The role will involve working in their global security team and will be responsible of helping develop effective security controls.
The role will part of a global team with the other hubs being in Europe and Asia Pacific
Key responsibilities will include:
- Working closely with the in-house security operations team to drive world class threat detection
- Building effective detection use cases within the chosen SIEM while minimising false positives.
- Utilise online resources for researching and collecting threat intelligence to enhance the SOC’s abilities to detect cyber-attacks.
- Utilise telemetry available throughout the environment to build and improve detection capabilities.
- Testing of existing and new detection use cases
- Participation in security incidents/ investigations
Key skills needed for the role:
- Experience of SIEM administration – Splunk preferred but other SIEM tools considered
- Broad technical information security knowledge including networking, malware analysis, incident response and
- Knowledge of information security protection, detection and authentication systems
- Understanding of tools, techniques and procedures that attackers use to compromise organisations, ideally from direct experience.
- Basic python\ AWS experience
Please send your CV for immediate review
