Cyber Shift Lead

Why & Who:
Ntrinsic Consulting is currently seeking an experienced individual to fill the position of Security Operations Center (SOC) Lead. This role presents a unique opportunity to join a leading organisation in the United Kingdom's renewable energy sector.

Terms:
Permanent Opportunity

The employer:
As a valued member of the team, you will play a vital role in bolstering and enhancing the operational security capabilities of the Cyber Security Team within their dynamic and expanding organisation. This presents an exciting opportunity to work on and spearhead innovative security projects while offering expert guidance and advisory support to various departments within the company, ensuring adherence to best practices in the field.

This role includes 10% Car allowance, 20% Bonus & 30% Shift allowance.

3 days shift pattern include:
• 6am-2:30pm
• 2pm-10:30pm
• 10am -6:30 pm

Day to day Responsibilities:
You will take on the responsibility of assisting the Incident Investigation Lead, guaranteeing that any threats escalated to the security team are meticulously assessed and thoroughly investigated.
• Be the point of contact for the Cyber security Lead, ensuring alerts raised to the Security team are followed through and investigated.
• Identify opportunities for security improvements and work with relevant infrastructure teams to implement effectively.
• Develop operational metrics and dashboard reporting for operational security posture.
• Support operational security projects and where necessary attend Technical Design Forms and represent the Cyber Security team at Change Control.
• Reviewing products that can advance our security capabilities, such as tools that support analysis, to detection capabilities and other emerging technologies.
• SIEM use case development.

Experience working with: LAN, TCP/IP, OSI Model, DNS, DHCP, Wi-Fi, Routing, VPN, Firewalls, Load Balancing, IPv4
• Understanding of key windows domain services, such as Active Directory, Exchange and Windows Server environments.
• Experience in applying security best practices to end user devices (workstations) and hardening Servers.
• Exposure to key security technologies, such as IDS, Web content filters, AV, SIEM, Vulnerability Management, Firewalls, and awareness of their purpose in a layered security approach
• Good cloud knowledge – Azure and AWS

Location
• Manchester – 4 days onsite

The application process 2 stage interview process:

1st stage Microsoft Teams Meeting – Test Assessment
2nd Stage – Face – to – face