Enable job alerts via email!

Network Support Engineer (Security)

TN United Kingdom

Manchester

On-site

GBP 30,000 - 50,000

Full time

Today

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company in the railway industry is seeking a SOC Analyst to enhance security operations. The role involves monitoring security events, conducting vulnerability assessments, and ensuring the protection of assets. Ideal candidates will have experience in SOC environments and relevant security qualifications.

Qualifications

Experience working in a SOC/NOC environment.
Strong understanding of networking and security technologies.
Experience in Microsoft and Linux system administration.

Responsibilities

Monitor and respond to security events and incidents.
Conduct vulnerability assessments and manage security threats.
Develop and maintain security playbooks.

Skills

Analytical skills

Problem-solving skills

Incident response understanding

Log analysis

Networking knowledge

Security technologies understanding

Vulnerability assessment knowledge

System hardening experience

DevOps experience

Education

Security + certification

GIAC Certified Intrusion Analyst (GCIA)

EC-Council Certified Security Analyst (ECSA)

GCIH certification

Tools

QRadar SIEM

SIM/SEIM/SOAR tools

Cisco

Juniper

Palo Alto

Social network you want to login/join with:

col-narrow-left

Client:

Network Rail

Location:

Manchester, United Kingdom

Job Category:

Other

EU work permit required:

Yes

col-narrow-right

Job Reference:

79dfefce59b4

Job Views:

Posted:

21.05.2025

Expiry Date:

05.07.2025

col-wide

Job Description:

Brief Description

The railway has seen nearly 200 years of technology and innovation that has transformed how we provide services to passengers and freight customers. Technology is continuing to transform the railway industry. Imagine an exciting environment where Digital, Data, and Technology (DDaT) are not just buzzwords but the driving force behind every operation, every decision, and every solution.

As part of the DDaT directorate, you have a unique opportunity to enable our customers and industry partners with modern and transformative technology. From the day-to-day IT operations that keep a national railway running, to extensive delivery programmes helping to reshape the railway – we are at the forefront of all of it. We operate with a talented and passionate workforce, fostering empowered individuals and teams who understand that technology is not just a tool – it's the catalyst for progress, especially in an industry where change is constant.

Click ‘apply for this job’ to apply. If you would like to speak with the Resourcing Team, please contact.

About the role (External)

Main responsibilities:

To support the continuous improvement of NRT Security Operations capabilities and processes, ensuring the protection of Network Rail's assets' confidentiality, integrity, and availability. Provide operational capability around monitoring systems to manage prevention, detection, remediation, and recovery from security threats, vulnerabilities, and incidents.

What will you be doing?

Monitoring, evaluating, and responding to security events and incidents using defined security technologies and understanding exploits and vulnerabilities.
Providing real-time log analysis and investigation to recognize attempted or successful intrusions and breaches, ensuring network and data security.
Taking corrective actions or following escalation procedures during security events or incidents to ensure resolution.
Recognizing network intrusion attempts or compromises based on traffic patterns, behaviors, or signatures, and distinguishing false positives from real threats.
Monitoring external security vulnerabilities, advisories, incidents, and penetration techniques, applying risk-based threat assessments.
Conducting periodic vulnerability assessments and reporting based on asset prioritization.
Identifying insecure services and ports on NR assets and services through compliance activities.
Developing and maintaining security playbooks for incidents and breaches.
Developing and implementing system automation and playbooks.
Generating and reviewing security operational reports on SOC activities.
Performing tasks as directed by daily operations or team leaders.
Monitoring the health of security devices within the network as part of a team.
Line manager responsibilities for junior SOC analysts.
Maintaining and enhancing security applications and tools supporting the Telecoms estate.
Integrating new tools and security systems.
Provisioning SOC services with customers and projects.

The ideal candidate

Meet the essential criteria? Apply today to join our team.

Experience working in a SOC/NOC environment
Strong analytical and problem-solving skills
Understanding of incident response processes from identification to resolution
Knowledge of SIM/SEIM/SOAR tools
Experience in log analysis, network traffic capture, and related tools
Strong understanding of networking and security technologies (routers, switches, firewalls, IDS/IPS, DDoS, servers, end-point devices)
Understanding vulnerability assessment processes and technologies
Experience in system hardening to security requirements
Security qualifications like Security +, GIAC Certified Intrusion Analyst (GCIA), EC-Council Certified Security Analyst (ECSA), GCIH
Experience with QRadar SIEM platform and automation in SOAR platforms
Understanding of CERT/CSIRT processes
Knowledge of compliance frameworks (ISO 27001, 27002, CoBiT)
Experience in Microsoft and Linux system administration
Network administration experience with Cisco, Juniper, Palo Alto
Experience in DevOps: coding, scripting, automation

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Similar jobs