Offers “CGI”

42 days agoCGI

Cyber Security Analyst, Global Security Operations, UK

  • Internship

Job description

Job Description

Cyber Security Analyst, Global Security Operations, UK

Position Description
If you’re looking for a challenge that stretches your talents and you want to make a real difference in people’s lives, come and help us support the digital transformation of the UK.

You’ll work with high profile public and commercial clients, delivering improvements to complex systems that make the everyday simpler.

At CGI you’ll be a member not an employee and you’ll find a friendly, collaborative environment where your ambition is rewarded. Curious?

The Cyber Security Analyst (Level 2) is a core resource in the Global Security Operations Center (GSOC) protective monitoring team (Blue Team), responsible for the monitoring, triage and response to all security events coming into the GSOC via either automated tools or via CGI ticketing systems.

Level 2 Analysts will have a broad range of cyber security experience.


Your future duties and responsibilities

• Perform Real-Time monitoring of security alerts detected by a multiple security system such as: Intrusion Detection and Prevention Systems (NIDS/NIPS, HIDS/HIPS, WIDS), Log Monitoring, SIEM, etc.
• Monitor, react and respond to all real or perceived security and cyber related incidents, threat and attacks within agreed times – typically within their regions working hours or time zones
• Research, consultation with colleagues and training to maintain awareness of trends in new security threats, technologies and regulations
• Perform shift handover and transfer of cases to other analyst for on-going incidents.


• Work with CGI’s ITSM system during Incident Handling and Triage
• Conduct preliminary incident triage according to the Security Incident Management Triage Matrix and sets the priority accordingly
• Determine and classify the severity of alerts and assess potential impacts as classification defined in knowledge base Report potential security incidents
• Escalate cases to various team and/or L2 and L3 analyst as per processes and procedures
• Perform first level analysis of evidences to triage incidents and analyze logs and/or investigation evidences
• Adhere to and enforce incident response SLAs. Escalate to and collaborate with Tier 3 analysts and/or other teams as appropriate to ensure an appropriate and timely resolution of security incidents


• Act as the first Point of Contact (POC) for all security incidents and anomalies
• Create incidents based on known threats
• Create tickets and monitor the ticketing systems and respond to incident
• Take technical direction from GSOC incident response leads during an incident
• Follow security operations processes and procedures
• Assist in IT security investigations, exercises and tests
• Make technical and procedural recommendations and enhancements in coordination with the other members of the team
• Work closely with other teams to provide mitigation recommendations to reduce the overall security risk within the organization
• Provide ideas and feedback to improve the overall SOC capabilities and maturity (focus on people and processes)

Required qualifications to be successful in this role
A solid track record of working in a Security Operations Center or similar role.

• Excellent communication skills.
• Knowledge of IT Service Management with specific emphasis on Incident Management
• Knowledge of networking and the ability utilize that knowledge in an investigation. Key concepts including but not limited to: Souce and Destination IP addresses, NATing and Ports, TCP versus UDP
• Knowledge of the Windows and Linux operating systems, including but not limited to: Awareness of event logs and event log IDs and Patch management
• Awareness of vulnerability management and CVE numbers
• Awareness of common security products such as: NIDS/NIPS, HIDS/HIPS, WIDS, End Point Security, Advance Threat Protection
• Awareness and limited ability utilize common web-based 3rd party tools such as VirusTotal and MXToolbox
• The ability to analyse log files
• The ability to update security investigation documentation such as Triage Steps and Playbooks
• Intermediate to Advanced level skill with at least one, or more of the following: Networking, Windows OS, Linux OS
• An ability to operate with minimal supervision including the capability to prioritize, determine areas for improvement and initiate the improvement
• Awareness of security related industry standards and best practices
• The ability to complete a security investigation to the required standards of the GSOC as defined within GSOC playbooks and operational documentation.

Business is transforming fast and, at CGI, you’ll be at the centre of a digital revolution. As one of the largest independent technology and business services companies in the world, we can deliver exciting opportunities for you to build your career.

Alongside a competitive salary, we offer you access to our share scheme (3% + 3% matching) making you a member not just an employee. You also have the option to benefit from private medical and dental insurance, flexible retirement options, childcare vouchers and a cycle to work scheme.

As for the future? We work as one team, and are a Top 100 employer. Be a successful part of our story and we’ll support you in taking your career anywhere you want it to go.

Build your career with us.

It is an extraordinary time to be in business. As digital transformation continues to accelerate, CGI is at the center of this change—supporting our clients’ digital journeys and offering our professionals exciting career opportunities.

At CGI, our success comes from the talent and commitment of our professionals. As one team, we share the challenges and rewards that come from growing our company, which reinforces our culture of ownership. All of our professionals benefit from the value we collectively create.

Be part of building one of the largest independent technology and business services firms in the world.

Learn more about CGI at

No unsolicited agency referrals please.

CGI is an equal opportunity employer.


Job Description

Your future duties and responsibilities

Required qualifications to be successful in this role

Donnez un élan à votre carrière.

Le secteur des technologies de l’information (TI) connaît une période extraordinaire. La transformation numérique des organisations continue de s’accélérer, et CGI est au premier plan de ce changement. Nous accompagnons nos clients dans leur démarche numérique et offrons à nos professionnels des opportunités de carrière stimulantes.

La réussite de CGI repose sur le talent et l’engagement de nos professionnels. Ensemble, nous relevons les défis et partageons les bénéfices issus de la croissance de notre entreprise. Cette approche renforce notre culture d’actionnaire-propriétaire ainsi, tous nos professionnels bénéficient de la valeur que nous créons collectivement.

Joignez-vous à nous pour prendre part à la croissance de l’une des plus importantes entreprises indépendantes de services en technologies de l’information (TI) et en gestion des processus d’affaires au monde.

Pour en savoir davantage à propos de CGI :

Les candidatures non sollicitées provenant de cabinets de recrutement ne seront pas retenues.

CGI favorise l’équité en matière d’emploi.