Description
Job Description
At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
Boeing Defence UK has an exciting opportunity within the current Cyber Security Operating Centre (CSOC) for a SOC analyst; this role will involve contributing to the Monitoring, Alerting, Analysis and Protection of the corporate IT environment against all cyber threats.
Specific Responsibilities
To contribute to the CSOC team, working within the established monitoring and response frameworks to enable the timely and effective response and management of incidents, alarms, notifications, calls and all other activities related to the CSOC including new and emerging cyber threats.
Key Activities
• Supporting the Security Specialist/Security Manager/Functional Lead in the identification and ongoing monitoring of specific security risks and KPIs
• Continuously looking for improvements to ensure services operated are aligned to industry best practice and Boeing enterprise best practices
• Respond to security events, requests and incidents logged in management systems.
• Monitor the security posture of the IT estate and identify anomalous activity and behaviors by the use of SIEM tools
• Perform in-depth analysis of log files, systems, and network traffic
• Triage/respond to 2nd line escalation of incidents
• Mentor and oversee development of junior analysts.
• Work to well-defined SLAs & KPIs
Typical Education and/or Experience
Two years minimal experience working in a Security Operations Centre (SOC) with solid knowledge of the following
• Packet capture and analysis
• Endpoint security: antivirus, device control, integrity, HIDS.
• Network device: security controls and protocols
• Excellent/strong knowledge OSI Model and associated layer protocols
• Working knowledge of SIEM integration and operations (SPLUNK Enterprise Security an advantage)
• Development of protective monitoring Use Cases.
• Log analysis
• Practical threat hunt experience
Working knowledge of the following desirable:
• Experience interpreting routed and routing protocols and application traffic logs
• Experience researching current threats and vulnerabilities to Information Technology systems
• Experience working with SIEMs and evaluating SIEM alerts
• Scripting/programming experience
• Log management: collect, aggregation, storage, analysis
• Operating system security (Windows, LINUX/UNIX)
Desirable Qualifications:
• Information Security qualification, Degree-level education in Information Security or related area
• Certified Ethical Hacker
• Network+
• Security+
• CySA+
• CREST - Intrusion Analyst, Cyber Threat Intelligence
• SANS GNFA, GCIH
Or demonstrable equivalent experience.
Important information regarding this requisition: This requisition is for a locally hired position in the UK. Benefits and pay are determined at the local level.
Boeing is the world's largest aerospace company and leading manufacturer of commercial airplanes and defense, space and security systems. We are engineers and technicians. Skilled scientists and thinkers. Bold innovators and dreamers. Join us, and you can build something better for yourself, for our customers and for the world.
This position requires the ability to obtain a UK security Clearance for which the UK Government requires UK residency. The successful candidate will hold, or have the ability to obtain, Security Clearance (SC).
All information will be checked and verified.
Equal Opportunity Employer:
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.