Senior Cyber Engineer

Full Time
London, England, UK
Posted 2 years ago
Applications have closed.

Closing Date for Apps: 06/ 07/ 2022 at 12pm

We create digital services, data tools and technology for businesses to prosper around the world.

Our Digital, Data and Technology team develops and operates tools, services and platforms such as great.gov.uk that enable the UK government to provide world’leading support to businesses in the UK and overseas.

You’ll get to constantly push boundaries in an environment free of heavy legacy, driven by curiosity, social purpose, diversity of thought, entrepreneurship and the aspiration to offer an incredible experience to all our users.

Job Description

Let us tell you a little bit about the role…

As a Senior Cyber Engineer, you will be helping to protect DIT and the wider UK government from cyber threats in a fast paced and exciting role. This role will be responsible for the identification, collection and analysis of security event data across the DIT technology estate. This data will then be turned into hi-fidelity actionable alerts for cyber analysts to act upon. At a high level the role is responsible for the monitoring aspects of the Security Operations Centre (SOC) Target Operating Model (TOM).

Working to the SOC (security operations centre) manager you will lead engineering elements of the DIT SOC ensuring that the security tooling and data is kept up to date and available to analysts as and when required. This will involve the creation of bespoke analytic rules, working in collaboration with the analysts to refine and reduce alert fatigue within the SOC.

This role will also be expected to play an active part in the management of security alerts and the response to, and investigation of, security incidents.

Responsibilities

What we’re looking for from you…

You will be helping to protect DIT and the wider UK government from cyber threats in a fast paced and exciting role. This role will be responsible for the identification, collection and analysis of security event data across the DIT technology estate. This data will then be turned into hi-fidelity actionable alerts for cyber analysts to act upon. At a high level the role is responsible for the monitoring aspects of the Security Operations Centre (SOC) Target Operating Model (TOM).

This role will also be expected to play an active part in the management of security alerts and the response to, and investigation of, security incidents.

Essential Skills and Experience:

You’ll have demonstrable skills and experience of:

Engineering experience in a SOC environment.
Experience of using and maintaining SIEM tools.
A good understanding of query languages.
Demonstratable experience of coding in languages.
A good working knowledge of cloud security in at least one recognised major cloud service provider e.g., AWS, Azure etc.
Good working knowledge of the threat landscape and how to turn threat intelligence into actionable alerts.
Incident management and triage.

How to Apply

The Department for International Trade embraces and values diversity in all forms. We welcome and pride ourselves on the positive impact diversity has on the work we do, and we promote equality of opportunity throughout the organisation. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. Click APPLY to apply and find out more.

Technical Skills

We’ll assess you against these technical skills during the selection process:

Security Operations
SIEM (Sentinel)
Query Languages (KQL)
Coding
Microsoft
AWS

Further Information

Find out about our benefits, application process and practical details like our office locations on the things you need to know page. Remember to check out our blog, Digital Trade.

Other General jobs in London, England, UK