Senior Security Engineer

Job ID:40163
Location:Birmingham : 1 Trinity Park : Bi  
Position Category:Information Technology
Position Type:Employee Regular

About LRQA Nettitude

Founded in 2003, LRQA Nettitude is an award-winning global provider of cybersecurity services, bringing innovative thought leadership to the ever-evolving cybersecurity marketplace. Through our research and innovation centres, we provide threat-led services that span technical assurance, consulting and managed detection and response offerings.

To learn more, please visit https://www.nettitude.com/

The role

Working as a Senior Security Engineer within our MSS team, you will use your expertise to facilitate the detection and response to a multitude of threats of differing capability and sophistication. You will use, administer, and maintain our SIEM, EDR, Network Monitoring, bespoke tooling, and Threat Intelligence solutions to enable the triage of suspicious events, provide context and assessment of risk/threat to our customers.

The purpose of this role is to ensure the efficient, error-free performance of the SOC Platform. You will take a lead role in ensuring the continuous monitoring of customer environments via both SIEM and SOC Monitor infrastructure.

You will develop technical solutions to improve the operational capability of the Platform and to support the wider SOC Monitor team.

You will also get involved in projects that maintain and enhance the capability of our services, and ensure we are providing innovative detection & response services to our clients. This includes threat hunting, supporting the implementation of new cutting-edge technology, malware analysis, recommending detections and getting involved in strategic cross-team projects as part of your wider role within our award-winning Security Operations Centre.

Location

This role is hybrid based within the UK, with a mixture of Home and Office based working for collaboration, team building, workshops and clinic days.

We can support working from across the UK. All applicants will require residence in the UK.

What you’ll be doing:

As a Senior Security Engineer, you'll need to:

• Monitor and maintain Nettitude’s technology stack, creating and tuning alerts where necessary.
• Lead the implementation of any required upgrades to the Security Engineering technology stack.
• Triage of events from tools at your disposal to collaboratively deliver verdicts on risk levels when investigating these events; escalating to the customer when a positive level of risk has been determined.
• Ensure each customer’s operational health is maintained and respond to all requests within agreed SLAs.
• Train and mentor new starters and junior members of the team.
• Ensure customer environments are onboarded in a timely manner with risk ratings applied.
• Work with our Threat Detection team to develop solutions to improve detections and operational capability.
• Maintain an awareness of the latest Defensive Monitoring technologies and trends.
• Maintain an up-to-date understanding of current threats and trends in Cyber Crime and apply this information as part of your daily duties when creating custom use cases and altering the SOC Monitor infrastructure.
• Assist both Infrastructure Support and Network Operations in a wide range of duties ranging from security best practice recommendations through to analysing suspicious activity on infrastructure devices.
• Liaise with Account Managers across the business and assist with the presentation of SOC Monitor technology demonstrations to both current and prospective customers.
• Maintain regular written and verbal communication with customers, suppliers, and internally as required.

What we’re looking for:

The following are recommendations for the role. Please still apply if you only have experience in some of the points below:

• Highly developed SIEM, EDR, and EPP skills along with the technical experience of managing a SIEM solution.
• Demonstrable experience of working in a Complex, High-Performing Service Management Enterprise Environment.
• Experience in conducting investigations using large datasets.
• Strong Python, PowerShell, and RegEx skills
• A wide understanding of IT infrastructure including Windows and Linux applications as well as network and other security vendor products.
• Experience of analysing complex data, making sensible recommendations, and presenting to management teams as part of continuous service improvement.
• Understanding of attack vectors, with the ability to differentiate between normal and abnormal activity, providing recommendations on countermeasures and remediation activities.
• Experience in a customer-facing role; communicating to different levels of stakeholders.

Desirable:

• LogRhythm certifications such as LRPA and LRSE.
• CrowdStrike certifications and experience.

What we offer:

We are a people-focused, high-performing, high-trust managed security services team. We pride ourselves on our investment in our people, meaning as we are a fast-evolving team in an exciting working environment, you’ll always have opportunities to solve the latest cybersecurity challenges, with the responsibility and development opportunities to match.

Company benefits: 

• Access to our interactive learning platforms via our partners, with encouragement to pursue subsidised external training & certification
• Intensive new starter training program, blending theory, hands-on labs, case studies, online and on the job training to help you hit the ground running
• Consistently updated training & progression plans with multiple tracks of development, supporting lateral movement or upwards progression
• Generous annual training, cross-training and project days
• The option to join in with company and department socials to relax, get to know your new colleagues and team build
• Life assurance/Death in service benefit
• Yearly wellness day to be spent in the way that works best for you
• Recognition & rewards for individual, team and department performance
• Performance-based bonus programme
• Income protection
• Generous pension scheme
• A supportive team enabling you to succeed and grow your career

An attractive remuneration package will be negotiated with the right candidate.

Apply?

We don’t expect candidates to tick all the boxes. If you feel your skills, knowledge and experience are a good match for the requirements and you have a desire to learn and develop, we want to hear from you.

Diversity and Inclusion at LRQA:

We are on a mission to be the place where we all want to work and we are passionate about embracing different perspectives because we understand the value this brings to our business, our clients and each other. We are all about creating a safer and more sustainable future and our inclusive culture is right at the heart of our business.

Together our employees make our communities better and we want you to be part of our diverse team!

LRQA is a leading global assurance provider.  The integrity and expertise we bring to our partnership with clients support their journey to a safer, more secure and more sustainable future. (Group entities).

Copyright © LRQA 2021. All rights reserved. Terms of use.  Privacy Policy.