contact us

category

Technology

location

Reading

salary

£50000 - £60000 Per Annum

contract type

permanent

Exciting New Fully Remote role within a leading technology company, with offices throughout the UK. Working within the security team as a Senior Security Operations Analyst.

The Organisation is very much ‘cloud first’ and Azure is their home.

Specifically seeking to hire a Senior Security Operations Analyst to to assess the effectiveness of security and risk management controls, to detect security issues, events and incidents and to be able to recommend appropriate and proportional actions to keep our data and operations, as well as customers’ data, safe.

The role will involve:

Core Responsibilities

Monitoring:

• Do real-time monitoring of security systems and telemetry (logs, alerts) and other information (e.g. threat intelligence feeds) supplied by various tools and systems:
Firewalls, Intrusion Detection and Prevention Systems (NIDS/NIPS, HIDS/HIPS), Log Monitoring, Traffic Inspection, Anomaly detection, etc.
• Monitor, react to, investigate and respond to all real or perceived information security and cyber related events, issues, incidents, threat and attacks within desired time scales.
• Do research and consultation with colleagues, as well training (including on the job) to maintain own’s awareness of trends in security threats, attacks, technologies, controls and regulations.
• Be able to follow (and, for the Senior Analyst, to also create and to improve) standard security operational procedures (SOPs) and practices to protect the enterprise.

Triage:

• Perform first level of analysis for data acquired, produce actionable insight.
• Work with existing teams and enterprise systems (e.g. Service Desk) and procedures to quickly assess and process the most appropriate next action when faced with various pieces of data and information.
• Determine the severity of alerts and security vulnerabilities, assess potential impacts, recommend next steps, follow through with risk treatment and mitigation.
• Escalate issues, appropriately, to various teams and levels of authority inside the organisation.

Action and Response:

• Act as the first Point of Contact (POC) for all security events, anomalies, incidents and investigations
• If present and applicable, perform duties according to agreed SLA/OLA’s.
• Follow up with the appropriate teams (e.g. IT, Engineering, Product, etc) for action implementation, verification and closure (e.g. the application of a patch, or of an additional control, when faced with a security vulnerability), as per the agreed Policy and Processes.
Additional Responsibilities
• Use primary and secondary data to produce analysis and reports, regular and ad-hoc.
• For the Senior Analyst, present to senior and executive management on the status of our estate and on the progress of our yearly security plan.

About You
You will have:

• Experience securing and monitoring On-premise and Cloud based, as well as SaaS / hybrid, environments (applications, infrastructure, operations, processes, etc).
• Expertise in taking policy statements and translating them into actual, implementable, security controls that can be monitored, audited and constantly improved. Ability to judge their effectiveness and recommend improvements.
• Good understanding and demonstrable hands on experience with operating systems and tools (Linux/Unix preferred) and fundamental Internet technologies (routing, switching, DNS, etc), in an enterprise or service provider environment.
• Scripting and automation: Good ability to read and understand logs and alerts, to use specialist tools and programming / scripting languages (Python, Shell, PowerShell, etc), to automate tasks.
• Good, practical, knowledge of information security and cyber risk management technologies, tools, applications and systems, for both Cloud (preferred) and On-Premise.
• Understanding of common information security management standards, frameworks, and laws / regulations: e.g. CIS Top20, ISO/IEC 27001, NIST 800-53, BSIMM, etc; GDPR, etc.
• Experience of open source security tools and how they could be used in an enterprise.


If you are interested in this opportunity, Apply Now!

Ben Curtis - Reqiva - b.curtis@reqiva.com - 01189 595552
Back To Vacancies

Antony Redmond

Director | Engineering

01189 595552
a.redmond@reqiva.com

ready to work with us?

subject: