Cyber Security Engineer (NIPS)

Applications have now closed

Please visit our main job board to see all our current vacancies.

Cyber Security Engineer (NIPS)

ARM Cyber is pleased to be working with yet another leading Cyber organisation looking for several Cyber Security Engineers, focused on IDS / IPS / NIPS, to find out more, please read on and apply!

Job Description

Cyber Security Engineer - IDS / IPS / NIPS

Competitive Salary & Benefits

Bristol / Gloucester - Will involve travel in the UK & Europe

ARM Cyber Security are on the hunt for Security focussed professional with a strong background in Intrusion detection and prevention systems to work for a leading organisation focussed on Cyber Security & defence.
You will be expected to use your knowledge of Network Intrusion protection systems & cyber security techniques to support and maintain these security technologies within the deployment of various complex cyber implementations. Please note you may be asked to undertake an International assignment which could see you staying away in the UK and Europe
The role requires the ability to support, maintain, troubleshoot and tune the security devices, working in conjunction with other cyber security specialists as an integral part of a wider system implementation.
Key Responsibility Areas
" This role will include deep configuration and administration of a range of cyber defence specialist tools, primarily focussed on Network Intrusion Protection (NIPS).
" Successful candidates may become involved in the investigation in to security events to establish if these are expected tool behaviours, events or a security threat.
The additional responsibilities will include the following:
" Ensuring that all specialist applications such as event network discovery, network traffic pattern/flow analysis, mail content checking, extrusion detection and on-line computer forensics tools are installed, configured and operational
" Maintain keen understanding of evolving Internet threats to ensure the security of the networks and assets.
" Write technical articles for internal knowledge base, Whitepapers based upon system integration, functionality upgrades and service improvements.
Skills, Qualifications and Knowledge
" The ideal candidate will have proven working knowledge with Cisco FireSight Network Intrusion Detection systems - Formally Sourcefire
" Demonstrate experience of Snort rule writing, rule & pre-processor tuning, rule & pre-processor performance testing and verification
" Demonstrable experience of analysing and interpreting system, security and application logs in order to diagnose faults and spot abnormal behaviours
" Experience of maintaining a secure enterprise network through configuring and managing typical Security Enforcing Devices, such as Firewalls, Proxies, IDS/IPS devices, HIDS/EPO. Knowledge of Sourcefire/Snort.
" Must be capable of communicating clearly with team members and other analysts. Able to demonstrate reading, writing and spoken English to IS level III as a minimum. (B1 of the Council of Europe/Association of Language Testers in Europe official levels)
" Understanding of various SOC standards and reporting requirements ideally with knowledge of SOC automation and work flow
To find out about more about this role and the career development it offers or infact many other roles in the South West region, please get in touch ASAP!

Advanced Resource Managers IT Limited operates & advertises as an Employment Agency for permanent positions and as an Employment Business for contract/temporary positions.

Key Consultant

Tom Hickling

Tom Hickling profile

I specialise within the network security market, focusing on SIEM, Next-Gen Firewalls, IDS, SOC and IR skills. I excel in placing senior security engineers, professional services and pre-sales consultants within my given niche. I strive to build long-term, fruitful relationships with varied MSSPs, vendors and consultancies, working with hiring managers and internal recruitment teams.