JOB DESCRIPTION SUMMARY

The Cyber Incident Response Specialist will be part of a dynamic, growing team, planning, preparing, hunting for, and responding to cyber incidents stemming from internal & external threat actors. This individual should have a history of utilizing logs, tools and manual processes to compare normal activity against malicious activity. A strong comprehension of emerging threats and calculating risks will be critical to success.

QUALIFICATIONS/REQUIREMENTS:

• Minimum BTEC Level 3 Extended Diploma in Cyber Security or equivalent
• Cyber Security Degree Apprenticeship - Level 6 with basic experience in Cyber Security
• Degree (or equivalent experience) in Computer Science or “STEM” (Science, Technology, Engineering and Math) with basic experience

ELIGIBILITY REQUIREMENTS:

Must currently hold or be eligible to apply for UK SC clearance

• Perform daily response operations for event triage to detect witting or unwitting internal and external threat actors
• Data Loss Prevention (DLP) exception queue management to minimize insider threat risk
• External threat queue management to minimize external threat risk
• Work with internal and external customers to assess the validity of the threat, and determine if further allocation of investigative resources is needed
• Provide recommendations for system/tool tuning and development of new threat indicators
• Support additional Cyber programs when required to ensure business and regulatory requirements are adhered to
• Support Cyber tools and system administration
• Implement automation using technology and process development supporting Cyber and business needs