Cyber Security Analyst

Our mission is to break down the barriers of today to release the potential of tomorrow. Join us today and release yours.

There are two things that we want to share with anyone considering joining us.

Firstly, we’ve got big ambitions for our colleagues and the future of the organisation. These include our vision that inclusion and accessibility drive every conversation we have and every decision we make. We want our workforce to fully represent the communities and customers we serve, because a diverse business is a better business. We value every colleague, their diversity and the contribution that they make. When we say you’re welcome at BT, we really mean it.

**About this role**
- This role may require CAT 2A clearance from Singapore Government.
- The role is responsible for CySOC supports but not limited to helpdesk support from time-to-time.
- The role requires to provide complex technical support, resolving escalated technical support issues including proposals to ensure systems availability.
- The role includes problem diagnosis and resolution, and activities will comprise requirements analysis, testing, integrating, and managing components and models, including monthly report, engaging product principals to ensure problem is resolved in timely manner.
- The role holder has an appreciation of maintaining the client relationship and satisfaction.

**You'll have the following responsibilities**
- As a member of the Cyber Security Monitoring and Response team you will respond to immediate security threats on BT and commercial networks across the globe.
- Responsible for working in a 24x7 Security Operation Center (CySOC) environment.
- The CySOC team’s goal is to detect, analyse, and respond to cybersecurity incidents using a combination of cutting-edge technology and a strong set of processes.
- The CySOC team’s goal is to manage the change security process for simple changes and complex changes based in change catalogue agreed with customer.
- Responsible for managing phases of change; Layout, set up and monitor after change.
- CySOC staff work across the organisation, typically with incident response teams to ensure security issues are addressed quickly upon discovery. Monitor, analyse and defend against malicious or unusual activity that could be indicative of a security incident or compromise.
- Support aspects of the delivery of discrete security services that provide the security infrastructure for customers.
- Support elements of the Investigation and resolution as required and where necessary report incidents involving potential or actual breaches of protective security compliance.
- Support the operational relationships with specific customers, suppliers and stakeholders, including all Third Parties, joint ventures and OLOs, ensuring the cost-effective provision of a professional Security service.

**You'll have the following skills & experience**
- A basic understanding of the cybersecurity landscape, including emerging risks and security solutions.
- Knowledge of the TCP/IP protocol suite, DHCP, DNS, LAN/WAN, and Operating System concepts.
- Relevant operational experience, ideally within a Security or Network Operations Centre
- Relevant experience in analysis & interpretation of data into useable and actionable information/intelligence
- Relevant experience of stakeholder management and good interpersonal skills
- Relevant operational knowledge and experience of risk and incident management
- Knowledge of Security management, information security and threat intelligence - experience in the following is desirable: SIEM technologies, network security, malware defence and remediation
- Effective Communication, including verbal, report writing & presentations skills
- Experience in problem solving
- Business acumen and including financial awareness
- Knowledge of the OSI model and security that is associated with each layer.
- Basic network security knowledge to include remote access, DMZ architecture, network monitoring, intrusion detection, and web server security.
- Basic knowledge of security logging tools (log management, SIEM, Advance Security Anomalies Systems
- Threat intelligence - You gather, record and assess information from multiple sources on security threats and reported incidents. You evaluate trends in data to inform decision-making and minimise harm to our business and customers.
- Knowledge of security methodologies and processes for: Incident security, Change Management and Secure Communication protocols.
- IT and data network experience.
- Knowledge of at least one security methodology such as MITRE ATT&CK Framework.
- Ability to multi-task, prioritize, and manage time effectively.
- Motivated and ambitious to work on their own initiative without needing direction Strong attention to detail.
- Relevant experience of stakeholder management and good interpersonal skills.
- Relevant operational knowledge and experience of risk management.
- Knowledge of Security man