Security Operations Engineer

Giacom
Hessle, United Kingdom
yesterday

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
£ 46K

Job location

Remote
Hessle, United Kingdom

Tech stack

Microsoft Windows
User Authentication
Software as a Service
Computer Security
Identity and Access Management
Information Technology Operations
Intrusion Detection and Prevention
Performance Tuning
Security Information and Event Management
EndPointSecurity
QRadar
Falcon Platform
Cybercrime
Splunk
SentinelOne Expertise

Job description

The Security Operations (SecOps) Engineer will play a key role in maintaining and improving the organisation's overall security posture and operational security capability, acting as the bridge between internal stakeholders, technology teams and outsourced security service providers.

This role is primarily a Security Operations and Engineering position, with responsibility for coordinating outsourced SOC services and driving security posture improvement.

What you'll be doing

  • Act as the primary technical conduit and liaison between the organisation and our outsourced third-party SOC vendor.
  • Triage, analyse and prioritise alerts, incidents, escalations, and investigations - validating severity, business impact, and regulatory implications of incidents
  • Co-ordinate incident management and response activities aligned with defined policies, standards, and framework requirements by being the internal response facilitator and co-ordinator for containment, eradication, and recovery actions for security incidents escalated by the SOC
  • Actively assist and work closely with the outsourced SOC provider to:
  • Investigate root causes of security issues and design effective remediation solutions
  • Monitor and configure security tools - global EDR/XDR policies, blocklists, and automated containment rules including SIEM, EDR and respond to threat detection alerts.
  • Maintain and enhance security monitoring capabilities through effective integrations and optimisation of security tooling, ensure effective data collection and eliminate visibility blind spots.
  • Work closely with outsourced SOC vendor and internal engineering teams to implement automation workflows for routine SOC tasks such as alert enrichments, notifications, and data gathering, providing technical support and testing.
  • Design, configure, and implement security improvement initiatives and projects to enhance the organisation's overall security posture.
  • Collaborate with Corporate IT Service Desk to maintain governance over IT operations, ensuring technical controls across endpoints, enterprise solutions, and identity services are hardened, continuously monitored, and managed in accordance with Secure by Default principles to enable resilient and secure day-to-day operations.

Requirements

  • Previous hands-on experience in cybersecurity operations or security engineering roles.
  • Experience of security monitoring, threat detection, incident response, and threat hunting methodologies.
  • Strong working knowledge of endpoint security, identity and access management, authentication controls, privileged access management, and security hardening standards incl. Privileged Access Management (PAM/PIM) principles and enterprise Endpoint Detection & Response (EDR/XDR) tooling.
  • Experience managing security tooling such as Microsoft Defender XDR, Sentinel, CrowdStrike, Splunk, QRadar, SentinelOne or similar enterprise-grade SIEM/XDR platforms.
  • Direct experience securing Microsoft 365 tenants and standard corporate SaaS environments.
  • Proven experience interfacing with, tuning, or triaging escalations from a third-party managed SOC or SIEM platform would also be desirable.

Benefits & conditions

What's in it for you?

  • Hybrid working (3 days per week in our Hessle or Prudhoe office, 2 remote)
  • Investment in your future career with a variety of learning and development opportunities.
  • No dress code - embrace the freedom to bring your whole self to work.
  • 25 days annual leave, plus bank holidays. You'll even get your birthday off, too!
  • A pension plan for your future.
  • Complimentary refreshments in all our offices.

About the company

Giacom are the only provider of Comms, Cloud, Hardware and Billing all through one platform. Our platform connects technology resellers and service providers to the best IT, Comms and Cloud products and services so they can create brilliant technology solutions for UK businesses.

Apply for this position