Job Description:

Airbus Protect is a European specialist in cyber security, safety and sustainability services. Our mission is to protect governments, military and essential national infrastructure enterprises from cyber threats.

We are over 1800 experts based across our main locations in France, Germany and the UK, each with a Security Operating Centre, we also operate in the US and the Middle East.

We provide a global cyber defence approach that aims to protect, detect and respond to cyber threats with a portfolio including managed security services, industrial control system offerings, encryption, key management and consultancy services.

Our goal: Protect our customers and support their needs with cyber security products.

We are passionate about cyber security. If you share our passion, we want to speak with you.

The Role

An exciting opportunity has arisen for a 2nd Line Analyst within Airbus Protect in Newport.

The role of the 2nd Line Analyst is to be an escalation point for all SOC operational activity. The successful candidate will be responsible for the day to day monitoring of multiple security devices, including SIEM, EDR, SOAR etc, ensuring that all customer SLAs are met.

You will be required to work as part of the SOC team ensuring all SOC operational tasks are completed on time and work tickets updated/closed with satisfactory technical details included.

The 2nd Line Analyst will be comfortable at a technical level, often being required to attend technical workshops and customer briefings/service reviews.

All Analysts are expected to be able to present and write professional reports to key stakeholders and exercise good time management.

This position can offer you:

Are you looking for challenging tasks in a company with some of the most creative cyber security technology and services? Integration into an international network of cyber security experts across and outside of Europe? Would you like to participate in Europe-wide projects as a prime supplier?

We can offer you all of this and more…

• Exciting development opportunities and perspectives within Airbus as a global player

• An attractive company pension scheme

• Airbus Group success share scheme

• An extensive range of additional benefits

Tasks and Accountabilities

• Perform further analysis of any escalated events and alarms using the SOC toolset and following the heuristic guidance steps described in the associated playbooks.

• Provide support and offer expertise across stages of the Incident Response lifecycle such as preparation, detection and analysis, containment, post-incident activity.

• Ingest and interpret multiple sources of data from research, reports and incidents and turn them into actionable use cases across various technologies.

• On request assist with the initial triage, scoping and containment efforts during incident response engagements and compromise assessments.

• Mentor junior analysts.

• Lead and direct efficient intelligence driven threat hunts.

• Act as a solid technical point of contact for customers.

• Maintain currency in cyber security concepts, tools and best practices appropriate to the Senior Cyber Defence Analyst L2 role and associated knowledge, skills, abilities at the stated competence level.

• Carry out IOC searches and react using the predefined playbooks.

• Develop playbooks for junior analysts to follow.

• Provide feedback and support along the first, second and third capability within the Airbus Protect Defence Team

• Provide feedback and contribution into the Continual Service Improvement life cycle

We are looking for applicants with the following experience:

Required

• Perform further analysis of any escalated events and alarms using the SOC toolset and following the heuristic guidance steps described in the associated playbooks.

• Provide support and offer expertise across stages of the Incident Response lifecycle such as preparation, detection and analysis, containment, post-incident activity.

• Ingest and interpret multiple sources of data from research, reports and incidents and turn them into actionable use cases across various technologies.

• On request assist with the initial triage, scoping and containment efforts during incident response engagements and compromise assessments.

• Mentor junior analysts.

• Lead and direct efficient intelligence driven threat hunts.

• Act as a solid technical point of contact for customers.

• Maintain currency in cyber security concepts, tools and best practices appropriate to the Senior Cyber Defence Analyst L2 role and associated knowledge, skills, abilities at the stated competence level.

• Carry out IOC searches and react using the predefined playbooks.

• Develop playbooks for junior analysts to follow.

• Provide feedback and support along the first, second and third capability within the Airbus Protect Defence Team

• Provide feedback and contribution into the Continual Service Improvement life cycle

Desirable

• SANS SEC503 GCIA

• SANS SEC504 GCIH

• SANS FOR508 GCFA

• Security Blue BTL1 / BTL2

• PJMR

• CREST (Registered Intrusion Analyst) (CRIA)

Soft Skills/Qualifications

• The 2nd Line Analyst is expected to be able to present and write professional reports to key stakeholders

• All staff are expected to exercise good time management and work as part of a team

You will work from Airbus Protect offices, Newport, South Wales, with occasional requirements for business travel within the UK and abroad.

Because of the nature of work undertaken, these positions are required to meet special nationality rules and therefore these vacancies are only open to sole British Citizens. If you meet this criteria you will also undergo security clearance vetting, if not already security cleared to a minimum DV level

We are committed to equal employment opportunities regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.

This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.

Company:

Airbus Protect Limited:

Contract Type:

Permanent

Experience Level:

Professional

Job Family:

Cyber Security

By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus.
Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.

Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to emsom@airbus.com.

At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.