Trident Search are working with one of the leading independent providers of IT infrastructure services and we are on the hunt for an Endpoint Security Specialist. With a flexible hybrid working setup and offices all over the UK, this is a great role for an SME and a great opportunity to up-skill within a thriving environment.

About the role:

As the Endpoint Security Specialist, you will support the Security Operations Lead in delivering core cyber defence services. You will also deliver core cyber security capability including benchmarking security standards, security information and event management, vulnerability analysis, security incident investigation and response to support increasing cyber resilience.

What you’ll be doing:

• Lead within the SOC team for all aspects of security relating to Endpoint workplace technologies.

• Rapid response to cyber security incidents as part of the Computacenter CSIRT virtual team.

• Delivery of high-quality, prioritised, and up-to-date information about the security threats that are relevant.

• Collaborate with endpoint maintainers to ensure secure configuration of endpoints.

• Collaborate with cyber defence leadership to inform and influence good security working practices.

• Operate as Endpoint (Workplace) Security Operations Lead for cyber security.

• Deliver and manage baseline security standards for all types of Endpoint device.

• Support the SOC team to optimise the use of cyber security tools to protect endpoints from cyber-attacks and security incidents.

• Lead on the introduction of new technologies into Security Monitoring and ensure the ongoing effectiveness of security monitoring related to Endpoints (Workplace).

• Deliver specialist security support to core functions including asset, configuration, patch and vulnerability management.

• Support cyber exposure reduction in driving remediation of vulnerabilities (patch, configuration and administration) within business units.

• Deliver specialist investigation and analysis on cyber security incidents to support the Cyber Security Incident Response Team (CSIRT).

• Support Chief Technology Officer and Design Authority for Endpoint operational security.

• Deliver server & network expertise into Security operations including SIEM, SOAR, EDR and other services.

• Deliver specialist security support into ITIL processes.

What you’ll bring

• Experience of cyber security management systems to support the identification, prevention, and remediation of cyber risks.

• Experience in implementing specialist security frameworks including CIS Benchmarks.

• Highly experienced with the full range of Microsoft security products including Defender 365, Office 365 Advanced Security Management, Office 365 Data Loss Prevention, Office 365 Advanced Threat Protection (ATP), Windows Information Protection, Azure Active Directory Identity Protection and Sentinel.

• Experience of EDR solutions such as Fireeye, Crowdstrike and MDE.

• Strong knowledge of Operating systems, Windows, Unix and mobile.

• Experience in end-to-end information security incident management, mitigating and addressing threat vectors including but not limited to Advanced Persistent Threat (APT), Distributed Denial of Service (DDoS), Phishing and Malware

• Security experience of working in Cloud environments such as AWS, Azure, & GCP.

• Vendor Security certifications such as Microsoft.

• Strong stakeholder, relationship management and communication skills.

• Must have or be able to obtain UK security clearance.