats, recognize the value of intelligence, and believe it should drive operations. You are a devoted team member who is always willing to lend a hand, mentor a colleague, or increase our global team's awareness by sharing your knowledge and approaches with others. You are productive, easy to work with, and understand that adherence to a good process is key to excellence. Role Description As a Malware Reverse Engineer at ACTI, you will reverse engineer and analyze malware to evaluate sophisticated malicious code to settle malware capabilities and purposes. Analysis includes the use of specialized systems and tools, including dissemblers, debuggers, hex editors, unpackers, virtual machines, and those for network traffic analysis. Key Responsibilities Analyze malicious events and campaigns to determine attack vectors and retrieve malware payloads. Reverse engineer files suspected or known to belong to identified malware families to determine their command-and-control (C2) infrastructure and targeting. Incorporate analysis results into detailed reporting to include purpose, behavior, C2 server infrastructure, and mitigation techniques related to analyzed malware families, malicious campaigns, and events. Track prevailing malware families, including downloaders, banking Trojans, information stealers, ransomware, and remote access Trojans. Reverse engineer recently discovered malware variants to check potential feature augmentation or configuration structure changes. Improve existing tools that extract known malware family configurations based on reverse engineering results. Research the latest malware detection evasion techniques, such as use of customized packers, customized crypters, fully undetectable (FUD) techniques, host intrusion prevention system (HIPS) bypassing, and anti-virus (AV) software bypassing. Based on research, design and develop generic unpacking methods and tools for use as standalone tools or within automated analysis systems and sandboxes. Provide customer support by responding to requests related to suspicious file analysis that sometimes require malware reverse engineering and determination of contextual information surrounding indicators of compromise; do so by providing detailed analysis reports and mitigation recommendations. Provide customer support by responding to cybersecurity requests, including those for: open-source intelligence (OSINT) research; domain, IP address, or URL analysis; malicious campaign information; and/or event attribution. Provide answers to specific questions, the answers of which clients use for operational mentorship to aid their strategies. Design, develop, and implement Windows kernel modules to support automated malware analysis; such modules include kernel system service filtering modules able to intercept operating system services on 32-bit and 64-bit Windows operating systems without triggering those systems' self-protection mechanisms, and kernel-mode modules able to force designated processes to load specific modules that load decoders designed for extracting malware configurations. Design, develop, and implement generic unpackers that combat widely used malware packing methods to retrieve malicious payloads from packed malware samples automatically. Create detection rules and signatures for detecting malware families, and provide detection or blocking recommendations. Develop decoders to extract malware configurations-including basic C2 settings or secondary dynamic configurations, such as those outlining targeted institutions and web injects-based on reverse engineering results. Provide junior engineers with technical training, including: training on malware analysis; reverse engineering; Windows internals; and development, identification, unpacking, and de-obfuscation of malicious code. Travel occasionally as this position may require doing so to address client needs, improve results, or otherwise support projects. Basic Qualifications Bachelor's Degree in Computer Forensics, Science, Engineering, Information Systems, or another related security field, or comparable experience. Experience with malware analysis, reverse engineering, and development. Ability to write, understand, and/or analyze code in programming and scripting languages, including Assembly x86/x64, C, C++, Python, JavaScript, Java, PHP, and HTML. Basic knowledge of and experience with malware packers, crypters, and obfuscation techniques. Understanding of operating system internals and the Windows API. Experience with debuggers, decompilers, and network traffic analysis tools. Development experience in Assembly, Python, C, or C++. Strong understanding of the intelligence lifecycle and associated analytic methodologies (Cyber Kill Chain, Diamond Model, ATT&CK, etc.). Practical understanding of malware analysis and/or reverse engineering, and the ability to develop malware detection signatures (e.g. YARA). Required Skills Ability to analyze and unpack obfuscated code. Strong written and verbal skills; can communicate complex concepts at a high level while retaining accuracy and highlighting features in a way that improves audience engagement. Strong problem solving and critical thinking capabilities. Desired Skills Two or more years of experience in malware analysis, reverse engineering, and development fields. Deep understanding of operating system internals and the Windows API. Ability to work with a high degree of independence. Ability to collaborate in a team environment to focus on a common goal. Show more Show less Qualifications What's in it for you At Accenture in addition to a competitive basic salary, you will alsohave an extensive benefits package which includes 25days' vacation per year, gym subsidy, private medical insurance and 3 extra days leave per year for charitable work of your choice! About Accenture Accenture is a leading global professional services company, providing a broad range of services in strategy and consulting, interactive, technology and operations, with digital capabilities across all of these services. We combine unmatched experience and specialized capabilities across more than 40 industries - powered by the world's largest network of Advanced Technology and Intelligent Operations centers. With 509,000 people serving clients in more than 120 countries, Accenture brings continuous innovation to help clients improve their performance and create lasting value across their enterprises. Visit us at Accenture is an equal opportunities employer and encourages applications from all sections of society and does not discriminate on grounds of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, or gender identity, or any other basis as protected by applicable law. Closing Date for Applications: 30/10/2022 Accenture reserves the right to close the role prior to this date should a suitable applicant be found.
Threat Intelligence Researcher BAE Systems Applied Intelligence offers world class threat intelligence services to customers across the globe. Our team investigates some of the most complex state-sponsored threat actors and intrusions on a daily basis. We currently have a vacancy for a Threat Intelligence Researcher in our team. The successful candidate would be expected to support investigations, threat research and open source investigations for customers. We are looking for candidates with a strong understanding of the threat landscape which can be applied to supporting customer needs. Responsibilities: Investigate cyber intrusions and threat activity as part of the global Threat Intelligence team. Conduct research on threat actors (from hacktivist to criminal to state), and their tools, techniques, and procedures (TTPs) using commercial and open sources. Produce finished intelligence reports related to state and criminal threats, with insights into attacker techniques and identified campaigns. Provide clear and concise written responses to customer inquiries/requests, and brief customers on specific relevant threats. Report on the threat landscape and provide relevant trend analysis and technical insights to customers and other stakeholders. Work in a collaborative environment with other intelligence analysts, technical specialists, and customer facing consultants. Requirements: Experience tracking actors or campaigns and their associated tactics, techniques, and tools. Strong understanding of the cyber threat landscape and ability to communicate relevant insights to customers. Self-starter with ability to identify problems early and come up with solutions using own initiative. Ability to demonstrate comprehensive, practical knowledge of research / collection skills and analytical methods. Ability to write concisely and proficiently, and express complex technical and non-technical concepts verbally, graphically/visually, and in writing. Ability to communicate complicated technical challenges in business language to a range of stakeholders. Technical skills with an interest in one or more of the following: open source intelligence investigations, digital forensics, infrastructure analysis, threat hunting, or malware reverse engineering. Desirable skills: Experience in delivering intelligence led assessments such as CBEST or TIBER. Familiarity with threat data analysis and automation/scripting. Familiarity with visualisation tools such as Maltego. Life at BAE Systems Applied Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance wellbeing. Diversity and inclusion are integral to the success of BAE Systems Applied Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. About BAE Systems Applied Intelligence We use our intelligence-led insights to help defend Governments, Nations and Societies from cyber-attacks and financial crime. Our customers depend on our evolving capabilities to help them safely grow their organisations. Our unprecedented access to threat intelligence, world-leading analysts and market-leading technology means we can help them to adapt, evolve and stay ahead of the criminals. Division overview: Government At BAE Systems Applied Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Our Government business unit houses four of our critical client groups: UK National Security, Global National Security, defence and central government. Government and key infrastructure networks are critical targets to defend as the effects of these networks being breached can be devastating. As a member of the Government business unit, you will defend the connected world and ensure the protection of nations. We all have a role to play in defending our clients, and this is yours.
Oct 07, 2021
Full time
Threat Intelligence Researcher BAE Systems Applied Intelligence offers world class threat intelligence services to customers across the globe. Our team investigates some of the most complex state-sponsored threat actors and intrusions on a daily basis. We currently have a vacancy for a Threat Intelligence Researcher in our team. The successful candidate would be expected to support investigations, threat research and open source investigations for customers. We are looking for candidates with a strong understanding of the threat landscape which can be applied to supporting customer needs. Responsibilities: Investigate cyber intrusions and threat activity as part of the global Threat Intelligence team. Conduct research on threat actors (from hacktivist to criminal to state), and their tools, techniques, and procedures (TTPs) using commercial and open sources. Produce finished intelligence reports related to state and criminal threats, with insights into attacker techniques and identified campaigns. Provide clear and concise written responses to customer inquiries/requests, and brief customers on specific relevant threats. Report on the threat landscape and provide relevant trend analysis and technical insights to customers and other stakeholders. Work in a collaborative environment with other intelligence analysts, technical specialists, and customer facing consultants. Requirements: Experience tracking actors or campaigns and their associated tactics, techniques, and tools. Strong understanding of the cyber threat landscape and ability to communicate relevant insights to customers. Self-starter with ability to identify problems early and come up with solutions using own initiative. Ability to demonstrate comprehensive, practical knowledge of research / collection skills and analytical methods. Ability to write concisely and proficiently, and express complex technical and non-technical concepts verbally, graphically/visually, and in writing. Ability to communicate complicated technical challenges in business language to a range of stakeholders. Technical skills with an interest in one or more of the following: open source intelligence investigations, digital forensics, infrastructure analysis, threat hunting, or malware reverse engineering. Desirable skills: Experience in delivering intelligence led assessments such as CBEST or TIBER. Familiarity with threat data analysis and automation/scripting. Familiarity with visualisation tools such as Maltego. Life at BAE Systems Applied Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance wellbeing. Diversity and inclusion are integral to the success of BAE Systems Applied Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. About BAE Systems Applied Intelligence We use our intelligence-led insights to help defend Governments, Nations and Societies from cyber-attacks and financial crime. Our customers depend on our evolving capabilities to help them safely grow their organisations. Our unprecedented access to threat intelligence, world-leading analysts and market-leading technology means we can help them to adapt, evolve and stay ahead of the criminals. Division overview: Government At BAE Systems Applied Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Our Government business unit houses four of our critical client groups: UK National Security, Global National Security, defence and central government. Government and key infrastructure networks are critical targets to defend as the effects of these networks being breached can be devastating. As a member of the Government business unit, you will defend the connected world and ensure the protection of nations. We all have a role to play in defending our clients, and this is yours.
Digital Forensic Analyst An exciting position has become available for a full-time Digital Forensic Analyst based in Warwickshire. The successful candidate will earn £22,000. The Company Established in 2006, IntaForensics has grown to become widely recognised for delivering world-class digital and cyber services to both the public and private sectors. Our range of services covers the entire spectrum, from providing digital forensic expertise to the criminal justice system to providing cyber security expertise to the commercial sector including: Incident Response, Managed Security and Payment Card Breaches. We are also at the forefront of forensic casework management software and our Lima platform is recognised as the industry gold standard. IntaForensics is a key part of The Forensic Access Group, which is enjoying rapid growth and progression towards becoming the market-leading international forensics and criminal justice services organisation. Building on the success of Forensic Access in the traditional forensic disciplines, we have recently acquired the digital forensics and cyber security specialists IntaForensics, and the forensic ecology, archaeology and training specialists Alecto Forensics. We are an ambitious group of companies and we would like to invite the very best candidates to join us on our journey. Role Requirements Excellent understanding of IT Technology A relevant Degree in Digital Forensics or Cyber Security An excellent command of the English language both written and oral Fully conversant with the Digital Forensic Process and current ACPO Guidelines Adhere to and be fully conversant with the FSR's Codes of Practice Accurate and precise A full and clean UK driving license Unimpeachable integrity Role Responsibilities Case management and Forensic Analysis of Computer and Mobile Devices Securing and preservation of digital evidence Procedure and documentation development Contribute to achieving and maintaining quality standards whilst ensuring that the company's quality procedures ISO 17025 and 9001 are robustly adhered to Ensuring that the company's IT security procedures ISO 27001 are robustly adhered to Security Clearance Due to the nature of the role and our work, applicants will be required to be DBS checked and also NPPV-3, SC Cleared, National Crime Agency and Metropolitan Police security vetted, therefore all applicants must be currently and permanently resident in the UK and have been continuously for at least 5 years.
Sep 11, 2021
Full time
Digital Forensic Analyst An exciting position has become available for a full-time Digital Forensic Analyst based in Warwickshire. The successful candidate will earn £22,000. The Company Established in 2006, IntaForensics has grown to become widely recognised for delivering world-class digital and cyber services to both the public and private sectors. Our range of services covers the entire spectrum, from providing digital forensic expertise to the criminal justice system to providing cyber security expertise to the commercial sector including: Incident Response, Managed Security and Payment Card Breaches. We are also at the forefront of forensic casework management software and our Lima platform is recognised as the industry gold standard. IntaForensics is a key part of The Forensic Access Group, which is enjoying rapid growth and progression towards becoming the market-leading international forensics and criminal justice services organisation. Building on the success of Forensic Access in the traditional forensic disciplines, we have recently acquired the digital forensics and cyber security specialists IntaForensics, and the forensic ecology, archaeology and training specialists Alecto Forensics. We are an ambitious group of companies and we would like to invite the very best candidates to join us on our journey. Role Requirements Excellent understanding of IT Technology A relevant Degree in Digital Forensics or Cyber Security An excellent command of the English language both written and oral Fully conversant with the Digital Forensic Process and current ACPO Guidelines Adhere to and be fully conversant with the FSR's Codes of Practice Accurate and precise A full and clean UK driving license Unimpeachable integrity Role Responsibilities Case management and Forensic Analysis of Computer and Mobile Devices Securing and preservation of digital evidence Procedure and documentation development Contribute to achieving and maintaining quality standards whilst ensuring that the company's quality procedures ISO 17025 and 9001 are robustly adhered to Ensuring that the company's IT security procedures ISO 27001 are robustly adhered to Security Clearance Due to the nature of the role and our work, applicants will be required to be DBS checked and also NPPV-3, SC Cleared, National Crime Agency and Metropolitan Police security vetted, therefore all applicants must be currently and permanently resident in the UK and have been continuously for at least 5 years.
Our client is a leading digital forensics consultancy providing services to both public sector and private sector clients. They require a Senior PC Analyst to join their Stratford Upon-Avon or London office on a permanent basis. This is an opportunity to acquire job skills and learn company policies and procedures to complete..... click apply for full job details
Feb 21, 2016
Our client is a leading digital forensics consultancy providing services to both public sector and private sector clients. They require a Senior PC Analyst to join their Stratford Upon-Avon or London office on a permanent basis. This is an opportunity to acquire job skills and learn company policies and procedures to complete..... click apply for full job details
Our client is a leading digital forensics consultancy providing services to both public sector and private sector clients. They require a PC Analyst to join their Stratford Upon-Avon team on a permanent basis. This is an opportunity to acquire job skills and learn company policies and procedures to complete routine and complex..... click apply for full job details
Feb 21, 2016
Our client is a leading digital forensics consultancy providing services to both public sector and private sector clients. They require a PC Analyst to join their Stratford Upon-Avon team on a permanent basis. This is an opportunity to acquire job skills and learn company policies and procedures to complete routine and complex..... click apply for full job details
Our client is a leading digital forensics consultancy providing services to both public sector and private sector clients. They require a Junior Forensics Analyst to join their Stratford Upon-Avon team on a permanent basis. This is an opportunity to learn how to maintain up to date processes and work towards passing competency..... click apply for full job details
Feb 21, 2016
Our client is a leading digital forensics consultancy providing services to both public sector and private sector clients. They require a Junior Forensics Analyst to join their Stratford Upon-Avon team on a permanent basis. This is an opportunity to learn how to maintain up to date processes and work towards passing competency..... click apply for full job details