AMS PSR

On behalf of the MOD we are looking for a SOC Analyst (Inside IR35) for a 9 month contract. On site working based in Corsham.

This role will involves a shift-based working pattern consisting of 13-hour day and night shifts, following a rotating schedule of four days on/five days off and five days on/four days off, including weekend work.

The Ministry of Defence (MOD) is a central government department with a mission to protect our country and provide the ultimate guarantee of its security and independence, as well as helping to protect its values and interests abroad.

The MOD is one of the biggest public procurement organisations in Europe and the single largest customer for UK industry. It currently manages approximately £20 billion of spend on capital investments in equipment and infrastructure every year. Over the next decade the MOD is committed to spending over £190 billion on equipment and support. The MOD’s customers include both the armed forces and national security agencies, and it has a diverse range of requirements, including military fighting vehicles, education services, nuclear submarines and facilities management.

The MOD’s aim is to provide its armed forces with the best capabilities to enable them to protect the UK’s security and advance national interests, both now and in the long term.

To do this the MOD has an annual budget of almost £53 billion and a workforce comprising 197,000 people. of which 54,000 are civilians working for the UK MOD.

The work really matters; the MOD offers a range of engaging roles which have a direct impact on the quality of services they provide, in many locations across the UK. We support teams working in HR, Primary Health Care, Corporate Services, and many others.

As a SOC Analyst your main responsibilities will be:

• Responsible for 24/7 detection, analysis and response to cyber incidents affecting the MOD’s digital enterprise.
• Monitor, triage and investigate security alerts using SIEM, IDS and network analysis tools to identify threats and incidents.
• Conduct log analysis, event correlation and threat intelligence to protect the confidentiality, integrity and availability of systems.
• Lead and support incident response activities, including containment, investigation, reporting and service recovery.
• Continuously improve monitoring, automation and detection capabilities while providing guidance and mentoring to team members.

Essential:

• An active DV Clearance is an essential requirement for this role, as a minimum you must be willing & eligible to undergo checks. (Please note, due to the exceptional requirements of this position (short-term nature of this role and speed at which we require a postholder in situ) preference may be given to candidates who meet all of the essential criteria and hold active security clearance.) 
• Industry standard SOC Security qualifications (SANS, ISC2, etc.).
• Proven Tier 2/3 SOC Analyst experience.
• Demonstratable experience working with SIEM technology and SIEM engineering (including tool configuration).
• Experience in creation of use-cases, analytics and playbooks.
• An understanding of cloud technologies.
• Ability to perform triage of security events; determine scope, priority and impact, and make recommendations that enable expeditious remediation.
• Ability to conduct real-time management of security incidents from detection to resolution.

Please be aware that this role can only be worked within the UK and not Overseas.

Disability Confident 

As a member of the Disability Confident Scheme, the MOD guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group.

This scheme encourages candidates with a disability and/or neurodivergence to apply. In exceptional circumstances, we may also need to apply the desirable criteria in our shortlisting process which may include holding active security clearance.

Armed Forces Covenant

The MOD guarantees to interview veterans or spouses / partners of military personnel who meet all the essential criteria for the vacancy. In cases where we have a high volume of ex-military candidates / military spouses or partners, who meet all of the essential criteria, we will interview the best candidates from within that group. In exceptional circumstances, we may also need to apply the desirable criteria in our shortlisting process which may include holding active security clearance.

In applying for this role, you acknowledge the following “this role falls in scope of the Off Payroll Working in the Public Sector legislation. Any rates of payment quoted will reflect the gross rate per day for the assignment and will be subject to appropriate taxes and statutory costs. As such the payment to the intermediary and your income resulting from this contract will be different.