Cyber Security Engineer
  • United Kingdom Farnborough
  • BAE Systems
1 year before
31.12.2023
Protect and Defend
Cyber Defense Infrastructure Support
Job Description

Job Title: Cyber Security Engineer

Location: Preston- We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role.

Salary: Up to £55,000 - Depending on experience and skills

What You’ll Be Doing

Installation & support of Splunk Enterprise Platform
Working with Admin ON Demand / Splunk PS to conclusion of issues within the environment
On-Boarding new data sources and Apps and Add-ons into Splunk
Building/testing log ingestion sources
Development of automation scripts using Python and various toolset API’s
Supporting SIEM and SOAR technologies
Provide ongoing management and administration of cyber security solutions
Provide support to projects delivering and implementation of cyber security solutions
Where required, integrate with service operations and project delivery to enable quick and compliant change and service stability
Installation & support of security toolset hardware
Provide guidance and support to team members where required

Essential

Your skills and experiences:

Knowledge of deploying, maintaining, and configuring the Splunk Enterprise Platform
A strong technical background with a proven experience in a Cyber Security role
Good understanding of architecture and configurations of large-scale networks (30,000+ devices) and the underlying security technologies
Experience of working with system management toolsets in a technical capacity
Previous experience and exposure to Windows Event Collection/Forwarding (build, configuration, and tuning), Log sources and ingestion, CIM Mapping, RegEx Field Extractions, Syslog + Parsing

Desirable

Ideally with exposure of VMware, Windows, UNIX, and associated technologies
Trained to Splunk Enterprise Certified Admin level
Relevant Security Certifications are desirable but not essential (CISSP, GIAC (Advanced Certifications) e.g., GCIA, GCIH or GCFA and CompTIA Security +

Benefits

You’ll receive benefits including a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. You’ll also have access to additional benefits such as flexible working, an employee assistance programme, Cycle2work and employee discounts – you may also be eligible for an annual incentive.

The Cyber Engineering Team

You will be joining an expansion to an existing cyber engineering team, supporting additional requirements that sits within Enterprise IT, providing enterprise IT services across the UK businesses and internationally. You will participate in the creation of security solutions to provide enterprise security services, and maintain, develop, and communicate their associated roadmaps and standards through the full lifecycle of the service. This could also offer a natural progression route and the opportunity to develop further.

Why BAE Systems?

This is a place where you’ll be able to make a real difference. You’ll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you’ll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.

Please be aware that many roles working for BAE Systems will be subject to both security and export control restrictions. These restrictions mean that factors including your nationality, any previous nationalities you have held, and your place of birth may limit those roles you can perform for the organisation.


Quick response

Required Knowledge
  • K0001   Knowledge of computer networking concepts and protocols, and network security methodologies.
  • K0004   Knowledge of cybersecurity and privacy principles.
  • K0005   Knowledge of cyber threats an`d vulnerabilities.
  • K0042   Knowledge of incident response and handling methodologies.
  • K0179   Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
  • K0324   Knowledge of Intrusion Detection System (IDS)/Intrusion Prevention System (IPS) tools and applications.

Required Skills
  • S0053   Skill in tuning sensors.
  • S0054   Skill in using incident handling methodologies.
  • S0121   Skill in system, network, and OS hardening techniques. (e.g., remove unnecessary services, password policies, network segmentation, enable logging, least privilege, etc.).
  • S0124   Skill in troubleshooting and diagnosing cyber defense infrastructure anomalies and work through resolution.
  • S0367   Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Required Abilities
  • A0123  Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).