Second Line Security Analyst (Protective Monitoring)

Basingstoke (BSN01) or Bracknell (BRA01) with flexibility to travel between.

The SDWAN Support Team are looking for a Second Line Shared Service Security Analyst to work collaboratively across our accounts. Your role will involve direct technical support for all Protective Monitoring elements as part of the 2nd Line Team and assist in the day-to-day operations and duties of the DNS SD-WAN Service. The analyst will also work with the current support personnel to understand the products and their use across the shared service and to develop their diagnostic skills / capability. 

The role can be completed in either our Basingstoke or Bracknell office and occasional travel may be required to support a team across both sites delivering an active-active service. Due to the nature of the work and security classification of our clients, this activity is on-site only or the foreseeable future. Whilst no customer site visit work is expected, there maybe a requirement to attend and support proactive workshops with the customer and our security teams to help improve the monitoring and alerting activities. 

Your experience

Have a solid understanding of cyber security concepts and related technology including basic attack techniques and related.  Understand risk concepts and their impact.  Hands-on experience with security case management is useful.  Familiar with logging, i.e Windows events, syslog, etc.  Experience and awareness of NCSC security principles and familiar with implementing these principles in operational environments.  Experience and knowledge of SIEM toolsets and others such as Elastic, LogRhythm, NMAP, Nessus, Wireshark, etc. A good understanding of basic network protocols and services. A basic understanding of IPSec.  Experience working with Cisco routers, Juniper firewalls, vmware are beneficial.  Comfortable producing and maintaining documentation.  Comfortable communicating with peers and more senior project members. 

The types of activities to be undertaken are: 

Configuration, maintenance and continual improvement (tuning) of alerting rules and dashboards.  Triage and investigate SIEM alerts, ensuring comprehensive case management and appropriate action taken. Proactively identify potential SIEM and/or overall security posture improvements.  Occasionally attend Teams calls as the Protective Monitoring (ProMon) representative.   Syslog auditing – identify, document and escalate blind spots in our syslog collection.  Assist other RGs in the identification of specific activities/logs (or lack thereof).  Assist 3rd Line security analysts with any other duties that may require additional resources.  Anomaly detection and investigation. 

 

You must be eligible and willing to undergo a high level of UK Security clearance.

 

Your benefits:

 

26 Days annual leave plus public holidays (3 flexible)

Pension – Double matching contributions of up to 10%

Life assurance

Companywide incentive plans

Your choices (Flexible benefits such as increased holidays / travel / dental critical illness and more)

Perks at work – employee discounts

Employee assistance programme / virtual GP

Recruitment process

 

The recruitment process consists of two stages of interviews. 

 

We are a Disability Confident Employer and will offer an interview to disabled applicants who best meet the minimum/essential criteria for the role. Email EMEIArecruitment@fujitsu.com if you would like to apply through the Disability Confident Interview Scheme.

 

Achieve together

 

We are recognised as a responsible and inclusive employer: Not only are we a certified Disability Confident Leader, a Times Top 50 employer for Gender Equality, a Top 75 employer for Social Mobility, accredited with the Living Wage Foundation and a signatory for the Race at Work Charter, but we are also committed to the United Nations standards for LGBTI+ and a Stonewall Top 100 Employer.

 

We are people centric: Our hybrid work environments enable you to Be Completely You. Our active people-led Inclusive Community networks are representative of all aspects of diversity and are instrumental in enabling and supporting our innovative approach to inclusion 

 

#LifeAtFujitsu #DNS #Networks