Senior Cyber Security Engineer (CSOC)

  • Full Time
  • Manchester
  • Location: Manchester
  • Salary: Up to £60000 per annum + Holidays, Pension, etc...

Rullion

From architecture to implementation, we are immersed in I.T. One of our core specialisms, we have placed a broad range of talent. From developers bringing a Java project over the line, to C-suite execs overseeing the cybersecurity of entire portfolios, we have matched candidates with some of the country’s biggest corporations – as well as its coolest consultancies. Under the umbrella of I.T and business change, we have also been part of some spectacular business change and transformation initiatives - in industries like retail, utilities, defence, telecoms, finance and banking.

Cyber Security Engineer (CSOC) – Swinton, Greater Manchester

A brilliant opportunity has become available for a Cyber Security Engineer to join an innovative & rapidly growing Managed Security Services Provider. This is a great opportunity to join our growing, dynamic organisation working with a friendly, skilled team where you will be well looked after and encouraged to learn, progress and grow within your role.

Who are we?

This Opportunity is for one of the UK’s fastest growing MSSP’s, they specialise in providing a number of security services to a wide range of clients across a breath of industries. The company’s sole aim is to bring together the best mind’s in the industry to help customer navigate through the ever changing world of technology & keeping malicious actors at bay. Ambitious, successful & determined the people of this organisation only aim to be at the very top of what they do.

The Role?

As a Senior Cyber Security Engineer that sits within the CSOC team you will be part of the wider Cyber Services Function within this national MSP. As the technical lead, you will be responsible for all SIEM and security platforms, expected to manage and enhance in order to meet business requirements.

As a hands-on technical position, the successful candidate will be expected to think beyond the conventional approach to security. You will have a high level of technical expertise across a variety of security systems, although knowledge of Microsoft technologies will be highly favourable. You will proactively work & collaborate with the CSOC teams, technical teams, vendors and customers to ensure that all security and monitoring requirements are determined and implemented within the internal and customer environments.

Responsibilities:

  • You will be the technical lead for SIEM tools with specific in-depth knowledge of AlienVault & Azure Sentinel
  • To ensure strong and effective security controls are in place to detect and mitigate security risks across all on-prem and cloud environments to meet business objectives and regulatory requirements
  • Configure and develop SIEM tooling, and associated tool sets, to deliver effective and efficient SOC services through automation and orchestration, and to increase MTTD whilst reducing false positives and negatives.
  • Provide oversight and support for the identification, triage and response to events or incidents of a suspicious or malicious nature, and apparent security breaches.
  • You will work collaboratively with architects, infrastructure teams and key stakeholders inside and out of the business ensuring security and monitoring requirements are determined and implemented through onboarding or continuous improvement activities
  • Actively support the onboarding of new clients throughout the transition to service delivery lifecycle.
  • Conduct project activities including planning and execution of Changes, documentation, training / skills / knowledge transfer to the team and clients.
  • Maintain a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities
  • Be a mentor to the CSOC Specialists and Analysts, providing technical knowledge and training to the team

What will you need?

  • Understanding of a SOC environment including analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures, and reduction of false positives.
  • Client facing, with the ability to assist with client onboarding.
  • An awareness of cyber security related standards and regulations, for example, ISO 27001 and PCI DSS.
  • Experience of configuration management tools, host virtualisation, SIEM tools, containerisation, vulnerability scanners, proxies, WAFs.
  • Educated to Degree level in a relevant subject or undergone any equivalent professional certifications.
  • Qualifications such as GIAC, CREST, SANS, CompTIA etc.
  • Exposure to a variety to operating systems, including but not limited to Windows, Linux & VM platforms.
  • Exposure to TCP/IP protocols as well as networking, troubleshooting, firewalls, configuration, monitoring, network packet capture and tcdup / wireshark.
  • An advanced understanding of threat analysis, threat hunting & intelligence feeds.
  • Knowledge of common internet protocols such as SMTP, HTTP & DNS.

In return you will be offered a position in a great organisation with a people first culture, along with a competitive salary & benefits.

You must register to apply for this job.

Share: