6 Counter Terrorism jobs in the United Kingdom
National Security General Careers
London, London
JobFlurry-WhatJobs-GB
Posted 5 days ago
Job Viewed
Job Description
Location(s): Gloucester, London or Manchester
BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.
National Security at BAE Digital Intelligence
Requisition ID: 68897
Location: Gloucester, London or Manchester - Hybrid working offered, with consideration for both full and part-time applicants - please speak to your recruiter about the options
Grade: GG08 - GG13
We are growing rapidly and are looking for security cleared engineers, consultants and delivery professionals to join our team. We are proud of the work we do in National Security and the difference we make to the safety and prosperity of the UK.
Our areas of expertise
It is the in-depth expertise and creativity of our people which make NS a success. We have opportunities to expand our team in several areas, including:n• Operational Cybern• Software Engineeringn• Infrastructure Engineeringn• Business & Technical Consultancyn• Cyber Security Consultingn• Data Consultancy and Engineeringn• Delivery and Project managementn• Support and Managed Servicesn• User Experience design and build.
You'll be part of a big company, but we try to create a culture that feels more like a small one. The work will stretch you and be challenging, but we encourage a healthy work-life balance and welcome a discussion on flexible working. Most of all, we know that teams who work well together also perform well. We'll do everything we can to ensure you have fun both at work and in our social activities outside of it.
We are specifically recruiting for our National Security business which is the largest area within our Government division. Our mission is to be the most trusted partner for our National Security clients in delivery of their core mission.
We have a rich history of working within National Security. In fact, we have over 50 years' experience of delivering advice and solutions to our customers in this sector, supporting them in carrying out their vital missions. We are currently at the forefront of introducing new technology and approaches, and would like you to be part of this exciting phase in our history.
What we are made of
We pride ourselves on being able to solve some of our customers' most complex problems. That ability is based on the skills and experience of our people and our culture, which respects and supports the individual.
Our people are what differentiate us, they are ingenious, innovative and dedicated. We have a mix of generalists and specialists and recognise that this diversity contributes to our success. In general, we work in teams. We recognise the benefits of forming teams from a mix of disciplines, which allows us to come up with balanced, high quality solutions.
We work hard and often go the extra mile, but we recognise people's efforts and that everyone has a life outside of work. We encourage people to speak up if they want to rotate to a new project in support of career development, or even just to face a new challenge. We also support flexible working and keeping a healthy work/life balance.
Our breadth across the National Security sector provides diverse opportunities for our people to develop their careers in new areas of expertise or with new clients, if they choose.
Security Clearance
Due to the nature of our work, successful candidates for this role will be required to hold an active eDV before applying for this opportunity.
Why BAE Systems?nThis is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.
Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.
Life at BAE Systems Digital Intelligence
We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.
By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.
Inclusion is integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential.
Division overview: Capabilities
At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Capabilities is the engine that keeps the business moving forward. It is the largest area of Digital Intelligence, containing our Engineering, Consulting and Project Management teams that design and implement the defence solutions and digital transformation projects that make us a globally recognised brand in both the public and private sector.
As a member of the Capabilities team, you will be creating and managing the solutions that earn us our place in an ever changing digital world. We all have a role to play in defending our clients, and this is yours.
BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.
National Security at BAE Digital Intelligence
Requisition ID: 68897
Location: Gloucester, London or Manchester - Hybrid working offered, with consideration for both full and part-time applicants - please speak to your recruiter about the options
Grade: GG08 - GG13
We are growing rapidly and are looking for security cleared engineers, consultants and delivery professionals to join our team. We are proud of the work we do in National Security and the difference we make to the safety and prosperity of the UK.
Our areas of expertise
It is the in-depth expertise and creativity of our people which make NS a success. We have opportunities to expand our team in several areas, including:n• Operational Cybern• Software Engineeringn• Infrastructure Engineeringn• Business & Technical Consultancyn• Cyber Security Consultingn• Data Consultancy and Engineeringn• Delivery and Project managementn• Support and Managed Servicesn• User Experience design and build.
You'll be part of a big company, but we try to create a culture that feels more like a small one. The work will stretch you and be challenging, but we encourage a healthy work-life balance and welcome a discussion on flexible working. Most of all, we know that teams who work well together also perform well. We'll do everything we can to ensure you have fun both at work and in our social activities outside of it.
We are specifically recruiting for our National Security business which is the largest area within our Government division. Our mission is to be the most trusted partner for our National Security clients in delivery of their core mission.
We have a rich history of working within National Security. In fact, we have over 50 years' experience of delivering advice and solutions to our customers in this sector, supporting them in carrying out their vital missions. We are currently at the forefront of introducing new technology and approaches, and would like you to be part of this exciting phase in our history.
What we are made of
We pride ourselves on being able to solve some of our customers' most complex problems. That ability is based on the skills and experience of our people and our culture, which respects and supports the individual.
Our people are what differentiate us, they are ingenious, innovative and dedicated. We have a mix of generalists and specialists and recognise that this diversity contributes to our success. In general, we work in teams. We recognise the benefits of forming teams from a mix of disciplines, which allows us to come up with balanced, high quality solutions.
We work hard and often go the extra mile, but we recognise people's efforts and that everyone has a life outside of work. We encourage people to speak up if they want to rotate to a new project in support of career development, or even just to face a new challenge. We also support flexible working and keeping a healthy work/life balance.
Our breadth across the National Security sector provides diverse opportunities for our people to develop their careers in new areas of expertise or with new clients, if they choose.
Security Clearance
Due to the nature of our work, successful candidates for this role will be required to hold an active eDV before applying for this opportunity.
Why BAE Systems?nThis is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.
Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.
Life at BAE Systems Digital Intelligence
We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.
By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.
Inclusion is integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential.
Division overview: Capabilities
At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Capabilities is the engine that keeps the business moving forward. It is the largest area of Digital Intelligence, containing our Engineering, Consulting and Project Management teams that design and implement the defence solutions and digital transformation projects that make us a globally recognised brand in both the public and private sector.
As a member of the Capabilities team, you will be creating and managing the solutions that earn us our place in an ever changing digital world. We all have a role to play in defending our clients, and this is yours.
This advertiser has chosen not to accept applicants from your region.
0
Threat Hunter - National Security - Leeds
GL1 Barton, South West
JobFlurry-WhatJobs-GB
Posted 18 days ago
Job Viewed
Job Description
Location(s): UK, Europe & Africa : UK : Gloucester
BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.n•
Job Title: Threat Hunter
Requisition ID: 121789
Location:
Leeds - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role.
Grade:
GG10 - GG11
Referral Bonus:
£5,000
Job Description
Point of escalation for intrusion analysis, forensics and Incident Response queries. Able to provide root cause analysis of complex, non-standard analytic findings and anomaly-based detections for which a playbook does not exist.n• Mentor and share knowledge with the wider team as and when it becomes prudent.n• Contribute and facilitate collaboration through the SOC Knowledge Repository and associated systems, autonomously creating new knowledge and updating existing items.n• Working outside the HMG community to build/develop relationships with external SOCs and cyber security researchers, identify analytics, tradecraft and threat intelligence that may benefit the Blue Team, including both communicating suggestions for funding/prioritisation to technical lead, and working as lead implementor when required.n• Development of new complex and anomaly-based KQL analytics, and associated playbooks that result in creation of bespoke detection rules/analytics against M365 environments, plus host-based analytics for Linux and Windows VM'sn• Review open-source research into latest threats and detection opportunities that primarily impact cloud hosted services and cloud-hosted VM's. Independently prioritise for implementation.n• Research potential vulnerabilities which could lead to environment compromise. Produce proof-of-concept exploit code capable of demonstrating exploitation of the identified vulnerabilities.n• Emulate adversary TTPs for purposes of team training and detection capability evaluationn• Review findings of red team/Pentest activities and derive new improvements to detection rulesn• Provide forensic support, and threat-emulation, to enhance the triage of existing alerts and their accuracy and/or risk posed, where reasonable.n• Identify weaknesses and gaps in SOC processes, data collection and analysis. Practically demonstrating (eg through scenarios, red-teaming and exercises) why improvements to existing tradecraft are needed to keep pace with changing attacker techniques tactics and procedures (TTP's)n• Using technical knowledge and skills to perform a broad range of non-routine and more complex ID&A tasks, including threat hunting, automation and analytic enrichment.n• Set the vision and milestones for emulation and detection capability, influencing other teams to provide collaboration where necessary.n• Full accountability for adjustment of alert thresholds and suppressions based on assessment of signal-to-noise assessment, team risk appetite, analyst team capability and skill availability.n• Define Threat Hunting initiatives based on real-world or reasoned risks.n• Architect detection programmes/processes/systems to better determine unusual behaviours, reduce dwell time, and reduce resources spent on expected activity.n• Determine and oversee practices which improve daily operations and capabilities, including quality review of analyst activitiesn• Provide strategy and goals of operational team exercises with full autonomy as detection needs require.n• Influence the formation of team requirements inclusive of engineering, analysis and continuous improvement strategy.
Devise technical interview questions, conduct technical interviews and evaluate candidate responses.
Experience:n• Demonstrable experience of security testing practises and techniquesn• Knowledge of Azure, desirable to also have knowledge of AWSn• Knowledge of Windows Active Directoryn• Knowledge of Windows Operating System fundamentalsn• Knowledge of Networking fundamentalsn• Experience using CICD and source controln• Experience in writing new malware and anomaly detections
Knowledge of using statistical methods to find anomalies in datan• Advanced Practical use of Microsoft Sentinel and/or Microsoft XDRn• Competent in writing med-highly complex KQL analytics/searchesn• Strong knowledge of latest threats in securityn• Ability to prioritise threatsn• Determine factors that contribute to a detection's effectiveness
Threat hunting or SOC analyst skills/ certifications
Life at BAE Systems Digital Intelligence
We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.
By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.
Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential.
BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.n•
Job Title: Threat Hunter
Requisition ID: 121789
Location:
Leeds - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role.
Grade:
GG10 - GG11
Referral Bonus:
£5,000
Job Description
Point of escalation for intrusion analysis, forensics and Incident Response queries. Able to provide root cause analysis of complex, non-standard analytic findings and anomaly-based detections for which a playbook does not exist.n• Mentor and share knowledge with the wider team as and when it becomes prudent.n• Contribute and facilitate collaboration through the SOC Knowledge Repository and associated systems, autonomously creating new knowledge and updating existing items.n• Working outside the HMG community to build/develop relationships with external SOCs and cyber security researchers, identify analytics, tradecraft and threat intelligence that may benefit the Blue Team, including both communicating suggestions for funding/prioritisation to technical lead, and working as lead implementor when required.n• Development of new complex and anomaly-based KQL analytics, and associated playbooks that result in creation of bespoke detection rules/analytics against M365 environments, plus host-based analytics for Linux and Windows VM'sn• Review open-source research into latest threats and detection opportunities that primarily impact cloud hosted services and cloud-hosted VM's. Independently prioritise for implementation.n• Research potential vulnerabilities which could lead to environment compromise. Produce proof-of-concept exploit code capable of demonstrating exploitation of the identified vulnerabilities.n• Emulate adversary TTPs for purposes of team training and detection capability evaluationn• Review findings of red team/Pentest activities and derive new improvements to detection rulesn• Provide forensic support, and threat-emulation, to enhance the triage of existing alerts and their accuracy and/or risk posed, where reasonable.n• Identify weaknesses and gaps in SOC processes, data collection and analysis. Practically demonstrating (eg through scenarios, red-teaming and exercises) why improvements to existing tradecraft are needed to keep pace with changing attacker techniques tactics and procedures (TTP's)n• Using technical knowledge and skills to perform a broad range of non-routine and more complex ID&A tasks, including threat hunting, automation and analytic enrichment.n• Set the vision and milestones for emulation and detection capability, influencing other teams to provide collaboration where necessary.n• Full accountability for adjustment of alert thresholds and suppressions based on assessment of signal-to-noise assessment, team risk appetite, analyst team capability and skill availability.n• Define Threat Hunting initiatives based on real-world or reasoned risks.n• Architect detection programmes/processes/systems to better determine unusual behaviours, reduce dwell time, and reduce resources spent on expected activity.n• Determine and oversee practices which improve daily operations and capabilities, including quality review of analyst activitiesn• Provide strategy and goals of operational team exercises with full autonomy as detection needs require.n• Influence the formation of team requirements inclusive of engineering, analysis and continuous improvement strategy.
Devise technical interview questions, conduct technical interviews and evaluate candidate responses.
Experience:n• Demonstrable experience of security testing practises and techniquesn• Knowledge of Azure, desirable to also have knowledge of AWSn• Knowledge of Windows Active Directoryn• Knowledge of Windows Operating System fundamentalsn• Knowledge of Networking fundamentalsn• Experience using CICD and source controln• Experience in writing new malware and anomaly detections
Knowledge of using statistical methods to find anomalies in datan• Advanced Practical use of Microsoft Sentinel and/or Microsoft XDRn• Competent in writing med-highly complex KQL analytics/searchesn• Strong knowledge of latest threats in securityn• Ability to prioritise threatsn• Determine factors that contribute to a detection's effectiveness
Threat hunting or SOC analyst skills/ certifications
Life at BAE Systems Digital Intelligence
We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.
By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.
Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential.
This advertiser has chosen not to accept applicants from your region.
1
PKI Integrator - Defence and National Security
Hampshire, South East
£50000 - £55000 Annually
CBSbutler Holdings Limited trading as CBSbutler
Posted 8 days ago
Job Viewed
Job Description
PKI Integrator - Defence and National Security
Salary : To 55,000k + 6K allowance + bonus (upto 10%) + 10% DV Allowance
Location : Basingstoke (On site)
The company:
Global IT Consultancy delivering digital transformation to Defence and National Security end clients.
Overview:
The PKI Integrator will be responsible for applying security best practices and industry standards derived from threat analysis to implement PKI technology according to Design requirements.
The position requires strong theoretical knowledge as well as industry experience in applying ad-vanced cryptography schemes to secure complex IT infrastructure, customer-facing services, and sensitive customer and enterprise data.
Your skills and experience:
- Experience of delivering on-premise PKI using technologies such as Keyfactor (EBJCA), Microsoft PKI and OpenSSL;
- Experience of delivery of high assurance PKI to support Microsoft and Linux platforms;
- Expertise in both mainstream encryption schemes and key exchange protocols as well as quan-tum-safe cryptography;
- Experience in Powershell and OpenSSL;
- Experience in creation of policy documentation via interpretation of customer Certificate Policies in relation to PKI usage i.e. CPS / Key Signing Ceremonies;
- Good interpersonal skills who is able to learn and adapt to work across both legacy and new technologies as part of a live system transitioned programme.
- Responsible for the delivery of new and ongoing change to work packages, in response to evolving user requirements.
- Creation and ownership of all related documentation artefacts relating to work packages including HLD, LLD, Installation guides.
- This role will require you to be eligible and willing to undergo a high level of security clearance.
This advertiser has chosen not to accept applicants from your region.
2
PKI Integrator - Defence and National Security
RG21 Basingstoke, South East
CBSbutler Holdings Limited trading as CBSbutler
Posted 25 days ago
Job Viewed
Job Description
PKI Integrator - Defence and National Security
Salary : To 55,000k + 6K allowance + bonus (upto 10%) + 10% DV Allowance
Location : Basingstoke (On site)
The company:
Global IT Consultancy delivering digital transformation to Defence and National Security end clients.
Overview:
The PKI Integrator will be responsible for applying security best practices and industry standards derived from threat analysis to implement PKI technology according to Design requirements.
The position requires strong theoretical knowledge as well as industry experience in applying ad-vanced cryptography schemes to secure complex IT infrastructure, customer-facing services, and sensitive customer and enterprise data.
Your skills and experience:
- Experience of delivering on-premise PKI using technologies such as Keyfactor (EBJCA), Microsoft PKI and OpenSSL;
- Experience of delivery of high assurance PKI to support Microsoft and Linux platforms;
- Expertise in both mainstream encryption schemes and key exchange protocols as well as quan-tum-safe cryptography;
- Experience in Powershell and OpenSSL;
- Experience in creation of policy documentation via interpretation of customer Certificate Policies in relation to PKI usage i.e. CPS / Key Signing Ceremonies;
- Good interpersonal skills who is able to learn and adapt to work across both legacy and new technologies as part of a live system transitioned programme.
- Responsible for the delivery of new and ongoing change to work packages, in response to evolving user requirements.
- Creation and ownership of all related documentation artefacts relating to work packages including HLD, LLD, Installation guides.
- This role will require you to be eligible and willing to undergo a high level of security clearance.
This advertiser has chosen not to accept applicants from your region.
3
Front Line Analyst - National Security - Leeds
LS1 Leeds, Yorkshire and the Humber
JobFlurry-WhatJobs-GB
Posted 18 days ago
Job Viewed
Job Description
Location(s): UK, Europe & Africa : UK : Leeds
BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.n•
Job Title: Front Line Analyst
Requisition ID: 121791
Location:
Leeds - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role.
Grade:
GG08
Referral Bonus:
£2,000
Job Description
Conducting Cyber Security Monitoring to detect hacking/malware intrusion attempts against customer IT.n• Full triage of detection alarms to accurately identify the cause of the alarm, be it active infection, attempted intrusion or a clear reason for false positive.n• Conduct full Identification" of any detected attacks (successful or failed) to understand and document the source of the attack, the Techniques, Tactics and Procedures(TTPs) used in the attack from start to finish and the extent (breadth and depth) of the attack.n• Capturing/documenting full attack chain details of detected attacks (successful and failed) and feeding them back into detection capability.n• Responsible for ensuring monitoring effectiveness and efficiency via the creation and updating of SIEM/SOAR playbooks, in line with changing attacker techniques tactics and procedures (TTP's)n• Use Intrusion Analysis skills and experience to provide input to new detection techniques and research new detection capabilities produced by Industry. Eg documenting requirements for new capabilities/techniques and associated dependencies for consideration by the Intrusion Analysis Lead for prioritisation.n• Ad-hoc communications with government or commercial security operations centres as part of root-cause analysisn• Creation of low-medium complexity KQL analytics and hunt queries, conducting IOC and anomaly-based threat hunts, including root cause identification of findingsn• Identification and tagging of incorrect alert logic/high false positive detection rules for the attention of senior analysts.n• Consume Threat Intelligence from internal and partner tools and transform into actionable hunting and detections.n• Coaching of junior analysts and colleagues when requiredn• Lead Threat Hunting workgroups during Hunting Events for specific complex TTPs, across multiple industries and departments.n• Deliver ad-hoc training/workshops intra-org which encourage User Awareness of security risk, and uplift other team members with new knowledge.
Provide daily SITREPs to local teams regarding attacker activity
Expereince:n• Knowledge of Intrusion Analysis on Windows end user devices and servers.n• Knowledge of Intrusion Analysis on Azure, including attacker methods of 'living off the cloud' such as use of Microsoft Graph API, app registrations and managed identitiesn• Ability to quickly research and learn about new tools and techniquesn• Good working knowledge of MITRE ATT&CK Framework
Good working knowledge of networking concepts & protocols (TCP/IP, UDP, DNS, DHCP, HTTP, etc.)n• Intrusion Analysis on Windows Devices and Azure Cloud Architecture.n• Relevant SANS or similar incident response/forensics or host and analysis certificationsn• Understanding of Operating System functionality and operationsn• Develop hypothesis and perform threat hunting in, Azure cloud or Windows Device data
Desirable Qualifications:n• Degree-level education in Cyber Security or related arean• CompTIA Network+ / Security+n• CREST - Intrusion Analyst, Cyber Threat Intelligencen• Azure - AZ900, SC200, SC900n• AWS Cloud Essentials
SANS GCIH, GCIA or similar
Life at BAE Systems Digital Intelligence
We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.
By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.
Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential.
BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.n•
Job Title: Front Line Analyst
Requisition ID: 121791
Location:
Leeds - We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role.
Grade:
GG08
Referral Bonus:
£2,000
Job Description
Conducting Cyber Security Monitoring to detect hacking/malware intrusion attempts against customer IT.n• Full triage of detection alarms to accurately identify the cause of the alarm, be it active infection, attempted intrusion or a clear reason for false positive.n• Conduct full Identification" of any detected attacks (successful or failed) to understand and document the source of the attack, the Techniques, Tactics and Procedures(TTPs) used in the attack from start to finish and the extent (breadth and depth) of the attack.n• Capturing/documenting full attack chain details of detected attacks (successful and failed) and feeding them back into detection capability.n• Responsible for ensuring monitoring effectiveness and efficiency via the creation and updating of SIEM/SOAR playbooks, in line with changing attacker techniques tactics and procedures (TTP's)n• Use Intrusion Analysis skills and experience to provide input to new detection techniques and research new detection capabilities produced by Industry. Eg documenting requirements for new capabilities/techniques and associated dependencies for consideration by the Intrusion Analysis Lead for prioritisation.n• Ad-hoc communications with government or commercial security operations centres as part of root-cause analysisn• Creation of low-medium complexity KQL analytics and hunt queries, conducting IOC and anomaly-based threat hunts, including root cause identification of findingsn• Identification and tagging of incorrect alert logic/high false positive detection rules for the attention of senior analysts.n• Consume Threat Intelligence from internal and partner tools and transform into actionable hunting and detections.n• Coaching of junior analysts and colleagues when requiredn• Lead Threat Hunting workgroups during Hunting Events for specific complex TTPs, across multiple industries and departments.n• Deliver ad-hoc training/workshops intra-org which encourage User Awareness of security risk, and uplift other team members with new knowledge.
Provide daily SITREPs to local teams regarding attacker activity
Expereince:n• Knowledge of Intrusion Analysis on Windows end user devices and servers.n• Knowledge of Intrusion Analysis on Azure, including attacker methods of 'living off the cloud' such as use of Microsoft Graph API, app registrations and managed identitiesn• Ability to quickly research and learn about new tools and techniquesn• Good working knowledge of MITRE ATT&CK Framework
Good working knowledge of networking concepts & protocols (TCP/IP, UDP, DNS, DHCP, HTTP, etc.)n• Intrusion Analysis on Windows Devices and Azure Cloud Architecture.n• Relevant SANS or similar incident response/forensics or host and analysis certificationsn• Understanding of Operating System functionality and operationsn• Develop hypothesis and perform threat hunting in, Azure cloud or Windows Device data
Desirable Qualifications:n• Degree-level education in Cyber Security or related arean• CompTIA Network+ / Security+n• CREST - Intrusion Analyst, Cyber Threat Intelligencen• Azure - AZ900, SC200, SC900n• AWS Cloud Essentials
SANS GCIH, GCIA or similar
Life at BAE Systems Digital Intelligence
We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.
By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.
Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential.
This advertiser has chosen not to accept applicants from your region.
4
Law Enforcement Response Team Operations Policy Associate (Short-Term Employment)
London, London
Meta
Posted 3 days ago
Job Viewed
Job Description
**Summary:**
The Meta Legal team is seeking a motivated, highly-organized, detail-oriented candidate with impeccable judgment and interpersonal skills to join our Law Enforcement Response Policy Team for the EMEA region. The ideal candidate will demonstrate a great work ethic and outstanding collaboration skills.This position is offered as an 12-month Short-Term Employment, providing an excellent opportunity to contribute to our organization and develop your skills
**Required Skills:**
Law Enforcement Response Team Operations Policy Associate (Short-Term Employment) Responsibilities:
1. Support operational escalations related to sensitive subject matters from global team members, quality assurance team, and cross-functional partners, and collaborate on operational policy decisions with the legal team
2. Develop and maintain the operational policy governance to support a team handling a large volume of incoming requests from law enforcement and third parties
3. Ensure that all requests are scrutinized and handled in strict accordance with applicable laws, our terms of service, and our law enforcement guidelines
4. Track the progress of operational policies from submission to implementation
5. Manage and coordinate development of operational policy based upon input from cross-functional teams
6. Help articulate operational policy background and supporting rationale to relevant internal parties, including management, operations, and other internal stakeholders
7. Identify operational policy gaps and deliver ongoing communications to team members
8. Articulate operational policy positions in internal policy meetings with Meta stakeholders
9. Draft operational policy-related materials including reports, propose documentation updates, develop documentation based on legal guidance, create instructional content, with the ability to proof, revise, and edit copy to ensure both accuracy and quality of content, convert complex ideas and concepts into easily understood documentation
10. Engage and build relationships with cross-functional teams and stakeholders to ensure that development and operational readiness requirements are understood and implemented
11. Ensure proper tracking and reporting on engagement and outcomes of operational policy efforts, and provide cross-functional partners with information on policy development activity
12. Address sensitive content issues, including but not limited to graphic violence, child exploitation, images, videos and writings, offensive or derogatory language, and other objectionable material
13. Provide support to leadership as needed, including documentation change management and metrics
14. Manage time effectively to prioritize multiple competing priorities
15. Lead and support globally focused projects
16. Adapt to flexible working hours
**Minimum Qualifications:**
Minimum Qualifications:
17. BA/BS degree
18. 8+ years of experience in operational, policy, government, legal, compliance, privacy, or strategy experience
19. Proven ability to manage and resolve complex problems and issues, using judgment in handling sensitive matters while maintaining confidentiality
20. Experience prioritizing multiple functions and tasks while managing core work responsibilities without compromising quality
21. Able to work independently with minimal direct supervision
22. Experience working at a tech company or with tech clients, including technical writing skills
23. Experience partnering both within the team and with a wide range of internal partners
24. Able to work collaboratively with cross-functional teams
**Preferred Qualifications:**
Preferred Qualifications:
25. Experience in law enforcement policy and risk-assessment, drafting regulatory language, and knowledge of privacy and data security principles
26. Global work experience
27. Experience with project management, working under pressure, instructional design, proofreading, crisis management, and issue-based communications
**Industry:** Internet
The Meta Legal team is seeking a motivated, highly-organized, detail-oriented candidate with impeccable judgment and interpersonal skills to join our Law Enforcement Response Policy Team for the EMEA region. The ideal candidate will demonstrate a great work ethic and outstanding collaboration skills.This position is offered as an 12-month Short-Term Employment, providing an excellent opportunity to contribute to our organization and develop your skills
**Required Skills:**
Law Enforcement Response Team Operations Policy Associate (Short-Term Employment) Responsibilities:
1. Support operational escalations related to sensitive subject matters from global team members, quality assurance team, and cross-functional partners, and collaborate on operational policy decisions with the legal team
2. Develop and maintain the operational policy governance to support a team handling a large volume of incoming requests from law enforcement and third parties
3. Ensure that all requests are scrutinized and handled in strict accordance with applicable laws, our terms of service, and our law enforcement guidelines
4. Track the progress of operational policies from submission to implementation
5. Manage and coordinate development of operational policy based upon input from cross-functional teams
6. Help articulate operational policy background and supporting rationale to relevant internal parties, including management, operations, and other internal stakeholders
7. Identify operational policy gaps and deliver ongoing communications to team members
8. Articulate operational policy positions in internal policy meetings with Meta stakeholders
9. Draft operational policy-related materials including reports, propose documentation updates, develop documentation based on legal guidance, create instructional content, with the ability to proof, revise, and edit copy to ensure both accuracy and quality of content, convert complex ideas and concepts into easily understood documentation
10. Engage and build relationships with cross-functional teams and stakeholders to ensure that development and operational readiness requirements are understood and implemented
11. Ensure proper tracking and reporting on engagement and outcomes of operational policy efforts, and provide cross-functional partners with information on policy development activity
12. Address sensitive content issues, including but not limited to graphic violence, child exploitation, images, videos and writings, offensive or derogatory language, and other objectionable material
13. Provide support to leadership as needed, including documentation change management and metrics
14. Manage time effectively to prioritize multiple competing priorities
15. Lead and support globally focused projects
16. Adapt to flexible working hours
**Minimum Qualifications:**
Minimum Qualifications:
17. BA/BS degree
18. 8+ years of experience in operational, policy, government, legal, compliance, privacy, or strategy experience
19. Proven ability to manage and resolve complex problems and issues, using judgment in handling sensitive matters while maintaining confidentiality
20. Experience prioritizing multiple functions and tasks while managing core work responsibilities without compromising quality
21. Able to work independently with minimal direct supervision
22. Experience working at a tech company or with tech clients, including technical writing skills
23. Experience partnering both within the team and with a wide range of internal partners
24. Able to work collaboratively with cross-functional teams
**Preferred Qualifications:**
Preferred Qualifications:
25. Experience in law enforcement policy and risk-assessment, drafting regulatory language, and knowledge of privacy and data security principles
26. Global work experience
27. Experience with project management, working under pressure, instructional design, proofreading, crisis management, and issue-based communications
**Industry:** Internet
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Counter terrorism Jobs in United Kingdom !
5