At Bupa, you'll find an inclusive environment where you can be yourself and where everyone is driven by the same purpose – helping people live longer, healthier, happier lives and making a better world.
The primary goal of this role is to support and accelerate progress towards shifting Left our Cyber Defences through implementing automations to enhance prevention, detection, triage, and remediation of security events and incidents as well as strengthening our security detection and prevention controls via a threat-led approach.
Working in the Cyber Security Operations Center (CSOC) within Cyber Defence Centre (CDC), as the Cyber Defence analyst/specialist you will assist Cyber Defence Manager to contribute to this objective by identifying and implementing automation opportunities based on real cyber events, incidents, and threats, while effectively coordinating with relevant teams.
Key responsibilities include the following:Enhancing preventive controls and policies: You will be identifying areas where preventive measures can be strengthened, and policies can be refined to bolster our cyber defences.Developing and tuning SIEM detection use cases: Adopting a threat-led approach, you will work towards creating effective Security Information and Event Management (SIEM) detection use cases, enabling us to promptly detect and respond to potential cyber threats.
This also includes tuning existing detections for improved efficacy and reduced noise-to-signal ratio.
This work will be grounded on the MITRE ATT&CK framework, ensuring a comprehensive and rapid detection and response mechanism against potential cyber threats.Logs Acquisition & Analysis: Utilizing the MITRE ATT&CK and D3FEND techniques, you'll facilitate the process of acquiring and analysing new logs sources, offering vital data and insights into the security environment.
This also includes identifying existing logs that can be off-boarded or archived to better manage SIEM log ingestion capacity demand.
This work also includes integrating CSOC function with wider program of work including projects, programs and security architecture and consulting team so that SOC requirements are well integrated for upfront consideration in SDLC.Achieving rapid response through SOAR automation: Your role will involve developing and deploying automated systems that enable efficient triaging of and response to security events and incidents, allowing for swift identification of critical issues and appropriate response measures.
You will focus on automating response tasks, reducing manual effort, and ensuring faster and more consistent responses to security events and incidents.
You will also drive the implementation of automated processes that enrich the data collected from security events and incidents, providing valuable context, and facilitating more accurate analysis.Adoption of emerging automation capabilities: You will actively identify, evaluate, and adopt new and emerging automation opportunities and capabilities to stay ahead in the cyber defence realm.By actively contributing to these areas, you will play a crucial role in fortifying our organization's cyber defences, enabling us to stay ahead of emerging threats and protect our systems and data effectively.
You may also carry out any other duties reasonably requested by Bupa from time to time.
To be successful in this role you'll need:Tertiary education in IT, Computer Science or, preferably, Cybersecurity3+ years working in Cyber Security Operations CentreExperience working with SIEM, Log Management, Use Case DevelopmentSecurity Orchestration and Automated Response (SOAR) experience will be criticalFamiliarity with Microsoft security technology stack particularly Azure SentinelApplied knowledge of Mitre ATT&CK, D3FEND, NIST CSF, Cyber Kill ChainExcellent communication skillsSome of following certifications, or aspiration to achieve:SC-200: Microsoft Security Operations AnalystAZ-204: Developing Solutions for Microsoft AzureAZ-500: Microsoft Azure Security TechnologiesSC-900: Microsoft Security, Compliance, and Identity FundamentalsSC-100: Microsoft Cybersecurity ArchitectWhat's in it for you?As well as a competitive salary, a range of Bupa benefits and flexible working/ work from home, you'll be challenged and encouraged to innovate.
You will collaborate strongly with colleagues who are committed to delivering exceptional experiences.
We trust, respect, and consider everyone, knowing your difference will make the difference.
Discount on our health insurance, travel, car, home, contents, and pet insurance products as well as Bupa services such as Dental and OpticalA 'People First' wellness program – SMILE.
Provides a range of services such as health coaches, annual skin checks and flu vaccinations, assistance with nutrition, mental and general well-being guides, and product discounts.
You will feel happier & healthier for working at Bupa!At Bupa, we are striving to create and sustain a safe and inclusive workplace.
We welcome applicants from all cultural backgrounds, genders, and abilities.
If you require any adjustments to participate in our recruitment process, please let us know at the time of your application.
#J-18808-Ljbffr