Online since 1999 | 11,163 IT Jobs Live NOW

Senior Security Operations Analyst

Premium Job From Bowerford Associates
Recruiter: Bowerford Associates
Listed on: 10th September
Location: Reading
Salary/Rate: £60,000 - £80,000
Type: Permanent
Start Date: 30/08/2021

This job has now expired please search on the home page to find live IT Jobs.

We are searching for a Senior Security Operations Analyst (SecOps Analyst) for our client, a growing and exciting business with offices located in Devon, Berkshire, Kent, East Sussex and Scotland.

The role is essentially remote with occasional visits to the office. You will need to be based a commutable distance of offices located in either Exeter, Reading, Tonbridge and Malling, Brighton or Edinburgh, to allow the office-based working, which can be just a few days per month.

Our client offers a friendly, dynamic and supportive team environment. They encourage passion, ambition and collaboration, both in their performance as a team and individually. They really encourage new ideas and actively promote involvement in the development and direction of their products and services, as well as finding more efficient and effective ways to work.

Our client develops software solutions and technical services and adopts a "cloud first" approach, predominately utilising Azure. They are specifically seeking to hire an experienced Senior Security Operations Analyst to assess the effectiveness of security and risk management controls, to detect security issues, events and incidents (e.g., attacks and intrusions), and to be able to recommend appropriate and proportional actions to keep their data and operations, as well as their customer data, safe and secure.

The successful candidate must have the ability to analyse disparate pieces of technical and non-technical information, from a variety of sources and in many formats. You will be required to assess the scope, severity and potential impact of a security issue, vulnerability, event or incident quickly and accurately. You will then work with other internal teams to take appropriate action on a timely basis operating at time under pressure.

Core Responsibilities

Monitoring:

Real-time monitoring of security systems and telemetry (logs, alerts etc.) and other information (e.g., threat intelligence feeds), supplied by various tools and systems including, Firewalls, Intrusion Detection and Prevention Systems (NIDS/NIPS, HIDS/HIPS), Log Monitoring, Traffic Inspection, Anomaly detection, etc.

Triage:

Perform first level and in-depth analysis of acquired data to produce actionable insight.

Work with existing teams and enterprise systems (e.g., Service Desk) and procedures to quickly assess and process the most appropriate action plan when faced with various pieces of data and information.

Determine the severity of alerts and security vulnerabilities, assess potential impacts, recommend next steps, follow through with risk treatment and mitigation.

Action and Response:

Act as the first Point of Contact (POC) for all security events, anomalies, incidents and investigations

About You

We are searching for a calm, collaborative, competent and autonomous individual with strong communication skills.

You will ideally have the following experience and qualifications;

  • Degree educated (STEM subject preferred) - or equivalent with demonstrable practical experience.
  • Experience of Detection and Automation Engineering (hands-on, practical focus).
  • Experience of Linux/Unix certifications (hands-on, practical focus).
  • Experience of Cloud/Cloud Security certifications (hands-on, practical focus).
  • Experience with engineering and monitoring intrusion and anomaly detection technologies.
  • Expertise in taking policy statements and translating them into actual, implementable, security controls that can be monitored, audited and constantly improved. Ability to judge their effectiveness and recommend improvements.
  • Good understanding and demonstrable hands-on experience with operating systems and tools (Linux/Unix preferred) and fundamental Internet and security technologies (routing/switching, DNS, packet analysis, etc), in an enterprise or service provider environment.
  • Good ability to read and understand logs and alerts, to use specialist tools and programming/scripting languages (Python, Shell, PowerShell, etc), to automate tasks.
  • Ability to install and/or monitor/operate security controls, tools and systems, processes their information output.
  • Able to monitor and respond to security logs, alerts, vulnerabilities, threats, events, incidents and is able to manage incidents and lead incident response and recovery activities.
  • Experience of using COTS and open-source tools for vulnerability management, attack detection, threat management, security verification and monitoring, as well as other general security operations systems.

Our client is offering a very competitive salary and an extensive benefits package to the right candidate, including;

  • 25 days holiday + Bank Holidays (with optional 5 days unpaid leave per year)
  • Free Office Parking
  • Annual Lifestyle Allowance of £300 to put towards an activity of your choice
  • Cycle to Work Scheme and Gym Flex Scheme
  • Internal Coaching/Mentoring Programme
  • Focus on Training and Career Progression
  • Flexible Working
  • Pension & Insurances

Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010.

Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.