Best Option

Find the right accountancy solution for your requirements

  • Location: Bristol, Bristol
  • Rate: Up to 450.00
  • Start Date: 30/08/2019
  • Duration: 3 months

A leading defence contractor is requiring a Senior SOC Analyst to join the Protective Monitoring (ProMon) Team based in Bristol on an initial 3 month contract.

The team delivers specialist technical cyber security services to a range of clients across a variety of industries including construction, government, defence and aerospace. The ProMon Team sits within the Bristol Security Operations Centre and is responsible for providing thorough initial investigation into anomalous network activity that may lead to potential security incidents.

Key Responsibility Areas

  • Analyse network, application and system events in order to identify any potentially abnormal system behaviours and raise them as incidents for investigation

  • Perform and lead proactive analysis across client networks from knowledge of current threats and trends

  • Maintain and update the training plans for all security event analysts

  • Ensure all operational incidents, on-going tickets and relevant information is handed over to the oncoming shift in an effective and efficient manner, using the shift handover process and documentation (HOTO)

  • Ensure all tickets are quality checked before release to the customer

  • Provide continuous SME support, updates and recommended courses of action for on-going incidents raised within the SOC

  • Ensure sufficient staffing levels are available to meet the minimum staffing requirements of your shift to maintain 24/7/365 operations, advising the Principal Analyst/Head of Cyber Operations of any shortfalls at the earliest opportunity. Additionally, provide support to NCIRC (NATO) as required

  • Manage shift training, user awareness, mandated security education as required or specified and promote additional professional furtherance amongst your shift

  • Act as the shift protective monitoring and SIEM SME

  • Produce operational reporting to support both customer and internal information exchanges and briefing and awareness requirements

  • Maintain a broad and current understanding of evolving threats and vulnerabilities to ensure the maintenance of the security of our client networks

  • Sustain and manage the direct line management, coaching and mentoring of shift personnel

  • Continually assess and maintain the SOC use cases and playbook including rule tuning efficiencies) for the Archangel SOC to maintain excellence within the service

Skills, Qualifications & Knowledge Required


  • Experience in cyber security including protective monitoring and incident response, eg GIAC GMON, GCIA, GCIH or equivalent experience

  • SIEM (LogRhythm, Arcsight, Splunk, etc) and IDS (Snort) experience

  • Network security

  • Excellent communications skills

  • Mentoring and coaching


  • SEC 503 – Intrusion Detection In-Depth

  • SEC 504 – Hacker Tools, Techniques, Exploits, and Incident Handling

  • SEC 511 – Continuous Monitoring and Security Operations

  • Knowledge of security appliances, eg FireEye, SourceFire, NIKSUN, Bluecoat, etc.

  • Report Writing

  • ITIL v3 Foundation in Service Management

  • Threat intelligence

The role will also involve:

  • Ability to work independently and as part of a team

  • Ability to manage workload in pressurised environments; balancing time and quality constraints

  • Highly motivated, with the aptitude to learn new skills

  • Ability to work within a shift pattern covering 24/7/365 operations

  • Occasional travel may be required

  • Potential to provide temporary cover to NCIRC as required (travel to Mons may be required).

Candidate must already hold or be able to obtain a high level Security Clearance (eg UK SC/NS & UK DV/CTS);

Contract paying up to £450 per day LTD/Umbrella.

Networkers acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers and is part of Gattaca Plc.

Gattaca Plc provides support services to Networkers and may assist with processing your application.