About this job

Airbus CyberSecurity, the subsidiary of Airbus Defence & Space, whose the mission is to protect Airbus, governments and Critical National Industries against the cyber threat, reinforces its position in Europe by establishing a Cyber Defence Centre (CDC) in Barajas (Spain, Madrid’s Area).

The Cyber Defence Centre is a department that provides Cyber defence services in order to:

• Prevent a cyber risk (Consulting & audits)
• Detect and react on security incidents (Security Operation Centre – SOC)
• Respond of an attack (Computer Security Incident Response Team – CSIRT)

In this context, the Cyber Defence Centre is seeking to hire a SOC Level 2 analyst

Responsibilities

Within the SOC of Airbus CyberSecurity and under the responsibility of the SOC manager, the SOC level 2 analyst works as part of a team in charge of security monitoring, threat and vulnerability watch.

The main mission of the SOC analyst is to deal with the security incidents which are detected by the service and to lead in-depth analysis on these incidents.

The SOC level 2 analyst belongs to the analysis staff, works in normal business hours and in stand-by shifts too.

Missions:

• Security monitoring
  • Investigates deeper on the detected behaviours when an incident is escalated by the SOC level 1 analyst
  • Add context to the incident to understand the behaviour, analysing data from multiple tools and data sources
  • Participates to the crisis management by providing support to the incident handler and the SOC Level 3 analysts
  • Create reports and visualizations of security attacks
  • Tracks trends for metrics and reporting
  • Works on the decrease of false positives
  • Maintain the detection rules database

• Customer relation
  • Participates to recurrent meeting with the customer as the technical referent.
  • Provides recommendations or workarounds to the customer in order to reduce business impact
  • Leads and participates to the continuous improvement of the service (detection level, process, operational procedures, service efficiency, service reporting)
  • Supports the customer for the remediation of incidents
  • Supports the SOC manager for the reporting of the activity.

• Continuous improvements
  • In charge of the improvement plan and development of process/procedure manuals and documentation
  • Participates of the improvement plan for service efficiency and detection rules.
  • Works independently to perform analyses and investigations

We provide training on the tools and process for the success of your mission.

Due to nature of SOC operations, there is the possibility that analyst will be required to work in alternate stand-by shifts, including week-ends and nights.

This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.

Profile

With a proven experience in the field of Cyber defence, you perfectly know attacks methods and security equipment functions.You possess an Information Security and operational oriented mind-set.

You are a professional with at least 3 to 5 years’ experience in the field service and also with customer’s relations.

You are comfortable with IDS – SIEM – Log Management, Vulnerability scanning technologies.

Education: Engineer diploma with Cyber security trainings or equivalence after a solid experience in the domain of Cyber defence.

Required Skills:

• Rigorous and respectful of process. Strong attention to details.
• Strong time management skills with the ability for multitasking
• Information Security and operational oriented mind-set
• Team Spirit
• Customer focus
• IDS – SIEM – Log Management, Vulnerability scanning technologies, Ticketing system
• Intrusion and Information system corruption techniques
• Knowledge of security policies for information systems
• Autonomous and self-organized
• Analysis and synthesis skills
• Drafting quality
• Communication and oral expression (Spanish, English)