Connecting...

W1siziisimnvbxbpbgvkx3rozw1lx2fzc2v0cy9syxdyzw5jzs1oyxj2zxkvanbnl2pvyl9kzwzhdwx0x2jhbm5lci5qcgcixv0

Threat Intelligence Analyst - SC CLEARED

Threat Intelligence Analyst - SC CLEARED

Job Title: Threat Intelligence Analyst - SC CLEARED
Contract Type: Contract
Location: England
Industry:
Salary: Up to £750 per day
Start Date: ASAP
Reference: 34879_1606314926
Contact Name: Anneli Sandholm
Contact Email: a.sandholm@lawrenceharvey.com
Job Published: November 25, 2020 14:35

Job Description

We are looking for SC Cleared Threat Intelligence Analysts for a pubic sector client.

You will be working within the Cyber Defence Operations Centre (CDOC) in a fully remote role.

Responsibilities:

  • To support the Threat Intel Lead in building the TI function across both the CDOC and CSOC, as well as assisting with the onboarding threat modelling process.
  • To identify and extract indicators of compromise from threat intelligence reports as well as pivoting on existing indicators to enrich the intelligence picture.
  • To identify use case development opportunities within TI reports and events and create customised use cases
  • To liaise with the incident handling analysts, Splunk engineers and TI analysts to develop use cases from problem statements/emerging threat actor tactics
  • To occasionally support Splunk engineers with rule tuning and SPL development of Splunk rules where applicable
  • To assist with managing of the MISP threat intelligence instance and management of MISP intelligence events

Skills:

  • SC CLEARED
  • Cyber threat intelligence analysis experience
  • Technical understanding of data centre hosted and cloud hosted infrastructure (specifically AWS and Azure)
  • Experience in triage and analysis activities related to TI cell operation (e.g. IOC triage)
  • Experience with common threat modelling frameworks such as Mitre ATT&CK and Lockheed Martin's Intrusion Kill Chain
  • Demonstrable Splunk knowledge and experience with Splunk Enterprise Security
  • Experience in management and operation of threat intelligence platforms (MISP preferred)
  • Extensive knowledge of techniques approaches and processes of digital threats; ability to detect, monitor, analyse and prevent digital threats.

Contract will run until 31st March 2021

Day rate is £800 per day INSIDE IR35

YOU MUST BE SECURITY CLEARED

If you are immediately available, apply with an up to date CV for a call back. Please note you will not be considered for the role unless you hold an active security clearance.

Lawrence Harvey is acting as an Employment Business in regards to this position. Visit our website www.lawrenceharvey.com and follow us on Twitter for all live vacancies @lawharveyjobs