SOC Analyst

Category: Cyber Security Consulting
City: Reading or Bridgend, UK Wide - Various, United Kingdom
Position ID: J0719-0831
Employment Type: Full Time

Meet our professionals

CGI UK - Careers at CGI - Be part of something

Position Description

Do you want to be part of something cutting edge? We're looking to strengthen our busy Advanced Threat Investigation team in our facilities in both Reading and Bridgend. We have strong demand from our clients and this means we are looking to grow our team with the addition of a number of Advanced Threat Analysts up to and including senior consultant level.

As one of the UK’s largest Cyber Security businesses, security is part of everything we do at CGI and this opens up a world of opportunity for your career. Whether it's helping customers assess the cyber security risks that they face, helping them design and build secure solutions or providing managed security services to protect against cyber-attack, cyber security is increasingly part of the work we undertake right across our UK business in both the commercial and private sectors.

Due to the nature of the role all candidates must either hold already or be willing and eligible to hold UK Security Clearance to at least SC level.

Your future duties and responsibilities

As an Advanced threat Analyst/Consultant you will be performing a broad range of intrusion analysis and/or intrusion detection tasks using an analytical and systematic approach. You’ll also be producing reports on cyber security analysis results to both technical and non-technical management/governance stakeholders. As a shift team leader or senior consultant you will also be expected to present findings to clients, advise on cyber strategies, and mentor and develop other team members. You’ll be supported and encouraged to develop your skills further through both in-house and external training, as well as continuing professional development.

We provide 24x7x365 monitoring of our clients using a 12-hour shift pattern, 4 days on and 4 days off. We also have 8x5 teams and on call for more senior roles.

Required qualifications to be successful in this role

As an Advanced Threat Analyst/Consultant you will have the ability to keep up to date with, and be able to develop and build specialist security knowledge. In terms of specific experience and technical knowledge it is likely that you will have experience in at least two or more of the areas below:

• Network Analysis; Host Forensics Analysis; Malware Analysis (Static Analysis of captured files, Dynamic Analysis of captured files, Reverse Engineering)
• SIEM Experience (Arcsight, QRadar, Logrythm, Splunk); User investigations; Incident Response experience
• Knowledge of different threat actor groups and their characteristics
• Experience of utilising threat intelligence sources
• Experience of developing in-depth technical investigations
• Experience with Forensics tools (enCase, MIR, Bit9/CarbonBlack, RSA ECAT, Crowdstrike); Experience with Network sensors (Darktrace, Senseon, Fireye, Cisco, Fortinet, TrendMicro)
• Splunk experience or experience using other big data analysis platforms and the development of advanced queries used to interrogate big data sources.
• Scripting/Software development skills and experience.
• Has a working understanding of common Intrusion Analysis models

(e.g. Cyber Kill Chain®) and can apply them to enhance their analysis or reporting

We would expect for the more senior positions that you will have taken one or more of the following industry courses ; SANS SEC503: Intrusion Detection In-Depth; SANS SEC504: HackerTools, Techniques, Exploits and Incident Handling; and GCIH qualification; SANS SEC561:Intense Hands-on Pen Testing Skill Development; SANS FOR610: Reverse-Engineering Malware: Malware Analysis Tools and Techniques. And GREM qualification and hold Crest certifications.

At all levels we will expect you to have good written and oral English ability to write reports and present to technical and non-technical stakeholders up to and including Board level. You’ll need to be able to work under pressure and autonomously or under general direction as required.

What you can expect from us

Build your career with us.

It is an extraordinary time to be in business. As digital transformation continues to accelerate, CGI is at the center of this change—supporting our clients’ digital journeys and offering our professionals exciting career opportunities.

At CGI, our success comes from the talent and commitment of our professionals. As one team, we share the challenges and rewards that come from growing our company, which reinforces our culture of ownership. All of our professionals benefit from the value we collectively create.

Be part of building one of the largest independent technology and business services firms in the world.

Learn more about CGI at

No unsolicited agency referrals please.

CGI is an equal opportunity employer.