At a Glance
- Tasks: Monitor and analyse network activity to prevent security incidents and protect clients.
- Company: Join a leading tech firm in cyber security with a focus on innovation.
- Benefits: Competitive salary, skill development, and opportunities for career growth.
- Other info: Collaborative team environment with a focus on professional development.
- Why this job: Make a real impact in safeguarding critical infrastructure and learn from industry experts.
- Qualifications: Experience in Cyber Security and familiarity with SIEM tools required.
The predicted salary is between 40000 - 50000 £ per year.
We're looking for a Cyber Security Analyst to join the ARCHANGEL™ Protective Monitoring (ProMon) Team. ARCHANGEL™ delivers specialist technical cyber security services to a range of clients across a variety of industries including construction, government, defence and aerospace. The Team is responsible for providing thorough initial investigation into anomalous network activity that may lead to potential security incidents.
Beyond ARCHANGEL™, Leonardo and its Cyber Security division are a world leader in safety-through-technology, providing tailored solutions for customers in public administration, public safety and security, critical infrastructure, services, transport, post and logistics. You will be joining our highly skilled team working at our Yeovil site Monday-Friday. This is a great opportunity to bring your talents and form an integral part of Leonardo's future. We can help you develop your skills and offer great opportunities to develop and grow, so why not join us.
What you will do:
- Provide monitoring, alerting and incident handling services within the SOC in line with SLAs.
- Act as the initial analytical reference point for identifying and then quantifying the nature and extent of security incidents and offer initial professional advice relating to possible business impact in order to reduce both the Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR).
- Advise on incident containment measures through recommended initial actions to customers in collaboration with the Incident Response (IR) Team.
- Provide advice relating to potential mitigation measures in order to prevent, or limit future reoccurrence in collaboration with the Incident Response (IR) Team.
- Have an understanding of Incident Response, Cyber Kill Chain, Threat Modelling and pertinent Attack Vectors.
- Have a collaborative working ethos in order to work across the team in order to create pertinent Playbooks, Use Cases, etc.
- Perform proactive analysis across client networks by staying abreast of current threats and trends.
- Develop and maintain a credible knowledge of current and emerging threats likely to affect the integrity of the managed service you are protecting.
- Review reoccurring false positive firings and assist in the tuning of SIEM and IDS rules to reduce false positives and maintain good security alerting.
- Creation of reporting for management and clients on security incidents and threat intelligence trends.
What You’ll Bring:
- Experience in Cyber Security, e.g. Protective Monitoring, Incident Response, Security Engineering.
- SIEM (LogRhythm, Arcsight, Splunk, etc).
Cyber Security Analyst in Somerset employer: Leonardo
At Leonardo, we pride ourselves on being an exceptional employer, particularly for our Cyber Security Analyst role based in Yeovil. Our collaborative work culture fosters innovation and professional growth, offering tailored development opportunities that empower employees to excel in their careers. With a commitment to safety-through-technology, you will be part of a world-leading team dedicated to making a meaningful impact across various industries, ensuring a rewarding and fulfilling work experience.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Analyst in Somerset
✨Tip Number 1
Network, network, network! Get out there and connect with professionals in the cyber security field. Attend industry events, webinars, or local meetups to meet potential employers and learn about job openings that might not be advertised.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, research, or any relevant work you've done. This gives you a chance to demonstrate your expertise and passion for cyber security beyond just your CV.
✨Tip Number 3
Prepare for interviews by brushing up on common cyber security scenarios and incident response strategies. Practice articulating your thought process and how you would handle specific situations, as this will help you stand out during the interview.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities waiting for you, and applying directly can sometimes give you an edge. Plus, it shows you’re genuinely interested in joining our team!
We think you need these skills to ace Cyber Security Analyst in Somerset
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Cyber Security Analyst role. Highlight relevant experience in protective monitoring, incident response, and any specific tools like SIEM that you've worked with. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how you can contribute to our ARCHANGEL™ team. Be sure to mention any specific projects or experiences that relate to the job description.
Showcase Your Skills:In your application, don't just list your skills—show us how you've used them in real-world situations. Whether it's reducing MTTD or developing playbooks, we want to know how you've made an impact in previous roles.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you get all the updates directly from us. Plus, it shows you're keen on joining our team!
How to prepare for a job interview at Leonardo
✨Know Your Cyber Security Basics
Make sure you brush up on key concepts like the Cyber Kill Chain, Threat Modelling, and common Attack Vectors. Being able to discuss these topics confidently will show that you have a solid foundation in cyber security, which is crucial for the role.
✨Familiarise Yourself with SIEM Tools
Since experience with SIEM tools like LogRhythm, Arcsight, or Splunk is essential, take some time to understand how they work. If possible, try to get hands-on experience or at least read up on their functionalities so you can speak about them during the interview.
✨Prepare for Scenario-Based Questions
Expect to be asked how you would handle specific security incidents. Think through potential scenarios and prepare your responses, focusing on your analytical approach and how you would collaborate with the Incident Response Team to mitigate threats.
✨Show Your Collaborative Spirit
This role requires a strong team ethos, so be ready to discuss examples of how you've worked effectively in teams before. Highlight any experiences where you contributed to creating Playbooks or Use Cases, as this will demonstrate your ability to work collaboratively in a high-stakes environment.
