Cyber Security Threat Analyst

Embark on a Transformative Career Journey with Red Helix

At Red Helix, we don't just offer jobs; we offer the opportunity to be part of a community that is passionate about safeguarding the digital world. Join us in our vibrant Security Operations Centre (SOC) in Aylesbury as a SOC Analyst, and you'll be stepping into an environment where innovation, collaboration, and personal growth are at the heart of everything we do.

Why Choose Red Helix?

At Red Helix, our culture is built on the pillars of innovation, growth, and teamwork. We believe in fostering an environment where our employees can thrive both professionally and personally.

Here's why you'll love working with us:

• Innovative Work Environment: At Red Helix, innovation is in our DNA. We harness cutting-edge technology and forward-thinking approaches to tackle cyber threats, ensuring that you are always equipped with the tools you need to excel. Our dynamic work environment encourages creativity and empowers you to explore new ideas and solutions.
• Collaborative Team Spirit: We pride ourselves on our collaborative culture, where teamwork and open communication are valued. As part of our SOC team, you'll work alongside talented professionals who are passionate about making a difference. You'll have the opportunity to learn from industry experts and contribute your unique insights to enhance our security operations.
• Commitment to Learning and Development: At Red Helix, we invest in our employees' growth. We offer comprehensive training programs and ongoing development opportunities to help you advance your skills and career. Whether you're just starting your journey in cybersecurity or looking to take the next step, we're here to support your growth every step of the way.
• Making a Difference: Working at Red Helix means playing a vital role in protecting our clients' digital assets and contributing to a safer digital world. You'll have the satisfaction of knowing that your efforts are making a tangible impact on cybersecurity, helping businesses stay secure in an ever-evolving threat landscape.
• Adaptability and Agility: We thrive on adaptability and resilience. Cyber threats are constantly evolving, and we rise to the challenge by staying agile and proactive. Join us in our mission to stay ahead of the curve and protect our clients' most valuable digital assets.

What We Offer:

• Dynamic Work Environment: Experience a diverse and engaging work environment with a rotating shift pattern, including night shifts and on-call duties, ensuring no two days are the same.
• Comprehensive Training: Benefit from our extensive training programs and ongoing support from a team of experienced cybersecurity professionals.
• Career Advancement: Unlock your potential and expand your career prospects with opportunities for growth and progression within Red Helix.
• State-of-the-Art Technology: Work with cutting-edge technology that keeps you at the forefront of the cybersecurity industry.

Join Us on Our Mission

At Red Helix, we're more than just a company; we're a community committed to creating a safer digital world. If you have a passion for learning, a drive for innovation, and a desire to make a difference, we invite you to join us on this exciting journey. Be part of something bigger and help shape the future of cybersecurity with Red Helix.

Start Your Journey with Red Helix Today!

Take the next step in your career and become a valued member of our dedicated SOC team. Together, we'll make a lasting impact on the world of cybersecurity and build a brighter, more secure future. Apply now and embark on a transformative career journey with Red Helix!

THE ROLE:

The Cyber Threat Analyst plays a vital role in proactively hunting for and analysing cyber threats before they can harm our customers. You will be responsible for staying ahead of the curve, identifying potential vulnerabilities, and implementing strategies to mitigate risks.

Responsibilities include:

Threat Hunting:

Actively hunt for threats and vulnerabilities in systems and applications using advanced threat hunting techniques and tools.

Analyse network traffic, system logs, and user behaviour for anomalies and indicators of compromise (IOCs).

Proactively research and analyse emerging threats to understand attacker tactics, techniques, and procedures (TTPs).

Security Monitoring:

Analyse log data, security events, and alerts to identify and investigate suspicious or malicious activity.

Incident Response:

Gather evidence, assess the potential impact of identified threats, and report these findings.

Collaborate with the Incident Response team to develop and implement containment, eradication, and recovery strategies.

Threat Intelligence:

Collect and analyse threat intelligence from various sources to inform threat hunting activities.

Contribute to the development of threat profiles and playbooks for known adversaries.

Security Reporting:

Generate security reports to keep stakeholders informed about the security posture, identified threats, and recommended mitigation strategies.

Automation and Improvement:

Help improve Red Helix services by recommending new security measures, tools, and threat hunting techniques.

Knowledge Sharing and Mentorship:

Share your knowledge and expertise with the SOC team through training sessions and knowledge-sharing initiatives.

Collaborate with colleagues to upskill analysts and foster a proactive threat hunting culture.

Compliance

Ensure compliance with relevant regulations and standards, such as GDPR, ISO/IEC 27001 and NCSC Cyber essentials, and manage cyber risk through risk assessments and mitigation strategies.

Train the team on these regulations and standards.

Key Focus areas:

Stay abreast of the latest threat landscape.

Research and evaluate new threat hunting techniques and tools.

Lead efforts to proactively hunt for threats.

Develop and oversee threat hunting methodologies.

Coordinate vulnerability assessments and penetration testing activities.

Overall, this role focuses heavily on proactive threat hunting to identify and neutralise threats before they can cause damage. This position will play a key role in keeping the Red Helix ahead of the ever-evolving cyber threat landscape.

PERSON SPECIFICATION:

Education and Qualifications

GCSE or A'Level standard of education in the relevant subjects

Degree in Computer Science or Cyber Security

Certification in Cyber related disciplines with a focus on Threat Hunting.

Experience

Demonstrable experience in a security role, preferably within a SOC or similar environment.

Experience with security monitoring and incident response.

Prior experience with threat hunting methodologies and techniques.

Experience working with threat intelligence feeds and platforms.

Experience in a fast-paced and dynamic environment.

Competencies and Skills

Strong analytical and problem-solving skills.

Excellent attention to detail and the ability to identify anomalies.

Ability to think critically and creatively to develop and implement threat hunting strategies.

Strong communication and collaboration skills to work effectively with internal and external stakeholders.

Leadership and mentoring skills to guide and upskill junior team members.

Ability to work independently and take ownership of tasks.

Adaptability and willingness to learn new technologies and threat trends.

Knowledge & Skills

Strong understanding of networking concepts and protocols (TCP/IP, DNS, etc.).

Familiarity with various operating systems (Windows, Linux, macOS).

Working knowledge of scripting languages (Python, Bash, PowerShell) for automation.

Proficiency in security tools (SIEM, EDR, NDR, intelligence platforms). Sumo Logic and/or CrowdStrike would be preferred.

Knowledge of cloud security concepts and platforms (AWS, Azure, GCP).

In-depth understanding of current cyber threats, tactics, techniques, and procedures (TTPs) used by attackers.

Knowledge of threat intelligence concepts and the cyber threat landscape

Understanding of security best practices and incident response methodologies.

Knowledge of relevant security regulations and compliance standards (e.g., GDPR etc.).

Understanding of digital forensics and incident response principles.

Knowledge of attacker psychology and motivations.