Jobs at Content+Cloud

Description

The CSOC Analyst role is part of the Cyber Security Operations Centre (CSOC) and sits within the Security & Networks area of Content + Cloud. The candidate will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of SIEM and security toolsets to meet the requirements of the business and its customers.

This is a hands-on role and requires a broad technical knowledge, skills and abilities. Although the focus is on Cyber Security, knowledge and/or experience of modern IT systems and infrastructure is advantageous to assist with the development and continuous improvement of the security platforms within Content + Cloud and its customer’s environments.

Requirements

• Work within a multi-disciplined CSOC team identifying, owning, progressing and resolving security incidents.

• Perform the prompt and effective triage and investigation of security events and incidents applying sound problem solving methods to determine scope, urgency, and potential impact.

• Provide technical support for the identification and response to events or incidents of a suspicious or malicious nature, and apparent security breaches.

• Work with internal and external stakeholders to resolve computer security incidents and vulnerability compliance.

• Drive customer satisfaction and continuously seek to improve operational performance

• Maintain a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities

Health and Safety

To comply with Health and Safety legislation, following Content + Cloud processes to ensure your own safety and the safety of others.

Essential

• Excellent soft skills in the form of team working, problem solving and communication.

• A keen self-starter who can evidence excellent customer service and can collaborate effectively.

• Demonstrable experience working with SIEM technology, preferably within a CSOC / SOC environment

• Demonstrable technical knowledge, skills and/or experience in intrusion analysis, and network and security investigation using a variety of security tools (EDR, DLP, AV, Snort, Wireshark, TCPdump etc.).

• Working knowledge and experience of core security and infrastructure technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS)

• Strong knowledge of understanding of multiple operating systems.

Desired

• Having achieved at least a BSc or MSc in Cyber Security incorporating Ethical Hacking, Digital Forensics or Information Security; or

• One or more of the following industry certifications: CEH, GCIA, GCIH, GSEC, Security+, GCTI

• Experience in secured cloud architectures (Azure, AWS) and engineering solutions

• Formal experience in Digital Forensics or experience using EnCase, FTK Imager or similar

• An awareness of cyber security related standards and regulations, for example, NIST, CIS, ISO 27001 and PCI DSS

Benefits

• Job Type: Permanent

• Role based out of our Century City offices (currently working remotely)

• 40 - 45 hours per week

• Retirement Fund & Medical Aid

• Death, Funeral and Disability cover

• 20 days’ annual leave + Birthday Leave & Wedding leave (5 additional days towards your honeymoon)

• Multiple HIIT, general fitness, yoga and meditation classes run virtually each week! (In addition to other wellness events and other social activities...)

• Continual professional development plans

All recruitment and selection for Content+Cloud is guided by the principles of our Employment Equity Plan

go to method of application »

Description

This role has overall responsibility for the provision of a broad range of Project Management Office support, to a variety of projects and programmes, supporting our clients within the Professional Services Directorate and some of the wider group directorates. This document indicates the primary roles and responsibilities for a Project Support Officer. The list is not exhaustive, and aspects can and will be added or removed as per the needs of the business. Motivation and appetite to learn will be key as training can be provided.

Job Responsibilities:

Process, Governance & Quality Management:

• Providing documented processes and core governance for projects engagements across the group

• Provide advice &/or assistance to Project Managers where Client demands require process

• Flexibility

• Ensuring adherence to ISO Certification & Processes

• Compliance with Legal, Regulatory, Statutory and Contractual requirements

• Customer & Delivery Team Satisfactions Surveys to include:

• Managing client feedback requests

• Obtaining Feedback from Delivery Teams on Engagements

• Identifying lessons to be learned

• NPS reporting

• Documentation Template Updates to include:

• Kimble Products & Template maintenance (governance of major versions)

• Engagement template documentation (SoWs / Change Request / Contracts)

Process Communications

• Ensuring the right communications channels are used for the right purposes

• Point of contact for project team and engagement communications, managing and engaging

• with a wide range of internal and external stakeholders

• To provide timely response to all enquiries, from both internal and external clients relating to

• engagements

• Liaising with other internal teams to ensure smooth transition of projects

Engagement Delivery Support:

• Transition of projects from Commercial to Delivery to include:

• Order / Deal Pack Processing

• Including following up on actions needed for completion of Change Requests

• Transition of projects from Delivery to Managed Service to include:

• Resource Augmentation / Managed Resource Augmentation project administration and resourcing, including financial management of the project

• Assisting Project Managers with resourcing engagements

• Supplier Delivery Management

• Technical Team & Schedule Management to include:

• Managing scheduling for non-PS bookings as required

• Future resource demand forecasting

• Ensuring demands can be met

• Identifying when we have more work than resources can manage and escalating

• Identifying where we have significant white space to be filled and escalating

• Holiday / Planned Absence Request Approvals

• Managing Non-Billable / Other Activity Codes

• Team Skills Matrix and capability information capture (i.e. service delivery capability)

Financial & Performance Management:

• Managing & Reporting against Targets to include:

• Weekly & Month End Period Management

• Checking that all timesheets have been entered and running the period close activities o Adding timesheet information on behalf of consultants (by exception only)

• Approving timesheets on behalf of Project Managers (by exception only)

• Analyse & Report on Team Utilisation

• Revenue analysis and maximisation

• Ensuring all white space is filled where possible

• Forecast / delivery variance reporting

Requirements

Specific capabilities required:

• Strong personal organisational skills

• Excellent communication skills

• Service oriented, adaptable, and resilient

• Process driven, excellent attention to detail, quality, and control

• Ability to work on own initiative

• Good negotiation and relationship building skills

• Ability to develop new skills and understand new technology as required

Knowledge Required:

• Skilled in Microsoft Office 365 Suite

• Knowledge of Kimble PSA tool an advantage but not essential

Benefits

• Salary dependent on experience

• Role based out of our Century City offices (currently working remotely)

• 40 hours per week (Monday – Friday between 8am and 6pm - based on UK hours)

• 20 days’ annual leave

• Multiple HIIT, general fitness, yoga and meditation classes run virtually each week! (In addition to other wellness events and other social activities...)

• Continual professional development plans

go to method of application »

Description

The VMS Specialist role is part of the Cyber Security Operations Centre (CSOC) and sits within the Cyber Services Department of Content + Cloud.

You will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of VMS, SIEM and security toolsets to meet the requirements of the business and its customers.

This is a hands-on role and requires a both a broad technical knowledge of Cyber Security, as well as specific focused knowledge of VMS tools and processes – particularly Qualys.

Although the focus is on VMS, knowledge and/or experience of modern IT systems and infrastructure is advantageous to assist with the development and continuous improvement of the security platforms within Content + Cloud and its customer’s environments.

Requirements

General responsibilities as CSOC Specialist

• Respond to client requests and liaise with them directly on security issues.

• Lead process improvement opportunities, provide solutions and lead in implementation of changes.

• Finalise draft reports submitted by SOC Analysts using Power BI, including analysis and conclusions, and deliver to clients on a monthly basis.

Specific VMS Responsibilities

• Create and manage VMS internal processes and standards.

• Product Management of Qualys, to involve scheduling and creating scans, liaising with clients to propose and implement mitigations for identified vulnerabilities, and be main POC to the Qualys TAM.

• Design and maintain VMS Key Performance Indicators. Create and deliver dashboards and regular reports to monitor metrics to assess performance against KPIs.

• Maintain the short and long term strategy for effective vulnerability management.

• Give direct support to different projects within the SOC, attending planning meetings and integrating VMS into the wider service.

• Support major incident vulnerability activities as required.

• Work with clients to resolve public facing vulnerabilities in our applications and associated infrastructure.

• Monitor open-source media for new vulnerabilities.

• Future: Technical escalation point, mentoring and training for VMS analysts.

Essential

• Demonstrable passion for cyber security.

• Ability to work independently – identify own tasks in line with the wider SOC strategy and see them through to a successful conclusion.

• Excellent soft skills in the form of team working, problem solving and communication.

• In time, the ability to lead and manage a small team of VMS Analysts (upon further development of the capability).

• Demonstrable technical knowledge, skills and/or experience in VMS tools such as Qualys.

• Working knowledge of core security and infrastructure technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS)

Desired

• One or more of the following industry certifications: CEH, GCIA, GCIH, GSEC, Security+, GCTI

• Experience in secured cloud architectures (Azure, AWS) and engineering solutions

• An understanding of multiple operating systems and their programming interfaces such as UNIX Shell and PowerShell.

• An awareness of cyber security related standards and regulations, for example, NIST, CIS, ISO 27001 and PCI DSS

Benefits

• Permanent position

• Role based out of our Manchester offices with flexibility to work from home

• Working Monday - Friday, 37.5 hours per week

• 25 days’ annual leave, Pension contributions (4%), Life Insurance, Income Protection, Birthday Leave, Wedding Leave, Ride to Work scheme and Private Medical & Dental also available

• Multiple HIIT, general fitness, yoga and meditation classes run virtually each week! (In addition to other wellness events and other social activities...)

All recruitment and selection for Content+Cloud is guided by the principles of our Employment Equity Plan