Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group.
We are on a mission to make society a safer and more secure place. Our people are the ones who make that possible; a global community of talented individuals working together towards a safer future.
We aim to create an environment where everyone can reach their full potential. We work together, we are brilliantly creative, we embrace difference and we want you to join in our mission, as a Junior SIEM Engineer.
Take a look at our website here to learn more about why we’re one of the leading global Cyber Security and Risk Mitigation business… https://www.nccgroup.com/uk/
NCC Group is a leading partner in the Security Industry. It helps 1000’s clients to develop, maintain, progress and secure their Cyber Security through the use of Vulnerability/Penetration Testing, Audits and 24/7 monitoring, amongst others.
Our renowned Security Operations Centre based in Leeds is looking for a Junior SIEM Engineer to join the team. This is an incredible opportunity to learn from some of the best minds in the industry and receive on the job training, as you develop your skills and gain industry qualifications.
It is important to note that because this is a learning role, we would like you to be based in the SOC at least 5 days a week, once we reopen the office, for the duration of the training period. After the initial training period there will be some more flexibility, with the option for remote working. Therefore, it would be beneficial if you are within commuting distance to Leeds.
In this role you will be:
Providing support for NCC Group’s Managed Service customer base.
Appraise and respond to SIEM health alerts.
Perform daily, weekly and monthly health assessments of the SIEMs health.
Perform initial triage of SIEM related tickets.
Assisting in the investigation of security investigations with SOC Analyst Team.
Collaborating with other teams to help develop and drive improvements/progression
The role requires an analytical thought process to assist and resolve issues within our clients’ SIEM solutions, along with our own.
At NCC Group, we are passionate about passionate people. We are looking for somebody with ambition and willingness to learn. As this is a junior role, it will include all relevant training. However, the following skills are desirable in order to help attain the knowledge and build experience to become a SIEM engineer:
Windows and Linux operating systems (configuring, maintaining, troubleshooting)
Security Investigation (this could be a from a wide pool of skills, such as investigating security alerts, incident response, security audits, configuration reviews, industry best practices, etc.)
Network Security Devices (such as Cisco, Fortinet, CheckPoint, Suricata, Snort, Palo Alto)
Basic development/scripting skills (such as PowerShell, Python, Bash and any associated skills, such as Regex)
Any current experience and expertise in the following would quickly help drive development:
Microsoft Sentinel/Defender ATP
Exposure to any other SIEM technology
The following certifications are desirable, but not a requirement. Successful candidates that do not possess these certifications may be tasked with working towards them at the beginning of their employment:
Splunk Certified Administrator
Splunk Certified Power User
LogRhythm Certified Support Engineer
LogRhythm Certified Deployment Engineer
CompTIA Certifications (Security+/ Network+/ Linux+)
Crest, GIAC or CISSP Certification
Degree in related field
Other relevant certifications
Please do not hesitate to apply.
About your application
We review every application received and will get in touch if your skills and experience match what we’re looking for. If you don’t hear back from us within 10 days please don’t be too disappointed – we may keep your CV on our database for any future vacancies and we would encourage you to keep an eye on our career opportunities as there may be other suitable roles.