Back to jobs
Security Operations Engineer
- Posted 24 March 2022
- Salary £75,000 per annum
- LocationLondon
- Discipline Cyber Defence
- Reference32881
- Contact NameRyan Keeley
Job description
Trident Search are working with an industry leading satellite communications company to help find a talented engineer to mature their internal technology stack and develop commercial cyber security products and services
The team’s mission consists in:
- Supporting the Cyber Security Operations tools stack and associated services both on-prem and Cloud-based
- Providing the core Security Engineering function for the Cyber Security Operations Center (C-SOC)
- Integrating a variety of programmes and associated infrastructure elements with the C-SOC
The successful candidate will be primarily responsible for the design, the deployment and the enhancement of the C-SOC tools and platforms including the following key responsibilities:
Key Responsibilities:
- Improve and rationalize distributed SIEM deployments made of off-the-shelf and bespoke tools / platforms for events and flow monitoring
- Scale and deploy the Vulnerability Management infrastructure to cover 50+ remote sites
- Management and enhancement of event indexing, normalisation and visualisation tools on a global scale
- Design and deployment of scalable AV, EDR and HIPS platform
- Test, build and document system-to-system integrations using a combination of bespoke software and off-the-shelf HTTP-based API
- Carry out major system upgrades and supervise the Junior Engineers in defining system operations such as: backup / restore, DR simulations, updates / upgrades, End-of-Life hardware / software refresh
- Provide support to the Security Operations Engineering Team Lead in establishing a robust, resilient, redundant enterprise-grade architecture for the C-SOC tools stack, including associated change management processes
- Act as escalation point for issues associated with all the tools and platform, troubleshooting and escalate to the Vendors when required
Essential Knowledge and Skills:
- A bachelor's or master's degree or equivalent in computer science, information systems or other related field; or equivalent work experience is desired
- Professional security certification, such as a Certified Information Systems Security Professional (CISSP), SANS certifications or other similar credentials, is desired
- Thorough understanding of the latest security principles, techniques, and protocols
- Proven work experience as a System Security Engineer and/or Administrator
- Hands on experience in building and maintaining a wide portfolio of Security tools like SIEM platforms, vulnerability management tools and systems integrations
- Detailed technical knowledge of Linux and Windows operating systems
- Experience with network security and networking
- Experience with IaaS / PaaS / SaaS Cloud providers and associated security offering
- Hands on knowledge of system’s API principles and integration techniques
- Hands on knowledge of Bash scripting and Python programming languages
- Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols
- Detailed understanding of Public Key Infrastructure and Key Management
- Knowledge or exposure to Cloud technologies, such as IaaS, SaaS & PaaS deployments, with detailed knowledge of Azure, AWS and GCP being highly desirable
- Experience with implementing Privileged Access Management solutions, ideally CyberArk
- Experience working in as a Security Engineer or can demonstrate equivalent experience
- Experience of working in Security Operations is highly desirable
- Must be eligible to work in this location advertised
- Individuals with SC clearance or are eligible to apply for SC are highly desirable