Security isn’t always the first thing that comes to mind when you think of BT, but when it comes to keeping everyone safely connected, We Are The Protectors. We deal with thousands of cyber-attacks every day, so that millions of people can safely go about their daily lives and run their businesses. We deliver vital work at scale, with real breadth and impact. We connect for good. Security is one of the fastest growing parts of our global organisation. We protect our networks from more than 6,500 cyber-attacks each day, invest over £40m in research each year and employ more than 3,000 people - which makes us the largest private cyber security employer in the UK.
With incredible opportunities to learn, develop and grow your skills, we’ll invest in you, nurture potential and shape your future - whatever your background or experience. You can find out more about Security in BT here In today’s world, safe and secure digital connections have never been more vital. You’ll be joining a general company operating at the forefront of the information age: BT employs 90,000 people in 180 countries. With huge scale, we’re capable of achieving great things, striving to be personal, simple, and brilliant for our customers whilst creating an inclusive working environment where people from all backgrounds can succeed.
Play your part, Make a difference. We are the Protectors.
**Knowledge needed**
- Computer systems
- Basic malware knowledge
- MITRE ATT&CK.;
- websites, apps and tools used in companies.
- Basic Security System knowledge
- Medium-high level of written and spoken English
**Minimum requirements**
Minimum 1 year of experience in cybersecurity center (SOC) or equivalent handling security Incidents and Investigations.
Basic knowledge of security systems, networking, and internet protocols, (Firewall, proxy, ids/ips, VPN )
Demonstrated knowledge in blue team activities
Demonstrated knowledge in tools & technologies like:
- SIEM systems (Qradar, Splunk, MS Sentinel, LogRhythm )
- EDR solutions (CrowdStrike, MS Defender, Trendmicro )
- Phishing Analysis
Knowledge of SOAR and Ticketing tools (Xsoar, Chronicle, Service Now, Jira, Remedy )
Other valuable capabilities:
- Analysis capacity
- Resolute person
- Quick response to incidents
- Teamwork
- Continuous learning ability
**Valuable requirements**
- CompTIA Security +
. CompTIA CySA+
- Other cybersecurity courses/certs
- Participation in CTFs & CONs
- ITIL knowledge
**Description**
BT is one of the world's leading communications services companies which provides communications services solutions, serving customers in more than 180 countries. The services we sell are integral to modern life. Our purpose is as simple as it is ambitious: to use the power of communications to make a better world.
Join our Cybersecurity team as a cybersecurity analyst.
We offer:
- A place to work comfortably as a team
- Initial and continuous training to keep up to date in the world of cybersecurity
- A company and area in growth and continuous renewal
- Job security
**Responsibilities of the role**:
This role is based in Blue Team activities:
- Manage Complete Security Incidents Process for Detection, Analysis, Response and Remediation.
- Monitoring and set the correspondence category of every Incident Security identifying True Positives and False Positives based in correspondent Use Cases in production.
Manage all the incident phases:
- Initial event investigation
- Basic triage activities
- Interaction and communication with customer in all the investigation steps through ticketing systems
- Responsible for compliance with the SLAs defined by every client.
- Follow all the processes and internal documentation available to ensure the quality parameters defined.
Initiative proactive and anticipation to report improvements or lack process detected.
Must be ensure progressively skills and dynamism to manage the systems and tools demanded for delivering