Principal Cyber Security Engineer

In 2022 we built out an exciting SIEM/SOAR and Managed Detection and Response service called SEP2.security, built upon Google Cloud Security’s Chronicle stack.

Due to customer demand, we are now looking to hire a Principal Cyber Security Engineer to join this ever-growing team.

The Security Intelligence Services team, that this role is situated in, provides security monitoring and use case/playbook implementation on customer tenants, with a strong focus on customer satisfaction. This role goes beyond pure analysis to include significant customer engagement to ensure long-term client retention.

This is a full-time position that can be performed fully remotely from the United Kingdom, or for those local to the West Yorkshire area a hybrid role, with occasional travel to our Leeds SOC.

Main Tasks

• Lead technical engagements with managed clients, internal teams, and external partners to assess security requirements and develop effective solutions.
• Detection rule creation, log source onboarding, tuning and building response plans/playbooks.
• Respond to customer requests for security monitoring and recommend/devise detection rules.
• Supporting both in-life services as well as new customers.
• Investigate complex security events and alerts.
• Research threats and vulnerabilities.
• Help to support and mentor our apprentices.
• Contribute to the SIS On Call Rota (approximately 1 week in 5).

Personal Qualities

• A “Customer Centric” attitude, with the ability to communicate with both technical and non-technical parties effectively.
• The ability to build credibility quickly with colleagues and customers.
• Competent and confident in customer-facing situations.

Qualifications and Experience

• Experience as a Cyber SOC Analyst or similar role.
• Proven experience in deploying SIEM (Security Information and Event Management) and SOAR (Security orchestration, automation, and response) solutions to achieve positive outcomes. Our tools include Google Chronicle SIEM/Siemplify SOAR and LogRhythm, but experience with other platforms such as Microsoft Sentinel, Splunk, Qradar, or Humio/Logscale is also valuable.
• Background knowledge in another IT discipline (e.g., Public Cloud, Windows Server, Linux, or Networking).
• Some experience with scripting tools such as Powershell, Python, Bash and RESTful APIs (Application Programming Interfaces).
• Experience in customer engagement, adept at identifying and addressing customer needs, and proficient at fostering positive client relationships.

History

Cyber Security Specialists, SEP2 is an organisation providing advanced cyber security services solutions and tech-driven services powered by passionate and honest people.

SEP2 started out in Leeds as an organisation built to add value and do business the right way. We’ve grown, we’ve developed, and we’ve evolved, we’ve taken on experts to expand our knowledge base and technical skills, building a portfolio of accreditations and we’ve developed important relationships with our vendors.

SEP2 are an award-winning cyber-security specialist, whose success is built on five values:

• Passion
• Tech Driven
• People Powered
• Committed to Doing Good

Every SEP2 colleague lives these values every day. We have a culture of passionate people who work as a team that will never leave a job incomplete. We believe in giving every member of our team responsibility. We nurture the desire to solve problems at the root cause. We encourage continuous improvement.

We’re here to beat the bad guys and we’re here for the long-term.