Company : NP Group
Job Location : Cambridge, England, GB
Posted on : 2020-09-13
Job Description :
Job Title: Senior Security Operations EngineerReference: 12361Start Date: ASAPLocations: Cambridgeshire - Due to COVID-19 this will be remote.
Once advised by the government it is okay to travel/commute.
You will have to locate yourself locally to their office in Cambridgeshire, UK.
My client, a leading Technology Service provider has an immediate and exciting opportunity for a hands-on technical Senior Security Operations Engineer to join their new and growing Information Security and Risk Management team.
As the Security Operations Engineer, you will be responsible for supporting and promoting Information security.
You will get to work closely with the IT engineering team and Security Operations Team to establish and maintain services required to respond to security alerts and incident resolution.
You will be the main escalation point for the security operations of the business and this opportunity will allow you to build and lead a team.
ResponsibilitiesProvide your engineering expertise to and on behalf of the Security Operations Centre (SOC) with regards to security infrastructure and tooling.
You will be designing and implementing technical security controls.
As well as implementing and managing the processes to operate within a Managed Security Operations Centre.
Take responsibility for monitoring, detecting, containing and re-mediating security incidents being identified by the SOC.
IDS/IPS and WAF policies/rules administration and maintenance.
Build out a supporting function to the outsourced SOC.
Experience RequirementsAs this is a hands-on technical engineer role, you must have experience working as a Security Operations engineerThe security operations engineer must have experience in providing third line supportExtensive commercial experience within the information and cyber security domainExtensive experience in Security Tool Administration experience as well as experience of building and maintaining security systemsExperience of developing and documenting security processes and plans based on common information security management frameworks (ISO 270x, ITIL, COBIT, NIST or CIS)Strong working experience in at least a scripting language (Python, Bash, Perl)Demonstrable background in a security operations environmentExperience in IT system administration, network administration, security operations centre would be advantageousA thorough understanding of the latest security principles, techniques and protocols.
Extensive understanding of security technologies at an SME level and good understanding of SOC tooling (include SIEM, IDS/IPS, and End Point Management)Extensive knowledge of vulnerability/compliance, patch management, anti-malware, APT, identity and access control management toolsets.
Extensive knowledge of vulnerability/compliance, patch management, anti-malware, APT, identity and access control management toolsets.
Knowledge of AWS security and networking configurations eg security groups, subnets and routing tables.
Knowledge of SIEM / Log Aggregators (Splunk, IBM QRadar, LogRhythm, Darktrace, Generic Syslog) Tools & ProcessesStrong understanding of threat intelligence and alert triagingVulnerability management.
Good knowledge on performing vulnerability tests.
Excellent interpersonal and communicationA Postgraduate degree within the Information security domain is preferredPreferable Certifications: Certified Information Systems Security Professional (CISSP) / Certificate of Cloud Security Knowledge (CCSK) / SANS GPENNetworking People (UK) is acting as an Employment Agency in relation to this vacancy.