Think Beyond The Label Jobs

Mobile Think Beyond The Label Logo
Home View All Jobs (2,283,137)

Job Information

RTX Corporation SOC Engineer in Harlow, United Kingdom

Date Posted:

2024-03-04

Country:

United Kingdom

Location:

GBR01:Harlow, Essex, Kao One, Kao Park, Harlow, CM17 9NA

Position Role Type:

Unspecified

Job Title: Security Operations Centre, (SOC) Engineer

Location: Harlow or Glenrothes (hybrid working with up to 2 days a week on site)

The Department and Team

Raytheon UKs Digital Technologies (DT) department are responsible for supporting and enabling the wider business in the delivery of its core services – supporting Raytheon UK to successfully enable collaboration, operational activities, and business delivery.

The Cyber Security team operate within the DT function - providing subject matter expertise support, governance and assurance, as well as technical security services to the function, and wider UK business. Ultimately working to ensure the ongoing security of Raytheon UKs critical systems and services.

Summary of RoleWe are searching for a SOC Engineer to join the IT function. This is an integral role in our Cybersecurity organisation, working closely with SOC analysts, network specialists and information assurance staff to help protect the organisation and colleagues from cyber-attack.

The SOC Engineer will be responsible for building the security architecture and systems within the SOC, as well as maintaining and improving the security monitoring and analysis tools. As a SIEM subject matter expert, you will also be responsible for the maintaining and recommending new tools, as well as updating the systems. You will be a key player across technology groups interfacing with Network, Data Centres and our internal Design Authority with a remit of driving cyber best practises into our operation.You will be responsible for the daily maintenance and support of applications and related hardware associated with our solutions for intrusion detection (IDS), Security Incident Event Monitoring (SIEM), and packet capture (PCAP). You will be expected to deliver upgrades and manage configuration of technology that underpins cyber operations, this is will include working with and management of external vendors and service partners. You will also be a subject matter expert for these tools, providing guidance to our Security Operations Centre.

Main Duties

  • Responding to requests from SOC to tune SIEM, IDS and associated tooling in an effective and timely manner.

  • Working with threat management teams and liaising directly with Network and Data Centre teams to ensure Network architecture, Security Zone configuration and deployment of sensors and remediation platforms Is optimal and effective.

  • Proficiency in use and maintenance of SIEM or Security Toolsets

  • Responsible for the maintenance and currency of tooling, ensuring tools are available and being maintained supporting Incident and Vulnerability response

  • Planning, preparing and executing technology change across a rapidly evolving environment

  • Record faults and arrange repairs.

  • Conduct MACD to rules and configurations as directed by line management and approved taskings via job requests.

  • Ensure platform is patched and maintained to correct level.

  • Arrange via change control all maintenance and changes.

  • Maintain all related CIs in the CMDB.

  • Report on availability, capacity, faults, risks and CSI.Forcepoint DLP, Forcepoint WEB Hygiene, Forcepoint Email Security, NEXPOSE, SIEM-QRadar, SEP

Candidate RequirementEssential:

  • Experience of creating small utilities or scripting in Powershell, Perl or Python.

  • Experience of working in MOD and/or other regulated industries i.e. banking, telecommunications.

  • Experience of use case development and implementation, leveraging threat intelligence.

  • An understanding of designing and implementing secure systems to HMG security requirements.

  • You will be a self-starter with the ability to prioritise your own workload.

  • Experience of working in a SOC environment with proven experience in systems management

  • Experience of SIEM Engineering including on-boarding, troubleshooting and administration of log sources

  • Ability to obtain and maintain UK Secret clearance

  • Experienced in working with TCP/IP, Firewalls and network technology (Cisco, Juniper, Microsoft etc)

  • Industry qualifications such as CISSP, CCNP, MCSE or CMI Malware Investigations or equivalent.

  • Excellent customer facing skills, internally and externally facing with national and international agencies.

  • Knowledge of cyber security best practises such as GPG13, NIST 800-53, NIST 800-171, ISO27001 would be advantageous.

Desirable:

  • Degree in Information Technology, Computer Science, or Cyber Security.

  • Information Security related certifications such as Security+, CISSP, CISM, GSEC, SSCPITIL certifications

  • ITIL Foundation.

    #LI-MF1

    RTX is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Privacy Policy and Terms:

Click on this link (http://www.rtx.com/privacy/Job-Applicant-Privacy-Notice) to read the Policy and Terms

Raytheon Technologies is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

DirectEmployers