Reports to - Cyber Security Platform Support Group Manager
Business Unit - Digital
Team - Agile Delivery - Security and ThreatCo
Job Dimensions - Cyber Platform
Hours - Full Time
We build, maintain, develop and improve centralised security management, monitoring and reporting platforms for BT Security SOCs (Security Operations Centres) located globally. The platforms which we manage help our SOC Analysts, Specialists, Implementation Engineers and Designers to deliver the best possible Managed Security Services to our customers.
What I'll be doing - your accountabilities
- Through proactive and reactive management maintain the availability, integrity and confidentiality of the security platforms that we manage for BT Security.
- Upgrade all management systems as/when required either by BT Security Product Line or due to vulnerability/bug fixes.
- Monitor all management systems 24x7x365 and resolve any issues reported by monitoring systems within customer committed SLAs (Service Level Agreements).
- Deploy new management systems as required by BT Security customers and BT Security Product Line.
- Identify and implement platform improvement work continuously improving platform and BT Security performance.
- Remediate any platform vulnerabilities reported via penetration testing or vendor security updates.
- Upgrade and patch underlying Operating Systems (Windows, Linux) to maintain the overall security and supportability of the platform.
- Maintain firewall policies to permit access to BT Security managed devices only. All other platform access should be denied by firewall policy. Maintain firewall configuration to deny unauthorised platform access.
- Renew license and support contracts with vendors as/when required by BT Security Product Line and specific platforms.
Skills required for the job
- Check Point Multi Domain Security/Management.
- Palo Alto Networks Panorama configuration and management, XSOAR and Prisma Access.
- Fortinet FortiGate Firewall Configuration.
- Fortinet FortiAnalyzer configuration and management.
- Fortinet FortiManager configuration and management.
- Cisco ASA configuration.
- Cisco ISE (Identity Services Engine) configuration.
- Internet Protocol Version 4. Networking and routeing.
- IT troubleshooting. Network troubleshooting. Firewall troubleshooting.
- VMware virtualisation technologies i.e. vSphere, ESXi.
- Linux Systems Administration.
- Windows Systems Administration.
- Cloud Platforms AWS, Azure, Google Cloud Platform etc.
- Unix/Linux shell scripting.
- Software Engineering experience – Python, Perl etc.
- Database systems administration – Microsoft SQL Server, MySQL etc.
- Excellent written and verbal communications.
- ITIL (IT Infrastructure Library) – IT Operations experience.
- Ability to learn new technologies without supervision. Self driven learning.
- Open Source technologies.
- SIEM (Security Information and Event Management) systems.
- Logging systems e.g. Splunk, LogRhythm etc.
Connected leaders behaviours
- Customer Champion
- Solution Focused Achiever
- Bold Decision Maker
Experience you would be expected to have
- MANDATORY - A background in server and application management in a security environment.
- PREFERRED - Extensive experience working in a sensitive commercial environment with demanding SLA.
- MANDATORY - Knowledge of IP networks and protocols.
- MANDATORY - In depth practical experience and knowledge of a range of specific vendor products related to role.
- PREFERRED - Experience in managing and delivery of customer solutions.
Employment Type: Full Time, Permanent
Read full job description