Security Operations Engineer at Gridware enhancing security, detection, and response in cloud - first environments. Collaborating with IT and engineering teams to implement best practices.
About the role
- Security operations lead at Seccl overseeing security operations and incident response for a cloud-first investment platform. Collaborating with various teams to enhance security posture and operational effectiveness.
Responsibilities
- Overseeing day-to-day security operations, ensuring effective detection, investigation and response to security events
- Managing and tuning the SIEM platform to improve alert quality, coverage and operational effectiveness
- Working with an outsourced security operations partner to triage alerts and coordinate incident response
- Leading vulnerability management activities, prioritising remediation based on risk
- Collaborating with infrastructure, IT and application teams to embed effective security controls
- Integrating threat intelligence into detection and response workflows
- Monitoring and reporting on security metrics, incidents and trends to key stakeholders
Requirements
- Have proven experience leading or managing security operations in a cloud-first environment, ideally AWS
- Are confident operating and improving a SIEM platform, with hands-on experience of tuning, rules and integrations
- Have experience working with outsourced SOC or security partners and managing alert triage and escalation
- Understand the full vulnerability management lifecycle and can prioritise remediation based on risk
- Have strong incident response skills and are comfortable leading investigations and post-incident reviews
- Can communicate clearly with both technical and non-technical stakeholders across the business
- Have experience with Microsoft Sentinel and Microsoft Defender security tools is desirable
Benefits
- 27 days holiday + bank holidays (some can be flexible) + day off on your birthday + three days (full time) per year for Dependant leave
- Two volunteering days per year
- Option to work abroad for up to six weeks a year
- Secclbrate - our recognition programme that offers a mix of flexible rewards including extra pay, additional holiday and increased learning budget
- Length of service award – one month paid sabbatical at eight years
- 6% employer pension contribution, and life assurance
- Private medical insurance with AXA Health
- Enhanced Parental leave
- MacBook and up to £500 home office set up budget
- £750 per person learning budget
- Health and wellbeing initiatives including free therapy via Wellness Cloud, mental health support via Headspace
- Strong financial wellbeing focus including access to Octopus Money, Octopus Share Incentive Plan and will writing offering via Octopus Legacy
- Perkbox – Flexi-points giving you a range of discounts and perks including free weekly coffee, gym and retail discounts
- Access to initiatives like Cycle to Work and Octopus Electric Vehicle Leasing
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Cybersecurity Operations Director leading cybersecurity managed services operations at a global accounting firm. Overseeing teams, driving growth, and serving as an advisor to clients.
L2 SOC Analyst managing security incidents and responses at Keyloop, focusing on digital transformation in the automotive sector.
Security Operations Analyst responsible for developing security processes and incident response. Collaborating with multiple teams for security best practices in a hybrid work environment.
Security Manager leading IAM and SecOps at fintech solutions provider in Brazil. Developing and implementing information security programs aligned with best practices and compliance requirements.
Security Engineer enhancing cybersecurity tools and solutions for The Walt Disney Company. Performing system analyses and developing security configurations for improved protection against cyber threats.
Security Operations Lead responsible for security operations aligning with policies and compliance. Handling incident response, vulnerability management, and supporting IT teams with security expertise.
SOC L2 Analyst responsible for security monitoring and incident investigation. Analyzing escalated alerts, conducting correlation with SIEM, and executing response actions.
Cyber Security Specialist protecting digital estate from threats at the University of Edinburgh. Focused on identifying and mitigating cyber risks while supporting teaching and research services.
Cybersecurity Incident Response Analyst detecting and responding to cyber threats at NOV. Collaborating using AI tools to enhance cybersecurity operations across IT, cloud, and OT environments.