I specialise within the network security market, focusing on SIEM, Next-Gen Firewalls, IDS, SOC and IR skills. I excel in placing senior security engineers, professional services and pre-sales consultants within my given niche. I strive to build long-term, fruitful relationships with varied MSSPs, vendors and consultancies, working with hiring managers and internal recruitment teams.
Cyber Security FPC Engineer
Applications have now closed
Please visit our main job board to see all our current vacancies.
Cyber Security FPC Engineer
ARM Cyber Security is yet again hunting for Cyber Security engineers / professionals in the South West of England, this time we are hunting for candidates with proven Full Packet Capture experience! to find out more, please read on...
Job DescriptionCyber Security Engineer - Full Packet Capture
Bristol / Gloucester
Competitive Basic Salary + Benefits
ARM Cyber Security is actively hunting for a Cyber Security engineer with specialist skills / knowledge within FPC (Full Package Capture) systems in a role that could involve travel and international assignments.
The successful candidate will be required to use their knowledge of FPC technologies and cyber security techniques to support and maintain these security technologies within the deployment of a complex cyber implementation.
The role requires the ability to support, maintain, troubleshoot and tune the security devices, working in conjunction with other cyber security specialists as an integral part of a wider system implementation.
" This role will include deep configuration and administration of a range of cyber defence specialist tools, primarily focussed on Full Packet Capture (FPC).
" Successful candidates may become involved in the investigation in to security events to establish if these are expected tool behaviours, events or a security threat.
The additional responsibilities will include the following:
" Ensuring that all specialist applications such as event correlation (and its associated remote data collection feeds), network discovery, network traffic pattern/flow analysis, mail content checking, extrusion detection and on-line computer forensics tools are installed, configured and operational
" Maintain keen understanding of evolving Internet threats to ensure the security of the networks and assets.
" Write technical articles for internal knowledge base, Whitepapers based upon system integration, functionality upgrades and service improvements.
" Participate in knowledge sharing with other analysts and develop solutions efficiently
" Coordinate or participate in individual or team projects
Skills, Qualifications and Knowledge
" RSA Security Analytics
" Experience with Security Analytics Packet Capture in version 10.x
" Experience with Packet Decoders, Concentrators, Hybrids, Brokers and SA Servers
" Experience of updating / creating metakeys / metatags, configuring live feeds and configuring and updating LUA Parsers.
" Excellent understanding of application protocols (HTTP, DNS, FTP, etc.) and networking protocols (TCP, UDP, IP, ARP, etc.) IPv4/IPv6
" Demonstrate experience of Network Packet Analysis and tools used, such as protocol analysers
" Experience of software engineering including programming and/or scripting knowledge. Python, Perl, Linux shell scripting
" Demonstrable experience of analysing and interpreting system, security and application logs in order to diagnose faults and spot abnormal behaviours
" Experience of maintaining a secure enterprise network through configuring and managing typical Security Enforcing Devices, such as Firewalls, Proxies, IDS/IPS devices, HIDS/EPO. Knowledge of Sourcefire/Snort.
To find out more about this role, and several other Cyber Security roles located in the south west of England, please do apply now or get in touch with one of the team here @ ARM Cyber Security - 02392 228237
Advanced Resource Managers IT Limited operates & advertises as an Employment Agency for permanent positions and as an Employment Business for contract/temporary positions.