Location
Manchester, GB
Department Name
IS Security (807520) G1
About Network Rail
Join Network Rail - Where People and Connections Matter
At Network Rail, we're dedicated to keeping passengers and freight moving safely and efficiently across the country. When you join us, you're not just part of a team - you're part of something that matters to millions. We believe that our people are at the heart of what we do, and every role plays a vital part in building a better, more connected railway. Click here to learn more.
We're committed to creating a diverse, inclusive workplace that reflects the communities we serve. To discover more about our ED&I commitments click here. We value flexibility and understand the importance of a healthy work-life balance. As a Disability Confident Leader, we'll do everything we can to accommodate any needs throughout the recruitment process.
The railway has seen nearly 200 years of technology and innovation that has transformed how we provide services to passengers and freight customers. Technology is continuing to transform the railway industry. Imagine an exciting environment where Digital, Data, and Technology (DDaT) are not just buzzwords but the driving force behind every operation, every decision, and every solution.
As part of the DDaT directorate, you have a unique opportunity to enable our customers and industry partner with modern and transformative technology. From the day-to-day IT operations that keeps a national railway running, to the extensive delivery programmes that our helping to reshape the railway – we are at the forefront of all of it. We operate with a talented and passionate workforce, fostering empowered individuals and teams who understand that technology is not just a tool – it's the catalyst for progress, especially in an ever-demanding industry where change is a constant.
Click ‘apply for this job’ to apply.
Brief Description
Vacancy Type: Permanent, 35 hours per week, Hybrid working of 3 days in the office
Please note that there are 2 roles available for this role.
Location:Manchester Piccadilly Tower Block
Closing date: 30 th July 2025
Salary: Band 5 £30,000 - £36,000 depending on experience
Interviews will take place W/C 11th July 2025, they will be held Face to Face in Manchester
About The Role (External)
Supporting the NR Security Operations Centre to ensure the protection of Network Rail's assets in terms of confidentiality, integrity, and availability. This involves actively monitoring operational systems, managing the prevention, detection, remediation, and recovery from security threats, vulnerabilities, and incidents.
As a member of the SOC: your responsibilities will include:
- Monitoring, evaluating, and responding to security events and incidents by making use of defined security technologies and having a good understanding of exploits and vulnerabilities.
- Provide real-time log analysis and investigation through recognition of attempted or successful intrusions and compromises to provide network and data security.
- Take appropriate corrective action or follow defined escalation procedures in the event of a security event or incident and work so security investigations are managed through to resolution.
- Be able to recognise network intrusion attempts or compromises based on their traffic patterns, behaviours or signatures and have the ability to identify false positives from true intrusion attempts.
- Actively monitor external security vulnerabilities, advisories, incidents, and penetration techniques when required and have to ability to apply risk-based threat assessment techniques against the asset estate.
- Support Security Engineers in conducting periodic vulnerability assessments and reporting based on the prioritised asset estate.
- Aid in the generation and review of periodic security operational reports on SOC activities.
- Perform tasks as directed by the daily operations task list or team leader.
- Work in a team environment to aid in the monitoring and health of the security devices within the network.
How To Apply (External)
Meet the essential criteria/ Apply today to join our team!
Essential
- Experience working in a SOC/NOC environment.
- Strong analytical and problem-solving skills
- Understanding of incident response processes and how incidents should be managed from identification through to resolution.
- Experience in event log analysis, network traffic packet capture and associated SIEM’s and tools
- Strong understanding of networking and security technologies (routers, switches, firewalls, IDS/IPS, DDoS, Servers, end-point devices)
- Understanding of network systems and system/device logs
- Experience in system hardening.
Desirable
- Security qualifications such as Security+, Network+, CISCO Cyber Ops, GIAC Certified Intrusion Analyst (GCIA), EC-Council Certified Security Analyst (ECSA) and GIAC Certified Incident Handler (GCIH), Certified Ethical Hacker.
- Experience in implementation and monitoring of IBM QRadar SIEM platform. XSOAR, Defender EDR, Cisco Firepower, Threat Intelligence Analysis, Network/User Behaviour Analytics.
- Understanding of CERT/CSIRT processes
- Knowledge of compliance frameworks (ISO 27001, 27002, CoBiT) and accreditation processes
To submit your application, click apply now. For tips to help you prepare and apply click here
You can visit Evenbreak's Career Hive for advice on accessibility support if you're unsure of the options available. Should you require any reasonable adjustments/modifications, pleaser add a note to your application.
You can visit Evenbreaks Career Hive for advice on accessibility support if you're unsure of the options available. Should you require any reasonable adjustments/modifications, please add a note to your application.
Network Rail Benefits - To find out about what benefits we offer, click here
All offers of employment are conditional upon satisfactory completion of pre-employment checks. Click here for more information
We offer excellent benefits, including:
🌞 Generous annual leave (28 days plus statutory days), with the option to buy/sell days.
✨ Defined benefit pension scheme.
🚂 75% subsidy on rail and underground season tickets.
🚂 Up to 75% off leisure travel for you and your family (subject to terms and conditions)
🎟️ Interest-free travel loan for train and car park season tickets.
🎁 Discounts at stations with your Network Rail pass.
🌍 Flexible/hybrid working arrangements.
🕊️ Volunteer leave to make a positive impact.
❤ Healthcare Scheme, GymPass discounts, Cycle to work plus more.
🧸 We offer generous maternity, paternity, and adoption leave to support our employees during significant life moments
- Some of our roles require face to face Drugs & Alcohol testing. Further details will be shared with you as part of your formal offer.****
