Security Operations Engineer

Posted 23 March 2022
Salary£75,000 per annum
Job type Permanent
DisciplineCyber Defence
Contact NameRyan Keeley

Job description

Trident Search are working with an industry leading satellite communications company to help find a talented engineer to mature their internal technology stack and develop commercial cyber security products and services

 The team’s mission consists in:

  • Supporting the Cyber Security Operations tools stack and associated services both on-prem and Cloud-based
  • Providing the core Security Engineering function for the Cyber Security Operations Center (C-SOC)
  • Integrating a variety of programmes and associated infrastructure elements with the C-SOC

The successful candidate will be primarily responsible for the design, the deployment and the enhancement of the C-SOC tools and platforms including the following key responsibilities:

Key Responsibilities:

  • Improve and rationalize distributed SIEM deployments made of off-the-shelf and bespoke tools / platforms for events and flow monitoring
  • Scale and deploy the Vulnerability Management infrastructure to cover 50+ remote sites
  • Management and enhancement of event indexing, normalisation and visualisation tools on a global scale
  • Design and deployment of scalable AV, EDR and HIPS platform
  • Test, build and document system-to-system integrations using a combination of bespoke software and off-the-shelf HTTP-based API
  • Carry out major system upgrades and supervise the Junior Engineers in defining system operations such as: backup / restore, DR simulations, updates / upgrades, End-of-Life hardware / software refresh
  • Provide support to the Security Operations Engineering Team Lead in establishing a robust, resilient, redundant enterprise-grade architecture for the C-SOC tools stack, including associated change management processes
  • Act as escalation point for issues associated with all the tools and platform, troubleshooting and escalate to the Vendors when required

Essential Knowledge and Skills:

  • A bachelor's or master's degree or equivalent in computer science, information systems or other related field; or equivalent work experience is desired
  • Professional security certification, such as a Certified Information Systems Security Professional (CISSP), SANS certifications or other similar credentials, is desired
  • Thorough understanding of the latest security principles, techniques, and protocols
  • Proven work experience as a System Security Engineer and/or Administrator
  • Hands on experience in building and maintaining a wide portfolio of Security tools like SIEM platforms, vulnerability management tools and systems integrations
  • Detailed technical knowledge of Linux and Windows operating systems
  • Experience with network security and networking
  • Experience with IaaS / PaaS / SaaS Cloud providers and associated security offering
  • Hands on knowledge of system’s API principles and integration techniques
  • Hands on knowledge of Bash scripting and Python programming languages
  • Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols
  • Detailed understanding of Public Key Infrastructure and Key Management
  • Knowledge or exposure to Cloud technologies, such as IaaS, SaaS & PaaS deployments, with detailed knowledge of Azure, AWS and GCP being highly desirable
  • Experience with implementing Privileged Access Management solutions, ideally CyberArk
  • Experience working in as a Security Engineer or can demonstrate equivalent experience
  • Experience of working in Security Operations is highly desirable
  • Must be eligible to work in this location advertised
  • Individuals with SC clearance or are eligible to apply for SC are highly desirable