Share this Job
Apply now »

Senior Cyber Security Analyst

Requisition ID:  77935
Business Unit:  Meggitt Aerospace Central (1428)
Location: 

Coventry, COV, United Kingdom, CV7 9JU

Joining our team means you’re helping to deliver our vision <> - keeping the world flying with one of over 73,000 Meggitt-equipped aircraft taking off every second of every day; protecting countless lives with our technology, keeping those who put their lives at risk safer and ensuring that the lights stay on for millions of people worldwide.

 

With over 160 years of history, innovation’s at the heart of everything we do in our aerospace, defence and selected energy markets Our global approach to lean manufacturing is the driving force on our journey to operational excellence and our goal to provide the best technology, products and service to our Customers.

 

We’ll help shape your career and provide you with the right learning, development and growth opportunities; we’re working hard to create a High Performance Culture where we live our Values of Teamwork, Integrity and Excellence

Role Summary

We have an exciting Senior Cyber Security Analyst position based at our state of the art facility in Coventry. Being an Aerospace & Defence business, you will be dealing with complex threats & challenges throughout. Futhermore, you will have the autonomy to shape & direct projects & work with some of the latest tools in providing safety to our business. 

 

The role of the Senior Cyber Security Analyst is to act as a lead incident responder and analyst for cyber security incidents, as well as to manage key Detection and Response Team (DART) technologies, such as SIEM, SOAR, and NGAV/EDR tools. You will be expected to be involved and in the full incident response lifecycle, from preparation for cyber security incidents, through detecting, managing and resolving ongoing incidents, and finally reporting on those incidents and identifying improvements and lessons learned.

Core Responsibilities

  • Identify and manage cyber security incidents following ITG procedures based on NIST frameworks.
  • Record and report on cyber security incidents, including recommendations for improvements in both ITG technologies and procedures to prevent re-occurrence.
  • Manage and administer key DART tools (SIEM, SOAR, NGAV/EDR) in co-ordination with third parties and other teams and team members, ensuring monitoring commitments are met.
  • Keep up to date on the evolving cyber security threat landscape and ensure ITG technologies and procedures are capable of detecting and preventing relevant threats.
  • Act as an escalation point, leader and mentor for other members of the DART.
  • Identify and implement improvements to cyber security tools and alert sources to improve detection of attacks and reduce false positives.
  • Offer guidance to other teams on security best practices and configuration changes to improve security of ITG technologies.

Skills, Knowledge and Abilities

  • Extensive knowledge of information and cyber security incident response procedures and frameworks (especially NIST frameworks).
  • Good understanding of TCP/IP networking and other networking protocols.
  • Good knowledge and understanding of scripting languages such as Python and PowerShell and experience writing scripts in these languages.
  • Experience working with Splunk and/or other SIEM technologies
  • Experience with Splunk administrative tasks such as data onboarding and platform configuration is preferred.
  • Experience working with Splunk Phantom and/or other SOAR technologies is preferred.
  • Experience working with Carbon Black and/or other NGAV/EDR technologies.
  • Good understanding of email security protocols and email analysis.
  • Good understanding of other security technologies, such as firewalls, IDS/IPS, email security gateways, and an ability to work with and analyse logs from these technologies.
  • Experience working with a Microsoft Active Directory (AD) and Windows environment, and an ability to analyse and investigate Windows and AD logs.
  • Experience working with Linux/Unix based systems and logs.

What We Offer

Meggitt is proud to offer a competitive total rewards framework designed with our colleagues' health, wealth and well-being in mind to help our employees balance a successful career.  Our competitive package will include:

 

  • Flexible working policies and the ability to accrue time off in lieu or for some roles to earn overtime. 
  • Early finish on a Friday
  • On site restaurant offering subsidized food
  • Pension Scheme up to 8% company contribution
  • Employee Assistance Program for Health & Wellbeing
  • Employee Perkz – offering our employees discounts on a huge variety of goods and services
  • Income Protection
  • Share Buying scheme
  • Employee Resource Groups
  • Volunteering day off

Meggitt are an equal opportunity employer and we are committed to developing an inclusive and diverse working environment. We believe that people from different backgrounds and beliefs define who we are as a business. We strongly believe that building a culture of respect and appreciation, will give everyone the opportunity to recognise their full potential.

Apply now »