Security Operations Engineer

Micro IT Global Ltd
1 month ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate
Compensation
£ 66K

Job location

Tech stack

Microsoft Windows
API
Amazon Web Services (AWS)
Azure
Bash
Software as a Service
Cloud Computing
Computer Security
Linux
Infrastructure as a Service (IaaS)
Python
Key Management
Network Security
Platform as a Service (PAAS)
Public Key Infrastructure
Service-Oriented Architecture
Security Information and Event Management
Software Vulnerability Management
Web Applications
Web Services
Google Cloud Platform
Cyberark

Job description

  • Improve and rationalise distributed SIEM deployments made of off-the-shelf and bespoke tools/platforms for events and flow monitoring
  • Scale and deploy the Vulnerability Management infrastructure to cover 50+ remote sites
  • Management and enhancement of event indexing, normalisation and visualisation tools on a global scale
  • Design and deployment of scalable AV, EDR and HIPS platform
  • Test, build and document system-to-system integrations using a combination of bespoke software and off-the-shelf HTTP-based API
  • Carry out major system upgrades and supervise the Junior Engineers in defining system operations such as: backup/restore, DR simulations, updates/upgrades, End-of-Life hardware/software refresh
  • Provide support to the Security Operations Engineering Team Lead in establishing a robust, resilient, redundant enterprise-grade architecture for the C-SOC tools stack, including associated change management processes
  • Act as an escalation point for issues associated with all the tools and platform, troubleshooting and escalate to the Vendors when required

Requirements

  • Thorough understanding of the latest security principles, techniques, and protocols
  • Proven work experience as a System Security Engineer and/or Administrator
  • Hands-on experience in building and maintaining a wide portfolio of Security tools like SIEM platforms, vulnerability management tools and systems integrations
  • Detailed technical knowledge of Linux and Windows operating systems
  • Experience with network security and networking
  • Experience with IaaS / PaaS / SaaS Cloud providers and associated security offering
  • Hands-on knowledge of the system's API principles and integration techniques
  • Hands-on knowledge of Bash scripting and Python programming languages
  • Familiarity with web-related technologies (Web applications, Web Services, Service-Oriented Architectures) and of network/web related protocols
  • Detailed understanding of Public Key Infrastructure and Key Management
  • Knowledge or exposure to Cloud technologies, such as IaaS, SaaS & PaaS deployments, with detailed knowledge of Azure, AWS and GCP being highly desirable
  • Experience with implementing Privileged Access Management solutions, ideally CyberArk
  • 3+ years working as a Security Engineer or can demonstrate equivalent experience
  • Experience working in Security Operations is highly desirable

Apply for this position