Security Engineer (SOC)

We're looking to hire a Security Operations Engineer to enhance our security operations and ensure robust protection against sophisticated threats. This role will report into the SOC and IR Manager and is crucial for maintaining our Security Operations as high-performing and resilient. You will be refining our SOC capabilities by monitoring network traffic, automating processes, analyzing security incidents, managing security tools, and providing expertise to Security Specialists and SOC analysts. As the SOC Engineer, you will collaborate with cross-functional teams to build defenses, respond to incidents, and design strategies for a robust cybersecurity posture. You will enhance SOC capabilities with cutting-edge technologies and automation tools, collaborating with industry experts in cloud security, fraud prevention, and data analytics, and experimenting with SIEM, SOAR, EDR, and cloud-native security technologies.

1. Security Engineering & Automation: Drive improvements in SOC workflows, automate enrichment processes using SOAR and automation tools, and develop playbooks for more efficient alert handling. Oversee the deployment, configuration, and tuning of SOC-related security tools to enhance detection accuracy, reduce false positives, and manage end-to-end EDR operations.
2. Cloud Security Monitoring: Analyze and manage security logs through the SIEM.
3. Security Monitoring & Threat Detection: Continuously monitor security alerts, events, and IoCs across all platforms. Build and deploy queries and scripts, and create dashboards and workflows to enhance visibility and reporting.
4. Proactive Threat Hunting: Develop and implement threat hunting procedures to proactively identify potential risks and vulnerabilities before they escalate.
5. Incident Response: Enhance the IRP and coordinate with the SOC team and cross-functional teams during the incident response lifecycle, focusing on containment, eradication, recovery, and post-incident analysis.

About you:

• Experience in SOC or incident response roles, with hands-on experience in threat detection and mitigation.
• Technical Skills: Strong capability in threat detection, incident response, and analysis of complex attack patterns, with a focus on the Cloud environment. Skilled in writing SIEM queries, alerts, and dashboards.
• Scripting & Automation: Knowledge of scripting languages such as Python, SQL, or Bash to automate SOC workflows.
• SOAR: Hands-on experience managing SOAR platforms such as Google Chronicle, Swimlane, Cortex XSOAR, etc.
• EDR Expertise: Hands-on experience managing EDR tools, including end-to-end operations from deployment and configuration to analysis and response.

BeneFITS

• Employee discount (hello ASOS discount!)
• ASOS Develops (personal development opportunities across the business)
• Employee sample sales
• Access to a huge range of LinkedIn learning materials
• 25 days paid annual leave + an extra celebration day for a special moment
• Discretionary bonus scheme
• Private medical care scheme
• Flexible benefits allowance — which you can choose to take as extra cash or use towards other benefits

Why take our word for it? Search #InsideASOS on our socials to see what life at ASOS is like.

Want to find out how we’re tech-powered? Check out the ASOS Tech Podcast here. Prefer reading? Check out our ASOS Tech Blog here.