Key Responsibilities
- Security Lifecycle: Design, configure and deploy security infrastructure components whilst acting as a technical escalation point for security incidents and investigations
- Vulnerability management & Remediation: Work with the wider IT group and end users to remediate risk through closure of vulnerabilities whilst aligning to the IT security roadmap
- Alert Management: Analyse and triage security alerts to identify and respond to potential malicious activities & lead post-incident analysis and reporting, delivering operational and technical lessons learnt
- Security posture enhancement: Support and drive the continual improvement of the companies' security posture by leading and implementing major security initiatives
- Service Implementation: Enhance security operational maturity through the implementation of security services such as SIEM & MDR
- Security Awareness: Maintain and communicate awareness of security advisories to key stakeholders, reporting on the operational security status
- Continuous Improvement: Regularly conduct exercises, simulations, and other activities to improve security maturity
- Threat Hunting & remediation: Develop and conduct threat hunting exercises and undertake threat and vulnerability assessments whilst supporting and performing remediation activities
- Security Controls & Policies: Develop and maintain effective security controls
- Threat landscape: Stay up-to-date with the latest security trends, threats, and technologies, and recommend and implement appropriate security measures and solutions
- Training Development: Develop and deliver training plans to support security operations management
- You'll find a fast-paced, challenging, and rewarding work environment where you can grow professionally and take pride in your contributions. This role is not just another job; it is an opportunity to build your career.
- Prior experience of developing, planning and managing Incident Response, SOC, threat and Vulnerability Management in a lead capacity.
- The ability to quickly assess and prioritise incident response activities.
- Strong communication skills to interpret technical information for non-technical audiences and ensuring collaboration with cross-functional teams.
- Thorough understanding & practical experience in applying cybersecurity controls to detect, protect, and mitigate threats & Familiarity with security frameworks such as MITRE, cyber kill chain, and APT campaign strategies
- Strong technical skills, in particular across the MS stack, including Azure, Microsoft Defender
- Strong working knowledge of vulnerability management and supporting tools such as Nessus tenable.
- 5 years of experience in an information security role whilst working effectively in a team environment.
- Experience in cloud computing and Azure security technologies covering IaaS, SaaS, and PaaS.
- Experience with network security across LAN & WAN technologies.
- Cyber related Bachelor's degree or similar.
- Advanced Security Certifications: CCNA, CCNP, CCSP, CEH, CISA, CISSP, AZ-500,MS-500.
- Relevant certifications such as AWS Certified Solutions Architect, Microsoft Certified: Azure Solutions Architect, or Google Cloud Professional Cloud Architect.
- 33 days annual leave including bank holidays
- Cycle to Work Scheme
- Life Assurance up to 4x salary
- Excellent Enhanced Maternity & Paternity Pay
- Pension Scheme
- Training & Professional Development Opportunities
- Employee Assistance Programme
- Workplace Reward & Recognition scheme