As a Security Operations Engineer, you will contribute to executing Security Operations Centre (SOC) capabilities, ensuring efficient and effective operation of detection, threat and incident response.
What You'll Get
The world is changing and it's important we support our colleagues. People are at the heart of what we do at Primark so it's essential we provide the right environment for you to perform at your best. That's why we offer benefits that put you first.
Some of our benefits are:
- 27 days of leave, plus bank holidays and if you want, you can buy 5 more.
- Flexible Working, the opportunity for an early Friday finish, and a subsidised cafeteria.
- Primark Perks - Discounts with some local partner businesses to our offices
What You'll Do:
In your role, you'll collaborate with different people across a range of skill sets. Here's a flavour of your day-to-day:
- Triaging events from a wide range of sources, including reports from employees, security systems and threat intelligence data
- Manage analysis and response to detected events, escalating issues where appropriate
- Define hardening standards and checklists
- Working with our partners, manage penetration testing and scanning exercises
- Ensure detection, protection, response and recovery runbooks are up to date and where possible highly automated with threat detection technology optimised
- Perform gap analysis of SOC capabilities
- Review logs and alerts to monitor system security events and develop use cases to improve the operation of security services.
- Ensure integration and handover of new security services within the monitoring and detection capability of the SOC
- Providing operational reporting summaries and metrics to key stakeholders
What You'll Bring
Here at Primark, we want everyone to feel valued - so please bring your authentic self to work, of course with some other key experience and abilities for this role in particular:
- 5+ years of proven experience responding to threat detections in a hybrid (On-premise & Cloud-centric), fast-moving organisation
- Experienced with Penetration testing, Scanning solutions and Hardening principles (Server/Endpoint)
- Demonstrate experience and in-depth knowledge of Cyber Security Operations with a track record in Incident Response and Investigations
- Demonstrated knowledge of adversary TTPs (Tactics, Techniques and Procedures)
- Experience planning, prioritising and organising work in all required areas to meet requirements
- Excellent communication skills, both written & verbal
- An appropriate degree, equivalent qualification or experience
- Recognised security certification(s) is desirable
Ready? Good - because we can't wait to see what you can offer. You'll be joining a team of diverse, passionate, and talented individuals where you'll truly belong, collaborating on projects that will shape the future of our industry. If you're excited about this role but don't meet all the criteria, we encourage you to apply. You may be the right candidate for this role or another one, and our recruitment team Can determine where your skills may fit in at Primark.
Apply to be part of our future and we'll help you develop yours.
If you need any reasonable adjustments or have an accessibility request during your recruitment journey, such as extended time or breaks between online assessments, a sign language interpreter, mobility access, or assistive technology please contact your talent acquisition specialist.
All offers of employment are subject to background checks, including the right to work, reference education and for some roles criminal, and financial checks. If you have any concerns please reach out to our talent acquisition team to discuss.