Security Operations Specialist

What will you be doing? 

We’re seeking a talented individual to join our team in London. Reporting to the Security Operations Lead, you will be a key part of the Security Operations Centre (SOC). The Security Operations Specialist provides Second and Third Line review, Analysis and Incident Response for Security events and incidents reported to the SOC, responding in line with agreed SLA's.

The role directly supports our external Security partners in ensuring the correct monitoring is being performed as well as ensuring rulesets being monitored are relevant and effective. You will have responsibility for providing support to the Security Operations Centre Manager in the planning and implementation of security measures and controls for security operations.

You will be expected to build relationships with key stakeholders in Technology Services to drive operational security improvements, alongside providing guidance to end users of varying technical proficiency on best practise operational security across the business.

As Security Operations Specialist, your responsibilities will include among others:

 

• Responding to escalated security incidents in line with timescales and highlighting events requiring further investigation
• Coordinating and supporting with third party security service vendors to ensure appropriate monitoring and triage on alerts, events, or incidents
• Analysing security reports to identify trends and working with teams to develop strategies to drive secure behaviours throughout the business
• Form part of the Cyber Incident Response team as a technical SME
• Maintaining and delivery of Phishing campaigns, reporting and remediation management
• Operational and Security maintenance of Security tooling stack across multiple technology vendors, performing security reviews across information systems and key infrastructure and maintaining an awareness of security policies and regulatory requirements pertaining to information security

To be successful in this role, you should:

• Previous experience of working in a Security Operations Centre (SOC) 
• Minimum 3 years experience in security operations or a technical security role, with a focus on understanding attack paths and mitigations and a strong understanding of security operations, incident response, and detection engineering
• Excellent understanding of SIEM, IAM and DLP programmes and technologies and expertise in applying operational security requirements in Zero Trust networks
• Knowledge and experience of managing operational security in an Azure/365-centric environment
• Experience in analysis of cyber attacks using methodologies such as MITRE ATT&CK and other relevant frameworks
• Demonstrable ability to keep updated on the subject matter as part of an ever-changing threat landscape

Desired:

• Bachelors or Masters degree in in InfoSec/InfoSys/Computer Science or equivalent degree or work exp
• Relevant industry certifications desirable

As a colleague here at Evelyn Partners you will have access to benefits that include:

• Competitive salary
• Private medical insurance
• Life assurance
• Pension contribution
• Hybrid working model (role dependant)
• Generous holiday package
• Option to purchase additional holiday
• Shared parental leave

We are proud to value the differences that a diverse workforce brings, representative of society and our clients.

At Evelyn Partners we have a wide range of highly active employee resource groups and we're delivering multiple diversity, equity and inclusion initiatives across the organisation. It is our commitment to provide a workspace where all colleagues, regardless of identity, background, or circumstance, feel respected as individuals and feel that they can achieve their full potential and work in a safe, supportive, and inclusive environment.

We are happy to make any reasonable adjustments to accommodate for your needs throughout the application process. Please let your Recruiter know.