Senior Security Operations Engineer

Hays. ,
London, Greater London
Salary: £20,000 - £29,999, £30,000 - £39,999, £40,000 - £49,999, £50,000 - £59,999

Overview

A leading FinTech start up are looking for a strong Operational Security Engineer to join their growing and hugely successful team. This is a critical role taking the security processes and procedures to the next level. With this being such a huge part of ensuring business continuity this team are looking at continual improvement across event data, incident response and tooling. Ultimately the focus is on developing effective automation of the lower level SOC type work so you can focus threat hunting and forensics - the interesting bits. This is a cloud-oriented role so you will be working with the full AWS suite looking to maintain and enhance zero-trust concepts in both corporate and platform environments. Your experience with IAM/PAM, SIEM (Splunk) and Device Management processes will all come into play. Main Duties: Implementation and maintenance of our security event monitoring tooling Researching utilising all the intelligence resources available to investigate live and identify future threats Develop security incident management and forensics capabilities Close interactions with internal teams as a security SME helping review and manage risks such as access controls and identity management Vulnerability Management and Triage Manage tooling to effectively detect and respond to security incidents. Evaluate the impact of current security trends, advisories, publications, and academic research. Build tooling for internal use that enable the team to operate at high speed and at scale. Writing, and managing indicator of compromise queries. Responding to, triaging, and investigating potential incidents across Tide's laptops, servers, network devices, and cloud systems. Performing and automating in-house network and host security testing. Managing third-party penetration tests. Acting as incident manager and running interactions with external incident response and forensics teams in the event of a major incident. Working with infrastructure teams to ensure that programmatically-driven security policies are correct Implementing security orchestration and automation on top of existing solutions. You will be an experienced OpSec professional with clear and demonstrable experience in writing and triaging production security alerts ideally with Splunk Enterprise Security, hardening AWS/Linux containers and common services, working with Identity and Access Management systems like Okta and authentication integration via OAuth, SAML, and LDAP. Ideally you will have some interest and experience with Software Engineering and Automation with a view to developing these skills as you progress. This is a Start Up business who are growing fast, they need self-starters who like a challenge and see the potential in joining an organisation who are looking to take things to the next level. With equity on offer as part of their package this is an exciting opportunity for the right person, get in touch if you would like to hear more.