Senior Sec Ops Engineer

Security Operations Engineer - Remote

Our retail client are looking for a Security Operations Engineer to join an expanding Security Operations functions, someone with broad security experience (DLP, FW, AV, WAF, SIEM, Gateways etc).

The role will be largely Security Engineering focused but could involve supporting with some SOC activity. The L1/L2 activity is predominantly managed by an external MSSP and the internal team will be expanding with SOC analysts, during that growth period we need someone that is able to support in a hybrid capacity.

Responsibilities:

• Analysis of potential security events, with validation and escalation
• Monitoring tool-sets and sensors for analysis enrichment
• Correlation of data and impact assessment of security incidents
• Threat identification, attack vector articulation and containment strategy
• Threat hunting
• Incident resolution and post-incident analysis
• On-call support
• Providing suitable reports from a multitude of sources
• Able to work within a team and individually
• Administration of security tool-sets and intelligence feeds

Required skills:

• Analysis of potential security events, with validation and escalation
• Monitoring tool-sets and sensors for analysis enrichment
• Correlation of data and impact assessment of security incidents
• Threat identification, attack vector articulation and containment strategy
• Threat hunting
• Incident resolution and post-incident analysis
• On-call support
• Providing suitable reports from a multitude of sources
• Able to work within a team and individually
• Administration of security tool-sets and intelligence feeds