je.st
news
Tag: security analyst
Information Security Operations Analyst
2019-01-04 11:30:32| Space-careers.com Jobs RSS
Position Reference 001 As an Information Security Operations Analyst, you will join a team of Information Security professionals in support of RHEA Group clients by providing Information Security services in various market sectors including space, critical infrastructure protection and defence. Duties will include delivery of security operations and incident response services, reports and other deliverables to meet client needs. Tasks and Activities The scope of work will include Provision of best practice advice and guidance in the areas of information security operations supporting incident detection, analysis and response including operations policy and procedure development, operational scenario definition, operations centre technology selection and implementation, network and host based sensor technology selection and implementation Provision of best practice advice and guidance in the areas of vulnerability and patch management, intrusion detection and prevention, network and host security, network and host fingerprinting, advanced persistent threat APT and data leakage protection, firewall and virtual private network VPN technologies, data centre and cloud computing security Provision of cyber defence and security operations services in the areas of cyber defence situation awareness and incident detection, analysis and response management Technical vulnerability analysis and penetration testing of installed systems. Skills and Experience The following skills and experience are mandatory You have a postsecondary degree or diploma in a relevant field. Example relevant fields include electrical or computer engineering, computer science, information technology, information management or similar. Technical certifications, diplomas or qualifications in information technology or information management, policing and security or related fields may also be accepted. You have excellent oral and written communications capability in English You have demonstrated cyber defence and security operations qualities including Curiosity Ability to find answers to difficult problems or situations Abstract thinking Ability to identify correlations of events from multiple sensor sources Business perspective Ability to deal with lowlevel incident details while being mindful of business operations requirements Communications Ability to communicate to various groups that have very different requirements and experience in cyber security. You have demonstrated in depth knowledge of Information security concepts and technologies involving incident detection, analysis, decision support and response including IDSIPS, UTM and SIEM systems Network Local Area Networking LAN, Metropolitan Area Networking MAN or Wide Area Networking WAN technologies Internet Prototocols such as TCPIP, UDP, RIP, OSPF, BGP, SIP, SNMP, IPSec, SSL, TLS, etc. End system architectures and operating systems such as Windows, Linux, Unix Network management and technologies such as Syslog, Netflow, Sflow, PCap Vulnerability and patch management solutions. You must be a citizen of the EU or a NATO member nation You have a professional qualification or certification in a relevant field. Example certifications include Certified Information System Security Professional CISSP certificate, Certified Protection Professional CPP, Certified ISO 27001 Auditor, Cisco Certified Network Professional CCNP Security, security product certifications e.g., Checkpoint firewall certification or similar is considered an asset The following skills would be highly desirable You have experience in information security services for space, critical infrastructure protection and defense market segments. You have a qualification for EUNATO SECRET clearance. How to Apply Looking to take your career to the next level? Interested applicants should submit their CV and Cover Letter to RHEAs Recruitment team at careersrheagroup.com no later than 20012019. About RHEA Group RHEA Group is a leading engineering consultancy firm with demonstrated expertise in space, system and secure software solutions. We attract skilled engineers, scientists and management professionals and offer a range of exciting career paths working alongside clients such as the European Space Agency, the European GNSS Agency, EUMETSAT and NATO.
Tags: information
security
operations
analyst
Cyber Security Monitoring Analyst
2018-07-05 14:27:06| Space-careers.com Jobs RSS
Position Reference 023 For this role, you will have the opportunity to monitors and analyses security events from multiple sources and manages security incidents to ensure a coordinated, timely and effective response to security incidents. You will also supports key security management processes by providing intelligence from security incidents and identified vulnerabilities and threats. Tasks and Activities The scope of work will include Monitor and analyse security events from the SIEM as well as from other sources to identify security incidents Tune and maintain security monitoring tools including but not limited to SIEM platform regarding log sources onboarding, log parsing and interpretation, rulesalertsreports definition, SIEM static data management assets, networks etc., Followup and tuneup all false positives alerts together with the responsible system owner Collect and analyse security information from different information resources to identify relevant threats and vulnerabilities and disseminate synthesized intelligence information within the organization Manage security incidents to ensure a coordinated, timely and effective response to security incidents Assess and triage security incidents and coordinate the appropriate notifications and escalations in a timely manner Record and document security incidents, including analysis results, the timeline of events and incident response activities Support the organizations security incident response readiness by contributing to the definition, implementation and continuous improvement of security incident response framework, including relevant policies, processes and procedures, incident response tools Provide synthesized intelligence including statistics and KPIs from different information resources and security incidents to support key security management processes Travel and oncall duty as required Optional Perform technical analyses of security threats and incidents, including malware analysis, network and system forensic analyses Skills and Experience The following skills and experience are mandatory Degree in Computer Science and minimum of 1 year industry related experience in computer security and incident response Good experience in security monitoring SIEM including analyzing and triaging of security events from various sources Experience in responding to security incidents Knowledge of and handson experience with state of the art incident response and forensics tools, techniques and tactics Experienced in capturing memory, disk images and network traffic and analyzing them for indicators of compromise Good programming and scripting skills in different programmingscripting languages would be an advantage Good understanding of the tools and tactics used by different threat agents Knowledge of computer forensics, security vulnerabilities and exploits Knowledge in system security, application security and network security Knowledge of security technologies, such as Antivirus, Network and Host Intrusion Detection Systems, Web ProxyContent Filtering, Authentication technologies, Security Information and Event Management. Autonomous, innovative mind with sound analytical skills Stress resistance and able to manage multiple incidents and tasks at the same time Experience with a top tier SIEM solution e.g., HP Arcsight, IBM QRadar, Splunk for Security, EMCRSA Security Analytics is a plus Relevant security certifications e.g., GCIH, GCFE, GCFA, GREM, GCIA and product certifications are a plus Experience in malware analysis and reverse engineering would be an advantage Good written and verbal communication skills in English Excellent team player Ability to effectively respond to and interact with all levels of organizational staff How to Apply Looking to take your career to the next level? Interested applicants should submit their CV and Cover Letter to RHEAs Recruitment team at careersrheagroup.com no later than 31072018. Preference will be given to candidates eligible for an EU or national personal security clearance at the level of CONFIDENTIAL or above. About RHEA Group RHEA Group is a leading engineering consultancy firm with demonstrated expertise in space, system and secure software solutions. We attract skilled engineers, scientists and management professionals and offer a range of exciting career paths working alongside clients such as the European Space Agency, the European GNSS Agency, EUMETSAT and NATO.
Tags: security
monitoring
analyst
cyber
Cyber Security Monitoring Analyst
2018-03-13 16:24:36| Space-careers.com Jobs RSS
Description For this role, you will have the opportunity to monitors and analyses security events from multiple sources and manages security incidents to ensure a coordinated, timely and effective response to security incidents. You will also supports key security management processes by providing intelligence from security incidents and identified vulnerabilities and threats. Tasks and Activities The scope of work will include Monitor and analyse security events from the SIEM as well as from other sources to identify security incidents Tune and maintain security monitoring tools including but not limited to SIEM platform regarding log sources onboarding, log parsing and interpretation, rulesalertsreports definition, SIEM static data management assets, networks etc., Followup and tuneup all false positives alerts together with the responsible system owner Collect and analyse security information from different information resources to identify relevant threats and vulnerabilities and disseminate synthesized intelligence information within the organization Manage security incidents to ensure a coordinated, timely and effective response to security incidents Assess and triage security incidents and coordinate the appropriate notifications and escalations in a timely manner Record and document security incidents, including analysis results, the timeline of events and incident response activities Support the organizations security incident response readiness by contributing to the definition, implementation and continuous improvement of security incident response framework, including relevant policies, processes and procedures, incident response tools Provide synthesized intelligence including statistics and KPIs from different information resources and security incidents to support key security management processes Travel and oncall duty as required Optional Perform technical analyses of security threats and incidents, including malware analysis, network and system forensic analyses Skills and Experience The following skills and experience are mandatory Degree in Computer Science and minimum of 1 year industry related experience in computer security and incident response Good experience in security monitoring SIEM including analyzing and triaging of security events from various sources Experience in responding to security incidents Knowledge of and handson experience with state of the art incident response and forensics tools, techniques and tactics Experienced in capturing memory, disk images and network traffic and analyzing them for indicators of compromise Good programming and scripting skills in different programmingscripting languages would be an advantage Good understanding of the tools and tactics used by different threat agents Knowledge of computer forensics, security vulnerabilities and exploits Knowledge in system security, application security and network security Knowledge of security technologies, such as Antivirus, Network and Host Intrusion Detection Systems, Web ProxyContent Filtering, Authentication technologies, Security Information and Event Management Autonomous, innovative mind with sound analytical skills Stress resistance and able to manage multiple incidents and tasks at the same time Experience with a top tier SIEM solution e.g., HP Arcsight, IBM QRadar, Splunk for Security, EMCRSA Security Analytics is a plus Relevant security certifications e.g., GCIH, GCFE, GCFA, GREM, GCIA and product certifications are a plus Experience in malware analysis and reverse engineering would be an advantage Good written and verbal communication skills in English Excellent team player Ability to effectively respond to and interact with all levels of organizational staff How to Apply Looking to take your career to the next level? Interested applicants should submit their CV and Cover Letter to RHEAs Recruitment team at careersrheagroup.com no later than 26032018 Preference will be given to candidates eligible for an EU or national personal security clearance at the level of CONFIDENTIAL or above. About RHEA Group RHEA Group is a leading engineering consultancy firm with demonstrated expertise in space, system and secure software solutions. We attract skilled engineers, scientists and management professionals and offer a range of exciting career paths working alongside clients such as the European Space Agency, the European GNSS Agency, EUMETSAT and NATO.
Tags: security
monitoring
analyst
cyber
Information Security Analyst
2018-03-13 16:24:36| Space-careers.com Jobs RSS
Description You will have the opportunity to contribute to the development and continuous improvement of our clients information security management and policy framework and manage information security projects as laid down in their information security roadmap. You will support the management of information security risks and designsimplements information security concepts to adequately safeguard information assets, its affiliates and commercial platforms. The job holder will also provide Information Security related project support and internal consultancy within the organization as well as for customer related projects. Tasks and Activities The scope of work will include Identify, assess and address information security risks Support the development and continuous improvement of the information security management system in accordance with industry standards and best practices, most notably the ISO 27001 framework and relevant NIST guidance. Liaise with relevant stakeholders across the organisation to develop information security policies, standards, processes and procedures Support compliance to the information security policy framework throughout the organisation Support the definition and implementation of SESs information security strategy and framework by assessing information security risks and specifying and implementing information security controls to mitigate key risks. Support information security projects as laid down in the information security strategy and deliver assigned work packages within time, cost and scope. Develop, implement and document information security concepts and information security controls, Support information security audits and vulnerability assessments and support the management of vulnerabilities Support the detection and analysis of information security incidents and contribute to adequate responses to information security incidents Support the development and maintenance of the information security awareness program and delivery of awareness sessions Suggest constructive recommendations regarding information security in all areas related to information systems, networks and applications Travel as required Skills and Experience Knowledge in key areas of Information Security combined with willingness and strong drive to learn in other Information Security domains Relevant certifications e.g., ISO 27001 Lead Implementer, ISO 27005 Certified Risk Manager, CISM, CISA, GLSC, G2700, CISSPISSMP Handson knowledge of and experience with implementing and maintaining Information Security Management Systems in accordance with ISO 27001 and best practices Information Security Risk Management frameworks and methodologies Network security, system security, application security and security design Information Security threats, vulnerabilities, security technologies and controls Data Protection and Data Privacy Vulnerability, compliance and patch management for complex networks, systems and applications Strong knowledge of Information Security Standards and good practices, including ISO 27001 series, NIST SP800 series, etc. Good project management skills Possess the ability to explain security rationales and controls to nontechnical audiences Understand all stakeholders in the Information Security process Sound analytical skills as well as the ability to provide practical conclusions Ability to understand business requirements and work towards solutions, both autonomous and in interdisciplinary teams Ability to establish wellwritten, structured documents e.g. concepts, policies Ability to effectively interact with organizational stakeholders Be fluent in English any other language being an asset with excellent written and verbal communication skills Knowledge of the satellite industry are a plus How to Apply Looking to take your career to the next level? Interested applicants should submit their CV and Cover Letter to RHEAs Recruitment team at careersrheagroup.com no later than 21032018 Preference will be given to candidates eligible for an EU or national personal security clearance at the level of CONFIDENTIAL or above. About RHEA Group RHEA Group is a leading engineering consultancy firm with demonstrated expertise in space, system and secure software solutions. We attract skilled engineers, scientists and management professionals and offer a range of exciting career paths working alongside clients such as the European Space Agency, the European GNSS Agency, EUMETSAT and NATO.
Tags: information
security
analyst
information security
Security Operations Centre Analyst
2017-09-27 16:13:24| Space-careers.com Jobs RSS
You will have the opportunity to work as a Security Operations Centre Analyst for our client based in Brussels, Belgium. There are positions available for Junior, Middle and Senior Analyst depending on the level of experience that you have. Tasks and Activities The scope of work will include You will act as the first line of response regarding the potential occurrence of a cyber attack or security incident. You will be working using several automated tools such as intrusion detection systems, log correlation engines and SIEM, ticketing system, alerts and warning from internal and external sources, You will receiving, triaging and responding to alerts, requests and reports, and analysing events and potential incidents and to provide the primary support for incident responders. You will assess whether a security incident or the level of exposure of a vulnerability is a true or false positive, tagging the vulnerability or incident with an initial severity classification and to activate the corresponding incident response playbook entry. You will follow predefined procedures to perform technical tasks related to identity and access management. Skills and Experience The following skills and experience are mandatory Bachelors Degree in a Science, Technology, Engineering or Mathematics STEM discipline from an accredited university You have at least 1 year of experience as a SOC Analyst or a firstline incident responder. Cryptography At least 1 year of experience in networking TCPIP, SNMP, DNS etc Knowledge in network security solutiontechnologies Firewalls Network IDSIPS Switches, routers Traffic baselining analysis DNS, DHCP, VPN Network forensics full packet capture Knowledge in host based security solutions HIPS Malware endpoint protection OS logs Strong knowledge in Windows security events analysis Strong knowledge in the security analysis of firewall, proxy,and IDS logs Strong knowledge in the security analysis of Applicable or Middleware logs Oracle, Apache, Weblogic Writing and optimizing YARA rules You a recognised certification or one of the following GSEC, GCWN, GCED, GCUX, ENSA or MCSA SIEM Arcsight ESM 6.x, QRADAR, or equivalent Log management solution Arcsight Loggers andor QRADAR andor Splunk or equivalent SNORT or SourceFire NGIPS, FireSIGHT CheckPoint and Juniper Firewalls BlueCoat proxies How to Apply Looking to take your career to the next level? Interested applicants should submit their CV and Cover Letter to RHEAs Recruitment team at careersrheagroup.com no later than 12102017. Preference will be given to candidates eligible for an EU or national personal security clearance at the level of SECRET or above. About RHEA Group RHEA Group is a leading engineering consultancy firm with demonstrated expertise in space, system and secure software solutions. We attract skilled engineers, scientists and management professionals and offer a range of exciting career paths working alongside clients such as the European Space Agency, the European GNSS Agency, EUMETSAT and NATO.
Tags: security
centre
operations
analyst