Cyber Security Analyst - London/Remote
Gibbs Hybrid is looking for two accomplished Cyber Security Analysts to support the Security Incident Response Team. ?The team is growing, we require strong individual contributors that will investigate, analyze, and contain security incidents. This is a fully remote role, with the occasional London office visit. You can be based anywhere in the UK
- Strong ability to collaborate, delegate tasks and drive deadline compliance in a highly regulated, time sensitive environment
- Triage, escalation, and assisting the response of cybersecurity, policy and privacy related events and incidents
- Manage containment and remediation efforts of affected assets, IOCs, and TTPs
- Integrate and collaborate with other subject matter experts throughout the organization
- Liaison with Cyber Defense, Privacy, Compliance, Legal, and Architecture teams
- Perform host-based digital forensics on Microsoft Windows systems primarily and other operating systems and document findings in clear and concise language
- Analysis of network data (packets, logs) and endpoint data (logs, malicious artifacts) in both structured and unstructured methods.
- Preserve evidence (both network and host) using forensically sound methods
- Identify deficiencies in processes and tools, recommend security controls and/or corrective actions for mitigating technical and business risk.
- Integrate and collaborate with other subject matter experts throughout the organization.
Essential:
- Undergraduate degree or equivalent experience.
- BS/BA in Computer Science, Computer Engineering, Cyber Security, Forensics and/or equivalent work experience.
- Certification in cybersecurity (e.g. Security+, CCNA Cyber Ops, BTL1 and/or BTL2, GCIH, CEH, CySA+, OSCP, CISSP, CCSP etc.)
- IT Security or Cyber Security experience in any of the following areas: Incident Response & Digital Forensics. Cybersecurity Detection Engineering and Threat Hunting or Vulnerability Management
- Experience analyzing attack vectors, current threats, and security remediation strategies
- Experience with SIEM technologies, EDR technologies, and/or Asset isolation tools
- Experience with cloud environment
- Networking experience (including the OSI Model, TCP/IP, DNS, HTTP, SMTP), System Administration, and Security Architecture
- Knowledge of Crowdstrike, Darktrace, Sentinel is a plus
- Experience with scripting and automation (Python, Powershell, Bash, KQL etc)
- Financial services sector, a benefit
Click Apply now to be considered for the Cyber Security Analyst - London/Remote role