Cyber Security Analyst

In fast changing markets, customers worldwide rely on Thales. Thales is a business where brilliant people from all over the world come together to share ideas and inspire each other. In aerospace, transportation, defence, security and space, our architects design innovative solutions that make our tomorrow's possible. Together we offer fantastic opportunities for committed employees to learn and develop their career with us. At Thales UK, we research, develop, and supply technology and services that impact the lives of millions of people each day to make life better, and keep us safer. We innovate across the major industries of Aerospace, Defence, Security and Space. Your health and well-being matters to us and thats why we offer you the flexibility to do whats important to you; whether thats part time hours, job sharing, home working, or the ability to flex your start and finish times. Where possible, we support a working pattern that suits your lifestyle and helps you reach your ambitions.

Job Description: Cyber Security Incident Response Analyst (UK South - Reading, hybrid working).

Primary Location: UK South - Reading (hybrid working)

• Cyber security event analysis and investigation
• Digital forensics investigation applying good practice guidelines
• Manage escalated security incidents through the incident response process to closure
• Identify and understand security log sources to support creation and improvement for alerting on abnormal activity and to minimise false positives
• Employ analysis tools to identify data related to security incidents and root cause
• Effectively communicate to appropriate escalation points
• Research and advise on appropriate security counter-measures to reduce cyber risk
• Apply appropriate urgency and action depending on data sensitivity
• Participate in knowledge sharing and incident response exercises
• Assess current cyber threats intelligence, security vulnerabilities and define actions

• Experience as a Cyber Security Analyst
• Digital forensics tools, processes and good practice
• Knowledge of and experience using SIEM tools
• Familiar with methods for ethical security penetration testing
• Familiar with the common compromise tools and techniques
• IS and security process experience, including change and incident management
• IS infrastructure, internet, networking, and computer knowledge
• Systems administration
• Collaboration tools and operating in a distributed team

• Creation and maintenance of SOC processes and procedures
• Experience implementing SOAR platforms and automation workflows
• Understanding of the MITRE ATT&CK framework and its practical application
• Relevant professional cyber security qualifications
• Programming skills
• Experienced intrusion detection and vulnerability analysis
• Cyber security risk assessment

In line with Thales' Baseline Security requirements, candidates will be asked to provide evidence of identity, eligibility to work in the UK and employment and/or education history for up to three years. Some vacancies may require full Security Clearance which can require further evidence to be provided. For further details of the evidence required to apply for Baseline and Security Clearance please refer to the Defence Business Services National Security Vetting (DBS NSV) Agency.

At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working.

Thales UK is committed to providing an inclusive and barrier-free recruitment process. We will provide reasonable adjustments and support to ensure neuro-diverse applicants or those with a disability or long-term condition can be their best during the recruitment process. To request an adjustment, if you need this job advert in an alternative format or if you have any questions about the recruitment process, please contact Resourcing Ops for mid to senior roles, or the Early Careers Team for graduate and apprentice roles.

Great journeys start here, apply now!

Keywords: Thales UK, Cyber Security, Incident Response, CSOC